From ace52490abe20021dc98f658144e0ede8f9fbf92 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:00:56 +0000
Subject: [PATCH 01/15] privatebin app

---
 src/freedombone-app-privatebin | 454 +++++++++++++++++++++++++++++++++
 1 file changed, 454 insertions(+)
 create mode 100755 src/freedombone-app-privatebin

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
new file mode 100755
index 00000000..184ee4dd
--- /dev/null
+++ b/src/freedombone-app-privatebin
@@ -0,0 +1,454 @@
+#!/bin/bash
+#
+# .---.                  .              .
+# |                      |              |
+# |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.
+# |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'
+# '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'
+#
+#                    Freedom in the Cloud
+#
+# privatebin application
+#
+# License
+# =======
+#
+# Copyright (C) 2018 Bob Mottram <bob@freedombone.net>
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+VARIANTS='full full-vim writer'
+
+IN_DEFAULT_INSTALL=0
+SHOW_ON_ABOUT=1
+
+PRIVATEBIN_DOMAIN_NAME=
+PRIVATEBIN_CODE=
+PRIVATEBIN_ONION_PORT=8150
+PRIVATEBIN_REPO="https://github.com/PrivateBin/PrivateBin"
+PRIVATEBIN_COMMIT='9c132cd839fd5e91da18e4a1e8ebef64fce605fb'
+PRIVATEBIN_ADMIN_PASSWORD=
+
+privatebin_variables=(ONION_ONLY
+                      PRIVATEBIN_DOMAIN_NAME
+                      PRIVATEBIN_CODE
+                      DDNS_PROVIDER
+                      MY_USERNAME)
+
+function secure_privatebin {
+    pbpath="/var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs"
+    pbdata="/var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/data"
+    htgroup='www-data'
+    rootuser='root'
+
+    find "${pbpath}/" -type f -print0 | xargs -0 chmod 0640
+    find "${pbpath}/" -type d -print0 | xargs -0 chmod 0550
+    find "${pbdata}/" -type f -print0 | xargs -0 chmod 0640
+    find "${pbdata}/" -type d -print0 | xargs -0 chmod 0750
+
+    chown -R ${rootuser}:${htgroup} "${pbpath}/"
+}
+
+function logging_on_privatebin {
+    echo -n ''
+}
+
+function logging_off_privatebin {
+    echo -n ''
+}
+
+function remove_user_privatebin {
+    remove_username="$1"
+}
+
+function add_user_privatebin {
+    new_username="$1"
+    new_user_password="$2"
+
+    echo '0'
+}
+
+function install_interactive_privatebin {
+    if [ ! $ONION_ONLY ]; then
+        ONION_ONLY='no'
+    fi
+
+    if [[ $ONION_ONLY != "no" ]]; then
+        PRIVATEBIN_DOMAIN_NAME='privatebin.local'
+    else
+        PRIVATEBIN_DETAILS_COMPLETE=
+        while [ ! $PRIVATEBIN_DETAILS_COMPLETE ]
+        do
+            data=$(tempfile 2>/dev/null)
+            trap "rm -f $data" 0 1 2 5 15
+            if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then
+                dialog --backtitle $"Freedombone Configuration" \
+                       --title $"PrivateBin Configuration" \
+                       --form $"\nPlease enter your privatebin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 16 65 4 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
+                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 4 25 33 255 \
+                       2> $data
+            else
+                dialog --backtitle $"Freedombone Configuration" \
+                       --title $"PrivateBin Configuration" \
+                       --form $"\nPlease enter your privatebin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 16 65 4 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
+                       2> $data
+            fi
+            sel=$?
+            case $sel in
+                1) exit 1;;
+                255) exit 1;;
+            esac
+            PRIVATEBIN_DOMAIN_NAME=$(cat $data | sed -n 1p)
+            if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+                if [[ $PRIVATEBIN_DOMAIN_NAME == "$HUBZILLA_DOMAIN_NAME" ]]; then
+                    PRIVATEBIN_DOMAIN_NAME=""
+                fi
+                TEST_DOMAIN_NAME=$PRIVATEBIN_DOMAIN_NAME
+                validate_domain_name
+                if [[ $TEST_DOMAIN_NAME != $PRIVATEBIN_DOMAIN_NAME ]]; then
+                    PRIVATEBIN_DOMAIN_NAME=
+                    dialog --title $"Domain name validation" --msgbox "$TEST_DOMAIN_NAME" 15 50
+                else
+                    if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then
+                        PRIVATEBIN_CODE=$(cat $data | sed -n 2p)
+                        validate_freedns_code "$PRIVATEBIN_CODE"
+                        if [ ! $VALID_CODE ]; then
+                            PRIVATEBIN_DOMAIN_NAME=
+                        fi
+                    fi
+                fi
+            fi
+            if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+                PRIVATEBIN_DETAILS_COMPLETE="yes"
+            fi
+        done
+
+        write_config_param "PRIVATEBIN_CODE" "$PRIVATEBIN_CODE"
+    fi
+    write_config_param "PRIVATEBIN_DOMAIN_NAME" "$PRIVATEBIN_DOMAIN_NAME"
+    APP_INSTALLED=1
+}
+
+function change_password_privatebin {
+    curr_username="$1"
+    new_user_password="$2"
+}
+
+function reconfigure_privatebin {
+    echo -n ''
+}
+
+function upgrade_privatebin {
+    CURR_PRIVATEBIN_COMMIT=$(get_completion_param "privatebin commit")
+    if [[ "$CURR_PRIVATEBIN_COMMIT" == "$PRIVATEBIN_COMMIT" ]]; then
+        return
+    fi
+
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    # update to the next commit
+    function_check set_repo_commit
+    set_repo_commit /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs "privatebin commit" "$PRIVATEBIN_COMMIT" $PRIVATEBIN_REPO
+
+    secure_privatebin
+}
+
+
+function backup_local_privatebin {
+    PRIVATEBIN_DOMAIN_NAME='privatebin'
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    source_directory=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+    function_check suspend_site
+    suspend_site ${PRIVATEBIN_DOMAIN_NAME}
+
+    function_check backup_directory_to_usb
+    dest_directory=privatebin
+    backup_directory_to_usb $source_directory $dest_directory
+
+    function_check restart_site
+    restart_site
+}
+
+function restore_local_privatebin {
+    if ! grep -q "privatebin domain" $COMPLETION_FILE; then
+        return
+    fi
+    PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+        echo $"Restoring privatebin"
+        temp_restore_dir=/root/tempprivatebin
+        privatebin_dir=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+        function_check restore_directory_from_usb
+        restore_directory_from_usb $temp_restore_dir privatebin
+        if [ -d $temp_restore_dir ]; then
+            if [ -d cp $temp_restore_dir$privatebin_dir ]; then
+                cp -rp $temp_restore_dir$privatebin_dir/* $privatebin_dir/
+            else
+                cp -rp $temp_restore_dir/* $privatebin_dir/
+            fi
+            secure_privatebin
+            rm -rf $temp_restore_dir
+        fi
+
+        echo $"Restore of privatebin complete"
+    fi
+}
+
+function backup_remote_privatebin {
+    PRIVATEBIN_DOMAIN_NAME='privatebin'
+    if grep -q "privatebin domain" $COMPLETION_FILE; then
+        PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    fi
+
+    source_directory=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+    function_check suspend_site
+    suspend_site ${PRIVATEBIN_DOMAIN_NAME}
+
+    function_check backup_directory_to_friend
+    dest_directory=privatebin
+    backup_directory_to_friend $source_directory $dest_directory
+
+    function_check restart_site
+    restart_site
+}
+
+function restore_remote_privatebin {
+    if ! grep -q "privatebin domain" $COMPLETION_FILE; then
+        return
+    fi
+    PRIVATEBIN_DOMAIN_NAME=$(get_completion_param "privatebin domain")
+    if [ $PRIVATEBIN_DOMAIN_NAME ]; then
+        temp_restore_dir=/root/tempprivatebin
+        privatebin_dir=/var/www/${PRIVATEBIN_DOMAIN_NAME}/htdocs/data
+
+        function_check restore_directory_from_friend
+        restore_directory_from_friend $temp_restore_dir privatebin
+        if [ -d $temp_restore_dir ]; then
+            if [ -d cp $temp_restore_dir$privatebin_dir ]; then
+                cp -rp $temp_restore_dir$privatebin_dir/* $privatebin_dir/
