Separate pihole documentation

This commit is contained in:
Bob Mottram 2016-11-12 23:56:05 +00:00
parent 0e6285a1ea
commit f80bb1f6cc
6 changed files with 531 additions and 235 deletions

69
doc/EN/app_pihole.org Normal file
View File

@ -0,0 +1,69 @@
#+TITLE:
#+AUTHOR: Bob Mottram
#+EMAIL: bob@freedombone.net
#+KEYWORDS: freedombone, pi-hole, ad blocker
#+DESCRIPTION: How to block ads on your network
#+OPTIONS: ^:nil toc:nil
#+HTML_HEAD: <link rel="stylesheet" type="text/css" href="freedombone.css" />
#+BEGIN_CENTER
[[file:images/logo.png]]
#+END_CENTER
#+BEGIN_EXPORT html
<center>
<h1>PI-Hole: The Black Hole for Web Adverts</h1>
</center>
#+END_EXPORT
Idiots who have an inflated sense of self-entitlement will tell you that it's /your moral duty/ to view their mind-numbingly tedious corporate ads on their web site or YouTube channel, or else their kids will starve and the sky will fall because their revenue stream will dry up. But that's bullshit. There is nothing intrinsic or morally mandatory about adverts propping up the livelihoods of netizens, and indeed a web not primarily based on advertising money might have been a much better and more interesting place by now, with a lot less spying.
Not only are web ads annoying, but they can consume a lot of bandwidth, be a privacy problem in terms of allowing companies to track your browsing habits and also any badly written scripts they contain may introduce exploitable security holes. Also if you're poor then adverts often make you want things that you can't have.
You can block ads for any devices connected to your local network by installing the *pihole* app from *Add/Remove Apps* on the administrator control panel. This may help to improve overall performance of your devices by not wasting time downloading unwanted images or scripts.
Also don't expect perfection. Though many ads may be blocked by this system some will still get through. It's a constant cat and mouse game between advertisers and blockers.
* Set a static IP address
Ensure that your system has a static local IP address (typically 192.168..) using the option on the control panel. You will also need to know the IP address of your internet router, which is usually *192.168.1.1* or *192.168.1.254*.
When that's done select *About this system* from the control panel and see the IPv4 address. You can use this as a DNS address in two ways:
* On each client system within your local network
#+begin_src bash
sudo chattr -i /etc/resolv.conf
sudo nano /etc/resolv.conf
#+end_src
Comment out any existing entries with a # character and add:
#+begin_src bash
nameserver [IPv4 address from the About screen]
#+end_src
Normally /resolv.conf/ will be overwritten every time your reboot, but you can prevent this with:
#+begin_src bash
sudo chattr +i /etc/resolv.conf
#+end_src
* On your internet router
If you can access the settings on your local internet router then this is the simplest way to provide ad blocking for all devices which connect to it. Unfortunately some router models don't let you edit the DNS settings and if that's the case you might want to consider getting a different router.
Edit the DNS settings and add the IPv4 address which you got from the control panel About screen. Exactly how you do this will just depend upon your particular router model. You may also need to set the same address twice, because two addresses are conventional.
** LibreCMC
On a router running LibreCMC from the *Network* menu select *DHCP and DNS*. Enter the static IP address of your Freedombone system within *DNS Forwardings*, then at the bottom of the page click on *Save & Apply*. Any devices which connect to your router will now have ad blocking.
* Configuring block lists
You can configure the block lists which the system uses by going to the *administrator control panel*, selecting *App Settings* then choosing *pihole*. You can also add any extra domain names to the whitelist if they're being wrongly blocked or to the blacklist if they're not blocked by the current lists.
#+BEGIN_EXPORT html
<center>
Return to the <a href="index.html">home page</a>
</center>
#+END_EXPORT

View File

@ -71,6 +71,7 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
* PI-Hole
The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
[[./app_pihole.html][How to use it]]
* PostActiv
An alternative federated social networking system compatible with GNU Social. It includes some optimisations and fixes currently not available within the main GNU Social project.

View File

@ -32,7 +32,7 @@
| [[./app_rss.html][RSS Reader]] |
| [[./app_gogs.html][Git Projects]] |
| [[Adding or removing users]] |
| [[Blocking Ads]] |
| [[./app_pihole.html][Blocking Ads]] |
* Readme
After the system has installed a README file will be generated which contains passwords and some brief advice on using the installed systems. You can read this with the following commands:
@ -115,54 +115,3 @@ control
#+END_SRC
[[file:images/controlpanel/control_panel_manage_users.jpg]]
* Blocking Ads
Everyone except for advertisers hates adverts. Not only are they annoying, but they can consume a lot of bandwidth, be a privacy problem in terms of allowing companies to track your browsing habits and also any badly written scripts they contain may introduce exploitable security holes. Also if you're poor then adverts often make you want things that you can't have.
You can block ads for any devices connected to your local network by installing the *pihole* app from *Add/Remove Apps* on the administrator control panel. This may help to improve overall performance of your devices by not wasting time downloading unwanted images or scripts.
Also don't expect perfection. Though many ads may be blocked by this system some will still get through. It's a constant cat and mouse game between advertisers and blockers.
