From a4842f5f2f13bb4cd221fb9b6f7b841d953ca12e Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 15:44:01 +0000
Subject: [PATCH 1/6] static/style.css: minor styling of anchor hovers,
 selection background

---
 static/style.css | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/static/style.css b/static/style.css
index aab7820..68719f4 100644
--- a/static/style.css
+++ b/static/style.css
@@ -6,6 +6,11 @@
     --accent: var(--green);
     --faint_foreground: var(--grey0);
     --code_background: var(--bg_dim);
+    --highlight_background: var(--bg3);
+}
+
+::selection, ::-moz-selection {
+    background: var(--highlight_background);
 }
 
 a {
@@ -17,6 +22,7 @@ a {
 a:hover {
     color: var(--background) !important;
     background-color: var(--accent) !important;
+    text-decoration-line: none;
 }
 
 .code-toolbar {
@@ -27,6 +33,10 @@ code {
     background: var(--code_background);
 }
 
+.post-meta {
+    color: var(--faint_foreground);
+}
+
 .footnotes {
     color: var(--faint_foreground);
 }

From ca6ba9d077758056b138364b9421a3a5562637e0 Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 15:49:40 +0000
Subject: [PATCH 2/6] themes/terminal: update

---
 themes/terminal | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/themes/terminal b/themes/terminal
index fa3123d..c0a6202 160000
--- a/themes/terminal
+++ b/themes/terminal
@@ -1 +1 @@
-Subproject commit fa3123d2a6aac6f39cfd1ee8e092a2700c348a57
+Subproject commit c0a62024352b5ccb122c3f6447518050af8eceeb

From c3e0127160c8cb52c42cd14ce63ac4a06a461b22 Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 15:55:49 +0000
Subject: [PATCH 3/6] themes/terminal: update

---
 themes/terminal | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/themes/terminal b/themes/terminal
index c0a6202..d184493 160000
--- a/themes/terminal
+++ b/themes/terminal
@@ -1 +1 @@
-Subproject commit c0a62024352b5ccb122c3f6447518050af8eceeb
+Subproject commit d184493a0e6abe57c89b2ccb288d961107581f6e

From 6128596a8ee42a67401803512a83f4e9d4d152fe Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 17:06:11 +0000
Subject: [PATCH 4/6] content/privacy_policy.md, layouts/partials/footer.html:
 added privacy policy

---
 content/privacy_policy.md    | 95 ++++++++++++++++++++++++++++++++++++
 layouts/partials/footer.html |  3 ++
 2 files changed, 98 insertions(+)
 create mode 100644 content/privacy_policy.md