+            else
+                cp -rp $temp_restore_dir/* $privatebin_dir/
+            fi
+            secure_privatebin
+            rm -rf $temp_restore_dir
+        fi
+    fi
+}
+
+function remove_privatebin {
+    if [ ${#PRIVATEBIN_DOMAIN_NAME} -eq 0 ]; then
+        return
+    fi
+    read_config_param "PRIVATEBIN_DOMAIN_NAME"
+    read_config_param "MY_USERNAME"
+    echo "Removing $PRIVATEBIN_DOMAIN_NAME"
+    nginx_dissite $PRIVATEBIN_DOMAIN_NAME
+    remove_certs $PRIVATEBIN_DOMAIN_NAME
+
+    if [ -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
+        rm -rf /var/www/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    if [ -f /etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME ]; then
+        rm /etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    function_check remove_onion_service
+    remove_onion_service privatebin ${PRIVATEBIN_ONION_PORT}
+    if grep -q "privatebin" /etc/crontab; then
+        sed -i "/privatebin/d" /etc/crontab
+    fi
+    remove_app privatebin
+    remove_completion_param install_privatebin
+    sed -i '/privatebin/d' $COMPLETION_FILE
+
+    function_check remove_ddns_domain
+    remove_ddns_domain $PRIVATEBIN_DOMAIN_NAME
+}
+
+function install_privatebin {
+    if [ ! $ONION_ONLY ]; then
+        ONION_ONLY='no'
+    fi
+
+    if [ ! $PRIVATEBIN_DOMAIN_NAME ]; then
+        echo $'No domain name was given for privatebin'
+        exit 7359
+    fi
+
+    apt-get -yq install php-gettext php-curl php-gd php-mysql git curl
+    apt-get -yq install memcached php-memcached php-intl exiftool libfcgi0ldbl
+
+    if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
+        mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME
+    fi
+    if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs ]; then
+
+        if [ -d /repos/privatebin ]; then
+            mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            cp -r -p /repos/privatebin/. /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            cd /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+            git pull
+        else
+            function_check git_clone
+            git_clone $PRIVATEBIN_REPO /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+        fi
+
+        if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs ]; then
+            echo $'Unable to clone privatebin repo'
+            exit 63763873
+        fi
+    fi
+
+    cd /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+    git checkout $PRIVATEBIN_COMMIT -b $PRIVATEBIN_COMMIT
+    set_completion_param "privatebin commit" "$PRIVATEBIN_COMMIT"
+
+    chmod g+w /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+    chown -R www-data:www-data /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs
+
+    function_check add_ddns_domain
+    add_ddns_domain $PRIVATEBIN_DOMAIN_NAME
+
+    PRIVATEBIN_ONION_HOSTNAME=$(add_onion_service privatebin 80 ${PRIVATEBIN_ONION_PORT})
+
+    privatebin_nginx_site=/etc/nginx/sites-available/$PRIVATEBIN_DOMAIN_NAME
+    if [[ $ONION_ONLY == "no" ]]; then
+        function_check nginx_http_redirect
+        nginx_http_redirect $PRIVATEBIN_DOMAIN_NAME "index index.php"
+        echo 'server {' >> $privatebin_nginx_site
+        echo '  listen 443 ssl;' >> $privatebin_nginx_site
+        echo '  listen [::]:443 ssl;' >> $privatebin_nginx_site
+        echo "  server_name $PRIVATEBIN_DOMAIN_NAME;" >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        function_check nginx_compress
+        nginx_compress $PRIVATEBIN_DOMAIN_NAME
+        echo '' >> $privatebin_nginx_site
+        echo '  # Security' >> $privatebin_nginx_site
+        function_check nginx_ssl
+        nginx_ssl $PRIVATEBIN_DOMAIN_NAME
+
+        function_check nginx_disable_sniffing
+        nginx_disable_sniffing $PRIVATEBIN_DOMAIN_NAME
+
+        echo '  add_header Strict-Transport-Security max-age=15768000;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Logs' >> $privatebin_nginx_site
+        echo '  access_log /dev/null;' >> $privatebin_nginx_site
+        echo '  error_log /dev/null;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo "  root /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs;" >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  index index.php;' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  location ~ \.php {' >> $privatebin_nginx_site
+        echo '    include snippets/fastcgi-php.conf;' >> $privatebin_nginx_site
+        echo '    fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;' >> $privatebin_nginx_site
+        echo '    fastcgi_read_timeout 30;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Location' >> $privatebin_nginx_site
+        echo '  location / {' >> $privatebin_nginx_site
+        function_check nginx_limits
+        nginx_limits $PRIVATEBIN_DOMAIN_NAME '15m'
+        echo '    try_files $uri $uri/ @privatebin;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+        echo '  # Restrict access that is unnecessary anyway' >> $privatebin_nginx_site
+        echo '  location ~ /\.(ht|git) {' >> $privatebin_nginx_site
+        echo '    deny all;' >> $privatebin_nginx_site
+        echo '  }' >> $privatebin_nginx_site
+        echo '}' >> $privatebin_nginx_site
+        echo '' >> $privatebin_nginx_site
+    else
+        echo -n '' > $privatebin_nginx_site
+    fi
+    echo 'server {' >> $privatebin_nginx_site
+    echo "    listen 127.0.0.1:$PRIVATEBIN_ONION_PORT default_server;" >> $privatebin_nginx_site
+    echo "    server_name $PRIVATEBIN_ONION_HOSTNAME;" >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    function_check nginx_compress
+    nginx_compress $PRIVATEBIN_DOMAIN_NAME
+    echo '' >> $privatebin_nginx_site
+    function_check nginx_disable_sniffing
+    nginx_disable_sniffing $PRIVATEBIN_DOMAIN_NAME
+    echo '' >> $privatebin_nginx_site
+    echo '  # Logs' >> $privatebin_nginx_site
+    echo '  access_log /dev/null;' >> $privatebin_nginx_site
+    echo '  error_log /dev/null;' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo "  root /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs;" >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  index index.php;' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  location ~ \.php {' >> $privatebin_nginx_site
+    echo '    include snippets/fastcgi-php.conf;' >> $privatebin_nginx_site
+    echo '    fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;' >> $privatebin_nginx_site
+    echo '    fastcgi_read_timeout 30;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  # Location' >> $privatebin_nginx_site
+    echo '  location / {' >> $privatebin_nginx_site
+    function_check nginx_limits
+    nginx_limits $PRIVATEBIN_DOMAIN_NAME '15m'
+    echo '    try_files $uri $uri/ @privatebin;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '' >> $privatebin_nginx_site
+    echo '  # Restrict access that is unnecessary anyway' >> $privatebin_nginx_site
+    echo '  location ~ /\.(ht|git) {' >> $privatebin_nginx_site
+    echo '    deny all;' >> $privatebin_nginx_site
+    echo '  }' >> $privatebin_nginx_site
+    echo '}' >> $privatebin_nginx_site
+
+    function_check configure_php
+    configure_php
+
+    function_check create_site_certificate
+    create_site_certificate $PRIVATEBIN_DOMAIN_NAME 'yes'
+
+    function_check nginx_ensite
+    nginx_ensite $PRIVATEBIN_DOMAIN_NAME
+
+    cp /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.sample.php /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+
+    # Change some defaults
+    sed -i 's|; qrcode|qrcode|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|default =.*|default = "1day"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1week =|; 1week =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|limit =.*|limit = 30|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|defaultformatter =.*|defaultformatter = "Markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+
+    secure_privatebin
+
+    systemctl restart php7.0-fpm
+    systemctl restart nginx
+
+    set_completion_param "privatebin domain" "$PRIVATEBIN_DOMAIN_NAME"
+
+    APP_INSTALLED=1
+}
+
+# NOTE: deliberately there is no "exit 0"