** Set a static IP address
Ensure that your system has a static local IP address (typically 192.168..) using the option on the control panel. You will also need to know the IP address of your internet router, which is usually *192.168.1.1* or *192.168.1.254*.
When that's done select *About this system* from the control panel and see the IPv4 address. You can use this as a DNS address in two ways:
** On each client system within your local network
#+begin_src bash
sudo chattr -i /etc/resolv.conf
sudo nano /etc/resolv.conf
#+end_src
Comment out any existing entries with a # character and add:
#+begin_src bash
nameserver [IPv4 address from the About screen]
#+end_src
Normally /resolv.conf/ will be overwritten every time your reboot, but you can prevent this with:
#+begin_src bash
sudo chattr +i /etc/resolv.conf
#+end_src
** On your internet router
If you can access the settings on your local internet router then this is the simplest way to provide ad blocking for all devices which connect to it. Unfortunately some router models don't let you edit the DNS settings and if that's the case you might want to consider getting a different router.
Edit the DNS settings and add the IPv4 address which you got from the control panel About screen. Exactly how you do this will just depend upon your particular router model. You may also need to set the same address twice, because two addresses are conventional.
*** LibreCMC
On a router running LibreCMC from the *Network* menu select *DHCP and DNS*. Enter the static IP address of your Freedombone system within *DNS Forwardings*, then at the bottom of the page click on *Save & Apply*. Any devices which connect to your router will now have ad blocking.
** Configuring block lists
You can configure the block lists which the system uses by going to the *administrator control panel*, selecting *App Settings* then choosing *pihole*. You can also add any extra domain names to the whitelist if they're being wrongly blocked or to the blacklist if they're not blocked by the current lists.
#+BEGIN_EXPORT html
<center>
Return to the <a href="index.html">home page</a>
</center>
#+END_EXPORT

370
website/EN/app_pihole.html Normal file
View File

@ -0,0 +1,370 @@
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>
<!-- 2016-11-12 Sat 23:53 -->
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title></title>
<meta name="generator" content="Org mode" />
<meta name="author" content="Bob Mottram" />
<meta name="description" content="How to block ads on your network"
/>
<meta name="keywords" content="freedombone, pi-hole, ad blocker" />
<style type="text/css">
<!--/*--><![CDATA[/*><!--*/
.title { text-align: center;
margin-bottom: .2em; }
.subtitle { text-align: center;
font-size: medium;
font-weight: bold;
margin-top:0; }
.todo { font-family: monospace; color: red; }
.done { font-family: monospace; color: green; }
.priority { font-family: monospace; color: orange; }
.tag { background-color: #eee; font-family: monospace;
padding: 2px; font-size: 80%; font-weight: normal; }
.timestamp { color: #bebebe; }
.timestamp-kwd { color: #5f9ea0; }
.org-right { margin-left: auto; margin-right: 0px; text-align: right; }
.org-left { margin-left: 0px; margin-right: auto; text-align: left; }
.org-center { margin-left: auto; margin-right: auto; text-align: center; }
.underline { text-decoration: underline; }
#postamble p, #preamble p { font-size: 90%; margin: .2em; }
p.verse { margin-left: 3%; }
pre {
border: 1px solid #ccc;
box-shadow: 3px 3px 3px #eee;
padding: 8pt;
font-family: monospace;
overflow: auto;
margin: 1.2em;
}
pre.src {
position: relative;
overflow: visible;
padding-top: 1.2em;
}
pre.src:before {
display: none;
position: absolute;
background-color: white;
top: -10px;
right: 10px;
padding: 3px;
border: 1px solid black;
}
pre.src:hover:before { display: inline;}
/* Languages per Org manual */
pre.src-asymptote:before { content: 'Asymptote'; }
pre.src-awk:before { content: 'Awk'; }
pre.src-C:before { content: 'C'; }
/* pre.src-C++ doesn't work in CSS */
pre.src-clojure:before { content: 'Clojure'; }
pre.src-css:before { content: 'CSS'; }
pre.src-D:before { content: 'D'; }
pre.src-ditaa:before { content: 'ditaa'; }
pre.src-dot:before { content: 'Graphviz'; }
pre.src-calc:before { content: 'Emacs Calc'; }
pre.src-emacs-lisp:before { content: 'Emacs Lisp'; }
pre.src-fortran:before { content: 'Fortran'; }
pre.src-gnuplot:before { content: 'gnuplot'; }
pre.src-haskell:before { content: 'Haskell'; }
pre.src-java:before { content: 'Java'; }
pre.src-js:before { content: 'Javascript'; }
pre.src-latex:before { content: 'LaTeX'; }
pre.src-ledger:before { content: 'Ledger'; }
pre.src-lisp:before { content: 'Lisp'; }
pre.src-lilypond:before { content: 'Lilypond'; }
pre.src-lua:before { content: 'Lua'; }
pre.src-matlab:before { content: 'MATLAB'; }
