diff --git a/doc/EN/app_privatebin.org b/doc/EN/app_privatebin.org
new file mode 100644
index 00000000..eb5d5f3e
--- /dev/null
+++ b/doc/EN/app_privatebin.org
@@ -0,0 +1,32 @@
+#+TITLE:
+#+AUTHOR: Bob Mottram
+#+EMAIL: bob@freedombone.net
+#+KEYWORDS: freedombone, privatebin
+#+DESCRIPTION: How to use PrivateBin
+#+OPTIONS: ^:nil toc:nil
+#+HTML_HEAD: <link rel="stylesheet" type="text/css" href="freedombone.css" />
+
+#+BEGIN_CENTER
+[[file:images/logo.png]]
+#+END_CENTER
+
+#+BEGIN_EXPORT html
+<center>
+<h1>PrivateBin</h1>
+</center>
+#+END_EXPORT
+
+This is an encrypted pastebin, such that the server has zero knowledge of the content. It's intended for small amounts of text less than 32K in length. It's not intended for transfering large files, or for storing pastes for more than a day.
+
+Because this is completely open to any user on the internet you should be wary of the potential for DDoS, and only install this app if you really need to avoid using other pastebins or if other pastebin sites are censored or untrustable. There are traffic limits set within this app to attempt to minimize the potential for flooding attacks, but that might still not be sufficient in the worst cases.
+
+* Installation
+Log into your system with:
+
+#+begin_src bash
+ssh myusername@mydomain -p 2222
+#+end_src
+
+Using cursor keys, space bar and Enter key select *Administrator controls* and type in your password.
+
+Select *Add/Remove Apps* then *privatebin*. You'll need to enter your preferred subdomain - something like /paste.yourdomain.com/ and optionally a freedns code.
diff --git a/doc/EN/apps.org b/doc/EN/apps.org
index 013caced..b1d1f42e 100644
--- a/doc/EN/apps.org
+++ b/doc/EN/apps.org
@@ -135,7 +135,11 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 * PostActiv
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 
-[[./app_postactiv.html][How to use it]
+[[./app_postactiv.html][How to use it]]
+* PrivateBin
+A pastebin where the server has zero knowledge of the content being pasted.
+
+[[./app_privatebin.html][How to use it]]
 * Profanity
 A shell based XMPP client which you can run on the Freedombone server via ssh.
 
diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
new file mode 100755
index 00000000..47998e46
--- /dev/null
+++ b/src/freedombone-app-privatebin
@@ -0,0 +1,459 @@
+#!/bin/bash
+#
+# .---.                  .              .
+# |                      |              |
+# |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.
+# |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'
+# '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'
+#
+#                    Freedom in the Cloud
+#
+# privatebin application
+#
+# License
+# =======
+#
+# Copyright (C) 2018 Bob Mottram <bob@freedombone.net>
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+VARIANTS='full full-vim writer'
+
+IN_DEFAULT_INSTALL=0
+SHOW_ON_ABOUT=1
+
+PRIVATEBIN_DOMAIN_NAME=
+PRIVATEBIN_CODE=
+PRIVATEBIN_ONION_PORT=8150
+PRIVATEBIN_REPO="https://github.com/PrivateBin/PrivateBin"
+PRIVATEBIN_COMMIT='9c132cd839fd5e91da18e4a1e8ebef64fce605fb'
+PRIVATEBIN_ADMIN_PASSWORD=
+
+privatebin_variables=(ONION_ONLY
+                      PRIVATEBIN_DOMAIN_NAME
+                      PRIVATEBIN_CODE
+                      DDNS_PROVIDER
+                      MY_USERNAME)
+
+function secure_privatebin {
+    pbpath="/var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs"
+    pbdata="/var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/data"
+    htgroup='www-data'
+    rootuser='root'
+
+    find "${pbpath}/" -type f -print0 | xargs -0 chmod 0640
+    find "${pbpath}/" -type d -print0 | xargs -0 chmod 0550
+
+    chown -R ${rootuser}:${htgroup} "${pbpath}/"
+    chown -R www-data:www-data ${pbdata}
+}
+
+function logging_on_privatebin {
+    echo -n ''
+}
+
+function logging_off_privatebin {
+    echo -n ''
+}
+
+function remove_user_privatebin {
+    remove_username="$1"
+}
+
+function add_user_privatebin {
+    new_username="$1"
+    new_user_password="$2"
+
+    echo '0'
+}
+
+function install_interactive_privatebin {
+    if [ ! $ONION_ONLY ]; then
+        ONION_ONLY='no'
+    fi
+
+    if [[ $ONION_ONLY != "no" ]]; then
+        PRIVATEBIN_DOMAIN_NAME='privatebin.local'
+    else
+        PRIVATEBIN_DETAILS_COMPLETE=
+        while [ ! $PRIVATEBIN_DETAILS_COMPLETE ]
+        do
+            data=$(tempfile 2>/dev/null)
+            trap "rm -f $data" 0 1 2 5 15
+            if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then
+                dialog --backtitle $"Freedombone Configuration" \
+                       --title $"PrivateBin Configuration" \
+                       --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 15 33 40 \
+                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 2 15 33 255 \
+                       2> $data
+            else
+                dialog --backtitle $"Freedombone Configuration" \
+                       --title $"PrivateBin Configuration" \
+                       --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 15 33 40 \
+                       2> $data
+            fi
+            sel=$?
