I made a pretty nasty undead bbeg in a 3.5 game by applying both the lich and vampire templates to a necromancer, then giving him levels of the Vampire Lord prestige class from Libris Mortis. He also had the Swarm Shifter template, with swarm of undead parts. His skull would hover in the middle of basically a whirlwind of bones. I let the skull make Vampire drain attacks too, but also it was vulnerable to PCs trying to target it directly.

The nastiest thing about him though was how many other undead he could control.

it gives an example of the GM removing XP from a PC because their player IRL asked a question that in-game would be considered treason.

I’ve run lots of Paranoia (most recently last weekend for my 15 year old son and his friends) and I would never do this. It’s perfectly adequate (and makes much more sense) to have the Computer (and the other players) threaten the character about their treasonous behavior (the other PCs WILL just do this).

I have never once had a Paranoia game last long enough for the characters to earn XP and level up. My last game ended with the two surviving PCs, on their last clones, being captured and “reeducated” by commies (one clone was permanently blind too, after two other players used a device on him that triggered his “laser eyes” mutant power on super over charge… the funny thing was, he wasn’t even the intended target… they were trying to hit the PC who’s mutant power was “making things explode” and they misguessed who that was). The commie PC absolutely won that game, though she explosively sacrificed her last clone in the process. From character creation to this took about 6 hours.

so the GM prints out a sheet and makes the player fill it out under a time constraint.

I have absolutely done this. Here’s some other ideas from my games for you.

• “Reward” the characters for good behavior and punish them for bad behavior with drugs (happiness is mandatory and chemically enforced). Bonus if the drug dispenser has been hacked or sabotaged and the drugs do something other than what the computer thinks they do. Failure to take your medication is treason.

• I ran a game once that included a Pokemon GO mechanic… the computer had created a “training simulator” where the object was to catch commies. You could play it on your com device and various “commies” would spawn around the world as they were playing. The Computer assumed that whoever had the highest score was the best at catching commies, so that clone was automatically promoted to team leader… giving the players a huge incentive to drop what they were doing and try to catch high value commies, even at stupidly inconvenient and dangerous times.

• I ran a game where the characters were all Green clearance and were part of an “elite” team of troubleshooters called Team Eagle Justice. However, 1) Team Eagle Justice were actually just actors, who do a patriotic “reality” holoshow to inspire the citizens of Alpha Complex. 2) Team Eagle Justice had actually just been lured into an ambush by Commies and massacred and their clone vats had been sabotaged. So the Computer just promoted a bunch of random Infrared clearance clones to Green and made them into the new Team Eagle Justice. A bunch of secret societies took advantage of the situation to hack the Computer and have their own agents put on Team Eagle Justice. Mayhem ensued on live holovision.

I also usually throw in some home brewed secret societies.
Examples:

• In the Pokemon game, I had a secret society called the Trainers who’s goal was to “collect” members of other secret societies and “train them” to unlock advanced mutant powers (highly treasonous).

• In the game I recently ran for my son, there were two PCs who were members of the Philosophers and the Historians (they also encountered the NPCs Arist-O-TEL, Sock-R-TIS, Xen-O-Fon and Herod-R-TUS). These two societies were both trying to get an ancient text… but they were also fighting a brutal gang war between each other.

• In one game I ran for a friend’s birthday, I had a secret society called the Cultists who were trying to summon Cthulu from the nutrient vats. Of course, this was what actually ended up happening and the party went insane and died. (I assume IIA sector is now just permanently off limits).

Also, remember that knowledge of the rules is treason (as is knowledge of the existence of Role Playing Games). That means the rules are what you say they are and if a player wants to debate them with you or rules lawyer, that player is committing treason and treason is punishable by death. That means you can run Paranoia however you want. The important thing is having fun. Paranoia is silly and goofy. Play it that way.

