|
@@ -50,6 +50,12 @@ FreedomBone should be far more secure than using popular cloud-based services wh
|
50
|
50
|
Hardly at all. The BeagleBone Black consumes very little power - less than 5W. It would even be potentially possible to run it from a solar panel.
|
51
|
51
|
* Inventory
|
52
|
52
|
|
|
53
|
+#+BEGIN_VERSE
|
|
54
|
+/You can’t help someone just by making a wish to do so, you have to take action./
|
|
55
|
+
|
|
56
|
+-- Dalai Lama
|
|
57
|
+#+END_VERSE
|
|
58
|
+
|
53
|
59
|
These instructions assume that you have the following ingredients.
|
54
|
60
|
|
55
|
61
|
** A BeagleBone Black (BBB)
|
|
@@ -1924,6 +1930,15 @@ openssl genrsa -out /etc/ssl/private/xmpp.key 4096
|
1924
|
1930
|
openssl req -new -x509 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
|
1925
|
1931
|
#+END_SRC
|
1926
|
1932
|
|
|
1933
|
+Change permissions.
|
|
1934
|
+
|
|
1935
|
+#+BEGIN_SRC: bash
|
|
1936
|
+chmod 600 /etc/ssl/private/xmpp.key
|
|
1937
|
+chmod 600 /etc/ssl/certs/xmpp.crt
|
|
1938
|
+chown prosody:prosody /etc/ssl/private/xmpp.key
|
|
1939
|
+chown prosody:prosody /etc/ssl/certs/xmpp.crt
|
|
1940
|
+#+END_SRC
|
|
1941
|
+
|
1927
|
1942
|
Install Prosody.
|
1928
|
1943
|
|
1929
|
1944
|
#+BEGIN_SRC: bash
|
|
@@ -1961,7 +1976,7 @@ Restart the server
|
1961
|
1976
|
service prosody restart
|
1962
|
1977
|
#+END_SRC
|
1963
|
1978
|
|
1964
|
|
-On your internet router/firewall open ports 5222 and 5223 and forward them to the BBB.
|
|
1979
|
+On your internet router/firewall open ports 5222, 5223 and 5269 and forward them to the BBB.
|
1965
|
1980
|
|
1966
|
1981
|
It's possible to test that your XMPP server is working at https://xmpp.net. It may take several minutes and you'll get a low score because of the self-signed certificate, but it will at least verify that your server is capable of communicating.
|
1967
|
1982
|
|
|
@@ -2714,19 +2729,20 @@ apt-get install rkhunter
|
2714
|
2729
|
* Router/Firewall ports
|
2715
|
2730
|
The following ports on your internet router/firewall should be forwarded to the BBB.
|
2716
|
2731
|
|
2717
|
|
-| Protocol | Port/s |
|
2718
|
|
-|------------+------------|
|
2719
|
|
-| Gopher | 70 |
|
2720
|
|
-| HTTP | 80 |
|
2721
|
|
-| HTTPS | 443 |
|
2722
|
|
-| IMAP | 143 |
|
2723
|
|
-| IRC SSL | 6670 |
|
2724
|
|
-| SIP | 5060..5061 |
|
2725
|
|
-| SMTP | 25 |
|
2726
|
|
-| SMTPS | 465 |
|
2727
|
|
-| SSH | 22 |
|
2728
|
|
-| XMPP | 5222..5223 |
|
2729
|
|
-| Bitmessage | 8444 |
|
|
2732
|
+| Protocol | Port/s |
|
|
2733
|
+|---------------+------------|
|
|
2734
|
+| Gopher | 70 |
|
|
2735
|
+| HTTP | 80 |
|
|
2736
|
+| HTTPS | 443 |
|
|
2737
|
+| IMAP | 143 |
|
|
2738
|
+| IRC SSL | 6670 |
|
|
2739
|
+| SIP | 5060..5061 |
|
|
2740
|
+| SMTP | 25 |
|
|
2741
|
+| SMTPS | 465 |
|
|
2742
|
+| SSH | 22 |
|
|
2743
|
+| XMPP | 5222..5223 |
|
|
2744
|
+| XMPP (server) | 5269 |
|
|
2745
|
+| Bitmessage | 8444 |
|
2730
|
2746
|
|
2731
|
2747
|
* Hints and Tips
|
2732
|
2748
|
** Messaging security
|