From 105384c3c44af582baee3aebf2509418ec096fdf Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:02:06 +0000
Subject: [PATCH 02/15] Include privatebin within images

---
 src/freedombone-image-customise | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/freedombone-image-customise b/src/freedombone-image-customise
index 994e0326..5ba0f7a0 100755
--- a/src/freedombone-image-customise
+++ b/src/freedombone-image-customise
@@ -1672,6 +1672,7 @@ function image_preinstall_repos {
     git clone $KANBOARD_REPO $rootdir/repos/kanboard
     git clone $KEYSERVER_WEB_REPO $rootdir/repos/keyserverweb
     git clone $PEERTUBE_REPO $rootdir/repos/peertube
+    git clone $PRIVATEBIN_REPO $rootdir/repos/privatebin
     #git clone $WEKAN_REPO $rootdir/repos/wekan
     #git clone $FLOW_ROUTER_REPO $rootdir/repos/flowrouter
     #git clone $METEOR_USERACCOUNTS_REPO $rootdir/repos/meteoruseraccounts

From 06ea80e36388ad8e6b8faec95656494fc7bf39bc Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:08:24 +0000
Subject: [PATCH 03/15] privatebin dialog tweaks

---
 src/freedombone-app-privatebin | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index 184ee4dd..4307e066 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -95,14 +95,14 @@ function install_interactive_privatebin {
             if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then
                 dialog --backtitle $"Freedombone Configuration" \
                        --title $"PrivateBin Configuration" \
-                       --form $"\nPlease enter your privatebin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 16 65 4 \
+                       --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
                        $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
-                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 4 25 33 255 \
+                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 2 25 33 255 \
                        2> $data
             else
                 dialog --backtitle $"Freedombone Configuration" \
                        --title $"PrivateBin Configuration" \
-                       --form $"\nPlease enter your privatebin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 16 65 4 \
+                       --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
                        $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
                        2> $data
             fi

From b7cc77157669f5495043e7822c0180c15bfe4254 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:11:49 +0000
Subject: [PATCH 04/15] privatebin dialog tweaks

---
 src/freedombone-app-privatebin | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index 4307e066..a2777974 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -96,14 +96,14 @@ function install_interactive_privatebin {
                 dialog --backtitle $"Freedombone Configuration" \
                        --title $"PrivateBin Configuration" \
                        --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
-                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
-                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 2 25 33 255 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 15 33 40 \
+                       $"Code:" 2 1 "$(grep 'PRIVATEBIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 2 15 33 255 \
                        2> $data
             else
                 dialog --backtitle $"Freedombone Configuration" \
                        --title $"PrivateBin Configuration" \
                        --form $"\nPlease enter your PrivateBin details. The background image URL can be left blank.\n\nIMPORTANT: This should be a domain name which is supported by Let's Encrypt:" 14 65 2 \
-                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 25 33 40 \
+                       $"Domain:" 1 1 "$(grep 'PRIVATEBIN_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 15 33 40 \
                        2> $data
             fi
             sel=$?

From 86ac7e00a98e26a03b40c90a22fb713470665be4 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:17:00 +0000
Subject: [PATCH 05/15] Install libsodium for privatebin

---
 src/freedombone-app-privatebin | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index a2777974..374d2e7b 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -297,6 +297,7 @@ function install_privatebin {
 
     apt-get -yq install php-gettext php-curl php-gd php-mysql git curl
     apt-get -yq install memcached php-memcached php-intl exiftool libfcgi0ldbl
+    apt-get -yq install php-libsodium libsodium18
 
     if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
         mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME

From 0c99738e51e3485b311671442c7264a0bd61d4e8 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:24:43 +0000
Subject: [PATCH 06/15] Install mcrypt for privatebin

---
 src/freedombone-app-privatebin | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index 374d2e7b..deb5d431 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -297,7 +297,7 @@ function install_privatebin {
 
     apt-get -yq install php-gettext php-curl php-gd php-mysql git curl
     apt-get -yq install memcached php-memcached php-intl exiftool libfcgi0ldbl
-    apt-get -yq install php-libsodium libsodium18
+    apt-get -yq install php-libsodium libsodium18 php-mcrypt
 
     if [ ! -d /var/www/$PRIVATEBIN_DOMAIN_NAME ]; then
         mkdir /var/www/$PRIVATEBIN_DOMAIN_NAME

From 8651acb1695e5f3b3d3e2c7981fdc98953c22a46 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:25:04 +0000
Subject: [PATCH 07/15] Lower case

---
 src/freedombone-app-privatebin | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index deb5d431..c4cc6cc7 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -440,7 +440,7 @@ function install_privatebin {
     sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|limit =.*|limit = 30|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
-    sed -i 's|defaultformatter =.*|defaultformatter = "Markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
 
     secure_privatebin
 

From 28d7a0fa2f0ed8629e994dc9f89cfaf5fb8e30f4 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:36:50 +0000
Subject: [PATCH 08/15] Write permissions to data directory

---
 src/freedombone-app-privatebin | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index c4cc6cc7..9535deb8 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -54,10 +54,9 @@ function secure_privatebin {
 
     find "${pbpath}/" -type f -print0 | xargs -0 chmod 0640
     find "${pbpath}/" -type d -print0 | xargs -0 chmod 0550
-    find "${pbdata}/" -type f -print0 | xargs -0 chmod 0640
-    find "${pbdata}/" -type d -print0 | xargs -0 chmod 0750
 
     chown -R ${rootuser}:${htgroup} "${pbpath}/"
+    chown -R www-data:www-data ${pbdata}
 }
 
 function logging_on_privatebin {
@@ -442,6 +441,8 @@ function install_privatebin {
     sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
 
+    mkdir -p /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/data
+
     secure_privatebin
 
     systemctl restart php7.0-fpm

From f2018a84661225bad56a32fb564f545b2601ecb8 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:39:30 +0000
Subject: [PATCH 09/15] Language default

---
 src/freedombone-app-privatebin | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index 9535deb8..62d370dd 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -433,6 +433,7 @@ function install_privatebin {
     # Change some defaults
     sed -i 's|; qrcode|qrcode|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|default =.*|default = "1day"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|languagedefault =.*|languagedefault = "en"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1week =|; 1week =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php

From b91c3fe8cd824fe44782bddfc407d782040d273c Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:41:59 +0000
Subject: [PATCH 10/15] There's no limit

---
 src/freedombone-app-privatebin | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index 62d370dd..f67afc19 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -438,7 +438,6 @@ function install_privatebin {
     sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
-    sed -i 's|limit =.*|limit = 30|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
 

