Time to announce this plan: I am working on a redesign of the joinmastodon.org server picker. I am also planning to switch out the data source from instances.social to my own API. The main reason for this is the addition of a new guarantee that I would be able to give when linking to servers from joinmastodon.org: That those servers would meet certain standards and enforce some basic rules of conduct.
Below is a screenshot with old, uncurated data as placeholder.
If these are too strict, I want to hear about it, but "safe against major data loss" should not be an unattainable goal...
Everyone who is hosted on masto.host, all the requirements except the first one are automatically met
@Gargron Looking good. Interested in what basic rules of conduct you choose.
@Tyrent The crux is in the screenshot already. Some extras would be: Daily backups, at least one extra person with access to the infrastructure (bus factor), and a committment to announce server closure at least 3 months in advance (no overnight disappearance)
@yalh I saw that one Yalh thank you very much but as it is not (yet?) an official package and I’m quiet a beginner with YH I’m not so sure about trying this.. :/
@imacrea
There won't be no more official packages. It has been replaced by `High Quality app` and `Featured app` https://github.com/YunoHost/Apps/#lists
@yalh Ah? this is not what I understood from the app page on YH Admin dashboard. Ok I’ll look into that, thank you!!
Hey, @hugo. Do you have any comments about the technical side of what @Gargron said for @mastohost -hosted instances, please?
Specifically, about #2 and your part about #4?
Both 2) and 4) are applied in Mastodon.
I have daily databases running in a remote server of everything both media and databases, It's a nightmare to run but I have it and it works (I tested it).
About four, obviously I will give time in advanced for people to move to a different hosting.
@mastohost @hugo @Gargron
Thanks for your response, this is definitely reassuring 😀
What about #3? From my part, I can (and will) find an emergency person as a substitute for my role as the instance admin. But do *you* have such person for the server infrastructure?
@masoud @hugo @Gargron @mastohost +1 for this. Also #3; would whatever ops team Mastohost has qualify, or is this more of in terms of instance moderation/administration?
@Gargron I think this is perfect, and not too strict. I think giving users this kind of reassurance is very important. I just dropped you an email about adding our instance. Thanks for all you do!
@kev @Gargron 3rd point can be problematic for smaller instances with hosting providers. It means the "other person" the main admin "employs" must be fully trusted that he won't misuse the resources, which can be costly.
Also what is expected of the "other person". Just to be able to restore data or be available for any admin request? On what SLA?
Another way:Will it be possible to run unlisted instances where there's abs. requirement for point 3?
Many thanks for the great software you provide!
@ziegel I believe that if you’re running a service that the general public can use, then the admin has a responsibility to their users to provide continuity. Part of that continuity, I believe, is factoring in the ‘hit by a bus’ scenario.
That’s why I consciously brought @mike on _very_ early on because a) I trust him and we go back a long way, but b) all our eggs are no longer in my basket.
Just look at what happened with Void Linux and Solus.
@kev @mike @Gargron I fully agree with you @kev. That's why I asked about unlisted instance, which I intend to use for my closest family members (roughly 12 ppl). Public signups are not intended initially. So still waiting for a confirmation from @Gargron; if and when that stabilizes, then I'll look for a mate to help admin it.
@Gargron These are not strict at all, IMHO. It is the base line for a reasonable and reliable Mastodon instance. I like it.
@Gargron I'm not sure if "at least one other person with emergency access to server infrastructure" is possible in my case, since nobody else in my house knows how to computer
@Gargron although people who meet the requirements to join my instance (living in the same basement as me) probably don't need to find out via a website
@ben hahaha 😂
@ben Online friends? What happens if you go on vacation and have no ssh access and something bad happens on the server?
@Gargron one time the internet at my house went out for an entire week
and if I don't have SSH access, I also don't have email or phone access because all of those can be done via all of my devices.
Just my personal take on this, but home hosted devices, not because they are hosted at home, but because they are usually not properly secure (i.e. no security around 24/7) and as you mentioned no "guaranteed internet connection" (in worst case) will provide a bad experience in some cases and should rather not be added to this list.
Maybe @Gargron wants to extent the policy for that.