+            case $sel in
+                1) exit 1;;
+                255) exit 1;;
+            esac
+            PRIVATEBIN_DOMAIN_NAME=$(cat $data | sed -n 1p)
+            if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+                if [[ $PRIVATEBIN_DOMAIN_NAME == "$HUBZILLA_DOMAIN_NAME" ]]; then
+                    PRIVATEBIN_DOMAIN_NAME=""
+                fi
+                TEST_DOMAIN_NAME=$PRIVATEBIN_DOMAIN_NAME
+                validate_domain_name
+                if [[ $TEST_DOMAIN_NAME != $PRIVATEBIN_DOMAIN_NAME ]]; then
+                    PRIVATEBIN_DOMAIN_NAME=
+                    dialog --title $"Domain name validation" --msgbox "$TEST_DOMAIN_NAME" 15 50
+                else
+                    if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then
+                        PRIVATEBIN_CODE=$(cat $data | sed -n 2p)
+                        validate_freedns_code "$PRIVATEBIN_CODE"
+                        if [ ! $VALID_CODE ]; then
+                            PRIVATEBIN_DOMAIN_NAME=
+                        fi
+                    fi
+                fi
+            fi
+            if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+                PRIVATEBIN_DETAILS_COMPLETE="yes"
+            fi
+        done
+
+        write_config_param "PRIVATEBIN_CODE" "$PRIVATEBIN_CODE"
+    fi
+    write_config_param "PRIVATEBIN_DOMAIN_NAME" "$PRIVATEBIN_DOMAIN_NAME"
+    APP_INSTALLED=1
+}
+
+function change_password_privatebin {
+    curr_username="$1"
+    new_user_password="$2"
+}
+
+function reconfigure_privatebin {
+    echo -n ''
+}
+
+function upgrade_privatebin {
+    CURR_PRIVATEBIN_COMMIT=$(get_completion_param "privatebin commit")
+    if [[ "$CURR_PRIVATEBIN_COMMIT" == "$PRIVATEBIN_COMMIT" ]]; then
+        return
+    fi
+
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    # update to the next commit
+    function_check set_repo_commit
+    set_repo_commit /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs "privatebin commit" "$PRIVATEBIN_COMMIT" $PRIVATEBIN_REPO
+
+    secure_privatebin
+}
+
+
+function backup_local_privatebin {
+    PRIVATEBIN_DOMAIN_NAME='privatebin'
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    source_directory=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+    function_check suspend_site
+    suspend_site ${PRIVATEBIN_DOMAIN_NAME}
+
+    function_check backup_directory_to_usb
+    dest_directory=privatebin
+    backup_directory_to_usb $source_directory $dest_directory
+
+    function_check restart_site
+    restart_site
+}
+
+function restore_local_privatebin {
+    if ! grep -q "privatebin domain" $COMPLETION_FILE; then
+        return
+    fi
+    PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+        echo $"Restoring privatebin"
+        temp_restore_dir=/root/tempprivatebin
+        privatebin_dir=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+        function_check restore_directory_from_usb
+        restore_directory_from_usb $temp_restore_dir privatebin
+        if [ -d $temp_restore_dir ]; then
+            if [ -d cp $temp_restore_dir$privatebin_dir ]; then
+                cp -rp $temp_restore_dir$privatebin_dir/* $privatebin_dir/
+            else
+                cp -rp $temp_restore_dir/* $privatebin_dir/
+            fi
+            secure_privatebin
+            rm -rf $temp_restore_dir
+        fi
+
+        echo $"Restore of privatebin complete"
+    fi
+}
+
+function backup_remote_privatebin {
+    PRIVATEBIN_DOMAIN_NAME='privatebin'
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    source_directory=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+    function_check suspend_site
+    suspend_site ${PRIVATEBIN_DOMAIN_NAME}
+
+    function_check backup_directory_to_friend
+    dest_directory=privatebin
+    backup_directory_to_friend $source_directory $dest_directory
+
+    function_check restart_site
+    restart_site
+}
+
+function restore_remote_privatebin {
+    if ! grep -q "privatebin domain" $COMPLETION_FILE; then
+        return
+    fi
+    PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+        temp_restore_dir=/root/tempprivatebin
+        privatebin_dir=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+        function_check restore_directory_from_friend
+        restore_directory_from_friend $temp_restore_dir privatebin
+        if [ -d $temp_restore_dir ]; then
+            if [ -d cp $temp_restore_dir$privatebin_dir ]; then
+                cp -rp $temp_restore_dir$privatebin_dir/* $privatebin_dir/
+            else
+                cp -rp $temp_restore_dir/* $privatebin_dir/
+            fi
+            secure_privatebin
+            rm -rf $temp_restore_dir
+        fi
+    fi
+}
+
+function remove_privatebin {
+    if [ ${#PRIVATEBIN_DOMAIN_NAME} -eq 0 ]; then
+        return
+    fi
+    read_config_param "PRIVATEBIN_DOMAIN_NAME"
+    read_config_param "MY_USERNAME"
+    echo "Removing $PRIVATEBIN_DOMAIN_NAME"
+    nginx_dissite $PRIVATEBIN_DOMAIN_NAME
+    remove_certs $PRIVATEBIN_DOMAIN_NAME
+
+    if [ -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
+        rm -rf /var/www/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    if [ -f /etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME ]; then
+        rm /etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    function_check remove_onion_service
+    remove_onion_service privatebin ${PRIVATEBIN_ONION_PORT}
+    if grep -q "privatebin" /etc/crontab; then
+        sed -i "/privatebin/d" /etc/crontab
+    fi
+    remove_app privatebin
+    remove_completion_param install_privatebin
+    sed -i '/privatebin/d' $COMPLETION_FILE
+
+    function_check remove_ddns_domain
+    remove_ddns_domain $PRIVATEBIN_DOMAIN_NAME
+}
+
+function install_privatebin {
+    if [ ! $ONION_ONLY ]; then
+        ONION_ONLY='no'
+    fi
+
+    if [ ! $PRIVATEBIN_DOMAIN_NAME ]; then
+        echo $'No domain name was given for privatebin'
+        exit 7359
+    fi
+
+    apt-get -yq install php-gettext php-curl php-gd php-mysql git curl
+    apt-get -yq install memcached php-memcached php-intl exiftool libfcgi0ldbl
+    apt-get -yq install php-libsodium libsodium18 php-mcrypt
+
+    if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
+        mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs ]; then
+
+        if [ -d /repos/privatebin ]; then
+            mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            cp -r -p /repos/privatebin/. /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            cd /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            git pull
+        else
+            function_check git_clone
+            git_clone $PRIVATEBIN_REPO /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+        fi
+
+        if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs ]; then
+            echo $'Unable to clone privatebin repo'
+            exit 63763873
+        fi
+    fi
+
+    cd /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+    git checkout $PRIVATEBIN_COMMIT -b $PRIVATEBIN_COMMIT
+    set_completion_param "privatebin commit" "$PRIVATEBIN_COMMIT"