pre.src-mscgen:before { content: 'Mscgen'; }
pre.src-ocaml:before { content: 'Objective Caml'; }
pre.src-octave:before { content: 'Octave'; }
pre.src-org:before { content: 'Org mode'; }
pre.src-oz:before { content: 'OZ'; }
pre.src-plantuml:before { content: 'Plantuml'; }
pre.src-processing:before { content: 'Processing.js'; }
pre.src-python:before { content: 'Python'; }
pre.src-R:before { content: 'R'; }
pre.src-ruby:before { content: 'Ruby'; }
pre.src-sass:before { content: 'Sass'; }
pre.src-scheme:before { content: 'Scheme'; }
pre.src-screen:before { content: 'Gnu Screen'; }
pre.src-sed:before { content: 'Sed'; }
pre.src-sh:before { content: 'shell'; }
pre.src-sql:before { content: 'SQL'; }
pre.src-sqlite:before { content: 'SQLite'; }
/* additional languages in org.el's org-babel-load-languages alist */
pre.src-forth:before { content: 'Forth'; }
pre.src-io:before { content: 'IO'; }
pre.src-J:before { content: 'J'; }
pre.src-makefile:before { content: 'Makefile'; }
pre.src-maxima:before { content: 'Maxima'; }
pre.src-perl:before { content: 'Perl'; }
pre.src-picolisp:before { content: 'Pico Lisp'; }
pre.src-scala:before { content: 'Scala'; }
pre.src-shell:before { content: 'Shell Script'; }
pre.src-ebnf2ps:before { content: 'ebfn2ps'; }
/* additional language identifiers per "defun org-babel-execute"
in ob-*.el */
pre.src-cpp:before { content: 'C++'; }
pre.src-abc:before { content: 'ABC'; }
pre.src-coq:before { content: 'Coq'; }
pre.src-groovy:before { content: 'Groovy'; }
/* additional language identifiers from org-babel-shell-names in
ob-shell.el: ob-shell is the only babel language using a lambda to put
the execution function name together. */
pre.src-bash:before { content: 'bash'; }
pre.src-csh:before { content: 'csh'; }
pre.src-ash:before { content: 'ash'; }
pre.src-dash:before { content: 'dash'; }
pre.src-ksh:before { content: 'ksh'; }
pre.src-mksh:before { content: 'mksh'; }
pre.src-posh:before { content: 'posh'; }
/* Additional Emacs modes also supported by the LaTeX listings package */
pre.src-ada:before { content: 'Ada'; }
pre.src-asm:before { content: 'Assembler'; }
pre.src-caml:before { content: 'Caml'; }
pre.src-delphi:before { content: 'Delphi'; }
pre.src-html:before { content: 'HTML'; }
pre.src-idl:before { content: 'IDL'; }
pre.src-mercury:before { content: 'Mercury'; }
pre.src-metapost:before { content: 'MetaPost'; }
pre.src-modula-2:before { content: 'Modula-2'; }
pre.src-pascal:before { content: 'Pascal'; }
pre.src-ps:before { content: 'PostScript'; }
pre.src-prolog:before { content: 'Prolog'; }
pre.src-simula:before { content: 'Simula'; }
pre.src-tcl:before { content: 'tcl'; }
pre.src-tex:before { content: 'TeX'; }
pre.src-plain-tex:before { content: 'Plain TeX'; }
pre.src-verilog:before { content: 'Verilog'; }
pre.src-vhdl:before { content: 'VHDL'; }
pre.src-xml:before { content: 'XML'; }
pre.src-nxml:before { content: 'XML'; }
/* add a generic configuration mode; LaTeX export needs an additional
(add-to-list 'org-latex-listings-langs '(conf " ")) in .emacs */
pre.src-conf:before { content: 'Configuration File'; }
table { border-collapse:collapse; }
caption.t-above { caption-side: top; }
caption.t-bottom { caption-side: bottom; }
td, th { vertical-align:top; }
th.org-right { text-align: center; }
th.org-left { text-align: center; }
th.org-center { text-align: center; }
td.org-right { text-align: right; }
td.org-left { text-align: left; }
td.org-center { text-align: center; }
dt { font-weight: bold; }
.footpara { display: inline; }
.footdef { margin-bottom: 1em; }
.figure { padding: 1em; }
.figure p { text-align: center; }
.inlinetask {
padding: 10px;
border: 2px solid gray;
margin: 10px;
background: #ffffcc;
}
#org-div-home-and-up
{ text-align: right; font-size: 70%; white-space: nowrap; }
textarea { overflow-x: auto; }
.linenr { font-size: smaller }
.code-highlighted { background-color: #ffff00; }
.org-info-js_info-navigation { border-style: none; }
#org-info-js_console-label
{ font-size: 10px; font-weight: bold; white-space: nowrap; }
.org-info-js_search-highlight
{ background-color: #ffff00; color: #000000; font-weight: bold; }
.org-svg { width: 90%; }
/*]]>*/-->
</style>
<link rel="stylesheet" type="text/css" href="freedombone.css" />
<script type="text/javascript">
/*
@licstart The following is the entire license notice for the
JavaScript code in this tag.
Copyright (C) 2012-2013 Free Software Foundation, Inc.
The JavaScript code in this tag is free software: you can
redistribute it and/or modify it under the terms of the GNU
General Public License (GNU GPL) as published by the Free Software
Foundation, either version 3 of the License, or (at your option)
any later version. The code is distributed WITHOUT ANY WARRANTY;
without even the implied warranty of MERCHANTABILITY or FITNESS
FOR A PARTICULAR PURPOSE. See the GNU GPL for more details.
