The cake is a lie.

I have no trust in lies. That's why I'm being transparent about server-side configurations for all of my services.

Here you can find some web security scan reports:

Mozilla Observatory Report Permalink | cryptcheck.fr Report Permalink

You can check subdomains using same tools if you want to.

Let me make some bold claims:

All services I host follow the strict zero-log policy.

All services I host are FOSS.

All logs in /var/log are wiped on an hourly basis, application logs are either set to /dev/null or disabled.

Docker images pulled from their original sources are used for all my services. They are updated on a weekly basis by simple bash scripts to keep them healthy. Health checks are made after each container is up.

SearXNG instance is updated every day to keep the maximum compliance to public SearXNG instance hosting policy.

Unprivileged user handles all the docker containers.

The server uses hardened_malloc and strict AppArmor policies to make sure nothing easily gets through. Strict firewall policy is also applied.

System updates are handled by unattended-upgrades. Major and kernel updates are done manually.

My services are hosted by DMCA-ignored provider, iHostART.com. Server location is Romania, so EU regulatory laws are likely to be applied.

The only rule is: I am not responsible for your actions, especially the ones you do using my services. It's up to you how to live your life and consequences are all yours.

If you have any questions, don't hesitate to ask.

Watch very closely for removal of this code block:

RXZlcnl0aGluZyBpcyBPSy4=