+
+    chmod g+w /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+    chown -R www-data:www-data /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+
+    function_check add_ddns_domain
+    add_ddns_domain $PRIVATEBIN_DOMAIN_NAME
+
+    PRIVATEBIN_ONION_HOSTNAME=$(add_onion_service privatebin 80 ${PRIVATEBIN_ONION_PORT})
+
+    privatebin_nginx_site=/etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME
+    if [[ $ONION_ONLY == "no" ]]; then
+        function_check nginx_http_redirect
+        nginx_http_redirect $PRIVATEBIN_DOMAIN_NAME "index index.php"
+        echo 'server {' >> $privatebin_nginx_site
+        echo '  listen 443 ssl;' >> $privatebin_nginx_site
+        echo '  listen [::]:443 ssl;' >> $privatebin_nginx_site
+        echo "  server_name $PRIVATEBIN_DOMAIN_NAME;" >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        function_check nginx_compress
+        nginx_compress $PRIVATEBIN_DOMAIN_NAME
+        echo '' >> $privatebin_nginx_site
+        echo '  # Security' >> $privatebin_nginx_site
+        function_check nginx_ssl
+        nginx_ssl $PRIVATEBIN_DOMAIN_NAME
+
+        function_check nginx_disable_sniffing
+        nginx_disable_sniffing $PRIVATEBIN_DOMAIN_NAME
+
+        echo '  add_header Strict-Transport-Security max-age=15768000;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Logs' >> $privatebin_nginx_site
+        echo '  access_log /dev/null;' >> $privatebin_nginx_site
+        echo '  error_log /dev/null;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo "  root /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs;" >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  index index.php;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  location ~ \.php {' >> $privatebin_nginx_site
+        echo '    include snippets/fastcgi-php.conf;' >> $privatebin_nginx_site
+        echo '    fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;' >> $privatebin_nginx_site
+        echo '    fastcgi_read_timeout 30;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Location' >> $privatebin_nginx_site
+        echo '  location / {' >> $privatebin_nginx_site
+        function_check nginx_limits
+        nginx_limits $PRIVATEBIN_DOMAIN_NAME '15m'
+        echo '    try_files $uri $uri/ @privatebin;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Restrict access that is unnecessary anyway' >> $privatebin_nginx_site
+        echo '  location ~ /\.(ht|git) {' >> $privatebin_nginx_site
+        echo '    deny all;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '}' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+    else
+        echo -n '' > $privatebin_nginx_site
+    fi
+    echo 'server {' >> $privatebin_nginx_site
+    echo "    listen 127.0.0.1:$PRIVATEBIN_ONION_PORT default_server;" >> $privatebin_nginx_site
+    echo "    server_name $PRIVATEBIN_ONION_HOSTNAME;" >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    function_check nginx_compress
+    nginx_compress $PRIVATEBIN_DOMAIN_NAME
+    echo '' >> $privatebin_nginx_site
+    function_check nginx_disable_sniffing
+    nginx_disable_sniffing $PRIVATEBIN_DOMAIN_NAME
+    echo '' >> $privatebin_nginx_site
+    echo '  # Logs' >> $privatebin_nginx_site
+    echo '  access_log /dev/null;' >> $privatebin_nginx_site
+    echo '  error_log /dev/null;' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo "  root /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs;" >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  index index.php;' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  location ~ \.php {' >> $privatebin_nginx_site
+    echo '    include snippets/fastcgi-php.conf;' >> $privatebin_nginx_site
+    echo '    fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;' >> $privatebin_nginx_site
+    echo '    fastcgi_read_timeout 30;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  # Location' >> $privatebin_nginx_site
+    echo '  location / {' >> $privatebin_nginx_site
+    function_check nginx_limits
+    nginx_limits $PRIVATEBIN_DOMAIN_NAME '15m'
+    echo '    try_files $uri $uri/ @privatebin;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  # Restrict access that is unnecessary anyway' >> $privatebin_nginx_site
+    echo '  location ~ /\.(ht|git) {' >> $privatebin_nginx_site
+    echo '    deny all;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '}' >> $privatebin_nginx_site
+
+    function_check configure_php
+    configure_php
+
+    function_check create_site_certificate
+    create_site_certificate $PRIVATEBIN_DOMAIN_NAME 'yes'
+
+    function_check nginx_ensite
+    nginx_ensite $PRIVATEBIN_DOMAIN_NAME
+
+    cp /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.sample.php /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+
+    # Change some defaults
+    sed -i 's|; qrcode|qrcode|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|default =.*|default = "1day"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|languagedefault =.*|languagedefault = "en"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1week =|; 1week =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|limit = 10|limit = 30|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|limit = 300|limit = 0|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|batchsize =.*|batchsize = 100|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+
+    mkdir -p /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/data
+
+    secure_privatebin
+
+    systemctl restart php7.0-fpm
+    systemctl restart nginx
+
+    set_completion_param "privatebin domain" "$PRIVATEBIN_DOMAIN_NAME"
+
+    APP_INSTALLED=1
+}
+
+# NOTE: deliberately there is no "exit 0"
diff --git a/src/freedombone-image-customise b/src/freedombone-image-customise
index 994e0326..5ba0f7a0 100755
--- a/src/freedombone-image-customise
+++ b/src/freedombone-image-customise
@@ -1672,6 +1672,7 @@ function image_preinstall_repos {
     git clone $KANBOARD_REPO $rootdir/repos/kanboard
     git clone $KEYSERVER_WEB_REPO $rootdir/repos/keyserverweb
     git clone $PEERTUBE_REPO $rootdir/repos/peertube
+    git clone $PRIVATEBIN_REPO $rootdir/repos/privatebin
     #git clone $WEKAN_REPO $rootdir/repos/wekan
     #git clone $FLOW_ROUTER_REPO $rootdir/repos/flowrouter
     #git clone $METEOR_USERACCOUNTS_REPO $rootdir/repos/meteoruseraccounts
diff --git a/website/EN/app_privatebin.html b/website/EN/app_privatebin.html
new file mode 100644
index 00000000..67ec1dfc
--- /dev/null
+++ b/website/EN/app_privatebin.html
@@ -0,0 +1,306 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
+<head>
+<!-- 2018-01-10 Wed 22:19 -->
+<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
+<meta name="viewport" content="width=device-width, initial-scale=1" />
+<title>&lrm;</title>
+<meta name="generator" content="Org mode" />
+<meta name="author" content="Bob Mottram" />
+<meta name="description" content="How to use PrivateBin"
+ />
+<meta name="keywords" content="freedombone, privatebin" />
+<style type="text/css">
+ <!--/*--><![CDATA[/*><!--*/
+  .title  { text-align: center;
+             margin-bottom: .2em; }
+  .subtitle { text-align: center;