As additional permission under GNU GPL version 3 section 7, you
may distribute non-source (e.g., minimized or compacted) forms of
that code without the copy of the GNU GPL normally required by
section 4, provided you include this license notice and a URL
through which recipients can access the Corresponding Source.
@licend The above is the entire license notice
for the JavaScript code in this tag.
*/
<!--/*--><![CDATA[/*><!--*/
function CodeHighlightOn(elem, id)
{
var target = document.getElementById(id);
if(null != target) {
elem.cacheClassElem = elem.className;
elem.cacheClassTarget = target.className;
target.className = "code-highlighted";
elem.className = "code-highlighted";
}
}
function CodeHighlightOff(elem, id)
{
var target = document.getElementById(id);
if(elem.cacheClassElem)
elem.className = elem.cacheClassElem;
if(elem.cacheClassTarget)
target.className = elem.cacheClassTarget;
}
/*]]>*///-->
</script>
</head>
<body>
<div id="preamble" class="status">
<a name="top" id="top"></a>
</div>
<div id="content">
<div class="org-center">
<div class="figure">
<p><img src="images/logo.png" alt="logo.png" />
</p>
</div>
</div>
<center>
<h1>PI-Hole: The Black Hole for Web Adverts</h1>
</center>
<p>
Idiots who have an inflated sense of self-entitlement will tell you that it's <i>your moral duty</i> to view their mind-numbingly tedious corporate ads on their web site or YouTube channel, or else their kids will starve and the sky will fall because their revenue stream will dry up. But that's bullshit. There is nothing intrinsic or morally mandatory about adverts propping up the livelihoods of netizens, and indeed a web not primarily based on advertising money might have been a much better and more interesting place by now, with a lot less spying.
</p>
<p>
Not only are web ads annoying, but they can consume a lot of bandwidth, be a privacy problem in terms of allowing companies to track your browsing habits and also any badly written scripts they contain may introduce exploitable security holes. Also if you're poor then adverts often make you want things that you can't have.
</p>
<p>
You can block ads for any devices connected to your local network by installing the <b>pihole</b> app from <b>Add/Remove Apps</b> on the administrator control panel. This may help to improve overall performance of your devices by not wasting time downloading unwanted images or scripts.
</p>
<p>
Also don't expect perfection. Though many ads may be blocked by this system some will still get through. It's a constant cat and mouse game between advertisers and blockers.
</p>
<div id="outline-container-org28ca84b" class="outline-2">
<h2 id="org28ca84b">Set a static IP address</h2>
<div class="outline-text-2" id="text-org28ca84b">
<p>
Ensure that your system has a static local IP address (typically 192.168..) using the option on the control panel. You will also need to know the IP address of your internet router, which is usually <b>192.168.1.1</b> or <b>192.168.1.254</b>.
</p>
<p>
When that's done select <b>About this system</b> from the control panel and see the IPv4 address. You can use this as a DNS address in two ways:
</p>
</div>
</div>
<div id="outline-container-org8d14e27" class="outline-2">
<h2 id="org8d14e27">On each client system within your local network</h2>
<div class="outline-text-2" id="text-org8d14e27">
<div class="org-src-container">
<pre class="src src-bash">sudo chattr -i /etc/resolv.conf
sudo nano /etc/resolv.conf
</pre>
</div>
<p>
Comment out any existing entries with a # character and add:
</p>
<div class="org-src-container">
<pre class="src src-bash">nameserver [IPv4 address from the About screen]
</pre>
</div>
<p>
Normally <i>resolv.conf</i> will be overwritten every time your reboot, but you can prevent this with:
</p>
<div class="org-src-container">
<pre class="src src-bash">sudo chattr +i /etc/resolv.conf
</pre>
</div>
</div>
</div>
<div id="outline-container-orgb95e44f" class="outline-2">
<h2 id="orgb95e44f">On your internet router</h2>
<div class="outline-text-2" id="text-orgb95e44f">
<p>
If you can access the settings on your local internet router then this is the simplest way to provide ad blocking for all devices which connect to it. Unfortunately some router models don't let you edit the DNS settings and if that's the case you might want to consider getting a different router.
</p>
<p>
Edit the DNS settings and add the IPv4 address which you got from the control panel About screen. Exactly how you do this will just depend upon your particular router model. You may also need to set the same address twice, because two addresses are conventional.
</p>
</div>
<div id="outline-container-orge5bdb7f" class="outline-3">
<h3 id="orge5bdb7f">LibreCMC</h3>
<div class="outline-text-3" id="text-orge5bdb7f">
<p>
On a router running LibreCMC from the <b>Network</b> menu select <b>DHCP and DNS</b>. Enter the static IP address of your Freedombone system within <b>DNS Forwardings</b>, then at the bottom of the page click on <b>Save &amp; Apply</b>. Any devices which connect to your router will now have ad blocking.
