• 0 Posts
  • 8 Comments
Joined 2 years ago
cake
Cake day: June 9th, 2023

help-circle


  • While “sociopathy” isn’t a scientific term, claiming that all autistic people are sociopaths is a harmful false equivalence. Associating autism with the stigma of sociopathy based on your own definition doesn’t hold up. Your sources confirm that “sociopathy” isn’t scientific but don’t support your claim about autism.

    ASD and ASPD are distinct conditions, and the colloquial use of “sociopath” generally refers to traits associated with ASPD, not autism. Language evolves over time—consider how “literally” now also means “figuratively” due to ironic use, or how “antisemitism” specifically refers to discrimination against Jews, despite its broader etymological roots. Similarly, “sociopath” today typically refers to ASPD-related traits, not just any “social illness.”

    The person you’re responding to provided reputable sources disputing your definition, while your own sources lack expertise in psychology or linguistics. In fact, your third source even contradicts your argument; the article cites a contemporary psychologist who directly contrasts psychopaths with autistic children, highlighting the differences between the two conditions. If you’re calling others “pseudoscientists,” it’s important to evaluate your sources more carefully.

    People aren’t downvoting the idea that “sociopathy is nothing to be ashamed of”—that’s a valid point. But instead of playing word games, you could focus on that truth directly.



  • Adding onto what TheMrDrProf said: basically LetsEncrypt just wants to know you actually control the domain you’re using to get the certificate. With HTTP challenges, your domain has to resolve to a working HTTP server. With DNS challenges, you need API access to your DNS provider so that Certbot can set a temporary record that proves ownership.

    If you’re using NPM to manage your certs, then as TheMrDrProf said as long as the HTTP request from LetsEncrypt can make it to your NPM through the VPS proxy, you should be able to pass the challenge and get a certificate. The IP address of the domain doesn’t really matter as long as the request makes it all the way to the challenge HTTP server, which in this case is NPM.

    In NPM, you should see “Use a DNS challenge” option. If you use that and your DNS Provider is supported (if not, I recommend Cloudflare), then your VPS proxy does not even need to be working in order to renew certificates. This has a few advantages such as being able to shut off unencrypted traffic on port 80 completely.


    1. The certificate and private key need to be on your home server since that’s where the TLS is decrypted.
    2. You should be able to tunnel TLS traffic through WireGuard, so no port forwarding is needed.
    3. You’d probably want to move Nginx Proxy Manager to your home server as an ingress gateway (and you can keep all the config + TLS certificates). Then on your VPS, you would no longer need the complexity and something like HAProxy, vanilla Nginx, or Traefik would suffice. Seems like NPM has an open issue to add support for TLS passthrough, but in my opinion it’s simpler to just have your VPS forward all traffic to one port on your home server.

    For added security, you can make sure the proxy on the VPS only routes traffic for the correct domain using SNI. That way if someone hits your IP randomly, it only goes to your home server if the correct domain name was requested as well.

    What you’re doing makes sense to me. Good luck!