Hi,
I'll keep it short, this is just some food for thoughts. Would solve most architecture security problems that led to this whole fuck up.
- Switch to Docker
- Decentralized hosting. Make swarms that host your DNM
- Dockermachine has drivers for most hosting providers or virtualbox to train locally. Once you have your config the way you like it, easily deploy with a single command line on multiple hosting providers
- Regularly shut down a docker worker from one country and open a new one in another country. Won't impact service, will keep the hosting on a constant worldwide hosting rotation
- Use Dockermachine to spawn your DNM around the world with a single command line
- Use Dockermachine to scale, replicate or rotate your DNM with a single command line
- Use built-in Docker layered encryption for communications between nodes. Moar encryption.
- Use Docker internal networking to hide all your containers easily behind Tor like so
- Isolate all components into containers you can scale easily in case of influx or slowdowns
- Isolate critical bits with specific monitoring so you can keep an eye on the precious components without all the noise from other components
- Kontena to make it all even easier and self healing
Now we only need to solve the FBI arresting admins problem. Maybe we should aim for full decentralization instead and move away from any centrally governed markets?