+              font-size: medium;
+              font-weight: bold;
+              margin-top:0; }
+  .todo   { font-family: monospace; color: red; }
+  .done   { font-family: monospace; color: green; }
+  .priority { font-family: monospace; color: orange; }
+  .tag    { background-color: #eee; font-family: monospace;
+            padding: 2px; font-size: 80%; font-weight: normal; }
+  .timestamp { color: #bebebe; }
+  .timestamp-kwd { color: #5f9ea0; }
+  .org-right  { margin-left: auto; margin-right: 0px;  text-align: right; }
+  .org-left   { margin-left: 0px;  margin-right: auto; text-align: left; }
+  .org-center { margin-left: auto; margin-right: auto; text-align: center; }
+  .underline { text-decoration: underline; }
+  #postamble p, #preamble p { font-size: 90%; margin: .2em; }
+  p.verse { margin-left: 3%; }
+  pre {
+    border: 1px solid #ccc;
+    box-shadow: 3px 3px 3px #eee;
+    padding: 8pt;
+    font-family: monospace;
+    overflow: auto;
+    margin: 1.2em;
+  }
+  pre.src {
+    position: relative;
+    overflow: visible;
+    padding-top: 1.2em;
+  }
+  pre.src:before {
+    display: none;
+    position: absolute;
+    background-color: white;
+    top: -10px;
+    right: 10px;
+    padding: 3px;
+    border: 1px solid black;
+  }
+  pre.src:hover:before { display: inline;}
+  /* Languages per Org manual */
+  pre.src-asymptote:before { content: 'Asymptote'; }
+  pre.src-awk:before { content: 'Awk'; }
+  pre.src-C:before { content: 'C'; }
+  /* pre.src-C++ doesn't work in CSS */
+  pre.src-clojure:before { content: 'Clojure'; }
+  pre.src-css:before { content: 'CSS'; }
+  pre.src-D:before { content: 'D'; }
+  pre.src-ditaa:before { content: 'ditaa'; }
+  pre.src-dot:before { content: 'Graphviz'; }
+  pre.src-calc:before { content: 'Emacs Calc'; }
+  pre.src-emacs-lisp:before { content: 'Emacs Lisp'; }
+  pre.src-fortran:before { content: 'Fortran'; }
+  pre.src-gnuplot:before { content: 'gnuplot'; }
+  pre.src-haskell:before { content: 'Haskell'; }
+  pre.src-hledger:before { content: 'hledger'; }
+  pre.src-java:before { content: 'Java'; }
+  pre.src-js:before { content: 'Javascript'; }
+  pre.src-latex:before { content: 'LaTeX'; }
+  pre.src-ledger:before { content: 'Ledger'; }
+  pre.src-lisp:before { content: 'Lisp'; }
+  pre.src-lilypond:before { content: 'Lilypond'; }
+  pre.src-lua:before { content: 'Lua'; }
+  pre.src-matlab:before { content: 'MATLAB'; }
+  pre.src-mscgen:before { content: 'Mscgen'; }
+  pre.src-ocaml:before { content: 'Objective Caml'; }
+  pre.src-octave:before { content: 'Octave'; }
+  pre.src-org:before { content: 'Org mode'; }
+  pre.src-oz:before { content: 'OZ'; }
+  pre.src-plantuml:before { content: 'Plantuml'; }
+  pre.src-processing:before { content: 'Processing.js'; }
+  pre.src-python:before { content: 'Python'; }
+  pre.src-R:before { content: 'R'; }
+  pre.src-ruby:before { content: 'Ruby'; }
+  pre.src-sass:before { content: 'Sass'; }
+  pre.src-scheme:before { content: 'Scheme'; }
+  pre.src-screen:before { content: 'Gnu Screen'; }
+  pre.src-sed:before { content: 'Sed'; }
+  pre.src-sh:before { content: 'shell'; }
+  pre.src-sql:before { content: 'SQL'; }
+  pre.src-sqlite:before { content: 'SQLite'; }
+  /* additional languages in org.el's org-babel-load-languages alist */
+  pre.src-forth:before { content: 'Forth'; }
+  pre.src-io:before { content: 'IO'; }
+  pre.src-J:before { content: 'J'; }
+  pre.src-makefile:before { content: 'Makefile'; }
+  pre.src-maxima:before { content: 'Maxima'; }
+  pre.src-perl:before { content: 'Perl'; }
+  pre.src-picolisp:before { content: 'Pico Lisp'; }
+  pre.src-scala:before { content: 'Scala'; }
+  pre.src-shell:before { content: 'Shell Script'; }
+  pre.src-ebnf2ps:before { content: 'ebfn2ps'; }
+  /* additional language identifiers per "defun org-babel-execute"
+       in ob-*.el */
+  pre.src-cpp:before  { content: 'C++'; }
+  pre.src-abc:before  { content: 'ABC'; }
+  pre.src-coq:before  { content: 'Coq'; }
+  pre.src-groovy:before  { content: 'Groovy'; }
+  /* additional language identifiers from org-babel-shell-names in
+     ob-shell.el: ob-shell is the only babel language using a lambda to put
+     the execution function name together. */
+  pre.src-bash:before  { content: 'bash'; }
+  pre.src-csh:before  { content: 'csh'; }
+  pre.src-ash:before  { content: 'ash'; }
+  pre.src-dash:before  { content: 'dash'; }
+  pre.src-ksh:before  { content: 'ksh'; }
+  pre.src-mksh:before  { content: 'mksh'; }
+  pre.src-posh:before  { content: 'posh'; }
+  /* Additional Emacs modes also supported by the LaTeX listings package */
+  pre.src-ada:before { content: 'Ada'; }
+  pre.src-asm:before { content: 'Assembler'; }
+  pre.src-caml:before { content: 'Caml'; }
+  pre.src-delphi:before { content: 'Delphi'; }
+  pre.src-html:before { content: 'HTML'; }
+  pre.src-idl:before { content: 'IDL'; }
+  pre.src-mercury:before { content: 'Mercury'; }
+  pre.src-metapost:before { content: 'MetaPost'; }
+  pre.src-modula-2:before { content: 'Modula-2'; }
+  pre.src-pascal:before { content: 'Pascal'; }
+  pre.src-ps:before { content: 'PostScript'; }
+  pre.src-prolog:before { content: 'Prolog'; }
+  pre.src-simula:before { content: 'Simula'; }
+  pre.src-tcl:before { content: 'tcl'; }
+  pre.src-tex:before { content: 'TeX'; }
+  pre.src-plain-tex:before { content: 'Plain TeX'; }
+  pre.src-verilog:before { content: 'Verilog'; }
+  pre.src-vhdl:before { content: 'VHDL'; }
+  pre.src-xml:before { content: 'XML'; }
+  pre.src-nxml:before { content: 'XML'; }
+  /* add a generic configuration mode; LaTeX export needs an additional
+     (add-to-list 'org-latex-listings-langs '(conf " ")) in .emacs */
+  pre.src-conf:before { content: 'Configuration File'; }
+
+  table { border-collapse:collapse; }
+  caption.t-above { caption-side: top; }
+  caption.t-bottom { caption-side: bottom; }
+  td, th { vertical-align:top;  }
+  th.org-right  { text-align: center;  }
+  th.org-left   { text-align: center;   }
+  th.org-center { text-align: center; }
+  td.org-right  { text-align: right;  }
+  td.org-left   { text-align: left;   }
+  td.org-center { text-align: center; }
+  dt { font-weight: bold; }
+  .footpara { display: inline; }
+  .footdef  { margin-bottom: 1em; }
+  .figure { padding: 1em; }
+  .figure p { text-align: center; }
+  .inlinetask {
+    padding: 10px;
+    border: 2px solid gray;
+    margin: 10px;
+    background: #ffffcc;
+  }
+  #org-div-home-and-up
+   { text-align: right; font-size: 70%; white-space: nowrap; }
+  textarea { overflow-x: auto; }
+  .linenr { font-size: smaller }
+  .code-highlighted { background-color: #ffff00; }
+  .org-info-js_info-navigation { border-style: none; }
+  #org-info-js_console-label
+    { font-size: 10px; font-weight: bold; white-space: nowrap; }
+  .org-info-js_search-highlight
+    { background-color: #ffff00; color: #000000; font-weight: bold; }
+  .org-svg { width: 90%; }
+  /*]]>*/-->
+</style>
+<link rel="stylesheet" type="text/css" href="freedombone.css" />
+<script type="text/javascript">
+/*
+@licstart  The following is the entire license notice for the
+JavaScript code in this tag.
