Email instructions
This commit is contained in:
parent
f29320ce38
commit
c9bdc17190
186
usage.org
186
usage.org
|
@ -8,8 +8,184 @@
|
|||
[[./images/logo.png]]
|
||||
#+END_CENTER
|
||||
|
||||
| [[Using Email]] | [[Play Music]] | [[Syncing to the Cloud]] | [[Microblogging]] | [[Social Network]] | [[Chat Services]] |
|
||||
|
||||
* Email
|
||||
* Using Email
|
||||
** A technical note about email transport security
|
||||
Currently port 465 is used for SMTP. This port is supposedly deprecated for secure email. However, using TLS from the start of the communications seems far more secure than starting off with insecure communications and then trying to upgrade it with a command to begin TLS, as happens with STARTTLS. There are possible attacks against STARTTLS in which the command to begin secure communications is removed or overwritten which could then result in email being transferred in plain text over the internet and be readable by third parties.
|
||||
** Add a password to your GPG key
|
||||
If you didn't use existing GPG keys during the Freedombone installation then you'll need to add a password to your newly generated private key. This is highly recommended. Go through the following sequence of commands to ssh into the Freedombone and then change your GPG password.
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
ssh username@domainname -p 2222
|
||||
gpg --edit-key username@domain
|
||||
passwd
|
||||
save
|
||||
quit
|
||||
exit
|
||||
#+END_SRC
|
||||
|
||||
Having a password on your GPG key will prevent someone from reading your email /even if your server gets lost or stolen/ or if someone else has physical access to it. Make the password something long and unlikely to be guessable or vulnerable to a brute force [[http://en.wikipedia.org/wiki/Dictionary_attack][dictionary attack]].
|
||||
|
||||
** Publishing your GPG public key
|
||||
If you havn't already then you should publish your GPG public key so that others can find it.
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
ssh username@domainname -p 2222
|
||||
gpg --send-keys username@domainname
|
||||
exit
|
||||
#+END_SRC
|
||||
** Mutt email client
|
||||
Mutt is a terminal based email client which comes already installed onto the Freedombone. To access it you'll need to access it via ssh with:
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
ssh username@domainname -p 2222
|
||||
#+END_SRC
|
||||
|
||||
If you're using Windows there is an ssh client called putty, on Linux just open a terminal and enter the above command with your username and domain name. On Android you can use the ConnectBot app with the hostname *username@domain:2222*
|
||||
|
||||
Once you have logged in via ssh then just type *mutt*. Like most terminal programs mutt is quite easy once you've learned the main keys.
|
||||
|
||||
Some useful keys to know are:
|
||||
|
||||
| "/" | Search for text within headers |
|
||||
| * | Move to the last message |
|
||||
| TAB | Move to the next unread message |
|
||||
| d | Delete a message |
|
||||
| u | Undelete a mail which is pending deletion |
|
||||
| $ | Delete all messages selected and check for new messages |
|
||||
| a | Add to the address book |
|
||||
| m | Send a new mail |
|
||||
| ESC-m | Mark all messages as having been read |
|
||||
| S | Mark a message as spam |
|
||||
| H | Mark a message as ham |
|
||||
| CTRL-b | Toggle side bar on/off |
|
||||
| CTRL-n | Next mailbox (on side bar) |
|
||||
| CTRL-p | Previous mailbox (on side bar) |
|
||||
| CTRL-o | Open mailbox (on side bar) |
|
||||
| ] | Expand or collapse all threads |
|
||||
| [ | Expand of collapse the current thread |
|
||||
| CTRL-k | Import a PGP/GPG public key |
|
||||
| q | Quit |
|
||||
|
||||
To use the address book system open an email by pressing the enter key on it and then to add the sender to the address list press the A key. It will ask you for an alias which may be used the next time you want to send a mail. Alternatively you may just edit the *~/.mutt-alias* file directly to add email addresses.
|
||||
|
||||
One of the most common things which you might wish to do is to send an email. To do this first press /m/ to create a new message. Enter the address to send to and the subject, then after a few seconds the Emacs editor will appear with a blank document. Type your email then press /CTRL-x CTRL-s/ to save it and /CTRL-x CTRL-c/ to exit. You will then see a summary of the email to be sent out. Press /y/ to send it and then enter your GPG key passphrase (the one you gave when creating a PGP/GPG key). The purpose of that is to add a signature which is a strong proof that the email was written by you and not by someone else.
|
||||
|
||||
When reading emails you will initially need to enter your GPG password. It will be retained in RAM for a while afterwards.
|
||||
|
||||
** Thunderbird
|
||||
Another common way in which you may want to access email is via Thunderbird. This may be especially useful if you're trying to convert former Windows users who may previously have been using some version of Outlook.
|
||||
|
||||
The following instructions should be carried out on the client machines (laptop, etc), not on the BBB itself.
|
||||
|
||||
*** Initial setup
|
||||
|
||||
Install *Thunderbird* and *Enigmail*. How you do this just depends upon your distro and software manager or "app store".
|
||||
|
||||
Open Thinderbird
|
||||
|
||||
Select "*Skip this and use existing email*"
|
||||
|
||||
Enter your name, email address (myusername@mydomainname.com) and the password for your user (the one from [[Add a user]]).
|
||||
|
||||
You'll get a message saying "/Thunderbird failed to find the settings/"
|
||||
|
||||
The settings should be as follows, substituting /mydomainname.com/ for your domain name and /myusername/ for the username given previously in [[Add a user]].