diff --git a/content/privacy_policy.md b/content/privacy_policy.md
new file mode 100644
index 0000000..1896366
--- /dev/null
+++ b/content/privacy_policy.md
@@ -0,0 +1,95 @@
++++
+draft = false
+title = 'Privacy Policy'
++++
+
+This is a privacy policy notice for anyone who happens to use any of the services I use.
+
+# For all services
+
+My server is a VPS with full disk encryption. This means that, if the disk is seized, e.g. by law enforcement, your
+data will be unreadable to them. However, if the VPS host wishes to, they can dump the decryption keys from RAM and
+read my disk. For most user services I host, there will be additional encryption at rest, including such that data is
+never decrypted server-side.
+
+The server is hosted in Romania.
+
+I make local backups of server data which I physically possess. These backups are always on LUKS-encrypted drives (i.e.
+same disclaimer as above about being unreadable should they be seized) stored in Britain. I reserve the right to keep
+my backups for as long as I like, so any data you have deleted on my server may still exist in backups. If you have
+accidentally uploaded sensitive data to my server which you want scrubbed, [contact me](/contact) and I will do my best
+to remove it from backups. Please don't rely on this to delete data though, and just don't upload anything to my server
+that absolutely can't persist.
+
+My server uses fail2ban with a ban length of 1 day, so your IP address may be stored for a day if fail2ban bans you.
+
+# Sharing data
+
+If I am not forced to by law, I will never share the data of anyone who uses my hosted services with any third party.
+Try not to use my server for anything that could get the cops on me, but in the event that I am approached by law
+enforcement with a legally valid data access request/warrant/etc, I will do everything I safely can to avoid handing
+over data, up to and including shutting down the service in question. This is no guarantee that I wouldn't comply if my
+own safety/liberty/etc were at risk though, therefore you should not take it as a given that data stored on this server
+cannot be shared if law enforcement is interested.
+
+I will not go out of my way to read anyone's private data (e.g. email addresses on accounts), but if it is unencrypted,
+I may stumble across it while doing server maintenance, reading logs, etc. If you have public data on my server, I may
+access it from the public web as a member of the public.
+
+# Web services
+
+My web server is nginx. I log web requests without any identifying information. I log:
+
+* Timestamps
+* The type of request
+* The resource accessed
+* The status of the request
+
+My logging config is:
+
+```conf
+log_format main '[$time_local] "$request" '
+                '$status $body_bytes_sent ';
+```
+
+Logs are rotated with logrotate with the following logrotate config:
+
+```logrotate
+/var/log/nginx/*.log {
+        missingok
+        sharedscripts
+        postrotate
+                /etc/init.d/nginx --quiet --ifstarted reopen
+        endscript
+}
+```
+
+I also log errors.
+
+# [My static website (revsuine.xyz)](https://revsuine.xyz/)
+
+My static website does not collect data about you beyond nginx logging. It uses JavaScript for prism.js syntax
+highlighting, and for the drop-down menu on mobile. To see the Javascript usage, look at [the GitHub repo for the
+theme](https://github.com/search?q=repo%3Apanr%2Fhugo-theme-terminal++language%3AJavaScript&type=code). The site works
+completely fine without JavaScript.
+
+This website does not use cookies, tracking pixels, or anything of the sort.
+
+# [Nextcloud](https://cloud.revsuine.xyz/)
+
+Server-side encryption is enabled, meaning I can view an index of your files, but not read their content. End-to-end
+encryption is also enabled.
+
+I log errors, which may contain client IP addresses.
+
+# [Forgejo](https://git.revsuine.xyz/)
+
+There is no additional encryption at rest for anything hosted on Forgejo, so you shouldn't upload anything to my
+Forgejo instance you don't want me to see. I can say I won't look at your private repos, but you'd have to take my word
+for it, and I am *able* to look at them if I want to.
+
+# Changes
+
+This privacy policy was first written in 2024 and will be kept up-to-date. I reserve the right to update this privacy
+policy whenever I like.
+
diff --git a/layouts/partials/footer.html b/layouts/partials/footer.html
index 8315349..a4ec266 100644
--- a/layouts/partials/footer.html
+++ b/layouts/partials/footer.html
@@ -7,3 +7,6 @@
 Generated with <a href="https://gohugo.io/">Hugo</a>. Website source available
 <a href="https://git.revsuine.xyz/revsuine/revsuine.xyz/">here</a> and licensed under the
 <a href="https://www.gnu.org/licenses/gpl-3.0.txt">GNU General Public Licence v3</a>.</p>
+
+<p align="center"><a href="/privacy_policy">Privacy Policy</a></p>
+

From 9f2a7f1dc1f0a382a1b4741d8bd16b1a72854541 Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 17:08:52 +0000
Subject: [PATCH 5/6] content/privacy_policy.md: remove word count

---
 content/privacy_policy.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/content/privacy_policy.md b/content/privacy_policy.md
index 1896366..fabb882 100644
--- a/content/privacy_policy.md
+++ b/content/privacy_policy.md
@@ -1,6 +1,9 @@
 +++
 draft = false
 title = 'Privacy Policy'
+
+[params]
+  showWordCount = false
 +++
 
 This is a privacy policy notice for anyone who happens to use any of the services I use.

From b878f3e258e4b47b43911f71f67b1e96e0d4e4c1 Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Mon, 25 Nov 2024 17:18:28 +0000
Subject: [PATCH 6/6] content/privacy_policy.md: s/Javascript/JavaScript/

---
 content/privacy_policy.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/content/privacy_policy.md b/content/privacy_policy.md
index fabb882..d346f28 100644
--- a/content/privacy_policy.md
+++ b/content/privacy_policy.md
@@ -72,20 +72,20 @@ I also log errors.
 # [My static website (revsuine.xyz)](https://revsuine.xyz/)
 
 My static website does not collect data about you beyond nginx logging. It uses JavaScript for prism.js syntax
-highlighting, and for the drop-down menu on mobile. To see the Javascript usage, look at [the GitHub repo for the
+highlighting, and for the drop-down menu on mobile. To see the JavaScript usage, look at [the GitHub repo for the
 theme](https://github.com/search?q=repo%3Apanr%2Fhugo-theme-terminal++language%3AJavaScript&type=code). The site works
 completely fine without JavaScript.
 
 This website does not use cookies, tracking pixels, or anything of the sort.
 
-# [Nextcloud](https://cloud.revsuine.xyz/)
+# [Nextcloud (cloud.revsuine.xyz)](https://cloud.revsuine.xyz/)
 
 Server-side encryption is enabled, meaning I can view an index of your files, but not read their content. End-to-end
 encryption is also enabled.
 
 I log errors, which may contain client IP addresses.
 
-# [Forgejo](https://git.revsuine.xyz/)
+# [Forgejo (git.revsuine.xyz)](https://git.revsuine.xyz/)
 
 There is no additional encryption at rest for anything hosted on Forgejo, so you shouldn't upload anything to my
 Forgejo instance you don't want me to see. I can say I won't look at your private repos, but you'd have to take my word