+
+Copyright (C) 2012-2017 Free Software Foundation, Inc.
+
+The JavaScript code in this tag is free software: you can
+redistribute it and/or modify it under the terms of the GNU
+General Public License (GNU GPL) as published by the Free Software
+Foundation, either version 3 of the License, or (at your option)
+any later version.  The code is distributed WITHOUT ANY WARRANTY;
+without even the implied warranty of MERCHANTABILITY or FITNESS
+FOR A PARTICULAR PURPOSE.  See the GNU GPL for more details.
+
+As additional permission under GNU GPL version 3 section 7, you
+may distribute non-source (e.g., minimized or compacted) forms of
+that code without the copy of the GNU GPL normally required by
+section 4, provided you include this license notice and a URL
+through which recipients can access the Corresponding Source.
+
+
+@licend  The above is the entire license notice
+for the JavaScript code in this tag.
+*/
+<!--/*--><![CDATA[/*><!--*/
+ function CodeHighlightOn(elem, id)
+ {
+   var target = document.getElementById(id);
+   if(null != target) {
+     elem.cacheClassElem = elem.className;
+     elem.cacheClassTarget = target.className;
+     target.className = "code-highlighted";
+     elem.className   = "code-highlighted";
+   }
+ }
+ function CodeHighlightOff(elem, id)
+ {
+   var target = document.getElementById(id);
+   if(elem.cacheClassElem)
+     elem.className = elem.cacheClassElem;
+   if(elem.cacheClassTarget)
+     target.className = elem.cacheClassTarget;
+ }
+/*]]>*///-->
+</script>
+</head>
+<body>
+<div id="preamble" class="status">
+<a name="top" id="top"></a>
+</div>
+<div id="content">
+<div class="org-center">
+
+<div class="figure">
+<p><img src="images/logo.png" alt="logo.png" />
+</p>
+</div>
+</div>
+
+<center>
+<h1>PrivateBin</h1>
+</center>
+
+<p>
+This is an encrypted pastebin, such that the server has zero knowledge of the content. It's intended for small amounts of text less than 32K in length. It's not intended for transfering large files, or for storing pastes for more than a day.
+</p>
+
+<p>
+Because this is completely open to any user on the internet you should be wary of the potential for DDoS, and only install this app if you really need to avoid using other pastebins or if other pastebin sites are censored or untrustable. There are traffic limits set within this app to attempt to minimize the potential for flooding attacks, but that might still not be sufficient in the worst cases.
+</p>
+
+<div id="outline-container-org59eddf8" class="outline-2">
+<h2 id="org59eddf8">Installation</h2>
+<div class="outline-text-2" id="text-org59eddf8">
+<p>
+Log into your system with:
+</p>
+
+<div class="org-src-container">
+<pre class="src src-bash">ssh myusername@mydomain -p 2222
+</pre>
+</div>
+
+<p>
+Using cursor keys, space bar and Enter key select <b>Administrator controls</b> and type in your password.
+</p>
+
+<p>
+Select <b>Add/Remove Apps</b> then <b>privatebin</b>. You'll need to enter your preferred subdomain - something like <i>paste.yourdomain.com</i> and optionally a freedns code.
+</p>
+</div>
+</div>
+</div>
+<div id="postamble" class="status">
+
+<style type="text/css">
+.back-to-top {
+    position: fixed;
+    bottom: 2em;
+    right: 0px;
+    text-decoration: none;
+    color: #000000;
+    background-color: rgba(235, 235, 235, 0.80);
+    font-size: 12px;
+    padding: 1em;
+    display: none;
+}
+
+.back-to-top:hover {
+    background-color: rgba(135, 135, 135, 0.50);
+}
+</style>
+
+<div class="back-to-top">
+<a href="#top">Back to top</a> | <a href="mailto:bob@freedombone.net">E-mail me</a>
+</div>
+</div>
+</body>
+</html>
diff --git a/website/EN/apps.html b/website/EN/apps.html
index 2183a8ef..5eea8214 100644
--- a/website/EN/apps.html
+++ b/website/EN/apps.html
@@ -3,7 +3,7 @@
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
 <head>
-<!-- 2018-01-10 Wed 14:24 -->
+<!-- 2018-01-10 Wed 22:25 -->
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
 <meta name="viewport" content="width=device-width, initial-scale=1" />
 <title>&lrm;</title>
@@ -265,9 +265,9 @@ The base install of the system just contains an email server and Mutt client, bu
 </div>
 
 
-<div id="outline-container-org8e1c6de" class="outline-2">
-<h2 id="org8e1c6de">Akaunting</h2>
-<div class="outline-text-2" id="text-org8e1c6de">
+<div id="outline-container-org882df4a" class="outline-2">
+<h2 id="org882df4a">Akaunting</h2>
+<div class="outline-text-2" id="text-org882df4a">
 <p>
 A web based accounts system for small businesses or freelancers.
 </p>
@@ -277,9 +277,9 @@ A web based accounts system for small businesses or freelancers.
 </p>
 </div>
 </div>
-<div id="outline-container-org5781982" class="outline-2">
-<h2 id="org5781982">CryptPad</h2>
-<div class="outline-text-2" id="text-org5781982">
+<div id="outline-container-orge821a92" class="outline-2">
+<h2 id="orge821a92">CryptPad</h2>
+<div class="outline-text-2" id="text-orge821a92">
 <p>
 Collaborate on editing documents, presentations and source code, or vote on things. All with a good level of security.
 </p>
@@ -289,9 +289,9 @@ Collaborate on editing documents, presentations and source code, or vote on thin
 </p>
 </div>
 </div>
-<div id="outline-container-org634d134" class="outline-2">
-<h2 id="org634d134">DLNA</h2>
-<div class="outline-text-2" id="text-org634d134">
+<div id="outline-container-org6d56481" class="outline-2">
+<h2 id="org6d56481">DLNA</h2>
+<div class="outline-text-2" id="text-org6d56481">
 <p>
 Enables you to use the system as a music server which any DLNA compatible devices can connect to within your home network.
 </p>
@@ -301,9 +301,9 @@ Enables you to use the system as a music server which any DLNA compatible device
 </p>
 </div>
 </div>
-<div id="outline-container-org3ef1ba1" class="outline-2">
-<h2 id="org3ef1ba1">Dokuwiki</h2>
-<div class="outline-text-2" id="text-org3ef1ba1">
+<div id="outline-container-org0aaf2bf" class="outline-2">
+<h2 id="org0aaf2bf">Dokuwiki</h2>
+<div class="outline-text-2" id="text-org0aaf2bf">
 <p>
 A databaseless wiki system.
