💾 Archived View for jacksonchen666.com › privacy › index.gmi captured on 2024-08-18 at 16:58:01. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2024-07-08)
-=-=-=-=-=-=-
Last updated: 2024-06-18
I'm not sure if I should call this a "privacy policy", since the word "policy" is in there. However, this documents the current practices which are related to your privacy.
The tl;dr is:
This list is not exhaustive, and primarily intended to alleviate confusion about some stuff.
These are used in a wide range of things.
SourceHut (especially sourcehut pages)
For these websites:
https://backup.jacksonchen666.com/
https://microblogging.jacksonchen666.com/
https://status.jacksonchen666.com/
They're hosted with sourcehut pages. SourceHut does log some information, and SourceHut's logging configuration is available at the following link:
SourceHut's logging configuration
Applies to all domains and subdomains under:
Domains listed above will reach the self-hosted server.
Server logs for server applications (e.g. Mastodon) are default settings. No further information is provided here because I don't know any better.
Server logs configuration for the reverse proxy (i.e. nginx) is the following:
log_format vcombined '$host:$server_port $remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length';
This allows us to see the following information:
The above is just an overview. Below is the exact technical information
logged:
The information logged for HTTP requests are:
(Modified) Example:
subdomain.jacksonchen666.com:443 192.0.2.231 - - [01/Jan/1970:00:00:00 +0000] "GET / HTTP/1.1" 404 2147483648 "-" "Not a bot, definately not." 500 0.000
The visitor's IP address is 192.0.2.231 in this example.
The logs are stored up to 4 days. They are not included in backups.
Self-hosted Server is located in Hungary.
Logs may be shared with others for troubleshooting purposes. The other
people can be with people who are not involved in running these servers.
Any logs that is shared will be redacted of personally identifiable
information.
Information that is logged for every request is:
(Modified) Example:
[1970-01-01T00:00:00Z INFO agate] [::ffff:192.168.1.74]:1965 - "gemini://jacksonchen666.com/" 20 "text/gemini;lang=en"
The IP address `192.168.1.74` is not the visitor's IP address.
We create multiple copies of our server and store it on-site and off-site to
prevent complete data loss. That's backups, by the way.
Backups are retained for 4 weeks at maximum. Any backups older than 4 weeks
will be deleted unless it is required (e.g. restoring an old backup).
Rule of thumb: We backup everything. Some things are excluded if deemed not
important/critical to operation.
The backups contain:
- All operating system components and programs
- All services components and programs
- User data generated by use of the services
- Everything else we forgot to specify
The backups do not contain:
- Reverse proxy logs (the thing that handles HTTP(S) requests, and logs it)
We use the following to create, manage, synchronize and store backups:
BorgBase (off-site backup, only using Europe regions)
- [lists sourcehut][lists.sr.ht] for email comments on blog posts
([ToS][sr.ht_TOS] & [privacy][sr.ht_privacy])
lists sourcehut for email comments on blog posts
How? There isn't something you could opt out of here other than well... Not touching anything related here.
(Ideas are welcome)
These things are included because they have some significance
Nameservers and domain registrar also applies, but not the dates. Those dates are for the email service.
On jacksonchen666.com, you were able to submit questions, ideas, and feedback, which are collectively called "Submissions".
We use `git`, a distributed version control tool. Due to the design of `git`, deleting past versions of this website cannot be truly achieved as everyone has a copy of the website including the history, therefore, the data for "Submissions" cannot be completely removed.
The function has been removed from the website, but as stated above, he data cannot be truly removed.
We welcome questions and stuff about our privacy document. You can email us at here: