Преглед изворни кода

Add documentation for turtl

Bob Mottram пре 8 година
родитељ
комит
0491cd0150
7 измењених фајлова са 505 додато и 144 уклоњено
  1. 50
    0
      doc/EN/app_turtl.org
  2. 4
    0
      doc/EN/apps.org
  3. 2
    2
      doc/EN/usage.org
  4. BIN
      img/turtl.jpg
  5. 345
    0
      website/EN/app_turtl.html
  6. 79
    67
      website/EN/apps.html
  7. 25
    75
      website/EN/usage.html

+ 50
- 0
doc/EN/app_turtl.org Прегледај датотеку

@@ -0,0 +1,50 @@
1
+#+TITLE:
2
+#+AUTHOR: Bob Mottram
3
+#+EMAIL: bob@freedombone.net
4
+#+KEYWORDS: freedombone, turtl, notes, images, sharing
5
+#+DESCRIPTION: How to use Ghost
6
+#+OPTIONS: ^:nil toc:nil
7
+#+HTML_HEAD: <link rel="stylesheet" type="text/css" href="freedombone.css" />
8
+
9
+#+BEGIN_CENTER
10
+[[file:images/logo.png]]
11
+#+END_CENTER
12
+
13
+#+BEGIN_EXPORT html
14
+<center>
15
+<h1>Turtl</h1>
16
+</center>
17
+#+END_EXPORT
18
+
19
+Turtl is a system for privately creating and sharing notes and images, similar to Evernote. It can be set up so that a small number of users on the server can share their notes in a convenient way. It doesn't have any web user interface, and you need to install native clients on mobile or laptop/desktop machines.
20
+
21
+Since the data at rest is stored in PGP encrypted format this is a good system to use in cases where security really is a critical factor.
22
+
23
+
24
+#+BEGIN_CENTER
25
+[[file:images/turtl.jpg]]
26
+#+END_CENTER
27
+
28
+* Installation
29
+Log into your system with:
30
+
31
+#+begin_src bash
32
+ssh myusername@mydomain -p 2222
33
+#+end_src
34
+
35
+Using cursor keys, space bar and Enter key select *Administrator controls* and type in your password.
36
+
37
+Select *Add/Remove Apps* then *turtl*. You will then be asked for a domain name and if you are using FreeDNS also the code for the domain which can be found under *Dynamic DNS* on the FreeDNS site (the random string from "/quick cron example/" which appears after /update.php?/ and before />>/). For more details on obtaining a domain and making it accessible via dynamic DNS see the [[./faq.html][FAQ]]. Typically the domain name you use will be a subdomain, such as /notes.mydomainname.net/. It will need to be a domain which you have bought somewhere and own and not one of the FreeDNS subdomains, otherwise you won't be able to get a SSL/TLS certificate for it.
38
+
39
+After the install has completed go to *Security settings* and select *Create a new Let's Encrypt certificate* and enter the domain name that you are using for Turtl. If you're using the "onion only" version of the system then you don't need to do this. If the certificate is obtained successfully then you will see a congratulations message.
40
+
41
+* Initial setup
42
+The most common use case will be with Android devices. The Android app isn't currently available within F-droid (see [[https://turtlapp.com/faq][the FAQ]] for details) but can be [[https://turtlapp.com/download/][downloaded from the Turtl site]].
43
+
44
+Run the app then at the bottom of the screen select *advanced settings* and enter your turl domain name, then register a new account. The password can be anything you choose, but since the client side encryption depends upon having a good password make it a long random string generated by a password manager such as KeepassX.
45
+
46
+You should then be able to log in and start using the app. You might also want to invite any other users of your Freedombone system to also sign up using the turtl domain name which you specified during installation.
47
+
48
+
49
+* Locking it down
50
+Once you have created accounts it's a good idea to turn off new turtl signups. This will prevent millions of random users on the interwebs from creating accounts on your system and killing your server, or possibly other nefarious security scenarios. Go to the *administrator control panel* and select *App Settings* then *turtl*. You will then be able to disable new user registrations and also set the data storage limit for users. If you need additional users later you can always temporarily re-enable signups later.

+ 4
- 0
doc/EN/apps.org Прегледај датотеку

@@ -103,6 +103,10 @@ Possibly the best way to synchronise files across all of your devices. Once it h
103 103
 Client and bootstrap node for the Tox chat/VoIP system.
104 104
 
105 105
 [[./app_tox.html][How to use it]]
106
+* Turtl
107
+A system for privately creating and sharing notes and images, similar to Evernote but without the spying.
108
+
109
+[[./app_turtl.html][How to use it]]
106 110
 * Vim
107 111
 If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
108 112
 

+ 2
- 2
doc/EN/usage.org Прегледај датотеку

@@ -16,8 +16,7 @@
16 16
 </center>
17 17
 #+END_EXPORT
18 18
 
19
-| [[Readme]]                                               |
20
-| [[Improving ssh security]]                               |
19
+| [[Improving security]]                                   |
21 20
 | [[Administrating the system via an onion address (Tor)]] |
22 21
 | [[./mobile.html][Mobile advice]]                                        |
23 22
 | [[./usage_email.html][Using Email]]                                          |
@@ -41,6 +40,7 @@
41 40
 | [[./app_gogs.html][Git Projects]]                                         |
42 41
 | [[Adding or removing users]]                             |
43 42
 | [[./app_pihole.html][Blocking Ads]]                                         |
43
+| [[./app_turtl.html][Making and sharing notes and images]]                  |
44 44
 
45 45
 * Improving security
46 46
 It's a lot more secure to log in to the Freedombone system using ssh keys rather than with a password. You can set that up by first running:


+ 345
- 0
website/EN/app_turtl.html Прегледај датотеку

@@ -0,0 +1,345 @@
1
+<?xml version="1.0" encoding="utf-8"?>
2
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
3
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
4
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
5
+<head>
6
+<!-- 2016-12-20 Tue 16:08 -->
7
+<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
8
+<meta name="viewport" content="width=device-width, initial-scale=1" />
9
+<title></title>
10
+<meta name="generator" content="Org mode" />
11
+<meta name="author" content="Bob Mottram" />
12
+<meta name="description" content="How to use Ghost"
13
+ />
14
+<meta name="keywords" content="freedombone, turtl, notes, images, sharing" />
15
+<style type="text/css">
16
+ <!--/*--><![CDATA[/*><!--*/
17
+  .title  { text-align: center;
18
+             margin-bottom: .2em; }
19
+  .subtitle { text-align: center;
20
+              font-size: medium;
21
+              font-weight: bold;
22
+              margin-top:0; }
23
+  .todo   { font-family: monospace; color: red; }
24
+  .done   { font-family: monospace; color: green; }
25
+  .priority { font-family: monospace; color: orange; }
26
+  .tag    { background-color: #eee; font-family: monospace;
27
+            padding: 2px; font-size: 80%; font-weight: normal; }
28
+  .timestamp { color: #bebebe; }
29
+  .timestamp-kwd { color: #5f9ea0; }
30
+  .org-right  { margin-left: auto; margin-right: 0px;  text-align: right; }
31
+  .org-left   { margin-left: 0px;  margin-right: auto; text-align: left; }
32
+  .org-center { margin-left: auto; margin-right: auto; text-align: center; }
33
+  .underline { text-decoration: underline; }
34
+  #postamble p, #preamble p { font-size: 90%; margin: .2em; }
35
+  p.verse { margin-left: 3%; }
36
+  pre {
37
+    border: 1px solid #ccc;
38
+    box-shadow: 3px 3px 3px #eee;
39
+    padding: 8pt;
40
+    font-family: monospace;
41
+    overflow: auto;
42
+    margin: 1.2em;
43
+  }
44
+  pre.src {
45
+    position: relative;
46
+    overflow: visible;
47
+    padding-top: 1.2em;
48
+  }
49
+  pre.src:before {
50
+    display: none;
51
+    position: absolute;
52
+    background-color: white;
53
+    top: -10px;
54
+    right: 10px;
55
+    padding: 3px;
56
+    border: 1px solid black;
57
+  }
58
+  pre.src:hover:before { display: inline;}
59
+  /* Languages per Org manual */
60
+  pre.src-asymptote:before { content: 'Asymptote'; }
61
+  pre.src-awk:before { content: 'Awk'; }
62
+  pre.src-C:before { content: 'C'; }
63
+  /* pre.src-C++ doesn't work in CSS */
64
+  pre.src-clojure:before { content: 'Clojure'; }
65
+  pre.src-css:before { content: 'CSS'; }
66
+  pre.src-D:before { content: 'D'; }
67
+  pre.src-ditaa:before { content: 'ditaa'; }
68
+  pre.src-dot:before { content: 'Graphviz'; }
69
+  pre.src-calc:before { content: 'Emacs Calc'; }
70
+  pre.src-emacs-lisp:before { content: 'Emacs Lisp'; }
71
+  pre.src-fortran:before { content: 'Fortran'; }
72
+  pre.src-gnuplot:before { content: 'gnuplot'; }
73
+  pre.src-haskell:before { content: 'Haskell'; }
74
+  pre.src-java:before { content: 'Java'; }
75
+  pre.src-js:before { content: 'Javascript'; }
76
+  pre.src-latex:before { content: 'LaTeX'; }
77
+  pre.src-ledger:before { content: 'Ledger'; }
78
+  pre.src-lisp:before { content: 'Lisp'; }
79
+  pre.src-lilypond:before { content: 'Lilypond'; }
80
+  pre.src-lua:before { content: 'Lua'; }
81
+  pre.src-matlab:before { content: 'MATLAB'; }
82
+  pre.src-mscgen:before { content: 'Mscgen'; }
83
+  pre.src-ocaml:before { content: 'Objective Caml'; }
84
+  pre.src-octave:before { content: 'Octave'; }
85
+  pre.src-org:before { content: 'Org mode'; }
86
+  pre.src-oz:before { content: 'OZ'; }
87
+  pre.src-plantuml:before { content: 'Plantuml'; }
88
+  pre.src-processing:before { content: 'Processing.js'; }
89
+  pre.src-python:before { content: 'Python'; }
90
+  pre.src-R:before { content: 'R'; }
91
+  pre.src-ruby:before { content: 'Ruby'; }
92
+  pre.src-sass:before { content: 'Sass'; }
93
+  pre.src-scheme:before { content: 'Scheme'; }
94
+  pre.src-screen:before { content: 'Gnu Screen'; }
95
+  pre.src-sed:before { content: 'Sed'; }
96
+  pre.src-sh:before { content: 'shell'; }
97
+  pre.src-sql:before { content: 'SQL'; }
98
+  pre.src-sqlite:before { content: 'SQLite'; }
99
+  /* additional languages in org.el's org-babel-load-languages alist */
100
+  pre.src-forth:before { content: 'Forth'; }
101
+  pre.src-io:before { content: 'IO'; }
102
+  pre.src-J:before { content: 'J'; }
103
+  pre.src-makefile:before { content: 'Makefile'; }
104
+  pre.src-maxima:before { content: 'Maxima'; }
105
+  pre.src-perl:before { content: 'Perl'; }
106
+  pre.src-picolisp:before { content: 'Pico Lisp'; }
107
+  pre.src-scala:before { content: 'Scala'; }
108
+  pre.src-shell:before { content: 'Shell Script'; }
109
+  pre.src-ebnf2ps:before { content: 'ebfn2ps'; }
110
+  /* additional language identifiers per "defun org-babel-execute"
111
+       in ob-*.el */
112
+  pre.src-cpp:before  { content: 'C++'; }
113
+  pre.src-abc:before  { content: 'ABC'; }
114
+  pre.src-coq:before  { content: 'Coq'; }
115
+  pre.src-groovy:before  { content: 'Groovy'; }
116
+  /* additional language identifiers from org-babel-shell-names in
117
+     ob-shell.el: ob-shell is the only babel language using a lambda to put
118
+     the execution function name together. */
119
+  pre.src-bash:before  { content: 'bash'; }
120
+  pre.src-csh:before  { content: 'csh'; }
121
+  pre.src-ash:before  { content: 'ash'; }
122
+  pre.src-dash:before  { content: 'dash'; }
123
+  pre.src-ksh:before  { content: 'ksh'; }
124
+  pre.src-mksh:before  { content: 'mksh'; }
125
+  pre.src-posh:before  { content: 'posh'; }
126
+  /* Additional Emacs modes also supported by the LaTeX listings package */
127
+  pre.src-ada:before { content: 'Ada'; }
128
+  pre.src-asm:before { content: 'Assembler'; }
129
+  pre.src-caml:before { content: 'Caml'; }
130
+  pre.src-delphi:before { content: 'Delphi'; }
131
+  pre.src-html:before { content: 'HTML'; }
132
+  pre.src-idl:before { content: 'IDL'; }
133
+  pre.src-mercury:before { content: 'Mercury'; }
134
+  pre.src-metapost:before { content: 'MetaPost'; }
135
+  pre.src-modula-2:before { content: 'Modula-2'; }
136
+  pre.src-pascal:before { content: 'Pascal'; }
137
+  pre.src-ps:before { content: 'PostScript'; }
138
+  pre.src-prolog:before { content: 'Prolog'; }
139
+  pre.src-simula:before { content: 'Simula'; }
140
+  pre.src-tcl:before { content: 'tcl'; }
141
+  pre.src-tex:before { content: 'TeX'; }
142
+  pre.src-plain-tex:before { content: 'Plain TeX'; }
143
+  pre.src-verilog:before { content: 'Verilog'; }
144
+  pre.src-vhdl:before { content: 'VHDL'; }
145
+  pre.src-xml:before { content: 'XML'; }
146
+  pre.src-nxml:before { content: 'XML'; }
147
+  /* add a generic configuration mode; LaTeX export needs an additional
148
+     (add-to-list 'org-latex-listings-langs '(conf " ")) in .emacs */
149
+  pre.src-conf:before { content: 'Configuration File'; }
150
+
151
+  table { border-collapse:collapse; }
152
+  caption.t-above { caption-side: top; }
153
+  caption.t-bottom { caption-side: bottom; }
154
+  td, th { vertical-align:top;  }
155
+  th.org-right  { text-align: center;  }
156
+  th.org-left   { text-align: center;   }
157
+  th.org-center { text-align: center; }
158
+  td.org-right  { text-align: right;  }
159
+  td.org-left   { text-align: left;   }
160
+  td.org-center { text-align: center; }
161
+  dt { font-weight: bold; }
162
+  .footpara { display: inline; }
163
+  .footdef  { margin-bottom: 1em; }
164
+  .figure { padding: 1em; }
165
+  .figure p { text-align: center; }
166
+  .inlinetask {
167
+    padding: 10px;
168
+    border: 2px solid gray;
169
+    margin: 10px;
170
+    background: #ffffcc;
171
+  }
172
+  #org-div-home-and-up
173
+   { text-align: right; font-size: 70%; white-space: nowrap; }
174
+  textarea { overflow-x: auto; }
175
+  .linenr { font-size: smaller }
176
+  .code-highlighted { background-color: #ffff00; }
177
+  .org-info-js_info-navigation { border-style: none; }
178
+  #org-info-js_console-label
179
+    { font-size: 10px; font-weight: bold; white-space: nowrap; }
180
+  .org-info-js_search-highlight
181
+    { background-color: #ffff00; color: #000000; font-weight: bold; }
182
+  .org-svg { width: 90%; }
183
+  /*]]>*/-->
184
+</style>
185
+<link rel="stylesheet" type="text/css" href="freedombone.css" />
186
+<script type="text/javascript">
187
+/*
188
+@licstart  The following is the entire license notice for the
189
+JavaScript code in this tag.
190
+
191
+Copyright (C) 2012-2013 Free Software Foundation, Inc.
192
+
193
+The JavaScript code in this tag is free software: you can
194
+redistribute it and/or modify it under the terms of the GNU
195
+General Public License (GNU GPL) as published by the Free Software
196
+Foundation, either version 3 of the License, or (at your option)
197
+any later version.  The code is distributed WITHOUT ANY WARRANTY;
198
+without even the implied warranty of MERCHANTABILITY or FITNESS
199
+FOR A PARTICULAR PURPOSE.  See the GNU GPL for more details.
200
+
201
+As additional permission under GNU GPL version 3 section 7, you
202
+may distribute non-source (e.g., minimized or compacted) forms of
203
+that code without the copy of the GNU GPL normally required by
204
+section 4, provided you include this license notice and a URL
205
+through which recipients can access the Corresponding Source.
206
+
207
+
208
+@licend  The above is the entire license notice
209
+for the JavaScript code in this tag.
210
+*/
211
+<!--/*--><![CDATA[/*><!--*/
212
+ function CodeHighlightOn(elem, id)
213
+ {
214
+   var target = document.getElementById(id);
215
+   if(null != target) {
216
+     elem.cacheClassElem = elem.className;
217
+     elem.cacheClassTarget = target.className;
218
+     target.className = "code-highlighted";
219
+     elem.className   = "code-highlighted";
220
+   }
221
+ }
222
+ function CodeHighlightOff(elem, id)
223
+ {
224
+   var target = document.getElementById(id);
225
+   if(elem.cacheClassElem)
226
+     elem.className = elem.cacheClassElem;
227
+   if(elem.cacheClassTarget)
228
+     target.className = elem.cacheClassTarget;
229
+ }
230
+/*]]>*///-->
231
+</script>
232
+</head>
233
+<body>
234
+<div id="preamble" class="status">
235
+<a name="top" id="top"></a>
236
+</div>
237
+<div id="content">
238
+<div class="org-center">
239
+
240
+<div class="figure">
241
+<p><img src="images/logo.png" alt="logo.png" />
242
+</p>
243
+</div>
244
+</div>
245
+
246
+<center>
247
+<h1>Turtl</h1>
248
+</center>
249
+
250
+<p>
251
+Turtl is a system for privately creating and sharing notes and images, similar to Evernote. It can be set up so that a small number of users on the server can share their notes in a convenient way. It doesn't have any web user interface, and you need to install native clients on mobile or laptop/desktop machines.
252
+</p>
253
+
254
+<p>
255
+Since the data at rest is stored in PGP encrypted format this is a good system to use in cases where security really is a critical factor.
256
+</p>
257
+
258
+
259
+<div class="org-center">
260
+
261
+<div class="figure">
262
+<p><img src="images/turtl.jpg" alt="turtl.jpg" />
263
+</p>
264
+</div>
265
+</div>
266
+
267
+<div id="outline-container-org8b85948" class="outline-2">
268
+<h2 id="org8b85948">Installation</h2>
269
+<div class="outline-text-2" id="text-org8b85948">
270
+<p>
271
+Log into your system with:
272
+</p>
273
+
274
+<div class="org-src-container">
275
+<pre class="src src-bash">ssh myusername@mydomain -p 2222
276
+</pre>
277
+</div>
278
+
279
+<p>
280
+Using cursor keys, space bar and Enter key select <b>Administrator controls</b> and type in your password.
281
+</p>
282
+
283
+<p>
284
+Select <b>Add/Remove Apps</b> then <b>turtl</b>. You will then be asked for a domain name and if you are using FreeDNS also the code for the domain which can be found under <b>Dynamic DNS</b> on the FreeDNS site (the random string from "<i>quick cron example</i>" which appears after <i>update.php?</i> and before <i>&gt;&gt;</i>). For more details on obtaining a domain and making it accessible via dynamic DNS see the <a href="./faq.html">FAQ</a>. Typically the domain name you use will be a subdomain, such as <i>notes.mydomainname.net</i>. It will need to be a domain which you have bought somewhere and own and not one of the FreeDNS subdomains, otherwise you won't be able to get a SSL/TLS certificate for it.
285
+</p>
286
+
287
+<p>
288
+After the install has completed go to <b>Security settings</b> and select <b>Create a new Let's Encrypt certificate</b> and enter the domain name that you are using for Turtl. If you're using the "onion only" version of the system then you don't need to do this. If the certificate is obtained successfully then you will see a congratulations message.
289
+</p>
290
+</div>
291
+</div>
292
+
293
+<div id="outline-container-org2839574" class="outline-2">
294
+<h2 id="org2839574">Initial setup</h2>
295
+<div class="outline-text-2" id="text-org2839574">
296
+<p>
297
+The most common use case will be with Android devices. The Android app isn't currently available within F-droid (see <a href="https://turtlapp.com/faq">the FAQ</a> for details) but can be <a href="https://turtlapp.com/download/">downloaded from the Turtl site</a>.
298
+</p>
299
+
300
+<p>
301
+Run the app then at the bottom of the screen select <b>advanced settings</b> and enter your turl domain name, then register a new account. The password can be anything you choose, but since the client side encryption depends upon having a good password make it a long random string generated by a password manager such as KeepassX.
302
+</p>
303
+
304
+<p>
305
+You should then be able to log in and start using the app. You might also want to invite any other users of your Freedombone system to also sign up using the turtl domain name which you specified during installation.
306
+</p>
307
+</div>
308
+</div>
309
+
310
+
311
+<div id="outline-container-org0637f00" class="outline-2">
312
+<h2 id="org0637f00">Locking it down</h2>
313
+<div class="outline-text-2" id="text-org0637f00">
314
+<p>
315
+Once you have created accounts it's a good idea to turn off new turtl signups. This will prevent millions of random users on the interwebs from creating accounts on your system and killing your server, or possibly other nefarious security scenarios. Go to the <b>administrator control panel</b> and select <b>App Settings</b> then <b>turtl</b>. You will then be able to disable new user registrations and also set the data storage limit for users. If you need additional users later you can always temporarily re-enable signups later.
316
+</p>
317
+</div>
318
+</div>
319
+</div>
320
+<div id="postamble" class="status">
321
+
322
+<style type="text/css">
323
+.back-to-top {
324
+    position: fixed;
325
+    bottom: 2em;
326
+    right: 0px;
327
+    text-decoration: none;
328
+    color: #000000;
329
+    background-color: rgba(235, 235, 235, 0.80);
330
+    font-size: 12px;
331
+    padding: 1em;
332
+    display: none;
333
+}
334
+
335
+.back-to-top:hover {
336
+    background-color: rgba(135, 135, 135, 0.50);
337
+}
338
+</style>
339
+
340
+<div class="back-to-top">
341
+<a href="#top">Back to top</a> | <a href="mailto:bob@freedombone.net">E-mail me</a>
342
+</div>
343
+</div>
344
+</body>
345
+</html>

+ 79
- 67
website/EN/apps.html Прегледај датотеку

@@ -3,7 +3,7 @@
3 3
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
4 4
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
5 5
 <head>
6
-<!-- 2016-11-28 Mon 19:23 -->
6
+<!-- 2016-12-20 Tue 15:34 -->
7 7
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
8 8
 <meta name="viewport" content="width=device-width, initial-scale=1" />
9 9
 <title></title>
@@ -263,9 +263,9 @@ The base install of the system just contains an email server and Mutt client, bu
263 263
 </div>
264 264
 </div>
265 265
 
266
-<div id="outline-container-orgc561169" class="outline-2">
267
-<h2 id="orgc561169">DLNA</h2>
268
-<div class="outline-text-2" id="text-orgc561169">
266
+<div id="outline-container-org06af72a" class="outline-2">
267
+<h2 id="org06af72a">DLNA</h2>
268
+<div class="outline-text-2" id="text-org06af72a">
269 269
 <p>
270 270
 Enables you to use the system as a music server which any DLNA compatible devices can connect to within your home network.
271 271
 </p>
@@ -275,9 +275,9 @@ Enables you to use the system as a music server which any DLNA compatible device
275 275
 </p>
276 276
 </div>
277 277
 </div>
278
-<div id="outline-container-org76beeab" class="outline-2">
279
-<h2 id="org76beeab">Dokuwiki</h2>
280
-<div class="outline-text-2" id="text-org76beeab">
278
+<div id="outline-container-org82e3b5a" class="outline-2">
279
+<h2 id="org82e3b5a">Dokuwiki</h2>
280
+<div class="outline-text-2" id="text-org82e3b5a">
281 281
 <p>
282 282
 A databaseless wiki system.
283 283
 </p>
@@ -287,9 +287,9 @@ A databaseless wiki system.
287 287
 </p>
288 288
 </div>
289 289
 </div>
290
-<div id="outline-container-org7af6c69" class="outline-2">
291
-<h2 id="org7af6c69">Emacs</h2>
292
-<div class="outline-text-2" id="text-org7af6c69">
290
+<div id="outline-container-org9c90fa1" class="outline-2">
291
+<h2 id="org9c90fa1">Emacs</h2>
292
+<div class="outline-text-2" id="text-org9c90fa1">
293 293
 <p>
294 294
 If you use the Mutt client to read your email then this will set it up to use emacs for composing new mail.
295 295
 </p>
@@ -299,9 +299,9 @@ If you use the Mutt client to read your email then this will set it up to use em
299 299
 </p>
300 300
 </div>
301 301
 </div>
302
-<div id="outline-container-org14afa61" class="outline-2">
303
-<h2 id="org14afa61">Etherpad</h2>
304
-<div class="outline-text-2" id="text-org14afa61">
302
+<div id="outline-container-org2a81d3f" class="outline-2">
303
+<h2 id="org2a81d3f">Etherpad</h2>
304
+<div class="outline-text-2" id="text-org2a81d3f">
305 305
 <p>
306 306
 Collaborate on creating documents in real time. Maybe you're planning a holiday with other family members or creating documentation for a Free Software project along with other volunteers. Etherpad is hard to beat for simplicity and speed. Only users of the system will be able to access it.
307 307
 </p>
@@ -311,9 +311,9 @@ Collaborate on creating documents in real time. Maybe you're planning a holiday
311 311
 </p>
312 312
 </div>
313 313
 </div>
314
-<div id="outline-container-orgb5c7f21" class="outline-2">
315
-<h2 id="orgb5c7f21">Ghost</h2>
316
-<div class="outline-text-2" id="text-orgb5c7f21">
314
+<div id="outline-container-org7701c14" class="outline-2">
315
+<h2 id="org7701c14">Ghost</h2>
316
+<div class="outline-text-2" id="text-org7701c14">
317 317
 <p>
318 318
 Modern looking blogging system.
319 319
 </p>
@@ -323,9 +323,9 @@ Modern looking blogging system.
323 323
 </p>
324 324
 </div>
325 325
 </div>
326
-<div id="outline-container-orgfc37116" class="outline-2">
327
-<h2 id="orgfc37116">GNU Social</h2>
328
-<div class="outline-text-2" id="text-orgfc37116">
326
+<div id="outline-container-orgb096bfe" class="outline-2">
327
+<h2 id="orgb096bfe">GNU Social</h2>
328
+<div class="outline-text-2" id="text-orgb096bfe">
329 329
 <p>
330 330
 Federated social network. You can "<i>remote follow</i>" other users within the GNU Social federation.
331 331
 </p>
@@ -335,9 +335,9 @@ Federated social network. You can "<i>remote follow</i>" other users within the
335 335
 </p>
336 336
 </div>
337 337
 </div>
338
-<div id="outline-container-orgdfd2c0b" class="outline-2">
339
-<h2 id="orgdfd2c0b">Gogs</h2>
340
-<div class="outline-text-2" id="text-orgdfd2c0b">
338
+<div id="outline-container-org9de96f8" class="outline-2">
339
+<h2 id="org9de96f8">Gogs</h2>
340
+<div class="outline-text-2" id="text-org9de96f8">
341 341
 <p>
342 342
 Lightweight git project hosting system. You can mirror projects from Github, or if Github turns evil then just host your own projects while retaining the familiar <i>fork-and-pull</i> workflow. If you can use Github then you can also use Gogs.
343 343
 </p>
@@ -347,9 +347,9 @@ Lightweight git project hosting system. You can mirror projects from Github, or
347 347
 </p>
348 348
 </div>
349 349
 </div>
350
-<div id="outline-container-org6f78c37" class="outline-2">
351
-<h2 id="org6f78c37">HTMLy</h2>
352
-<div class="outline-text-2" id="text-org6f78c37">
350
+<div id="outline-container-orgfeb902f" class="outline-2">
351
+<h2 id="orgfeb902f">HTMLy</h2>
352
+<div class="outline-text-2" id="text-orgfeb902f">
353 353
 <p>
354 354
 Databaseless blogging system. Quite simple and with a markdown-like format.
355 355
 </p>
@@ -359,9 +359,9 @@ Databaseless blogging system. Quite simple and with a markdown-like format.
359 359
 </p>
360 360
 </div>
361 361
 </div>
362
-<div id="outline-container-org8c3eafd" class="outline-2">
363
-<h2 id="org8c3eafd">Hubzilla</h2>
364
-<div class="outline-text-2" id="text-org8c3eafd">
362
+<div id="outline-container-org53f98d5" class="outline-2">
363
+<h2 id="org53f98d5">Hubzilla</h2>
364
+<div class="outline-text-2" id="text-org53f98d5">
365 365
 <p>
366 366
 Web publishing platform with social network like features and good privacy controls so that it's possible to specify who can see which content. Includes photo albums, calendar, wiki and file storage.
367 367
 </p>
@@ -371,9 +371,9 @@ Web publishing platform with social network like features and good privacy contr
371 371
 </p>
372 372
 </div>
373 373
 </div>
374
-<div id="outline-container-orgbea0c52" class="outline-2">
375
-<h2 id="orgbea0c52">IRC Server (ngirc)</h2>
376
-<div class="outline-text-2" id="text-orgbea0c52">
374
+<div id="outline-container-org04b2461" class="outline-2">
375
+<h2 id="org04b2461">IRC Server (ngirc)</h2>
376
+<div class="outline-text-2" id="text-org04b2461">
377 377
 <p>
378 378
 Run your own IRC chat channel which can be secured with a password and accessible via an onion address. A bouncer is included so that you can receive messages sent while you were offline. Works with Hexchat and other popular clients.
379 379
 </p>
@@ -383,18 +383,18 @@ Run your own IRC chat channel which can be secured with a password and accessibl
383 383
 </p>
384 384
 </div>
385 385
 </div>
386
-<div id="outline-container-org8ab9a8f" class="outline-2">
387
-<h2 id="org8ab9a8f">Jitsi Meet</h2>
388
-<div class="outline-text-2" id="text-org8ab9a8f">
386
+<div id="outline-container-org01bf547" class="outline-2">
387
+<h2 id="org01bf547">Jitsi Meet</h2>
388
+<div class="outline-text-2" id="text-org01bf547">
389 389
 <p>
390 390
 Experimental WebRTC video conferencing system, similar to Google Hangouts. This may not be fully functional, but is hoped to be in the near future.
391 391
 </p>
392 392
 </div>
393 393
 </div>
394 394
 
395
-<div id="outline-container-org87accf2" class="outline-2">
396
-<h2 id="org87accf2">Lychee</h2>
397
-<div class="outline-text-2" id="text-org87accf2">
395
+<div id="outline-container-org4fa4c1f" class="outline-2">
396
+<h2 id="org4fa4c1f">Lychee</h2>
397
+<div class="outline-text-2" id="text-org4fa4c1f">
398 398
 <p>
399 399
 Make your photo albums available on the web.
400 400
 </p>
@@ -404,9 +404,9 @@ Make your photo albums available on the web.
404 404
 </p>
405 405
 </div>
406 406
 </div>
407
-<div id="outline-container-orge84db07" class="outline-2">
408
-<h2 id="orge84db07">Mailpile</h2>
409
-<div class="outline-text-2" id="text-orge84db07">
407
+<div id="outline-container-org021659d" class="outline-2">
408
+<h2 id="org021659d">Mailpile</h2>
409
+<div class="outline-text-2" id="text-org021659d">
410 410
 <p>
411 411
 Modern email client which supports GPG encryption.
412 412
 </p>
@@ -416,9 +416,9 @@ Modern email client which supports GPG encryption.
416 416
 </p>
417 417
 </div>
418 418
 </div>
419
-<div id="outline-container-org5f25ae9" class="outline-2">
420
-<h2 id="org5f25ae9">Mumble</h2>
421
-<div class="outline-text-2" id="text-org5f25ae9">
419
+<div id="outline-container-orgbf29cc7" class="outline-2">
420
+<h2 id="orgbf29cc7">Mumble</h2>
421
+<div class="outline-text-2" id="text-orgbf29cc7">
422 422
 <p>
423 423
 The popular VoIP and text chat system. Say goodbye to old-fashioned telephony conferences with silly dial codes. Also works well on mobile.
424 424
 </p>
@@ -428,9 +428,9 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
428 428
 </p>
429 429
 </div>
430 430
 </div>
431
-<div id="outline-container-org56cecbb" class="outline-2">
432
-<h2 id="org56cecbb">PI-Hole</h2>
433
-<div class="outline-text-2" id="text-org56cecbb">
431
+<div id="outline-container-org6bca095" class="outline-2">
432
+<h2 id="org6bca095">PI-Hole</h2>
433
+<div class="outline-text-2" id="text-org6bca095">
434 434
 <p>
435 435
 The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
436 436
 </p>
@@ -440,9 +440,9 @@ The black hole for web adverts. Block adverts at the domain name level within yo
440 440
 </p>
441 441
 </div>
442 442
 </div>
443
-<div id="outline-container-org6a9f389" class="outline-2">
444
-<h2 id="org6a9f389">PostActiv</h2>
445
-<div class="outline-text-2" id="text-org6a9f389">
443
+<div id="outline-container-orgbd5ecde" class="outline-2">
444
+<h2 id="orgbd5ecde">PostActiv</h2>
445
+<div class="outline-text-2" id="text-orgbd5ecde">
446 446
 <p>
447 447
 An alternative federated social networking system compatible with GNU Social. It includes some optimisations and fixes currently not available within the main GNU Social project.
448 448
 </p>
@@ -452,9 +452,9 @@ An alternative federated social networking system compatible with GNU Social. It
452 452
 </p>
453 453
 </div>
454 454
 </div>
455
-<div id="outline-container-org3a8271f" class="outline-2">
456
-<h2 id="org3a8271f">Radicale</h2>
457
-<div class="outline-text-2" id="text-org3a8271f">
455
+<div id="outline-container-org93e655a" class="outline-2">
456
+<h2 id="org93e655a">Radicale</h2>
457
+<div class="outline-text-2" id="text-org93e655a">
458 458
 <p>
459 459
 Calendar system compatible with CalDAV and CardDAV. Synch your calendar events easily and securely across all your devices.
460 460
 </p>
@@ -464,9 +464,9 @@ Calendar system compatible with CalDAV and CardDAV. Synch your calendar events e
464 464
 </p>
465 465
 </div>
466 466
 </div>
467
-<div id="outline-container-org6f4a73c" class="outline-2">
468
-<h2 id="org6f4a73c">tt-rss</h2>
469
-<div class="outline-text-2" id="text-org6f4a73c">
467
+<div id="outline-container-orga5d4e72" class="outline-2">
468
+<h2 id="orga5d4e72">tt-rss</h2>
469
+<div class="outline-text-2" id="text-orga5d4e72">
470 470
 <p>
471 471
 Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via an onion address. Have "<i>the right to read</i>" without the Surveillance State knowing what you're reading. Also available with a user interface suitable for viewing on mobile devices via a browser such as OrFox.
472 472
 </p>
@@ -476,9 +476,9 @@ Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via a
476 476
 </p>
477 477
 </div>
478 478
 </div>
479
-<div id="outline-container-orgc3881e2" class="outline-2">
480
-<h2 id="orgc3881e2">Syncthing</h2>
481
-<div class="outline-text-2" id="text-orgc3881e2">
479
+<div id="outline-container-org3ff38e9" class="outline-2">
480
+<h2 id="org3ff38e9">Syncthing</h2>
481
+<div class="outline-text-2" id="text-org3ff38e9">
482 482
 <p>
483 483
 Possibly the best way to synchronise files across all of your devices. Once it has been set up it "just works" with no user intervention needed.
484 484
 </p>
@@ -488,9 +488,9 @@ Possibly the best way to synchronise files across all of your devices. Once it h
488 488
 </p>
489 489
 </div>
490 490
 </div>
491
-<div id="outline-container-org2244242" class="outline-2">
492
-<h2 id="org2244242">Tox</h2>
493
-<div class="outline-text-2" id="text-org2244242">
491
+<div id="outline-container-org0629dc7" class="outline-2">
492
+<h2 id="org0629dc7">Tox</h2>
493
+<div class="outline-text-2" id="text-org0629dc7">
494 494
 <p>
495 495
 Client and bootstrap node for the Tox chat/VoIP system.
496 496
 </p>
@@ -500,18 +500,30 @@ Client and bootstrap node for the Tox chat/VoIP system.
500 500
 </p>
501 501
 </div>
502 502
 </div>
503
-<div id="outline-container-org3a977cd" class="outline-2">
504
-<h2 id="org3a977cd">Vim</h2>
505
-<div class="outline-text-2" id="text-org3a977cd">
503
+<div id="outline-container-org058f776" class="outline-2">
504
+<h2 id="org058f776">Turtl</h2>
505
+<div class="outline-text-2" id="text-org058f776">
506
+<p>
507
+A system for privately creating and sharing notes and images, similar to Evernote but without the spying.
508
+</p>
509
+
510
+<p>
511
+<a href="./app_turtl.html">How to use it</a>
512
+</p>
513
+</div>
514
+</div>
515
+<div id="outline-container-orgb8da554" class="outline-2">
516
+<h2 id="orgb8da554">Vim</h2>
517
+<div class="outline-text-2" id="text-orgb8da554">
506 518
 <p>
507 519
 If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
508 520
 </p>
509 521
 </div>
510 522
 </div>
511 523
 