</p>
</div>
</div>
</div>
<div id="outline-container-org71dabfb" class="outline-2">
<h2 id="org71dabfb">Configuring block lists</h2>
<div class="outline-text-2" id="text-org71dabfb">
<p>
You can configure the block lists which the system uses by going to the <b>administrator control panel</b>, selecting <b>App Settings</b> then choosing <b>pihole</b>. You can also add any extra domain names to the whitelist if they're being wrongly blocked or to the blacklist if they're not blocked by the current lists.
</p>
<center>
Return to the <a href="index.html">home page</a>
</center>
</div>
</div>
</div>
<div id="postamble" class="status">
<style type="text/css">
.back-to-top {
position: fixed;
bottom: 2em;
right: 0px;
text-decoration: none;
color: #000000;
background-color: rgba(235, 235, 235, 0.80);
font-size: 12px;
padding: 1em;
display: none;
}
.back-to-top:hover {
background-color: rgba(135, 135, 135, 0.50);
}
</style>
<div class="back-to-top">
<a href="#top">Back to top</a> | <a href="mailto:bob@freedombone.net">E-mail me</a>
</div>
</div>
</body>
</html>

View File

@ -3,7 +3,7 @@
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>
<!-- 2016-11-12 Sat 23:35 -->
<!-- 2016-11-12 Sat 23:55 -->
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title></title>
@ -257,9 +257,9 @@ The base install of the system just contains an email server and Mutt client, bu
</div>
</div>
<div id="outline-container-orgcf12a1b" class="outline-2">
<h2 id="orgcf12a1b">DLNA</h2>
<div class="outline-text-2" id="text-orgcf12a1b">
<div id="outline-container-org7421d9d" class="outline-2">
<h2 id="org7421d9d">DLNA</h2>
<div class="outline-text-2" id="text-org7421d9d">
<p>
Enables you to use the system as a music server which any DLNA compatible devices can connect to within your home network.
</p>
@ -269,45 +269,45 @@ Enables you to use the system as a music server which any DLNA compatible device
</p>
</div>
</div>
<div id="outline-container-org0b3f3a7" class="outline-2">
<h2 id="org0b3f3a7">Dokuwiki</h2>
<div class="outline-text-2" id="text-org0b3f3a7">
<div id="outline-container-org58f1d67" class="outline-2">
<h2 id="org58f1d67">Dokuwiki</h2>
<div class="outline-text-2" id="text-org58f1d67">
<p>
A databaseless wiki system.
</p>
</div>
</div>
<div id="outline-container-orga5ddc93" class="outline-2">
<h2 id="orga5ddc93">Emacs</h2>
<div class="outline-text-2" id="text-orga5ddc93">
<div id="outline-container-orge1f387f" class="outline-2">
<h2 id="orge1f387f">Emacs</h2>
<div class="outline-text-2" id="text-orge1f387f">
<p>
If you use the Mutt client to read your email then this will set it up to use emacs for composing new mail.
</p>
</div>
</div>
<div id="outline-container-orge763528" class="outline-2">
<h2 id="orge763528">Etherpad</h2>
<div class="outline-text-2" id="text-orge763528">
<div id="outline-container-org0559d3b" class="outline-2">
<h2 id="org0559d3b">Etherpad</h2>
<div class="outline-text-2" id="text-org0559d3b">
<p>
Collaborate on creating documents in real time. Maybe you're planning a holiday with other family members or creating documentation for a Free Software project along with other volunteers. Etherpad is hard to beat for simplicity and speed. Only users of the system will be able to access it.
</p>
</div>
</div>
<div id="outline-container-orga6006b6" class="outline-2">
<h2 id="orga6006b6">Ghost</h2>
<div class="outline-text-2" id="text-orga6006b6">
<div id="outline-container-orgb6146c1" class="outline-2">
<h2 id="orgb6146c1">Ghost</h2>
<div class="outline-text-2" id="text-orgb6146c1">
<p>
Modern looking blogging system.
</p>
</div>
</div>
<div id="outline-container-org13ba239" class="outline-2">
<h2 id="org13ba239">GNU Social</h2>
<div class="outline-text-2" id="text-org13ba239">
<div id="outline-container-org8e40628" class="outline-2">
<h2 id="org8e40628">GNU Social</h2>
<div class="outline-text-2" id="text-org8e40628">
<p>
Federated social network. You can "<i>remote follow</i>" other users within the GNU Social federation.
</p>
@ -317,9 +317,9 @@ Federated social network. You can "<i>remote follow</i>" other users within the
</p>
</div>
</div>
<div id="outline-container-orgc2d3fa7" class="outline-2">
<h2 id="orgc2d3fa7">Gogs</h2>
<div class="outline-text-2" id="text-orgc2d3fa7">
<div id="outline-container-orgacbd4ad" class="outline-2">
<h2 id="orgacbd4ad">Gogs</h2>
<div class="outline-text-2" id="text-orgacbd4ad">
<p>
Lightweight git project hosting system. You can mirror projects from Github, or if Github turns evil then just host your own projects while retaining the familiar <i>fork-and-pull</i> workflow. If you can use Github then you can also use Gogs.
</p>
@ -329,18 +329,18 @@ Lightweight git project hosting system. You can mirror projects from Github, or
</p>
</div>
</div>
<div id="outline-container-orgd8a4cbe" class="outline-2">
<h2 id="orgd8a4cbe">HTMLy</h2>
<div class="outline-text-2" id="text-orgd8a4cbe">
<div id="outline-container-orgab62aa3" class="outline-2">
<h2 id="orgab62aa3">HTMLy</h2>
<div class="outline-text-2" id="text-orgab62aa3">
<p>
Databaseless blogging system. Quite simple and with a markdown-like format.
