-Since many of the systems on the Freedombone are web based your choice of operating system for laptops or desktop machines doesn't matter all that much, but some version of GNU/Linux or on mobile devices Android/Cyanogenmod is recommended. Microsoft Windows may be fine for playing games and other trivia but do not use it for any serious private communications or data storage purpose. If you are a journalist, political activist, systems administrator or other professional with a need for confidentiality then using Microsoft Windows will put yourself and your sources, colleages or other group members at heightened risk of surveillance. -
-Port 465 is used for SMTP and this is supposedly deprecated for secure email. However, using TLS from the start of the communications seems far more secure than starting off with insecure communications and then trying to upgrade it with a command to begin TLS, as happens with STARTTLS. There are possible attacks against STARTTLS in which the command to begin secure communications is removed or overwritten which could then result in email being transferred in plain text over the internet and be readable by third parties.
If you didn't use existing GPG keys during the Freedombone installation then you'll need to add a password to your newly generated private key. This is highly recommended. Go through the following sequence of commands to ssh into the Freedombone and then change your GPG password.
@@ -262,9 +254,9 @@ Having a password on your GPG key will prevent someone from reading your email <If you havn't already then you should publish your GPG public key so that others can find it.
@@ -278,9 +270,9 @@ gpg --send-keys username@domainnameMutt is a terminal based email client which comes already installed onto the Freedombone. To access it you'll need to access it via ssh with:
@@ -423,9 +415,9 @@ When reading emails you will initially need to enter your GPG password. It willAnother common way in which you may want to access email is via Thunderbird. This may be especially useful if you're trying to convert former Windows users who may previously have been using some version of Outlook.
@@ -435,9 +427,9 @@ The following instructions should be carried out on the client machines (laptop,Install Thunderbird and Enigmail. How you do this just depends upon your distro and software manager or "app store".
@@ -496,17 +488,18 @@ Select "yes" to change default settings.On the Freedombone export your GPG public and private keys.
gpg --output ~/public_key.gpg --armor --export KEY_ID +ssh username@domainname -p 2222 +gpg --list-keys username@domainname +gpg --output ~/public_key.gpg --armor --export KEY_ID gpg --output ~/private_key.gpg --armor --export-secret-key KEY_ID
Click on the Thunderbird menu, which looks like three horizontal bars on the right hand side.
@@ -583,9 +576,9 @@ Get into the habit of using email encryption and encourage others to do so. RemBy default you won't be able to see any folders which you may have created earlier using the mailinglistrule script. To make folders visible select:
@@ -601,17 +594,17 @@ Make sure that "show only subscribed folders" is not checked. Then clickNOTE: Currently the K9 email client will not work with the Freedombone since it doesn't support PGP/MIME encoding. However, there is development work taking place on that feature and it is hoped that K9 may be usable in the near future.
To view any new folders which you may have created using the mailinglistrule script from your inbox press the K9 icon at the top left to access folders, then press the menu button and select refresh folder list.
@@ -667,9 +660,9 @@ If your folder still doesn't show up then press the menu button, select <To subscribe to a mailing list so that it appears within Mutt or Thunderbird.
@@ -687,9 +680,9 @@ The subject tag should be the word or phrase which appears within the brackets iSimilar to adding mailing list folders you can also add specified email addresses into a folder.
@@ -709,9 +702,9 @@ The mailing list name should be something short so that it is readable within thIf you want to set up a public mailing list then when installing the system remember to set the PUBLIC_MAILING_LIST variable within freedombone.cfg to the name of your list. The name should have no spaces in it. Public mailing lists are unencrypted so anyone will be able to read the contents, including non subscribers.
@@ -731,12 +724,12 @@ Tip: When using the Mutt email client if you want to send an email in cleartextWithin a browser go to your owncloud domain, then create an administrator account. The username and password can be anything, and ideally should be generated from a password manager.
@@ -780,9 +773,9 @@ Log out from the administrator account and then log back in as the user you justWithin F-droid search for owncloud and install the client. Also install CalDAV Sync Adapter.
@@ -806,9 +799,9 @@ You will also be prompted to enter login details. Your Android and Owncloud caleOpen your software center and search for "owncloud client". Enter your owncloud domain name (with the https prefix) and login details.
@@ -819,12 +812,12 @@ You can now drag files into the ~/owncloud directory and they will automaAn easy way to play music on any mobile device in your home is to use the DLNA service. Copy your music into a directory called "Music" on a USB thumb drive and then insert it into from socket on the Beaglebone.
@@ -864,9 +857,9 @@ The DLNA service will only work within your local home network, and isn't remoteThe main advantage of playing music via Owncloud is that you can do that from anywhere - not only within your home network.
@@ -878,12 +871,12 @@ By default a music player is installed into Owncloud, so all you need to do is tTo set up your microblog go to:
@@ -991,12 +984,12 @@ When the install is complete you will see a lot of warnings but just ignore thosYou will need to have a non self-signed SSL certificate in order to use Red Matrix. Put the public certificate in /etc/ssl/certs/yourredmatrixdomainname.crt and the private certificate in /etc/ssl/private/yourredmatrixdomainname.key. If there is an intermediate certificate needed (such as with StartSSL) then this will need to be concatenated onto the end of the crt file, like this:
@@ -1013,9 +1006,9 @@ Then change ssl_certificate to /etc/ssl/certs/yourredmatrixdomainname.bundle.Visit the URL of your Red Matrix site and you should be taken through the rest of the installation procedure. Note that this may take a few minutes so don't be concerned if it looks as if it has crashed - just leave it running.
@@ -1026,19 +1019,19 @@ When installation is complete you can register a new user.IRC is useful for multi-user chat. The classic use case is for software development where many engineers might need to coordinate their activities, but it's also useful for meetings, parties and general socialising.
If you are using the XChat client:
@@ -1090,12 +1083,12 @@ Click close and then connect.To add a user:
@@ -1154,9 +1147,9 @@ prosodyctl statusJitsi is the recommended communications client for desktop or laptop systems, since it includes the off the record (OTR) feature which provides some additional security beyond the usual SSL certificates.
@@ -1186,9 +1179,9 @@ You can also see this videThe default XMPP client in Ubuntu is Empathy. Using Empathy isn't as secure as using Jitsi, since it doesn't include the off the record feature, but since it's the default it's what many users will have easy access to.
@@ -1206,9 +1199,9 @@ Click on Advanced and make sure that Encryption required and IgInstall F-Droid