From c7016e9166ef56f2fbd7e6a71fa2fbec1eed693c Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:44:08 +0000
Subject: [PATCH 11/15] Purge on every paste

---
 src/freedombone-app-privatebin | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index f67afc19..a15f6a42 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -438,6 +438,7 @@ function install_privatebin {
     sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|limit = 300|limit = 0|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
 

From ba582e17bf543003d224e6bfcdc5f8f66790e7e9 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 21:48:44 +0000
Subject: [PATCH 12/15] More privatebin traffic limiting

---
 src/freedombone-app-privatebin | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/freedombone-app-privatebin b/src/freedombone-app-privatebin
index a15f6a42..47998e46 100755
--- a/src/freedombone-app-privatebin
+++ b/src/freedombone-app-privatebin
@@ -438,7 +438,9 @@ function install_privatebin {
     sed -i 's|1month =|; 1month =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|1year =|; 1year =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|never =|; never =|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|limit = 10|limit = 30|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|limit = 300|limit = 0|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
+    sed -i 's|batchsize =.*|batchsize = 100|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|sizelimit =.*|sizelimit = 32768|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
     sed -i 's|defaultformatter =.*|defaultformatter = "markdown"|g' /var/www/$PRIVATEBIN_DOMAIN_NAME/htdocs/cfg/conf.php
 

From 873828d00a69d0ebb300be5ecc09c71d165d125a Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 22:22:47 +0000
Subject: [PATCH 13/15] privatebin documentation

---
 doc/EN/app_privatebin.org      |  32 ++++
 doc/EN/apps.org                |   4 +
 website/EN/app_privatebin.html | 306 +++++++++++++++++++++++++++++++++
 website/EN/apps.html           | 248 +++++++++++++-------------
 4 files changed, 472 insertions(+), 118 deletions(-)
 create mode 100644 doc/EN/app_privatebin.org
 create mode 100644 website/EN/app_privatebin.html

diff --git a/doc/EN/app_privatebin.org b/doc/EN/app_privatebin.org
new file mode 100644
index 00000000..eb5d5f3e
--- /dev/null
+++ b/doc/EN/app_privatebin.org
@@ -0,0 +1,32 @@
+#+TITLE:
+#+AUTHOR: Bob Mottram
+#+EMAIL: bob@freedombone.net
+#+KEYWORDS: freedombone, privatebin
+#+DESCRIPTION: How to use PrivateBin
+#+OPTIONS: ^:nil toc:nil
+#+HTML_HEAD: <link rel="stylesheet" type="text/css" href="freedombone.css" />
+
+#+BEGIN_CENTER
+[[file:images/logo.png]]
+#+END_CENTER
+
+#+BEGIN_EXPORT html
+<center>
+<h1>PrivateBin</h1>
+</center>
+#+END_EXPORT
+
+This is an encrypted pastebin, such that the server has zero knowledge of the content. It's intended for small amounts of text less than 32K in length. It's not intended for transfering large files, or for storing pastes for more than a day.
+
+Because this is completely open to any user on the internet you should be wary of the potential for DDoS, and only install this app if you really need to avoid using other pastebins or if other pastebin sites are censored or untrustable. There are traffic limits set within this app to attempt to minimize the potential for flooding attacks, but that might still not be sufficient in the worst cases.
+
+* Installation
+Log into your system with:
+
+#+begin_src bash
+ssh myusername@mydomain -p 2222
+#+end_src
+
+Using cursor keys, space bar and Enter key select *Administrator controls* and type in your password.
+
+Select *Add/Remove Apps* then *privatebin*. You'll need to enter your preferred subdomain - something like /paste.yourdomain.com/ and optionally a freedns code.
diff --git a/doc/EN/apps.org b/doc/EN/apps.org
index 013caced..a3e60551 100644
--- a/doc/EN/apps.org
+++ b/doc/EN/apps.org
@@ -136,6 +136,10 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 
 [[./app_postactiv.html][How to use it]
+* PrivateBin
+A pastebin where the server has zero knowledge of the content being pasted.
+
+[[./app_privatebin.html][How to use it]]
 * Profanity
 A shell based XMPP client which you can run on the Freedombone server via ssh.
 