 </p>
@@ -313,9 +313,9 @@ A databaseless wiki system.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd8f4217" class="outline-2">
-<h2 id="orgd8f4217">Emacs</h2>
-<div class="outline-text-2" id="text-orgd8f4217">
+<div id="outline-container-orga523977" class="outline-2">
+<h2 id="orga523977">Emacs</h2>
+<div class="outline-text-2" id="text-orga523977">
 <p>
 If you use the Mutt client to read your email then this will set it up to use emacs for composing new mail.
 </p>
@@ -325,9 +325,9 @@ If you use the Mutt client to read your email then this will set it up to use em
 </p>
 </div>
 </div>
-<div id="outline-container-orgf878069" class="outline-2">
-<h2 id="orgf878069">Etherpad</h2>
-<div class="outline-text-2" id="text-orgf878069">
+<div id="outline-container-org11ae2d9" class="outline-2">
+<h2 id="org11ae2d9">Etherpad</h2>
+<div class="outline-text-2" id="text-org11ae2d9">
 <p>
 Collaborate on creating documents in real time. Maybe you're planning a holiday with other family members or creating documentation for a Free Software project along with other volunteers. Etherpad is hard to beat for simplicity and speed. Only users of the system will be able to access it.
 </p>
@@ -337,9 +337,9 @@ Collaborate on creating documents in real time. Maybe you're planning a holiday
 </p>
 </div>
 </div>
-<div id="outline-container-org9a9c4f3" class="outline-2">
-<h2 id="org9a9c4f3">Federated wiki</h2>
-<div class="outline-text-2" id="text-org9a9c4f3">
+<div id="outline-container-org7f75cbc" class="outline-2">
+<h2 id="org7f75cbc">Federated wiki</h2>
+<div class="outline-text-2" id="text-org7f75cbc">
 <p>
 A new approach to creating wiki content.
 </p>
@@ -349,9 +349,9 @@ A new approach to creating wiki content.
 </p>
 </div>
 </div>
-<div id="outline-container-org91b656b" class="outline-2">
-<h2 id="org91b656b">Friendica</h2>
-<div class="outline-text-2" id="text-org91b656b">
+<div id="outline-container-org538cc52" class="outline-2">
+<h2 id="org538cc52">Friendica</h2>
+<div class="outline-text-2" id="text-org538cc52">
 <p>
 Federated social network system.
 </p>
@@ -361,9 +361,9 @@ Federated social network system.
 </p>
 </div>
 </div>
-<div id="outline-container-org271eb94" class="outline-2">
-<h2 id="org271eb94">Ghost</h2>
-<div class="outline-text-2" id="text-org271eb94">
+<div id="outline-container-orga0e917c" class="outline-2">
+<h2 id="orga0e917c">Ghost</h2>
+<div class="outline-text-2" id="text-orga0e917c">
 <p>
 Modern looking blogging system.
 </p>
@@ -373,9 +373,9 @@ Modern looking blogging system.
 </p>
 </div>
 </div>
-<div id="outline-container-orga389f87" class="outline-2">
-<h2 id="orga389f87">GNU Social</h2>
-<div class="outline-text-2" id="text-orga389f87">
+<div id="outline-container-org5741481" class="outline-2">
+<h2 id="org5741481">GNU Social</h2>
+<div class="outline-text-2" id="text-org5741481">
 <p>
 Federated social network based on the OStatus protocol. You can "<i>remote follow</i>" other users within the GNU Social federation.
 </p>
@@ -385,9 +385,9 @@ Federated social network based on the OStatus protocol. You can "<i>remote follo
 </p>
 </div>
 </div>
-<div id="outline-container-org25dbd8b" class="outline-2">
-<h2 id="org25dbd8b">Gogs</h2>
-<div class="outline-text-2" id="text-org25dbd8b">
+<div id="outline-container-org0b7fe9f" class="outline-2">
+<h2 id="org0b7fe9f">Gogs</h2>
+<div class="outline-text-2" id="text-org0b7fe9f">
 <p>
 Lightweight git project hosting system. You can mirror projects from Github, or if Github turns evil then just host your own projects while retaining the familiar <i>fork-and-pull</i> workflow. If you can use Github then you can also use Gogs.
 </p>
@@ -397,9 +397,9 @@ Lightweight git project hosting system. You can mirror projects from Github, or
 </p>
 </div>
 </div>
-<div id="outline-container-orga0d0944" class="outline-2">
-<h2 id="orga0d0944">HTMLy</h2>
-<div class="outline-text-2" id="text-orga0d0944">
+<div id="outline-container-org0cb9182" class="outline-2">
+<h2 id="org0cb9182">HTMLy</h2>
+<div class="outline-text-2" id="text-org0cb9182">
 <p>
 Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
@@ -409,9 +409,9 @@ Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
 </div>
 </div>
-<div id="outline-container-orgaee8baf" class="outline-2">
-<h2 id="orgaee8baf">Hubzilla</h2>
-<div class="outline-text-2" id="text-orgaee8baf">
+<div id="outline-container-orgd9569c1" class="outline-2">
+<h2 id="orgd9569c1">Hubzilla</h2>
+<div class="outline-text-2" id="text-orgd9569c1">
 <p>
 Web publishing platform with social network like features and good privacy controls so that it's possible to specify who can see which content. Includes photo albums, calendar, wiki and file storage.
 </p>
@@ -421,9 +421,9 @@ Web publishing platform with social network like features and good privacy contr
 </p>
 </div>
 </div>
-<div id="outline-container-org96c213d" class="outline-2">
-<h2 id="org96c213d">Icecast media stream</h2>
-<div class="outline-text-2" id="text-org96c213d">
+<div id="outline-container-orgab4800e" class="outline-2">
+<h2 id="orgab4800e">Icecast media stream</h2>
+<div class="outline-text-2" id="text-orgab4800e">
 <p>
 Make your own internet radio station.
 </p>
@@ -433,9 +433,9 @@ Make your own internet radio station.
 </p>
 </div>
 </div>
-<div id="outline-container-org1b6fde5" class="outline-2">
-<h2 id="org1b6fde5">IRC Server (ngirc)</h2>
-<div class="outline-text-2" id="text-org1b6fde5">
+<div id="outline-container-orgd862282" class="outline-2">
+<h2 id="orgd862282">IRC Server (ngirc)</h2>
+<div class="outline-text-2" id="text-orgd862282">
 <p>
 Run your own IRC chat channel which can be secured with a password and accessible via an onion address. A bouncer is included so that you can receive messages sent while you were offline. Works with Hexchat and other popular clients.