512
-<div id="outline-container-org70eae09" class="outline-2">
513
-<h2 id="org70eae09">XMPP</h2>
514
-<div class="outline-text-2" id="text-org70eae09">
524
+<div id="outline-container-org286851f" class="outline-2">
525
+<h2 id="org286851f">XMPP</h2>
526
+<div class="outline-text-2" id="text-org286851f">
515 527
 <p>
516 528
 Chat server which can be used together with client such as Gajim or Conversations to provide end-to-end content security and also onion routed metadata security. Includes advanced features such as <i>client state notification</i> to save battery power on your mobile devices, support for seamless roaming between networks and <i>message carbons</i> so that you can receive the same messages while being simultaneously logged in to your account on more than one device.
517 529
 </p>

+ 25
- 75
website/EN/usage.html Прегледај датотеку

@@ -3,7 +3,7 @@
3 3
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
4 4
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
5 5
 <head>
6
-<!-- 2016-11-20 Sun 17:09 -->
6
+<!-- 2016-12-20 Tue 16:16 -->
7 7
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
8 8
 <meta name="viewport" content="width=device-width, initial-scale=1" />
9 9
 <title></title>
@@ -255,15 +255,11 @@ for the JavaScript code in this tag.
255 255
 </colgroup>
256 256
 <tbody>
257 257
 <tr>
258
-<td class="org-left"><a href="#orgdbaccc3">Readme</a></td>
258
+<td class="org-left"><a href="#org0e58259">Improving security</a></td>
259 259
 </tr>
260 260
 
261 261
 <tr>
262
-<td class="org-left"><a href="#org9144c86">Improving ssh security</a></td>
263
-</tr>
264
-
265
-<tr>
266
-<td class="org-left"><a href="#org60b4bc6">Administrating the system via an onion address (Tor)</a></td>
262
+<td class="org-left"><a href="#org2189c3f">Administrating the system via an onion address (Tor)</a></td>
267 263
 </tr>
268 264
 
269 265
 <tr>
@@ -347,88 +343,51 @@ for the JavaScript code in this tag.
347 343
 </tr>
348 344
 
349 345
 <tr>
350
-<td class="org-left"><a href="#org7c0835c">Adding or removing users</a></td>
346
+<td class="org-left"><a href="#org6c689d0">Adding or removing users</a></td>
351 347
 </tr>
352 348
 
353 349
 <tr>
354 350
 <td class="org-left"><a href="./app_pihole.html">Blocking Ads</a></td>
355 351
 </tr>
352
+
353
+<tr>
354
+<td class="org-left"><a href="./app_turtl.html">Making and sharing notes and images</a></td>
355
+</tr>
356 356
 </tbody>
357 357
 </table>
358 358
 