diff --git a/website/EN/app_privatebin.html b/website/EN/app_privatebin.html
new file mode 100644
index 00000000..67ec1dfc
--- /dev/null
+++ b/website/EN/app_privatebin.html
@@ -0,0 +1,306 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
+<head>
+<!-- 2018-01-10 Wed 22:19 -->
+<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
+<meta name="viewport" content="width=device-width, initial-scale=1" />
+<title>&lrm;</title>
+<meta name="generator" content="Org mode" />
+<meta name="author" content="Bob Mottram" />
+<meta name="description" content="How to use PrivateBin"
+ />
+<meta name="keywords" content="freedombone, privatebin" />
+<style type="text/css">
+ <!--/*--><![CDATA[/*><!--*/
+  .title  { text-align: center;
+             margin-bottom: .2em; }
+  .subtitle { text-align: center;
+              font-size: medium;
+              font-weight: bold;
+              margin-top:0; }
+  .todo   { font-family: monospace; color: red; }
+  .done   { font-family: monospace; color: green; }
+  .priority { font-family: monospace; color: orange; }
+  .tag    { background-color: #eee; font-family: monospace;
+            padding: 2px; font-size: 80%; font-weight: normal; }
+  .timestamp { color: #bebebe; }
+  .timestamp-kwd { color: #5f9ea0; }
+  .org-right  { margin-left: auto; margin-right: 0px;  text-align: right; }
+  .org-left   { margin-left: 0px;  margin-right: auto; text-align: left; }
+  .org-center { margin-left: auto; margin-right: auto; text-align: center; }
+  .underline { text-decoration: underline; }
+  #postamble p, #preamble p { font-size: 90%; margin: .2em; }
+  p.verse { margin-left: 3%; }
+  pre {
+    border: 1px solid #ccc;
+    box-shadow: 3px 3px 3px #eee;
+    padding: 8pt;
+    font-family: monospace;
+    overflow: auto;
+    margin: 1.2em;
+  }
+  pre.src {
+    position: relative;
+    overflow: visible;
+    padding-top: 1.2em;
+  }
+  pre.src:before {
+    display: none;
+    position: absolute;
+    background-color: white;
+    top: -10px;
+    right: 10px;
+    padding: 3px;
+    border: 1px solid black;
+  }
+  pre.src:hover:before { display: inline;}
+  /* Languages per Org manual */
+  pre.src-asymptote:before { content: 'Asymptote'; }
+  pre.src-awk:before { content: 'Awk'; }
+  pre.src-C:before { content: 'C'; }
+  /* pre.src-C++ doesn't work in CSS */
+  pre.src-clojure:before { content: 'Clojure'; }
+  pre.src-css:before { content: 'CSS'; }
+  pre.src-D:before { content: 'D'; }
+  pre.src-ditaa:before { content: 'ditaa'; }
+  pre.src-dot:before { content: 'Graphviz'; }
+  pre.src-calc:before { content: 'Emacs Calc'; }
+  pre.src-emacs-lisp:before { content: 'Emacs Lisp'; }
+  pre.src-fortran:before { content: 'Fortran'; }
+  pre.src-gnuplot:before { content: 'gnuplot'; }
+  pre.src-haskell:before { content: 'Haskell'; }
+  pre.src-hledger:before { content: 'hledger'; }
+  pre.src-java:before { content: 'Java'; }
+  pre.src-js:before { content: 'Javascript'; }
+  pre.src-latex:before { content: 'LaTeX'; }
+  pre.src-ledger:before { content: 'Ledger'; }
+  pre.src-lisp:before { content: 'Lisp'; }
+  pre.src-lilypond:before { content: 'Lilypond'; }
+  pre.src-lua:before { content: 'Lua'; }
+  pre.src-matlab:before { content: 'MATLAB'; }
+  pre.src-mscgen:before { content: 'Mscgen'; }
+  pre.src-ocaml:before { content: 'Objective Caml'; }
+  pre.src-octave:before { content: 'Octave'; }
+  pre.src-org:before { content: 'Org mode'; }
+  pre.src-oz:before { content: 'OZ'; }
+  pre.src-plantuml:before { content: 'Plantuml'; }
+  pre.src-processing:before { content: 'Processing.js'; }
+  pre.src-python:before { content: 'Python'; }
+  pre.src-R:before { content: 'R'; }
+  pre.src-ruby:before { content: 'Ruby'; }
+  pre.src-sass:before { content: 'Sass'; }
+  pre.src-scheme:before { content: 'Scheme'; }
+  pre.src-screen:before { content: 'Gnu Screen'; }
+  pre.src-sed:before { content: 'Sed'; }
+  pre.src-sh:before { content: 'shell'; }
+  pre.src-sql:before { content: 'SQL'; }
+  pre.src-sqlite:before { content: 'SQLite'; }
+  /* additional languages in org.el's org-babel-load-languages alist */
+  pre.src-forth:before { content: 'Forth'; }
+  pre.src-io:before { content: 'IO'; }
+  pre.src-J:before { content: 'J'; }
+  pre.src-makefile:before { content: 'Makefile'; }
+  pre.src-maxima:before { content: 'Maxima'; }
+  pre.src-perl:before { content: 'Perl'; }
+  pre.src-picolisp:before { content: 'Pico Lisp'; }
+  pre.src-scala:before { content: 'Scala'; }
+  pre.src-shell:before { content: 'Shell Script'; }
+  pre.src-ebnf2ps:before { content: 'ebfn2ps'; }
+  /* additional language identifiers per "defun org-babel-execute"
+       in ob-*.el */
+  pre.src-cpp:before  { content: 'C++'; }
+  pre.src-abc:before  { content: 'ABC'; }
+  pre.src-coq:before  { content: 'Coq'; }
+  pre.src-groovy:before  { content: 'Groovy'; }
+  /* additional language identifiers from org-babel-shell-names in
+     ob-shell.el: ob-shell is the only babel language using a lambda to put
+     the execution function name together. */
+  pre.src-bash:before  { content: 'bash'; }
+  pre.src-csh:before  { content: 'csh'; }
+  pre.src-ash:before  { content: 'ash'; }
+  pre.src-dash:before  { content: 'dash'; }
+  pre.src-ksh:before  { content: 'ksh'; }
+  pre.src-mksh:before  { content: 'mksh'; }
+  pre.src-posh:before  { content: 'posh'; }
+  /* Additional Emacs modes also supported by the LaTeX listings package */
+  pre.src-ada:before { content: 'Ada'; }
+  pre.src-asm:before { content: 'Assembler'; }
+  pre.src-caml:before { content: 'Caml'; }
+  pre.src-delphi:before { content: 'Delphi'; }
+  pre.src-html:before { content: 'HTML'; }
+  pre.src-idl:before { content: 'IDL'; }
+  pre.src-mercury:before { content: 'Mercury'; }
+  pre.src-metapost:before { content: 'MetaPost'; }
+  pre.src-modula-2:before { content: 'Modula-2'; }
+  pre.src-pascal:before { content: 'Pascal'; }
+  pre.src-ps:before { content: 'PostScript'; }
+  pre.src-prolog:before { content: 'Prolog'; }
+  pre.src-simula:before { content: 'Simula'; }
+  pre.src-tcl:before { content: 'tcl'; }
