web0 manifesto

“…web0 is web3 without all the corporate right-libertarian Silicon Valley bullshit.”


Sign your name and join me in starting the year as you mean to go on: without tolerating any bullshit.

Happy New Year! :)

#web0 #SmallWeb #SmallTech

G’morning folks, how lovely to wake up and see the new signatures on the web0 manifesto


By the way, if you are having trouble signing because your email server implements an archaic anti-spam technique called greylisting. I’m going to look into adding basic support for it but please also contact your email provider and remind them it’s 2022. Spammers have long worked around greylisting. Today, it just makes things harder for legitimate small web use cases.

Also, some folks have mentioned on the fediverse that they don’t have a web site to link to… please feel free to use the link to your fediverse account (Mastodon, etc.)

But please don’t link to people farmers like Twitter, Facebook, etc., or to sites with trackers from them.

I’m going to look through the links today and contact you to see what we can do if any look problematic.



Finally, a couple of you have reported not being able to add your site if it doesn’t load over a secure connection (TLS).

That’s by design :)

It’s 2022 and we should all be doing our best to encourage good practices. HTTP is not secure. It means people who visit your site could be hit with man-in-the-middle attacks.

Thankfully, we have a free/automated way to implement TLS now with Let’s Encrypt.

And servers like Site.js (sitejs.org) do it automatically for you.


@aral I am a big fan of #LetsEncrypt and use it on many systems. However, there is a legitimate opposing viewpoint: 1) it prevents self-sufficiency; 2) A small set of large orgs decide who's a legit CA for billions; 3) Let's Encrypt won't issue certs for countries the USA has sanctioned.

#NNCP author has expressed his thoughts in more detail on this: lists.cypherpunks.ru/archive/n and lists.cypherpunks.ru/archive/n and lists.cypherpunks.ru/archive/n . It led me to hosting a TLS mirror of the site

@aral Alternatives to #TLS [thread]

There are lots of alternatives to TLS out there. At the protocol layer, things such as #Yggdrasil and #ipsec can make things secure. #Yggdrasil, like @cjd 's #Hyperboria (#cjdns) before it, is an overlay network where every target IP is essentially a public key. #DNSSEC also helps here.


@jgoerzen @aral @cjd Yggdrasil looks interesting, but they politely ask not to use a crawler on the network. That doesn't sound so good? What happens if it gets popular and you can't count on people's general good behavior to keep the network from clogging up.

In this era I would think protocol designers would assume bad intentions all around and design for that?

@teleclimber @aral @cjd #Yggdrasil is still on my list of things to try, but I wouldn't take that as an indication of network fragility - rather an indication that "hey, if 10000 of you are crawling the entire network space, you're going to really ruin the experience for Android users on 3G". Keep in mind this gives every participant a reachable IP on the network, so there's no ISP filter preventing that sort of thing like residential Internet often has.

@teleclimber @aral @cjd I guess the other thing I would say is "everyone has to start somewhere." Don't let the perfect be the enemy of the good.

@jgoerzen @aral @cjd I fully subscribe to this, however some problems are harder to fix later, and in particular when you're talking about protocols. The fundamentals have got to be right. Regarding Yggrasil, my purely personal opinion is that maybe exposing every user's IP on a global network is maybe not the best idea. My guess is it leads to the kind of burden that gives rise to centralized nodes that block the bots/crawlers/scammers/whatever. Then back to square 1.

@jgoerzen @aral @cjd right but what bugs me is that this is how re-centralization happens. A protocol can be decentralized technically, but if in popular use it is a bad experience then someone will create a beefy node as a proxy, and then you have Gmail all over again.

@teleclimber @aral @cjd Fair. And even if just in popular use it is a "new" experience. I think we're seeing that with #IPFS and the #Cloudflare proxy, right? I don't know that it's necessarily a better experience than, say, integrated go-ipfs in Brave... but it is one that doesn't require any additional local software.

@jgoerzen @aral @cjd Yeah that seems like that's the dynamic. You just have to expect that centralized services will always try to "help" (and help they do in terms of convenience usually, but they harm the network by centralizing it).

Gordon Brander (mastodon.social/@gordon, unfortunately only on Birdsite now) has been doing a lot of thinking about this: how does a network stay decentralized given the forces that naturally push towards centralization?

@teleclimber @jgoerzen @cjd This is why Small Web is single tenant. Remove economies of scale and you poison the well for corporate capture/centralisation.

Sign in to participate in the conversation

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!