Many of my self hosted solutions are just DIY cludges. I was talking to a friend of a friend on Saturday about media streaming and he told me all about his Jellyfin setup and then asked about mine and I was just like “I just store MP4s on an SSHFS drive and play them in VLC on my TV (which runs Linux Mint).” When the survey asked about the various types of software I was like “No… I don’t use anything like that… wait… yes I do! I just don’t use a prebuilt solution!”

Be as uninteresting as possible. Millions if not billions of people’s information of this sort is out there.

In fact, my wife and I already have a self hosted LubeLogger.

I’ve set up Lemmy, Forgejo, Nextcloud and Mastodon. Forgejo is unbelievably easy, Mastodon and Lemmy both are complex but if you follow the instructions you get there pretty quickly.

Matrix is like “Follow a book of documentation, then when it doesn’t work anyway, spend hours of your life troubleshooting a bunch of stuff that’s NOT in the documentation. Why is this so hard?”

It’s so much easier to set up and install than Matrix.

If you didn’t have the screen sharing requirement, I would suggest Mumble. It does everything else you want and the ease of install is like “apt get and edit a config file.” The server configuration to get the rooms and privacy settings you want is a whole different story, it’s the OPPOSITE of intuitive, but once you figure it out it’s quite robust.

The right tool for the job as described is definitely Matrix, but it does take some advanced troubleshooting (in my experience) to get it working. Some folks I know say the Ansible playbook just works, but I’ve been part of three deployments and that’s NEVER ONCE been my experience. Maybe the Ansible playbook “just works” if you’ve been using Ansible regularly for years and sometimes dream in yml. That’s not me.

IMHO, when compared with the ease of install of Mumble (or even Lemmy), the difficulty on installing Matrix is somewhere in between a joke and something that should be a mild point of embarrassment to the dev team (who built a great tool, so I’m not out to shame them here).

But right now, we have a situation in America where activists and organizers BADLY need alternatives to third party hosted apps… and the team has built this great tool that only fairly hardcore sysadmin / devops folks can get working. The difficulty of installing / maintaining is the biggest obstacle to the immediate, swift and widespread adoption of Matrix by US activist groups. I should know.

There’s a learning curve, but if you’re familiar with WAF’s it’s not hard.

If you want to DIY something, I have a bash script that builds OpenResty with NAXSI from source. Most of the web apps I write anymore are actually in Lua, for OpenResty, maybe with an API written in something else. But I also help other members of my team deploy their Node and Python apps and stuff, and I always just park those behind OpenResty with NAXSI, just doing a standard nginx reverse proxy.

Every computer I own is an autobot. My primary machine is always Optimus Prime, has been since 2008. Other machines get other names generally slightly inspired by their role / nature. Bumblebee and CliffJumper are miniPCs of various persuasions, Preceptor is my “mess around with AI” box, my big server that handles most of my data and network services is Wheeljack, my Macbook is Mirage, my backup server is Powerglide, my TV (which is an old Dell all in One running Linux Mint) is UltraMagnus.

Neither did he last administration and neither will the next.

That’s like saying that neither tepid bath water nor boiling tea water are “cold.”

Saying it again here: The only infrastructure we can trust is our own.

Even if there are still a number of services that are strongly above average trustworthy, they are ALL under attack in multiple “free” countries.

