Note about flakiness

doc/EN/domains.org

@@ -24,6 +24,8 @@ You probably only need one ICANN domain name and then the various Freedombone ap
 
 You will also need a dynamic DNS account, and again this might be something you have to pay a subscription for. Your Freedombone system will have a local network address (typically 192.168.x.y or 10.x.y.z) and also a public IP address assigned by your ISP. Your ISP will change your public IP address every so often (that's why it's called "dynamic") and so there needs to be some way to link the domain name which you've obtained to your changing public IP address. That's what the dynamic DNS service does.
 
+/Starting to think that this sounds like a rather shaky system which would would be not too difficult for an adversary to disrupt - especially if they get cosy with ICANN or the dynamic DNS provider? You'd be right. But moving swiftly past that man behind a curtain.../
+
 In simple terms what happens is that on a regular basis the Freedombone system will ping the dynamic DNS service and say "/this is my current public IP address/", so that the mapping between domain name and IP address can be maintained.
 
 The dynamic DNS service will have their own DNS servers maintaining the IP address mappings and so on the web site where you registered your domain name you will need to specify the servers of the your dynamic DNS account. Look for an option such as "/change nameservers/" or "/custom nameservers/", remove any names which might already be there and then add the servers used by the dynamic DNS service. For example, if you're using FreeDNS then these servers would be:

website/EN/domains.html

@@ -3,7 +3,7 @@
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
 <head>
-<!-- 2016-11-29 Tue 10:53 -->
+<!-- 2016-11-29 Tue 14:07 -->
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
 <meta name="viewport" content="width=device-width, initial-scale=1" />
 <title></title>
@@ -245,9 +245,9 @@ for the JavaScript code in this tag.
 
 <center><h1>How to get a domain name</h1></center>
 
-<div id="outline-container-orgc34c8b8" class="outline-2">
-<h2 id="orgc34c8b8">The domain name itself</h2>
-<div class="outline-text-2" id="text-orgc34c8b8">
+<div id="outline-container-orgc0e9971" class="outline-2">
+<h2 id="orgc0e9971">The domain name itself</h2>
+<div class="outline-text-2" id="text-orgc0e9971">
 <p>
 If you want your sites or chat systems to be available via an ordinary web browser (i.e. not a Tor browser) then you'll need to obtain a domain name. The domain name system is ultimately controlled by ICANN and to obtain a domain name for which you can also get a TLS certificate you'll need to buy one. There are various sites which sell domain names, and fortunately they can often be quite cheap - especially if you can think of an obscure name for your site. Prefer sites where the domain name subscription can be automatically renewed, because otherwise trolls can quickly buy your domain when it expires and then hold it for ransom. If you're planning to self-host for more than an ephemeral purpose, such as a conference or festival, then choose the longest subscription period you can afford (typically a few years).
 </p>
@@ -258,14 +258,18 @@ You probably only need one ICANN domain name and then the various Freedombone ap
 </div>
 </div>
 
-<div id="outline-container-org0ae0f49" class="outline-2">
-<h2 id="org0ae0f49">Dynamic DNS</h2>
-<div class="outline-text-2" id="text-org0ae0f49">
+<div id="outline-container-orge197a4d" class="outline-2">
+<h2 id="orge197a4d">Dynamic DNS</h2>
+<div class="outline-text-2" id="text-orge197a4d">
 <p>
 You will also need a dynamic DNS account, and again this might be something you have to pay a subscription for. Your Freedombone system will have a local network address (typically 192.168.x.y or 10.x.y.z) and also a public IP address assigned by your ISP. Your ISP will change your public IP address every so often (that's why it's called "dynamic") and so there needs to be some way to link the domain name which you've obtained to your changing public IP address. That's what the dynamic DNS service does.
 </p>
 
 <p>
+<i>Starting to think that this sounds like a rather shaky system which would would be not too difficult for an adversary to disrupt - especially if they get cosy with ICANN or the dynamic DNS provider? You'd be right. But moving swiftly past that man behind a curtain&#x2026;</i>
+</p>
+
+<p>
 In simple terms what happens is that on a regular basis the Freedombone system will ping the dynamic DNS service and say "<i>this is my current public IP address</i>", so that the mapping between domain name and IP address can be maintained.
 </p>
 
@@ -286,9 +290,9 @@ It might take a few minutes for the changes to take effect, so don't be too hast
 </p>
 </div>
 
-<div id="outline-container-org6097019" class="outline-3">
-<h3 id="org6097019">Configuring with FreeDNS</h3>
-<div class="outline-text-3" id="text-org6097019">
+<div id="outline-container-org93cf4d2" class="outline-3">
+<h3 id="org93cf4d2">Configuring with FreeDNS</h3>
+<div class="outline-text-3" id="text-org93cf4d2">
 <p>
 If you are using FreeDNS as a dynamic DNS provider then on their site select "<i>Domains</i>" and add your domain name (this might only be available to paid subscribers). Make sure that they're marked as "<i>private</i>" so that subdomains of your domain name are not used by other users of the site.
 </p>
@@ -300,18 +304,18 @@ Select "Subdomains" from the menu on the left then select the MX entry for your
 </div>
 </div>
 
-<div id="outline-container-org6ca3626" class="outline-2">
-<h2 id="org6ca3626">Setting up with Freedombone</h2>
-<div class="outline-text-2" id="text-org6ca3626">
+<div id="outline-container-org6794f2a" class="outline-2">
+<h2 id="org6794f2a">Setting up with Freedombone</h2>
+<div class="outline-text-2" id="text-org6794f2a">
 <p>
 When you start the base installation of the system it will ask you to choose a dynamic DNS provider and then enter the login details for the dynamic DNS service.
 </p>
 </div>
 </div>
 
-<div id="outline-container-orgfc5c0d9" class="outline-2">
-<h2 id="orgfc5c0d9">A note about Tor</h2>
-<div class="outline-text-2" id="text-orgfc5c0d9">
+<div id="outline-container-org495e9ff" class="outline-2">
+<h2 id="org495e9ff">A note about Tor</h2>
+<div class="outline-text-2" id="text-org495e9ff">
 <p>
 If you only want your sites to be available via Tor then none of the above is needed and you can access your sites and systems via their onion addresses. Tor has its own naming system which is independent from ICANN, and you also won't need TLS/SSL certificates since it also manages transport encryption itself. When building disk images use the <b>&#x2013;onion yes</b> option, or choose one of the ready made onion disk images <a href="./downloads">from downloads</a>.
 </p>