+  pre.src-tex:before { content: 'TeX'; }
+  pre.src-plain-tex:before { content: 'Plain TeX'; }
+  pre.src-verilog:before { content: 'Verilog'; }
+  pre.src-vhdl:before { content: 'VHDL'; }
+  pre.src-xml:before { content: 'XML'; }
+  pre.src-nxml:before { content: 'XML'; }
+  /* add a generic configuration mode; LaTeX export needs an additional
+     (add-to-list 'org-latex-listings-langs '(conf " ")) in .emacs */
+  pre.src-conf:before { content: 'Configuration File'; }
+
+  table { border-collapse:collapse; }
+  caption.t-above { caption-side: top; }
+  caption.t-bottom { caption-side: bottom; }
+  td, th { vertical-align:top;  }
+  th.org-right  { text-align: center;  }
+  th.org-left   { text-align: center;   }
+  th.org-center { text-align: center; }
+  td.org-right  { text-align: right;  }
+  td.org-left   { text-align: left;   }
+  td.org-center { text-align: center; }
+  dt { font-weight: bold; }
+  .footpara { display: inline; }
+  .footdef  { margin-bottom: 1em; }
+  .figure { padding: 1em; }
+  .figure p { text-align: center; }
+  .inlinetask {
+    padding: 10px;
+    border: 2px solid gray;
+    margin: 10px;
+    background: #ffffcc;
+  }
+  #org-div-home-and-up
+   { text-align: right; font-size: 70%; white-space: nowrap; }
+  textarea { overflow-x: auto; }
+  .linenr { font-size: smaller }
+  .code-highlighted { background-color: #ffff00; }
+  .org-info-js_info-navigation { border-style: none; }
+  #org-info-js_console-label
+    { font-size: 10px; font-weight: bold; white-space: nowrap; }
+  .org-info-js_search-highlight
+    { background-color: #ffff00; color: #000000; font-weight: bold; }
+  .org-svg { width: 90%; }
+  /*]]>*/-->
+</style>
+<link rel="stylesheet" type="text/css" href="freedombone.css" />
+<script type="text/javascript">
+/*
+@licstart  The following is the entire license notice for the
+JavaScript code in this tag.
+
+Copyright (C) 2012-2017 Free Software Foundation, Inc.
+
+The JavaScript code in this tag is free software: you can
+redistribute it and/or modify it under the terms of the GNU
+General Public License (GNU GPL) as published by the Free Software
+Foundation, either version 3 of the License, or (at your option)
+any later version.  The code is distributed WITHOUT ANY WARRANTY;
+without even the implied warranty of MERCHANTABILITY or FITNESS
+FOR A PARTICULAR PURPOSE.  See the GNU GPL for more details.
+
+As additional permission under GNU GPL version 3 section 7, you
+may distribute non-source (e.g., minimized or compacted) forms of
+that code without the copy of the GNU GPL normally required by
+section 4, provided you include this license notice and a URL
+through which recipients can access the Corresponding Source.
+
+
+@licend  The above is the entire license notice
+for the JavaScript code in this tag.
+*/
+<!--/*--><![CDATA[/*><!--*/
+ function CodeHighlightOn(elem, id)
+ {
+   var target = document.getElementById(id);
+   if(null != target) {
+     elem.cacheClassElem = elem.className;
+     elem.cacheClassTarget = target.className;
+     target.className = "code-highlighted";
+     elem.className   = "code-highlighted";
+   }
+ }
+ function CodeHighlightOff(elem, id)
+ {
+   var target = document.getElementById(id);
+   if(elem.cacheClassElem)
+     elem.className = elem.cacheClassElem;
+   if(elem.cacheClassTarget)
+     target.className = elem.cacheClassTarget;
+ }
+/*]]>*///-->
+</script>
+</head>
+<body>
+<div id="preamble" class="status">
+<a name="top" id="top"></a>
+</div>
+<div id="content">
+<div class="org-center">
+
+<div class="figure">
+<p><img src="images/logo.png" alt="logo.png" />
+</p>
+</div>
+</div>
+
+<center>
+<h1>PrivateBin</h1>
+</center>
+
+<p>
+This is an encrypted pastebin, such that the server has zero knowledge of the content. It's intended for small amounts of text less than 32K in length. It's not intended for transfering large files, or for storing pastes for more than a day.
+</p>
+
+<p>
+Because this is completely open to any user on the internet you should be wary of the potential for DDoS, and only install this app if you really need to avoid using other pastebins or if other pastebin sites are censored or untrustable. There are traffic limits set within this app to attempt to minimize the potential for flooding attacks, but that might still not be sufficient in the worst cases.
+</p>
+
+<div id="outline-container-org59eddf8" class="outline-2">
+<h2 id="org59eddf8">Installation</h2>
+<div class="outline-text-2" id="text-org59eddf8">
+<p>
+Log into your system with:
+</p>
+
+<div class="org-src-container">
+<pre class="src src-bash">ssh myusername@mydomain -p 2222
+</pre>
+</div>
+
+<p>
+Using cursor keys, space bar and Enter key select <b>Administrator controls</b> and type in your password.
+</p>
+
+<p>
+Select <b>Add/Remove Apps</b> then <b>privatebin</b>. You'll need to enter your preferred subdomain - something like <i>paste.yourdomain.com</i> and optionally a freedns code.
+</p>
+</div>
+</div>
+</div>
+<div id="postamble" class="status">
+
+<style type="text/css">
+.back-to-top {
+    position: fixed;
+    bottom: 2em;
+    right: 0px;
+    text-decoration: none;
+    color: #000000;
+    background-color: rgba(235, 235, 235, 0.80);
+    font-size: 12px;
+    padding: 1em;
+    display: none;
+}
+
+.back-to-top:hover {
+    background-color: rgba(135, 135, 135, 0.50);
+}
+</style>
+
+<div class="back-to-top">
+<a href="#top">Back to top</a> | <a href="mailto:bob@freedombone.net">E-mail me</a>
+</div>
+</div>
+</body>
+</html>
diff --git a/website/EN/apps.html b/website/EN/apps.html
index 2183a8ef..29f18a6b 100644
--- a/website/EN/apps.html
+++ b/website/EN/apps.html
@@ -3,7 +3,7 @@
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
 <head>
-<!-- 2018-01-10 Wed 14:24 -->
+<!-- 2018-01-10 Wed 22:22 -->
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
 <meta name="viewport" content="width=device-width, initial-scale=1" />
 <title>&lrm;</title>
@@ -265,9 +265,9 @@ The base install of the system just contains an email server and Mutt client, bu
 </div>
 