</p>
</div>
</div>
<div id="outline-container-org82e592b" class="outline-2">
<h2 id="org82e592b">Hubzilla</h2>
<div class="outline-text-2" id="text-org82e592b">
<div id="outline-container-orgc4baeb0" class="outline-2">
<h2 id="orgc4baeb0">Hubzilla</h2>
<div class="outline-text-2" id="text-orgc4baeb0">
<p>
Web publishing platform with social network like features and good privacy controls so that it's possible to specify who can see which content. Includes photo albums, calendar, wiki and file storage.
</p>
@ -350,9 +350,9 @@ Web publishing platform with social network like features and good privacy contr
</p>
</div>
</div>
<div id="outline-container-org49bea85" class="outline-2">
<h2 id="org49bea85">IRC Server (ngirc)</h2>
<div class="outline-text-2" id="text-org49bea85">
<div id="outline-container-org5f5f040" class="outline-2">
<h2 id="org5f5f040">IRC Server (ngirc)</h2>
<div class="outline-text-2" id="text-org5f5f040">
<p>
Run your own IRC chat channel which can be secured with a password and accessible via an onion address. A bouncer is included so that you can receive messages sent while you were offline. Works with Hexchat and other popular clients.
</p>
@ -362,36 +362,36 @@ Run your own IRC chat channel which can be secured with a password and accessibl
</p>
</div>
</div>
<div id="outline-container-orga475600" class="outline-2">
<h2 id="orga475600">Jitsi Meet</h2>
<div class="outline-text-2" id="text-orga475600">
<div id="outline-container-org260331a" class="outline-2">
<h2 id="org260331a">Jitsi Meet</h2>
<div class="outline-text-2" id="text-org260331a">
<p>
Experimental WebRTC video conferencing system, similar to Google Hangouts. This may not be fully functional, but is hoped to be in the near future.
</p>
</div>
</div>
<div id="outline-container-orgc7ea2a9" class="outline-2">
<h2 id="orgc7ea2a9">Lychee</h2>
<div class="outline-text-2" id="text-orgc7ea2a9">
<div id="outline-container-orgf68ab87" class="outline-2">
<h2 id="orgf68ab87">Lychee</h2>
<div class="outline-text-2" id="text-orgf68ab87">
<p>
Make your photo albums available on the web.
</p>
</div>
</div>
<div id="outline-container-org17c21ac" class="outline-2">
<h2 id="org17c21ac">Mailpile</h2>
<div class="outline-text-2" id="text-org17c21ac">
<div id="outline-container-orge94d452" class="outline-2">
<h2 id="orge94d452">Mailpile</h2>
<div class="outline-text-2" id="text-orge94d452">
<p>
Modern email client which supports GPG encryption.
</p>
</div>
</div>
<div id="outline-container-org3e493c2" class="outline-2">
<h2 id="org3e493c2">Mumble</h2>
<div class="outline-text-2" id="text-org3e493c2">
<div id="outline-container-org0bee57f" class="outline-2">
<h2 id="org0bee57f">Mumble</h2>
<div class="outline-text-2" id="text-org0bee57f">
<p>
The popular VoIP and text chat system. Say goodbye to old-fashioned telephony conferences with silly dial codes. Also works well on mobile.
</p>
@ -401,36 +401,39 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
</p>
</div>
</div>
<div id="outline-container-org1d90f71" class="outline-2">
<h2 id="org1d90f71">PI-Hole</h2>
<div class="outline-text-2" id="text-org1d90f71">
<div id="outline-container-orgc15315b" class="outline-2">
<h2 id="orgc15315b">PI-Hole</h2>
<div class="outline-text-2" id="text-orgc15315b">
<p>
The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
</p>
</div>
</div>
<div id="outline-container-org9eb5a1b" class="outline-2">
<h2 id="org9eb5a1b">PostActiv</h2>
<div class="outline-text-2" id="text-org9eb5a1b">
<p>
<a href="./app_pihole.html">How to use it</a>
</p>
</div>
</div>
<div id="outline-container-org6bc9364" class="outline-2">
<h2 id="org6bc9364">PostActiv</h2>
<div class="outline-text-2" id="text-org6bc9364">
<p>
An alternative federated social networking system compatible with GNU Social. It includes some optimisations and fixes currently not available within the main GNU Social project.
</p>
</div>
</div>
<div id="outline-container-org8d87175" class="outline-2">
<h2 id="org8d87175">Radicale</h2>
<div class="outline-text-2" id="text-org8d87175">
<div id="outline-container-orga002dd9" class="outline-2">
<h2 id="orga002dd9">Radicale</h2>
<div class="outline-text-2" id="text-orga002dd9">
<p>
Calendar system compatible with CalDAV and CardDAV. Manage your calendar events easily across all your devices.