It’s Trump-proofish

• I approve of Matrix and Nextcloud.
• Proton unfortunately is probably the easiest option for now. We need better self hosted / anonymous email servers, but spammers and scammers have probably ruined that for everybody forever and fuck them all to hell for that. Best option is to just abandon email for anything sensitive.
• All the alternative social media is better, but they can still absolutely feed the lot of it into an LLM and then ask the LLM to print out a list of “likely dissidents.” I would be shocked if this isn’t coming soon to a United States near you - then again, I’m one to talk posting this on Lemmy, using a username I’ve used for close to two decades, from an instance that runs on a server I rent from a corporate cloud host.
• OS should be Whonix, Tails or Qubes.
• Browser should be Tor Browser (or at least get a mention). PRACTICALLY, for most people, I would recommend Brave over LibreWolf (for reasons of stability, compatibility, more frequent security patches and the fact that the Mozilla project has been unfortunately going to shit lately). Yes the company sucks, but the browser consistently scores top marks on real world privacy and security tests.
• No mention of FDE or post quantum crypto. Quantum chips are coming effing fast, if they’re not already here. I have reason to believe both the US and China can currently make practical use of Shor’s algorithm, although only in a targeted and VERY expensive way… but Moore’s Law man, plus I can’t prove it and I can’t say more. Post quantum doesn’t seem to be on most people’s radar (most troublingly, the Tor project).
• Anything to do with phones is literally fucked, like “This is fine” dog level fucked. If you MUST be mobile (like basically everybody trying to do basically anything), you must accept you’re probably NOT really fascist proof, unless you go to some pretty extreme lengths and REALLY know what you’re doing.

As far as your average normie (or even above average competence tech saavy user) goes, this is close to as Trump proof as you’re likely to get right now without help and support. So great, but it has holes in it a fascist regime could drive a brigade of tanks through, and unless you EITHER have that help and support OR really know what you’re doing, you should be thinking about that REALLY hard, every day.

We collectively decided decades ago that centralized services are more convenient and better able to connect us to the people and content we want to be connected to (although we were very deliberately herded in that direction by oligarchs). Now we will pay the price.

tl:dr; The only infrastructure we can trust is our own. Not liking that, and not having the skills or resources to do anything practical about it (tragically, terrifyingly) doesn’t make it not true. Plus needing to stay connected to the people and resources we can ONLY access through third party services and infrastructure, continues to make us reliant on those services and infrastructure, unto our own ruin.

deleted by creator

I host servers both out of my home, out my wife’s office and I also have some cloud servers at Digital Ocean.

If you’re worried about data loss (and you should be) you need offsite backups. I have actually lost data to a fire (in 2009) and to a hard disk crash when I didn’t learn my lesson the first time (in 2014). Never again.

I have backup servers at both my house and my wife’s office. If you don’t have a wife with a convenient office for this purpose, you could probably find a self host buddy to host your backup server (and maybe you could host your buddy’s back up server, a friend and I used to do this years ago). You could also encrypt everything and then back the encrypted files up to the cloud, secure that the fascists almost certainly can’t decrypt them, even if they get their hands on the raw data.

You can automate this. There are tools that can help. I’m kind of a power user and I just use rsync, scp, minio and database replication to automate my various backups, so I’m a bad person to ask about the easier to use tools that can do this. However, either of those communities I posted are full of people with better answers and I know that less DIY back up tools exist.

Whilst I’ll agree with your statement some people prefer a service to use rather than self hosted.

Great! They can prefer that. Lots of people (most people probably) even need services, because they lack the skills and / or equipment.

That doesn’t change the simple truth of “the only infrastructure we can trust is our own.” My goal with that statement is to educate people as much as possible NOT to trust the third party services they’re using, even if those services supposedly care about privacy and security.

I’ve also seen a huge outpouring in recent weeks of people who are suddenly very eager to learn about and use self hosted infrastructure (or get access to someone else’s self hosted infrastructure). For some reason, I wonder what that could be. I’ve never seen anything like it in my life. I for one intend to encourage the shit out of it.

The barrier to entry to get Self Hosted Matrix working is unfortunately pretty high. Matrix is a great tool, but getting it working requires advanced skills and (in my limited experience) hours of troubleshooting.

That being said, I’m associated with an organization that wants to help activist groups self host matrix. If you know a group with need, check out https://rmfuni.org.

Given everything going on in the world, I can’t say this often enough:

The only infrastructure we can trust is our own.

https://lemmy.ml/c/selfhost@lemmy.ml

https://lemmy.world/c/selfhosted@lemmy.world

Who says they aren’t? Elon has zero problems with double standards.