 
-<div id="outline-container-org8e1c6de" class="outline-2">
-<h2 id="org8e1c6de">Akaunting</h2>
-<div class="outline-text-2" id="text-org8e1c6de">
+<div id="outline-container-org8de0dd5" class="outline-2">
+<h2 id="org8de0dd5">Akaunting</h2>
+<div class="outline-text-2" id="text-org8de0dd5">
 <p>
 A web based accounts system for small businesses or freelancers.
 </p>
@@ -277,9 +277,9 @@ A web based accounts system for small businesses or freelancers.
 </p>
 </div>
 </div>
-<div id="outline-container-org5781982" class="outline-2">
-<h2 id="org5781982">CryptPad</h2>
-<div class="outline-text-2" id="text-org5781982">
+<div id="outline-container-org5c4daa6" class="outline-2">
+<h2 id="org5c4daa6">CryptPad</h2>
+<div class="outline-text-2" id="text-org5c4daa6">
 <p>
 Collaborate on editing documents, presentations and source code, or vote on things. All with a good level of security.
 </p>
@@ -289,9 +289,9 @@ Collaborate on editing documents, presentations and source code, or vote on thin
 </p>
 </div>
 </div>
-<div id="outline-container-org634d134" class="outline-2">
-<h2 id="org634d134">DLNA</h2>
-<div class="outline-text-2" id="text-org634d134">
+<div id="outline-container-orgfe3ddd3" class="outline-2">
+<h2 id="orgfe3ddd3">DLNA</h2>
+<div class="outline-text-2" id="text-orgfe3ddd3">
 <p>
 Enables you to use the system as a music server which any DLNA compatible devices can connect to within your home network.
 </p>
@@ -301,9 +301,9 @@ Enables you to use the system as a music server which any DLNA compatible device
 </p>
 </div>
 </div>
-<div id="outline-container-org3ef1ba1" class="outline-2">
-<h2 id="org3ef1ba1">Dokuwiki</h2>
-<div class="outline-text-2" id="text-org3ef1ba1">
+<div id="outline-container-orgf6be7d2" class="outline-2">
+<h2 id="orgf6be7d2">Dokuwiki</h2>
+<div class="outline-text-2" id="text-orgf6be7d2">
 <p>
 A databaseless wiki system.
 </p>
@@ -313,9 +313,9 @@ A databaseless wiki system.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd8f4217" class="outline-2">
-<h2 id="orgd8f4217">Emacs</h2>
-<div class="outline-text-2" id="text-orgd8f4217">
+<div id="outline-container-orgd16b0b8" class="outline-2">
+<h2 id="orgd16b0b8">Emacs</h2>
+<div class="outline-text-2" id="text-orgd16b0b8">
 <p>
 If you use the Mutt client to read your email then this will set it up to use emacs for composing new mail.
 </p>
@@ -325,9 +325,9 @@ If you use the Mutt client to read your email then this will set it up to use em
 </p>
 </div>
 </div>
-<div id="outline-container-orgf878069" class="outline-2">
-<h2 id="orgf878069">Etherpad</h2>
-<div class="outline-text-2" id="text-orgf878069">
+<div id="outline-container-org824cdf1" class="outline-2">
+<h2 id="org824cdf1">Etherpad</h2>
+<div class="outline-text-2" id="text-org824cdf1">
 <p>
 Collaborate on creating documents in real time. Maybe you're planning a holiday with other family members or creating documentation for a Free Software project along with other volunteers. Etherpad is hard to beat for simplicity and speed. Only users of the system will be able to access it.
 </p>
@@ -337,9 +337,9 @@ Collaborate on creating documents in real time. Maybe you're planning a holiday
 </p>
 </div>
 </div>
-<div id="outline-container-org9a9c4f3" class="outline-2">
-<h2 id="org9a9c4f3">Federated wiki</h2>
-<div class="outline-text-2" id="text-org9a9c4f3">
+<div id="outline-container-org2ba453d" class="outline-2">
+<h2 id="org2ba453d">Federated wiki</h2>
+<div class="outline-text-2" id="text-org2ba453d">
 <p>
 A new approach to creating wiki content.
 </p>
@@ -349,9 +349,9 @@ A new approach to creating wiki content.
 </p>
 </div>
 </div>
-<div id="outline-container-org91b656b" class="outline-2">
-<h2 id="org91b656b">Friendica</h2>
-<div class="outline-text-2" id="text-org91b656b">
+<div id="outline-container-orge281313" class="outline-2">
+<h2 id="orge281313">Friendica</h2>
+<div class="outline-text-2" id="text-orge281313">
 <p>
 Federated social network system.
 </p>
@@ -361,9 +361,9 @@ Federated social network system.
 </p>
 </div>
 </div>
-<div id="outline-container-org271eb94" class="outline-2">
-<h2 id="org271eb94">Ghost</h2>
-<div class="outline-text-2" id="text-org271eb94">
+<div id="outline-container-org73e47e5" class="outline-2">
+<h2 id="org73e47e5">Ghost</h2>
+<div class="outline-text-2" id="text-org73e47e5">
 <p>
 Modern looking blogging system.
 </p>
@@ -373,9 +373,9 @@ Modern looking blogging system.
 </p>
 </div>
 </div>
-<div id="outline-container-orga389f87" class="outline-2">
-<h2 id="orga389f87">GNU Social</h2>
-<div class="outline-text-2" id="text-orga389f87">
+<div id="outline-container-orgf3aaa00" class="outline-2">
+<h2 id="orgf3aaa00">GNU Social</h2>
+<div class="outline-text-2" id="text-orgf3aaa00">
 <p>
 Federated social network based on the OStatus protocol. You can "<i>remote follow</i>" other users within the GNU Social federation.
 </p>
@@ -385,9 +385,9 @@ Federated social network based on the OStatus protocol. You can "<i>remote follo
 </p>
 </div>
 </div>
-<div id="outline-container-org25dbd8b" class="outline-2">
-<h2 id="org25dbd8b">Gogs</h2>
-<div class="outline-text-2" id="text-org25dbd8b">
+<div id="outline-container-org18b93b5" class="outline-2">
+<h2 id="org18b93b5">Gogs</h2>
+<div class="outline-text-2" id="text-org18b93b5">
 <p>
 Lightweight git project hosting system. You can mirror projects from Github, or if Github turns evil then just host your own projects while retaining the familiar <i>fork-and-pull</i> workflow. If you can use Github then you can also use Gogs.
 </p>
@@ -397,9 +397,9 @@ Lightweight git project hosting system. You can mirror projects from Github, or
 </p>
 </div>
 </div>
-<div id="outline-container-orga0d0944" class="outline-2">
-<h2 id="orga0d0944">HTMLy</h2>
-<div class="outline-text-2" id="text-orga0d0944">
+<div id="outline-container-org7baab7d" class="outline-2">
+<h2 id="org7baab7d">HTMLy</h2>
+<div class="outline-text-2" id="text-org7baab7d">
 <p>
 Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
@@ -409,9 +409,9 @@ Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
 </div>
 </div>
-<div id="outline-container-orgaee8baf" class="outline-2">
-<h2 id="orgaee8baf">Hubzilla</h2>
-<div class="outline-text-2" id="text-orgaee8baf">
+<div id="outline-container-org197b501" class="outline-2">
+<h2 id="org197b501">Hubzilla</h2>
+<div class="outline-text-2" id="text-org197b501">
 <p>
 Web publishing platform with social network like features and good privacy controls so that it's possible to specify who can see which content. Includes photo albums, calendar, wiki and file storage.
 </p>
@@ -421,9 +421,9 @@ Web publishing platform with social network like features and good privacy contr
 </p>
 </div>
 </div>
-<div id="outline-container-org96c213d" class="outline-2">
-<h2 id="org96c213d">Icecast media stream</h2>
-<div class="outline-text-2" id="text-org96c213d">
+<div id="outline-container-org4838262" class="outline-2">
+<h2 id="org4838262">Icecast media stream</h2>
+<div class="outline-text-2" id="text-org4838262">
 <p>
 Make your own internet radio station.
 </p>
@@ -433,9 +433,9 @@ Make your own internet radio station.
 </p>
 </div>
 </div>
-<div id="outline-container-org1b6fde5" class="outline-2">
-<h2 id="org1b6fde5">IRC Server (ngirc)</h2>
-<div class="outline-text-2" id="text-org1b6fde5">
+<div id="outline-container-org5d3dd13" class="outline-2">
+<h2 id="org5d3dd13">IRC Server (ngirc)</h2>
+<div class="outline-text-2" id="text-org5d3dd13">
 <p>
 Run your own IRC chat channel which can be secured with a password and accessible via an onion address. A bouncer is included so that you can receive messages sent while you were offline. Works with Hexchat and other popular clients.
 </p>
@@ -445,18 +445,18 @@ Run your own IRC chat channel which can be secured with a password and accessibl
 </p>
 </div>
 </div>
-<div id="outline-container-org96e6f4f" class="outline-2">
-<h2 id="org96e6f4f">Jitsi Meet</h2>
-<div class="outline-text-2" id="text-org96e6f4f">
+<div id="outline-container-orge4b4b21" class="outline-2">
+<h2 id="orge4b4b21">Jitsi Meet</h2>
+<div class="outline-text-2" id="text-orge4b4b21">
 <p>
 Experimental WebRTC video conferencing system, similar to Google Hangouts. This may not be fully functional, but is hoped to be in the near future.
 </p>
 </div>
 </div>
 
