diff --git a/doc/EN/usage.org b/doc/EN/usage.org index c7be978d..fdb51e91 100644 --- a/doc/EN/usage.org +++ b/doc/EN/usage.org @@ -16,14 +16,15 @@ #+END_HTML -| [[Readme]] | -| [[Improving ssh security]] | -| [[./usage_email.html][Using Email]] | -| [[Syncing to the Cloud]] | -| [[Play Music]] | -| [[Microblogging]] | -| [[Social Network]] | -| [[Chat Services]] | +| [[Readme]] | +| [[Improving ssh security]] | +| [[Administrating the system via an onion address (Tor)]] | +| [[./usage_email.html][Using Email]] | +| [[Syncing to the Cloud]] | +| [[Play Music]] | +| [[Microblogging]] | +| [[Social Network]] | +| [[Chat Services]] | * Readme After the system has installed a README file will be generated which contains passwords and some brief advice on using the installed systems. You can read this with the following commands: @@ -66,6 +67,24 @@ There are advantages and disadvantages to using ssh keys for logins. The advanta If you wish to only use ssh keys then log in to the Freedombone, become the root user and open the control panel with the 'control' command. Select /Security Settings/ then keep hitting enter until you reach the question about allowing password logins. Select "no" for that, then apply the settings. Any subsequent attempts to log in via a password will then be denied. +* Administrating the system via an onion address (Tor) +You can also access your system via the Tor system using an onion address. To find out what the onion address for ssh access is you can do the following: + +#+BEGIN_SRC bash +ssh username@freedombone.local -p 2222 +sudo control +#+END_SRC + +Then select "About this system" and look for the onion address for ssh. You can then close the terminal and open another, then do the following: + +#+BEGIN_SRC bash +sudo apt-get install tor connect-proxy +echo 'Host *.onion' >> ~/.ssh/config +echo 'ProxyCommand connect -R remote -5 -S 127.0.0.1:9050 %h %p' >> ~/.ssh/config +ssh username@address.onion -p 2222 +#+END_SRC + +Subsequently even if dynamic DNS isn't working you may still be able to administer your system. Using the onion address also gives you some degree of protection against corporate or government metadata analysis, since it becomes more difficult to passively detect which systems are communicating. * Syncing to the Cloud ** Initial install Within a browser go to your owncloud domain, then create an administrator account. The username and password can be anything, and ideally should be generated from a password manager. diff --git a/website/EN/usage.html b/website/EN/usage.html index 08b3dd25..1e89e42c 100644 --- a/website/EN/usage.html +++ b/website/EN/usage.html @@ -3,15 +3,15 @@ "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
-