</p>
</div>
</div>
<div id="outline-container-org38c229e" class="outline-2">
<h2 id="org38c229e">tt-rss</h2>
<div class="outline-text-2" id="text-org38c229e">
<div id="outline-container-org9522328" class="outline-2">
<h2 id="org9522328">tt-rss</h2>
<div class="outline-text-2" id="text-org9522328">
<p>
Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via an onion address. Have "<i>the right to read</i>" without the Surveillance State knowing what you're reading. Also available with a user interface suitable for viewing on mobile devices via a browser such as OrFox.
</p>
@ -440,9 +443,9 @@ Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via a
</p>
</div>
</div>
<div id="outline-container-org621979d" class="outline-2">
<h2 id="org621979d">Syncthing</h2>
<div class="outline-text-2" id="text-org621979d">
<div id="outline-container-org65b16ab" class="outline-2">
<h2 id="org65b16ab">Syncthing</h2>
<div class="outline-text-2" id="text-org65b16ab">
<p>
Possibly the best way to synchronise files across all of your devices. Once it has been set up it "just works" with no user intervention needed.
</p>
@ -452,9 +455,9 @@ Possibly the best way to synchronise files across all of your devices. Once it h
</p>
</div>
</div>
<div id="outline-container-orgf5ad294" class="outline-2">
<h2 id="orgf5ad294">Tox</h2>
<div class="outline-text-2" id="text-orgf5ad294">
<div id="outline-container-org5f38fc1" class="outline-2">
<h2 id="org5f38fc1">Tox</h2>
<div class="outline-text-2" id="text-org5f38fc1">
<p>
Client and bootstrap node for the Tox chat/VoIP system.
</p>
@ -464,18 +467,18 @@ Client and bootstrap node for the Tox chat/VoIP system.
</p>
</div>
</div>
<div id="outline-container-org19b02df" class="outline-2">
<h2 id="org19b02df">Vim</h2>
<div class="outline-text-2" id="text-org19b02df">
<div id="outline-container-org6e9440c" class="outline-2">
<h2 id="org6e9440c">Vim</h2>
<div class="outline-text-2" id="text-org6e9440c">
<p>
If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
</p>
</div>
</div>
<div id="outline-container-org01cda7f" class="outline-2">
<h2 id="org01cda7f">XMPP</h2>
<div class="outline-text-2" id="text-org01cda7f">
<div id="outline-container-orga7ecbfe" class="outline-2">
<h2 id="orga7ecbfe">XMPP</h2>
<div class="outline-text-2" id="text-orga7ecbfe">
<p>
Chat server which can be used together with client such as Gajim or Conversations to provide end-to-end content security and also onion routed metadata security. Includes advanced features such as <i>client state notification</i> to save battery power on your mobile devices, support for seamless roaming between networks and <i>message carbons</i> so that you can receive the same messages while being simultaneously logged in to your account on more than one device.
</p>

View File

@ -3,7 +3,7 @@
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>
<!-- 2016-11-12 Sat 23:35 -->
<!-- 2016-11-12 Sat 23:54 -->
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title></title>
@ -255,15 +255,15 @@ for the JavaScript code in this tag.
</colgroup>
<tbody>
<tr>
<td class="org-left"><a href="#org78e8ebf">Readme</a></td>
<td class="org-left"><a href="#org8a8dd7e">Readme</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgef4badc">Improving ssh security</a></td>
<td class="org-left"><a href="#org96f2f29">Improving ssh security</a></td>
</tr>
<tr>
<td class="org-left"><a href="#org09b8978">Administrating the system via an onion address (Tor)</a></td>
<td class="org-left"><a href="#orgac36f9a">Administrating the system via an onion address (Tor)</a></td>
</tr>
<tr>
@ -315,18 +315,18 @@ for the JavaScript code in this tag.
</tr>
<tr>
<td class="org-left"><a href="#org3e5b626">Adding or removing users</a></td>
<td class="org-left"><a href="#orgaf5eee1">Adding or removing users</a></td>
</tr>
<tr>
<td class="org-left"><a href="#org576f971">Blocking Ads</a></td>
<td class="org-left"><a href="./app_pihole.html">Blocking Ads</a></td>
</tr>
</tbody>
</table>
<div id="outline-container-org78e8ebf" class="outline-2">
<h2 id="org78e8ebf">Readme</h2>
<div class="outline-text-2" id="text-org78e8ebf">
<div id="outline-container-org8a8dd7e" class="outline-2">
<h2 id="org8a8dd7e">Readme</h2>
<div class="outline-text-2" id="text-org8a8dd7e">
<p>
After the system has installed a README file will be generated which contains passwords and some brief advice on using the installed systems. You can read this with the following commands:
</p>
@ -346,9 +346,9 @@ To exit you can either just close the terminal or use <b>CTRL-x CTRL-c</b> follo
</p>
</div>
</div>
<div id="outline-container-orgef4badc" class="outline-2">
<h2 id="orgef4badc">Improving ssh security</h2>
<div class="outline-text-2" id="text-orgef4badc">
<div id="outline-container-org96f2f29" class="outline-2">
<h2 id="org96f2f29">Improving ssh security</h2>
<div class="outline-text-2" id="text-org96f2f29">
<p>
To improve ssh security you can generate an ssh key pair on your system and then upload the public key to the Freedombone.