@Gargron
Please consider adjusting!
1) A server policy to recognize the inherent human dignity of every person.
Reason: history shows labels (e.g. homophobia) are misused, often thrown around recklessly against those of opposing political or religious beliefs.
2) through 4)
Overkill as a rule for startup and other small instances. Unenforceable. Better: require instances to *state* their policy for administration, backup and shutdown notice.
@gms But do those instances need to be listed?
1 - simply having a server policy stating XYZ doesn't mean anything unless an admin personally goes through as many posts as possible, or users actively self-police. (even "private" messages that aren't really private). but again it really doesn't mean anything just to have a public notice somewhere saying "we promise to be nice"
2 - how is Gargle supposed to verify our daily backups? do we need to install a rootkit? make a git repo of sqlite dumps? (besides part of the point of fediverse is that if an instance is temporarily down, users and posts can still circulate)
3 - again... how is this possible to vet , why is it even useful. if the primary admin is afk or in jail or whatever, nothing makes it certain that a secondary admin can put out fires. two is such an arbitrary number
4 - also again it doesnt mean anything for an admin to say "we promise to give you a 3 months heads up before we close". good admins will already do this when possible. neutral / unlucky / bad admins pull the plug when it's time to pull the plug, shrug, and move on,
good federation and resiliency doesn't just mean letting your users export/import their own following lists, it also should make it trivial for users to dump their own tweet history, this arbitrary "have 2 admins and give people a 3 months heads up, and claim you won't tolerate racism someplace" are really silly
why not have a policy against untagged NSFW and spam .... and why are only racism and sexism prohibited, why are scams or death threats or gambling not forbidden, etc etc
Gargle and friends should just make "list of our best buddies :)" and have one URL listed per line , and dump the stupid pretense of these 4 arbitrary requirements
@pox Take your personal beef elsewhere, please. I have no interest in your weird internet anger.
these 4 "requirements" to join literally don't mean anything -- me pointing this out is not "weird internet anger" or "personal beef" it is engaging in open discussion, which is the point of fediverse :--) just because someone has a dissenting opinion does not make them a troll or "hater" or bully, this is children's mentality
@gms It's not enforceable but it's not meant to be. If someone deliberately lies about having backups that's on them.
@Gargron a server should just have good moderation policies in general, no?
@Gargron On (2), is it vital that's it's daily? My DigitalOcean droplet does weekly backups, and I'm not sure if there's an easy way for me to up that frequency.
@Louwestin @Gargron Yeah, I'm looking into add-on services that will provide daily backups. Seems reasonable to require that.
@jared @Gargron I’ve been happy with Linode for the last few years. https://www.linode.com/pricing and their daily backup pricing starts at $2 USD a month depending on your plan. https://www.linode.com/backups Plus you can do manual snapshots.
@Ilja Nope, there is a daily db backup, but it stays on the server, so that's not what I call a real backup. And for the CoD, it's on your todo list : https://pad.pirateparty.be/p/mastodon-welcome 😅
@Gargron As long as you can commit the money. Iirc the terms were kind of clear on instances going down if you stop paying for the service. (?)
@Gargron But also, thanks. Good to know.
@Gargron I noticed open registrations is not on that list. In the past, social.coop hasn't been eligible for joinmastodon.org because we have a sign up process. Am I understanding correctly that is no longer a barrier?
@datatitian I can put you in the database but to *show up* registration must be possible. Approval-mode is acceptable. I don't know if that would work for your coop.
@Gargron oh awesome I think that approval mode serves exactly what we were trying to do with our registration process.
@Gargron I think it's also the case for the instances hosted on your infrastructure @CobaltVelvet?
Server run by the main developers of the project 
It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!
I will be taking submissions over e-mail at first (I do not expect a lot to come quickly).
If you are a server owner, and you have:
1) A server policy against racism, sexism and transphobia
2) Daily database backups
3) At least one other person with emergency access to server infrastructure
4) Commit to giving users at least 3 months advance warning before closing down your server
E-mail hello@joinmastodon.org with the subject "Server submission". I'll try to figure out the blurb/category