free
/
freedombone
Segui 1
Vota 0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 0 Wiki Activity
Sfoglia il codice sorgente

Improving XMPP instructions

Bob Mottram 11 anni fa
parent
3282317b61
commit
5c981b9177
1 ha cambiato i file con 30 aggiunte e 14 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 30
    14
      beaglebone.txt

+ 30
- 14
beaglebone.txt Vedi File 

@@ -50,6 +50,12 @@ FreedomBone should be far more secure than using popular cloud-based services wh
50 50 
 Hardly at all.  The BeagleBone Black consumes very little power - less than 5W.  It would even be potentially possible to run it from a solar panel.
51 51 
 * Inventory
52 52
53 
+#+BEGIN_VERSE
54 
+/You can’t help someone just by making a wish to do so, you have to take action./
55 
+
56 
+-- Dalai Lama
57 
+#+END_VERSE
58 
+
53 59 
 These instructions assume that you have the following ingredients.
54 60
55 61 
 ** A BeagleBone Black (BBB)
 
@@ -1924,6 +1930,15 @@ openssl genrsa -out /etc/ssl/private/xmpp.key 4096
1924 1930 
 openssl req -new -x509 -key /etc/ssl/private/xmpp.key -out /etc/ssl/certs/xmpp.crt -days 3650
1925 1931 
 #+END_SRC
1926 1932
1933 
+Change permissions.
1934 
+
1935 
+#+BEGIN_SRC: bash
1936 
+chmod 600 /etc/ssl/private/xmpp.key
1937 
+chmod 600 /etc/ssl/certs/xmpp.crt
1938 
+chown prosody:prosody /etc/ssl/private/xmpp.key
1939 
+chown prosody:prosody /etc/ssl/certs/xmpp.crt
1940 
+#+END_SRC
1941 
+
1927 1942 
 Install Prosody.
1928 1943
1929 1944 
 #+BEGIN_SRC: bash
 
@@ -1961,7 +1976,7 @@ Restart the server
1961 1976 
 service prosody restart
1962 1977 
 #+END_SRC
1963 1978
1964 
-On your internet router/firewall open ports 5222 and 5223 and forward them to the BBB.
1979 
+On your internet router/firewall open ports 5222, 5223 and 5269 and forward them to the BBB.
1965 1980
1966 1981 
 It's possible to test that your XMPP server is working at https://xmpp.net.  It may take several minutes and you'll get a low score because of the self-signed certificate, but it will at least verify that your server is capable of communicating.
1967 1982 
 
@@ -2714,19 +2729,20 @@ apt-get install rkhunter
2714 2729 
 * Router/Firewall ports
2715 2730 
 The following ports on your internet router/firewall should be forwarded to the BBB.
2716 2731
2717 
-| Protocol   |     Port/s |
2718 
-|------------+------------|
2719 
-| Gopher     |         70 |
2720 
-| HTTP       |         80 |
2721 
-| HTTPS      |        443 |
2722 
-| IMAP       |        143 |
2723 
-| IRC SSL    |       6670 |
2724 
-| SIP        | 5060..5061 |
2725 
-| SMTP       |         25 |
2726 
-| SMTPS      |        465 |
2727 
-| SSH        |         22 |
2728 
-| XMPP       | 5222..5223 |
2729 
-| Bitmessage |       8444 |
2732 
+| Protocol      |     Port/s |
2733 
+|---------------+------------|
2734 
+| Gopher        |         70 |
2735 
+| HTTP          |         80 |
2736 
+| HTTPS         |        443 |
2737 
+| IMAP          |        143 |
2738 
+| IRC SSL       |       6670 |
2739 
+| SIP           | 5060..5061 |
2740 
+| SMTP          |         25 |
2741 
+| SMTPS         |        465 |
2742 
+| SSH           |         22 |
2743 
+| XMPP          | 5222..5223 |
2744 
+| XMPP (server) |       5269 |
2745 
+| Bitmessage    |       8444 |
2730 2746
2731 2747 
 * Hints and Tips
2732 2748 
 ** Messaging security