</p>
@ -398,9 +398,9 @@ If you wish to only use ssh keys then log in to the Freedombone, become the root
</div>
</div>
<div id="outline-container-org09b8978" class="outline-2">
<h2 id="org09b8978">Administrating the system via an onion address (Tor)</h2>
<div class="outline-text-2" id="text-org09b8978">
<div id="outline-container-orgac36f9a" class="outline-2">
<h2 id="orgac36f9a">Administrating the system via an onion address (Tor)</h2>
<div class="outline-text-2" id="text-orgac36f9a">
<p>
You can also access your system via the Tor system using an onion address. To find out what the onion address for ssh access is you can do the following:
</p>
@ -442,9 +442,9 @@ Subsequently even if dynamic DNS isn't working you may still be able to administ
</p>
</div>
</div>
<div id="outline-container-org3e5b626" class="outline-2">
<h2 id="org3e5b626">Adding or removing users</h2>
<div class="outline-text-2" id="text-org3e5b626">
<div id="outline-container-orgaf5eee1" class="outline-2">
<h2 id="orgaf5eee1">Adding or removing users</h2>
<div class="outline-text-2" id="text-orgaf5eee1">
<p>
Log into the system with:
</p>
@ -471,102 +471,6 @@ control
</div>
</div>
</div>
<div id="outline-container-org576f971" class="outline-2">
<h2 id="org576f971">Blocking Ads</h2>
<div class="outline-text-2" id="text-org576f971">
<p>
Everyone except for advertisers hates adverts. Not only are they annoying, but they can consume a lot of bandwidth, be a privacy problem in terms of allowing companies to track your browsing habits and also any badly written scripts they contain may introduce exploitable security holes. Also if you're poor then adverts often make you want things that you can't have.
</p>
<p>
You can block ads for any devices connected to your local network by installing the <b>pihole</b> app from <b>Add/Remove Apps</b> on the administrator control panel. This may help to improve overall performance of your devices by not wasting time downloading unwanted images or scripts.
</p>
<p>
Also don't expect perfection. Though many ads may be blocked by this system some will still get through. It's a constant cat and mouse game between advertisers and blockers.
</p>
</div>
<div id="outline-container-org280f5db" class="outline-3">
<h3 id="org280f5db">Set a static IP address</h3>
<div class="outline-text-3" id="text-org280f5db">
<p>
Ensure that your system has a static local IP address (typically 192.168..) using the option on the control panel. You will also need to know the IP address of your internet router, which is usually <b>192.168.1.1</b> or <b>192.168.1.254</b>.
</p>
<p>
When that's done select <b>About this system</b> from the control panel and see the IPv4 address. You can use this as a DNS address in two ways:
</p>
</div>
</div>
<div id="outline-container-orgfdc8d62" class="outline-3">
<h3 id="orgfdc8d62">On each client system within your local network</h3>
<div class="outline-text-3" id="text-orgfdc8d62">
<div class="org-src-container">
<pre class="src src-bash">sudo chattr -i /etc/resolv.conf
sudo nano /etc/resolv.conf
</pre>
</div>
<p>
Comment out any existing entries with a # character and add:
</p>
<div class="org-src-container">
<pre class="src src-bash">nameserver [IPv4 address from the About screen]
</pre>
</div>
<p>
Normally <i>resolv.conf</i> will be overwritten every time your reboot, but you can prevent this with:
</p>
<div class="org-src-container">
<pre class="src src-bash">sudo chattr +i /etc/resolv.conf
</pre>
</div>
</div>
</div>
<div id="outline-container-orga97bbac" class="outline-3">
<h3 id="orga97bbac">On your internet router</h3>
<div class="outline-text-3" id="text-orga97bbac">
<p>
If you can access the settings on your local internet router then this is the simplest way to provide ad blocking for all devices which connect to it. Unfortunately some router models don't let you edit the DNS settings and if that's the case you might want to consider getting a different router.
</p>
<p>
Edit the DNS settings and add the IPv4 address which you got from the control panel About screen. Exactly how you do this will just depend upon your particular router model. You may also need to set the same address twice, because two addresses are conventional.
</p>
</div>
<div id="outline-container-org36b29b4" class="outline-4">
<h4 id="org36b29b4">LibreCMC</h4>
<div class="outline-text-4" id="text-org36b29b4">
<p>
On a router running LibreCMC from the <b>Network</b> menu select <b>DHCP and DNS</b>. Enter the static IP address of your Freedombone system within <b>DNS Forwardings</b>, then at the bottom of the page click on <b>Save &amp; Apply</b>. Any devices which connect to your router will now have ad blocking.
</p>
</div>
</div>
</div>
<div id="outline-container-orge945f94" class="outline-3">
<h3 id="orge945f94">Configuring block lists</h3>
<div class="outline-text-3" id="text-orge945f94">
<p>
You can configure the block lists which the system uses by going to the <b>administrator control panel</b>, selecting <b>App Settings</b> then choosing <b>pihole</b>. You can also add any extra domain names to the whitelist if they're being wrongly blocked or to the blacklist if they're not blocked by the current lists.
</p>
<center>
Return to the <a href="index.html">home page</a>
</center>
</div>
</div>
</div>
</div>
<div id="postamble" class="status">