 </p>
@@ -445,18 +445,18 @@ Run your own IRC chat channel which can be secured with a password and accessibl
 </p>
 </div>
 </div>
-<div id="outline-container-org96e6f4f" class="outline-2">
-<h2 id="org96e6f4f">Jitsi Meet</h2>
-<div class="outline-text-2" id="text-org96e6f4f">
+<div id="outline-container-orgd19b0f8" class="outline-2">
+<h2 id="orgd19b0f8">Jitsi Meet</h2>
+<div class="outline-text-2" id="text-orgd19b0f8">
 <p>
 Experimental WebRTC video conferencing system, similar to Google Hangouts. This may not be fully functional, but is hoped to be in the near future.
 </p>
 </div>
 </div>
 
-<div id="outline-container-orge07f1f9" class="outline-2">
-<h2 id="orge07f1f9">KanBoard</h2>
-<div class="outline-text-2" id="text-orge07f1f9">
+<div id="outline-container-org4fd23ed" class="outline-2">
+<h2 id="org4fd23ed">KanBoard</h2>
+<div class="outline-text-2" id="text-org4fd23ed">
 <p>
 A simple kanban system for managing projects or TODO lists.
 </p>
@@ -466,9 +466,9 @@ A simple kanban system for managing projects or TODO lists.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd69a78b" class="outline-2">
-<h2 id="orgd69a78b">Key Server</h2>
-<div class="outline-text-2" id="text-orgd69a78b">
+<div id="outline-container-org091b6da" class="outline-2">
+<h2 id="org091b6da">Key Server</h2>
+<div class="outline-text-2" id="text-org091b6da">
 <p>
 An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
@@ -478,9 +478,9 @@ An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
 </div>
 </div>
-<div id="outline-container-org84e4e1c" class="outline-2">
-<h2 id="org84e4e1c">Koel</h2>
-<div class="outline-text-2" id="text-org84e4e1c">
+<div id="outline-container-org471027b" class="outline-2">
+<h2 id="org471027b">Koel</h2>
+<div class="outline-text-2" id="text-org471027b">
 <p>
 Access your music collection from any internet connected device.
 </p>
@@ -490,9 +490,9 @@ Access your music collection from any internet connected device.
 </p>
 </div>
 </div>
-<div id="outline-container-org92b57ea" class="outline-2">
-<h2 id="org92b57ea">Lychee</h2>
-<div class="outline-text-2" id="text-org92b57ea">
+<div id="outline-container-org0424b63" class="outline-2">
+<h2 id="org0424b63">Lychee</h2>
+<div class="outline-text-2" id="text-org0424b63">
 <p>
 Make your photo albums available on the web.
 </p>
@@ -502,9 +502,9 @@ Make your photo albums available on the web.
 </p>
 </div>
 </div>
-<div id="outline-container-orgeb1cdb7" class="outline-2">
-<h2 id="orgeb1cdb7">Mailpile</h2>
-<div class="outline-text-2" id="text-orgeb1cdb7">
+<div id="outline-container-orga6a88dd" class="outline-2">
+<h2 id="orga6a88dd">Mailpile</h2>
+<div class="outline-text-2" id="text-orga6a88dd">
 <p>
 Modern email client which supports GPG encryption.
 </p>
@@ -514,9 +514,9 @@ Modern email client which supports GPG encryption.
 </p>
 </div>
 </div>
-<div id="outline-container-org48106ac" class="outline-2">
-<h2 id="org48106ac">Matrix</h2>
-<div class="outline-text-2" id="text-org48106ac">
+<div id="outline-container-org6518c3d" class="outline-2">
+<h2 id="org6518c3d">Matrix</h2>
+<div class="outline-text-2" id="text-org6518c3d">
 <p>
 Multi-user chat with some security and moderation controls.
 </p>
@@ -526,9 +526,9 @@ Multi-user chat with some security and moderation controls.
 </p>
 </div>
 </div>
-<div id="outline-container-orgdb0e51d" class="outline-2">
-<h2 id="orgdb0e51d">Mediagoblin</h2>
-<div class="outline-text-2" id="text-orgdb0e51d">
+<div id="outline-container-org1413e81" class="outline-2">
+<h2 id="org1413e81">Mediagoblin</h2>
+<div class="outline-text-2" id="text-org1413e81">
 <p>
 Publicly host video and audio files so that you don't need to use YouTube/Vimeo/etc.
 </p>
@@ -538,9 +538,9 @@ Publicly host video and audio files so that you don't need to use YouTube/Vimeo/
 </p>
 </div>
 </div>
-<div id="outline-container-org12e0a7d" class="outline-2">
-<h2 id="org12e0a7d">Mumble</h2>
-<div class="outline-text-2" id="text-org12e0a7d">
+<div id="outline-container-orgb8d2738" class="outline-2">
+<h2 id="orgb8d2738">Mumble</h2>
+<div class="outline-text-2" id="text-orgb8d2738">
 <p>
 The popular VoIP and text chat system. Say goodbye to old-fashioned telephony conferences with silly dial codes. Also works well on mobile.
 </p>
@@ -550,9 +550,9 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
 </p>
 </div>
 </div>
-<div id="outline-container-org6d141d2" class="outline-2">
-<h2 id="org6d141d2">NextCloud</h2>
-<div class="outline-text-2" id="text-org6d141d2">
+<div id="outline-container-org78d79cd" class="outline-2">
+<h2 id="org78d79cd">NextCloud</h2>
+<div class="outline-text-2" id="text-org78d79cd">
 <p>
 Store files on your server and sync them with laptops or mobile devices. Includes many plugins including videoconferencing and collaborative document editing.
 </p>
@@ -562,9 +562,9 @@ Store files on your server and sync them with laptops or mobile devices. Include
 </p>
 </div>
 </div>
-<div id="outline-container-orgfbcc2bd" class="outline-2">
-<h2 id="orgfbcc2bd">PeerTube</h2>
-<div class="outline-text-2" id="text-orgfbcc2bd">
+<div id="outline-container-org40a7fdc" class="outline-2">
+<h2 id="org40a7fdc">PeerTube</h2>
+<div class="outline-text-2" id="text-org40a7fdc">
 <p>
 Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better enables the streaming load to be shared across servers.
 </p>
@@ -574,9 +574,9 @@ Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better en
 </p>
 </div>
 </div>
-<div id="outline-container-org460d63a" class="outline-2">
-<h2 id="org460d63a">PI-Hole</h2>
-<div class="outline-text-2" id="text-org460d63a">
+<div id="outline-container-orgfca92a1" class="outline-2">
+<h2 id="orgfca92a1">PI-Hole</h2>
+<div class="outline-text-2" id="text-orgfca92a1">
 <p>
 The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
 </p>
@@ -586,21 +586,33 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 </p>
 </div>
 </div>
-<div id="outline-container-org65deb16" class="outline-2">
-<h2 id="org65deb16">PostActiv</h2>
-<div class="outline-text-2" id="text-org65deb16">
+<div id="outline-container-org78a2d24" class="outline-2">
+<h2 id="org78a2d24">PostActiv</h2>
+<div class="outline-text-2" id="text-org78a2d24">
 <p>
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 </p>
 
 <p>
-[[./app_postactiv.html][How to use it]
+<a href="./app_postactiv.html">How to use it</a>
 </p>
 </div>
 </div>
-<div id="outline-container-org8852da5" class="outline-2">
-<h2 id="org8852da5">Profanity</h2>
-<div class="outline-text-2" id="text-org8852da5">
+<div id="outline-container-org233a0fb" class="outline-2">
+<h2 id="org233a0fb">PrivateBin</h2>
+<div class="outline-text-2" id="text-org233a0fb">
+<p>
+A pastebin where the server has zero knowledge of the content being pasted.