|
||||
|
||||
* Incoming: IMAP, mydomainname.com, 993, SSL/TLS, Normal Password
|
||||
* Outgoing: SMTP, mydomainname.com, 465, SSL/TLS, Normal Password
|
||||
* Username: myusername
|
||||
|
||||
Click *Done*.
|
||||
|
||||
Click *Get Certificate* and make sure "*permanently store this exception*" is selected", then click *Store Security Exception*.
|
||||
|
||||
From OpenPGP setup select "*Yes, I would like the wizard to get me started*". If the wizard doesn't start automatically then "setup wizard" can be selected from OpenPGP on the menu bar.
|
||||
|
||||
Select "*Yes, I want to sign all of my email*"
|
||||
|
||||
Select "*No, I will create per-recipient rules*"
|
||||
|
||||
Select "*yes*" to change default settings.
|
||||
|
||||
*** Import your GPG keys
|
||||
|
||||
On the Freedombone export your GPG public and private keys.
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
gpg --output ~/public_key.gpg --armor --export KEY_ID
|
||||
gpg --output ~/private_key.gpg --armor --export-secret-key KEY_ID
|
||||
#+END_SRC
|
||||
|
||||
On your laptop or desktop you can import the keys with:
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
scp -P 2222 username@domain:/home/username/*.gpg ~/
|
||||
#+END_SRC
|
||||
|
||||
Select "*I have existing public and private keys*".
|
||||
|
||||
Select your public and private GPG exported key files.
|
||||
|
||||
Select the account which you want to use and click *Next*, *Next* and *Finish*.
|
||||
|
||||
Remove your exported key files, both on your laptop/desktop and also on the Freedombone.
|
||||
|
||||
#+BEGIN_SRC bash
|
||||
shred -zu ~/public_key.gpg
|
||||
shred -zu ~/private_key.gpg
|
||||
#+END_SRC
|
||||
|
||||
*** Using for the first time
|
||||
|
||||
Click on the Thunderbird menu, which looks like three horizontal bars on the right hand side.
|
||||
|
||||
Hover over *preferences* and then *Account settings*.
|
||||
|
||||
Select *OpenPGP Security* and make sure that *use PGP/MIME by default* is ticked. This will enable you to sign/encrypt attachments, HTML bodies and UTF-8 without any problems.
|
||||
|
||||
Select *Synchronization & Storage*.
|
||||
|
||||
Make sure that *Keep messages for this account on this computer* is unticked, then click *Ok*.
|
||||
|
||||
Click on *Inbox*. Depending upon how much email you have it may take a while to import the subject lines.
|
||||
|
||||
Note that when sending an email for the first time you will also need to accept the SSL certificate.
|
||||
|
||||
Get into the habit of using email encryption and encourage others to do so. Remember that you may not think that your emails are very interesting but the Surveillance State is highly interested in them and will be actively trying to data mine your private life looking for "suspicious" patterns, regardless of whether you are guilty of any crime or not.
|
||||
|
||||
*** Making folders visible
|
||||
By default you won't be able to see any folders which you may have created earlier using the /mailinglistrule/ script. To make folders visible select:
|
||||
|
||||
*Menu*, hover over *Preferences*, select *Account Settings*, select *Server Settings* then click on the *Advanced* button.
|
||||
|
||||
Make sure that "*show only subscribed folders*" is not checked. Then click the *ok* buttons. Folders will be re-scanned, which may take some time depending upon how much email you have, but your folders will then appear.
|
||||
|
||||
** K9 Android client
|
||||
*NOTE*: Currently the K9 email client will not work with the Freedombone since it doesn't support PGP/MIME encoding. However, there is development work taking place on that feature and it is hoped that K9 may be usable in the near future.
|
||||
|
||||
*** Incoming server settings
|
||||
* Select settings/account settings
|
||||
* Select Fetching mail/incoming server
|
||||
* Enter your username and password
|
||||
* IMAP server should be your domain name
|
||||
* Security: SSL/TLS (always)
|
||||
* Authentication: Plain
|
||||
* Port: 993
|
||||
*** Outgoing (SMTP) server settings
|
||||
* Select settings/account settings
|
||||
* Select Sending mail/outgoing server
|
||||
* Set SMTP server to your domain name
|
||||
* Set Security to SSL/TLS (always)
|
||||
* Set port to 465
|
||||
* Set authentication to PLAIN
|
||||
* Enter your username and password
|
||||
* Accept the SSL certificate
|
||||
*** Folders
|
||||
To view any new folders which you may have created using the /mailinglistrule/ script from your inbox press the *K9 icon* at the top left to access folders, then press the *menu button* and select *refresh folder list*.
|
||||
|
||||
If your folder still doesn't show up then press the *menu button*, select *show folders* and select *all folders*.
|
||||
|
||||
* Play Music
|
||||
** With the DLNA service
|
||||
|
@ -38,3 +214,11 @@ The DLNA service will only work within your local home network, and isn't remote
|
|||
The main advantage of playing music via Owncloud is that you can do that from anywhere - not only within your home network.
|
||||
|
||||
By default a music player is installed into Owncloud, so all you need to do is to visit your Owncloud web site, select the *music* directory and then upload some music files. Afterwards you can select the *music icon* from the top left drop down menu and albums will then appear which can be played. If you want to share music with other users then you can select the *share* option from within the files view to make the tracks available.
|
||||
|
||||
* Syncing to the Cloud
|
||||
|
||||
* Microblogging
|
||||
|
||||
* Social Network
|
||||
|
||||
* Chat Services
|
||||
|
|
Loading…
Reference in New Issue