359
-<div id="outline-container-orgdbaccc3" class="outline-2">
360
-<h2 id="orgdbaccc3">Readme</h2>
361
-<div class="outline-text-2" id="text-orgdbaccc3">
359
+<div id="outline-container-org0e58259" class="outline-2">
360
+<h2 id="org0e58259">Improving security</h2>
361
+<div class="outline-text-2" id="text-org0e58259">
362 362
 <p>
363
-After the system has installed a README file will be generated which contains any advice on particular apps installed. Ordinarily you won't need to read it though. You can access it with the following commands:
363
+It's a lot more secure to log in to the Freedombone system using ssh keys rather than with a password. You can set that up by first running:
364 364
 </p>
365 365
 
366 366
 <div class="org-src-container">
367
-<pre class="src src-bash">ssh username@domainname -p 2222
368
-editor ~/README
369
-</pre>
370
-</div>
371
-
372
-<p>
373
-To exit if you're using emacs (which is the default editor, but can be changed to vim) you can either just close the terminal or use <b>CTRL-x CTRL-c</b> followed by the <b>exit</b> command.
374
-</p>
375
-</div>
376
-</div>
377
-<div id="outline-container-org9144c86" class="outline-2">
378
-<h2 id="org9144c86">Improving ssh security</h2>
379
-<div class="outline-text-2" id="text-org9144c86">
380
-<p>
381
-To improve ssh security you can generate an ssh key pair on your system and then upload the public key to the Freedombone.
382
-</p>
383
-
384
-<p>
385
-On your local machine:
386
-</p>
387
-
388
-<div class="org-src-container">
389
-<pre class="src src-bash">ssh-keygen
390
-</pre>
391
-</div>
392
-
393
-<p>
394
-For extra security you may also want to add a passphrase to the ssh private key. You can show the generated public key with:
395
-</p>
396
-
397
-<div class="org-src-container">
398
-<pre class="src src-bash">cat ~/.ssh/id_rsa.pub
367
+<pre class="src src-bash">freedombone-client
399 368
 </pre>
400 369
 </div>
401 370
 
402 371
 <p>
403
-Log into your system and open the control panel.
372
+On your local system (i.e. whatever you're logging in to the Freedombone system from, typically a laptop). Then:
404 373
 </p>
405 374
 
406
-<div class="org-src-container">
407
-<pre class="src src-bash">ssh username@domain -p 2222
375
+<pre class="example">
376
+ssh myusername@freedombone.local -p 2222
408 377
 </pre>
409
-</div>
410
-
411
-<p>
412
-Select <i>Administrator controls</i> then <i>Manage Users</i> then <i>Change user ssh public key</i>. Copy and paste the public key here, then exit.
413
-</p>
414 378
 
415 379
 <p>
416
-It's a good idea to also copy the contents of <b>~/.ssh/id_rsa</b> and <b>~/.ssh/id_rsa.pub</b> to you password manager, together with the private key password if you created one.
380
+Select <b>Administrator controls</b> and re-enter your password, then <b>Manage Users</b> and <b>Change user ssh public key</b>. Copy and paste the ssh public keys which appeared after the <b>freedombone-client</b> command was run. Then go to <b>Security settings</b> and select <b>Allow ssh login with passwords</b> followed by <b>no</b>.
417 381
 </p>
418 382
 
419 383
 <p>
420
-There are advantages and disadvantages to using ssh keys for logins. The advantage is that this is much more secure than a memorised password, but the disadvantage is that you need to carry your ssh keys around and be able to install them on any computer of mobile device that you use. In high security or hostile infosec environments it may not be possible to carry or use USB thumb drives containing your keys and so memorised passwords may be the only available choice.
421
-</p>
422
-
423
-<p>
424
-If you wish to only use ssh keys then log in to the Freedombone, become the root user and open the control panel with the 'control' command. Select <i>Security Settings</i> then keep hitting enter until you reach the question about allowing password logins. Select "no" for that, then apply the settings. Any subsequent attempts to log in via a password will then be denied.
384
+You'll need to make sure that you have a copy of the ~/.ssh directory on your local system. You could just copy that directory to a USB drive and then keep that somewhere safe so that you can restore the keys if you need to.
425 385
 </p>
426 386
 </div>
427 387
 </div>
428
-
429
-<div id="outline-container-org60b4bc6" class="outline-2">
430
-<h2 id="org60b4bc6">Administrating the system via an onion address (Tor)</h2>
431
-<div class="outline-text-2" id="text-org60b4bc6">
388
+<div id="outline-container-org2189c3f" class="outline-2">
389
+<h2 id="org2189c3f">Administrating the system via an onion address (Tor)</h2>
390
+<div class="outline-text-2" id="text-org2189c3f">
432 391
 <p>
433 392
 You can also access your system via the Tor system using an onion address. To find out what the onion address for ssh access is you can do the following:
434 393
 </p>
@@ -448,16 +407,7 @@ Select <i>Administrator controls</i> then select "About this system" and look fo
448 407
 </div>
449 408
 
450 409
 <p>
451
-This will set up your ssh environment to be able to handle onion addresses. In addition if you use monkeysphere then you can do:
452
-</p>
453
-
454
-<div class="org-src-container">
455
-<pre class="src src-bash">freedombone-client --ms yes
456
-</pre>
457
-</div>
458
-
459
-<p>
460
-Then you can test ssh with:
410
+This will set up your ssh environment to be able to handle onion addresses. Then you can test ssh with:
461 411
 </p>
462 412
 
463 413
 <div class="org-src-container">
@@ -470,9 +420,9 @@ Subsequently even if dynamic DNS isn't working you may still be able to administ
470 420
 </p>
471 421
 </div>
472 422
 </div>
473
-<div id="outline-container-org7c0835c" class="outline-2">
474
-<h2 id="org7c0835c">Adding or removing users</h2>
475
-<div class="outline-text-2" id="text-org7c0835c">
423
+<div id="outline-container-org6c689d0" class="outline-2">
424
+<h2 id="org6c689d0">Adding or removing users</h2>
425
+<div class="outline-text-2" id="text-org6c689d0">
476 426
 <p>
477 427
 Log into the system with:
478 428
 </p>