+</p>
+
+<p>
+<a href="./app_privatebin.html">How to use it</a>
+</p>
+</div>
+</div>
+<div id="outline-container-org70bfbdf" class="outline-2">
+<h2 id="org70bfbdf">Profanity</h2>
+<div class="outline-text-2" id="text-org70bfbdf">
 <p>
 A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
@@ -610,9 +622,9 @@ A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
 </div>
 </div>
-<div id="outline-container-org262f5c6" class="outline-2">
-<h2 id="org262f5c6">Riot Web</h2>
-<div class="outline-text-2" id="text-org262f5c6">
+<div id="outline-container-org3e596b4" class="outline-2">
+<h2 id="org3e596b4">Riot Web</h2>
+<div class="outline-text-2" id="text-org3e596b4">
 <p>
 A browser based user interface for the Matrix federated communications system, including WebRTC audio and video chat.
 </p>
@@ -622,9 +634,9 @@ A browser based user interface for the Matrix federated communications system, i
 </p>
 </div>
 </div>
-<div id="outline-container-org5c685c7" class="outline-2">
-<h2 id="org5c685c7">SearX</h2>
-<div class="outline-text-2" id="text-org5c685c7">
+<div id="outline-container-org19a30bc" class="outline-2">
+<h2 id="org19a30bc">SearX</h2>
+<div class="outline-text-2" id="text-org19a30bc">
 <p>
 A metasearch engine for customised and private web searches.
 </p>
@@ -634,9 +646,9 @@ A metasearch engine for customised and private web searches.
 </p>
 </div>
 </div>
-<div id="outline-container-org609aeef" class="outline-2">
-<h2 id="org609aeef">tt-rss</h2>
-<div class="outline-text-2" id="text-org609aeef">
+<div id="outline-container-orgfdae631" class="outline-2">
+<h2 id="orgfdae631">tt-rss</h2>
+<div class="outline-text-2" id="text-orgfdae631">
 <p>
 Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via an onion address. Have "<i>the right to read</i>" without the Surveillance State knowing what you're reading. Also available with a user interface suitable for viewing on mobile devices via a browser such as OrFox.
 </p>
@@ -646,9 +658,9 @@ Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via a
 </p>
 </div>
 </div>
-<div id="outline-container-orgf0d4a79" class="outline-2">
-<h2 id="orgf0d4a79">Syncthing</h2>
-<div class="outline-text-2" id="text-orgf0d4a79">
+<div id="outline-container-org6c1fb9a" class="outline-2">
+<h2 id="org6c1fb9a">Syncthing</h2>
+<div class="outline-text-2" id="text-org6c1fb9a">
 <p>
 Possibly the best way to synchronise files across all of your devices. Once it has been set up it "just works" with no user intervention needed.
 </p>
@@ -658,9 +670,9 @@ Possibly the best way to synchronise files across all of your devices. Once it h
 </p>
 </div>
 </div>
-<div id="outline-container-org91cbbcf" class="outline-2">
-<h2 id="org91cbbcf">Tahoe-LAFS</h2>
-<div class="outline-text-2" id="text-org91cbbcf">
+<div id="outline-container-org313c9b7" class="outline-2">
+<h2 id="org313c9b7">Tahoe-LAFS</h2>
+<div class="outline-text-2" id="text-org313c9b7">
 <p>
 Robust and encrypted storage of files on one or more server.
 </p>
@@ -670,9 +682,9 @@ Robust and encrypted storage of files on one or more server.
 </p>
 </div>
 </div>
-<div id="outline-container-orgf95d31b" class="outline-2">
-<h2 id="orgf95d31b">Tox</h2>
-<div class="outline-text-2" id="text-orgf95d31b">
+<div id="outline-container-org74af2ab" class="outline-2">
+<h2 id="org74af2ab">Tox</h2>
+<div class="outline-text-2" id="text-org74af2ab">
 <p>
 Client and bootstrap node for the Tox chat/VoIP system.
 </p>
@@ -682,9 +694,9 @@ Client and bootstrap node for the Tox chat/VoIP system.
 </p>
 </div>
 </div>
-<div id="outline-container-org20594a2" class="outline-2">
-<h2 id="org20594a2">Turtl</h2>
-<div class="outline-text-2" id="text-org20594a2">
+<div id="outline-container-org5d5986e" class="outline-2">
+<h2 id="org5d5986e">Turtl</h2>
+<div class="outline-text-2" id="text-org5d5986e">
 <p>
 A system for privately creating and sharing notes and images, similar to Evernote but without the spying.
 </p>
@@ -694,18 +706,18 @@ A system for privately creating and sharing notes and images, similar to Evernot
 </p>
 </div>
 </div>
-<div id="outline-container-orga4d94aa" class="outline-2">
-<h2 id="orga4d94aa">Vim</h2>
-<div class="outline-text-2" id="text-orga4d94aa">
+<div id="outline-container-org2b614c0" class="outline-2">
+<h2 id="org2b614c0">Vim</h2>
+<div class="outline-text-2" id="text-org2b614c0">
 <p>
 If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
 </p>
 </div>
 </div>
 
-<div id="outline-container-org83399c4" class="outline-2">
-<h2 id="org83399c4">Virtual Private Network (VPN)</h2>
-<div class="outline-text-2" id="text-org83399c4">
+<div id="outline-container-orgdb6427c" class="outline-2">
+<h2 id="orgdb6427c">Virtual Private Network (VPN)</h2>
+<div class="outline-text-2" id="text-orgdb6427c">
 <p>
 Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
@@ -715,9 +727,9 @@ Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
 </div>
 </div>
-<div id="outline-container-org409bdd6" class="outline-2">
-<h2 id="org409bdd6">XMPP</h2>
-<div class="outline-text-2" id="text-org409bdd6">
+<div id="outline-container-org15bc23b" class="outline-2">
+<h2 id="org15bc23b">XMPP</h2>
+<div class="outline-text-2" id="text-org15bc23b">
 <p>
 Chat server which can be used together with client such as Gajim or Conversations to provide end-to-end content security and also onion routed metadata security. Includes advanced features such as <i>client state notification</i> to save battery power on your mobile devices, support for seamless roaming between networks and <i>message carbons</i> so that you can receive the same messages while being simultaneously logged in to your account on more than one device.
 </p>