-<div id="outline-container-orge07f1f9" class="outline-2">
-<h2 id="orge07f1f9">KanBoard</h2>
-<div class="outline-text-2" id="text-orge07f1f9">
+<div id="outline-container-org65e3fd6" class="outline-2">
+<h2 id="org65e3fd6">KanBoard</h2>
+<div class="outline-text-2" id="text-org65e3fd6">
 <p>
 A simple kanban system for managing projects or TODO lists.
 </p>
@@ -466,9 +466,9 @@ A simple kanban system for managing projects or TODO lists.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd69a78b" class="outline-2">
-<h2 id="orgd69a78b">Key Server</h2>
-<div class="outline-text-2" id="text-orgd69a78b">
+<div id="outline-container-orgb890e3d" class="outline-2">
+<h2 id="orgb890e3d">Key Server</h2>
+<div class="outline-text-2" id="text-orgb890e3d">
 <p>
 An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
@@ -478,9 +478,9 @@ An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
 </div>
 </div>
-<div id="outline-container-org84e4e1c" class="outline-2">
-<h2 id="org84e4e1c">Koel</h2>
-<div class="outline-text-2" id="text-org84e4e1c">
+<div id="outline-container-org3087dee" class="outline-2">
+<h2 id="org3087dee">Koel</h2>
+<div class="outline-text-2" id="text-org3087dee">
 <p>
 Access your music collection from any internet connected device.
 </p>
@@ -490,9 +490,9 @@ Access your music collection from any internet connected device.
 </p>
 </div>
 </div>
-<div id="outline-container-org92b57ea" class="outline-2">
-<h2 id="org92b57ea">Lychee</h2>
-<div class="outline-text-2" id="text-org92b57ea">
+<div id="outline-container-org0b1728a" class="outline-2">
+<h2 id="org0b1728a">Lychee</h2>
+<div class="outline-text-2" id="text-org0b1728a">
 <p>
 Make your photo albums available on the web.
 </p>
@@ -502,9 +502,9 @@ Make your photo albums available on the web.
 </p>
 </div>
 </div>
-<div id="outline-container-orgeb1cdb7" class="outline-2">
-<h2 id="orgeb1cdb7">Mailpile</h2>
-<div class="outline-text-2" id="text-orgeb1cdb7">
+<div id="outline-container-orgf3b475a" class="outline-2">
+<h2 id="orgf3b475a">Mailpile</h2>
+<div class="outline-text-2" id="text-orgf3b475a">
 <p>
 Modern email client which supports GPG encryption.
 </p>
@@ -514,9 +514,9 @@ Modern email client which supports GPG encryption.
 </p>
 </div>
 </div>
-<div id="outline-container-org48106ac" class="outline-2">
-<h2 id="org48106ac">Matrix</h2>
-<div class="outline-text-2" id="text-org48106ac">
+<div id="outline-container-org23214e6" class="outline-2">
+<h2 id="org23214e6">Matrix</h2>
+<div class="outline-text-2" id="text-org23214e6">
 <p>
 Multi-user chat with some security and moderation controls.
 </p>
@@ -526,9 +526,9 @@ Multi-user chat with some security and moderation controls.
 </p>
 </div>
 </div>
-<div id="outline-container-orgdb0e51d" class="outline-2">
-<h2 id="orgdb0e51d">Mediagoblin</h2>
-<div class="outline-text-2" id="text-orgdb0e51d">
+<div id="outline-container-org296571f" class="outline-2">
+<h2 id="org296571f">Mediagoblin</h2>
+<div class="outline-text-2" id="text-org296571f">
 <p>
 Publicly host video and audio files so that you don't need to use YouTube/Vimeo/etc.
 </p>
@@ -538,9 +538,9 @@ Publicly host video and audio files so that you don't need to use YouTube/Vimeo/
 </p>
 </div>
 </div>
-<div id="outline-container-org12e0a7d" class="outline-2">
-<h2 id="org12e0a7d">Mumble</h2>
-<div class="outline-text-2" id="text-org12e0a7d">
+<div id="outline-container-orgaa7afe5" class="outline-2">
+<h2 id="orgaa7afe5">Mumble</h2>
+<div class="outline-text-2" id="text-orgaa7afe5">
 <p>
 The popular VoIP and text chat system. Say goodbye to old-fashioned telephony conferences with silly dial codes. Also works well on mobile.
 </p>
@@ -550,9 +550,9 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
 </p>
 </div>
 </div>
-<div id="outline-container-org6d141d2" class="outline-2">
-<h2 id="org6d141d2">NextCloud</h2>
-<div class="outline-text-2" id="text-org6d141d2">
+<div id="outline-container-org4c18b61" class="outline-2">
+<h2 id="org4c18b61">NextCloud</h2>
+<div class="outline-text-2" id="text-org4c18b61">
 <p>
 Store files on your server and sync them with laptops or mobile devices. Includes many plugins including videoconferencing and collaborative document editing.
 </p>
@@ -562,9 +562,9 @@ Store files on your server and sync them with laptops or mobile devices. Include
 </p>
 </div>
 </div>
-<div id="outline-container-orgfbcc2bd" class="outline-2">
-<h2 id="orgfbcc2bd">PeerTube</h2>
-<div class="outline-text-2" id="text-orgfbcc2bd">
+<div id="outline-container-orgce573a5" class="outline-2">
+<h2 id="orgce573a5">PeerTube</h2>
+<div class="outline-text-2" id="text-orgce573a5">
 <p>
 Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better enables the streaming load to be shared across servers.
 </p>
@@ -574,9 +574,9 @@ Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better en
 </p>
 </div>
 </div>
-<div id="outline-container-org460d63a" class="outline-2">
-<h2 id="org460d63a">PI-Hole</h2>
-<div class="outline-text-2" id="text-org460d63a">
+<div id="outline-container-orgda7ea20" class="outline-2">
+<h2 id="orgda7ea20">PI-Hole</h2>
+<div class="outline-text-2" id="text-orgda7ea20">
 <p>
 The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
 </p>
@@ -586,9 +586,9 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 </p>
 </div>
 </div>
-<div id="outline-container-org65deb16" class="outline-2">
-<h2 id="org65deb16">PostActiv</h2>
-<div class="outline-text-2" id="text-org65deb16">
+<div id="outline-container-org4a4d87f" class="outline-2">
+<h2 id="org4a4d87f">PostActiv</h2>
+<div class="outline-text-2" id="text-org4a4d87f">
 <p>
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 </p>
@@ -598,9 +598,21 @@ An alternative federated social networking system compatible with GNU Social, Pl
 </p>
 </div>
 </div>
-<div id="outline-container-org8852da5" class="outline-2">
-<h2 id="org8852da5">Profanity</h2>
-<div class="outline-text-2" id="text-org8852da5">
+<div id="outline-container-orgf29d988" class="outline-2">
+<h2 id="orgf29d988">PrivateBin</h2>
+<div class="outline-text-2" id="text-orgf29d988">
+<p>
+A pastebin where the server has zero knowledge of the content being pasted.
+</p>
+
+<p>
+<a href="./app_privatebin.html">How to use it</a>
+</p>
+</div>
+</div>
+<div id="outline-container-orgb785763" class="outline-2">
+<h2 id="orgb785763">Profanity</h2>
+<div class="outline-text-2" id="text-orgb785763">
 <p>
 A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
@@ -610,9 +622,9 @@ A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
 </div>
 </div>
-<div id="outline-container-org262f5c6" class="outline-2">
-<h2 id="org262f5c6">Riot Web</h2>
-<div class="outline-text-2" id="text-org262f5c6">
+<div id="outline-container-orgb577c3c" class="outline-2">
+<h2 id="orgb577c3c">Riot Web</h2>
+<div class="outline-text-2" id="text-orgb577c3c">
 <p>
 A browser based user interface for the Matrix federated communications system, including WebRTC audio and video chat.
 </p>
@@ -622,9 +634,9 @@ A browser based user interface for the Matrix federated communications system, i
 </p>
 </div>
 </div>
-<div id="outline-container-org5c685c7" class="outline-2">
-<h2 id="org5c685c7">SearX</h2>
-<div class="outline-text-2" id="text-org5c685c7">
+<div id="outline-container-org650041a" class="outline-2">
+<h2 id="org650041a">SearX</h2>
+<div class="outline-text-2" id="text-org650041a">
 <p>
 A metasearch engine for customised and private web searches.
 </p>
@@ -634,9 +646,9 @@ A metasearch engine for customised and private web searches.
 </p>
 </div>
 </div>
-<div id="outline-container-org609aeef" class="outline-2">
-<h2 id="org609aeef">tt-rss</h2>
-<div class="outline-text-2" id="text-org609aeef">
+<div id="outline-container-org231058a" class="outline-2">
+<h2 id="org231058a">tt-rss</h2>
+<div class="outline-text-2" id="text-org231058a">
 <p>
 Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via an onion address. Have "<i>the right to read</i>" without the Surveillance State knowing what you're reading. Also available with a user interface suitable for viewing on mobile devices via a browser such as OrFox.
 </p>
@@ -646,9 +658,9 @@ Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via a
 </p>
 </div>
 </div>
-<div id="outline-container-orgf0d4a79" class="outline-2">
-<h2 id="orgf0d4a79">Syncthing</h2>
-<div class="outline-text-2" id="text-orgf0d4a79">
+<div id="outline-container-org6a2c5e3" class="outline-2">
+<h2 id="org6a2c5e3">Syncthing</h2>
+<div class="outline-text-2" id="text-org6a2c5e3">
 <p>
 Possibly the best way to synchronise files across all of your devices. Once it has been set up it "just works" with no user intervention needed.
 </p>
@@ -658,9 +670,9 @@ Possibly the best way to synchronise files across all of your devices. Once it h
 </p>
 </div>
 </div>
-<div id="outline-container-org91cbbcf" class="outline-2">
-<h2 id="org91cbbcf">Tahoe-LAFS</h2>
-<div class="outline-text-2" id="text-org91cbbcf">
+<div id="outline-container-org05dcfc7" class="outline-2">
+<h2 id="org05dcfc7">Tahoe-LAFS</h2>
+<div class="outline-text-2" id="text-org05dcfc7">
 <p>
 Robust and encrypted storage of files on one or more server.
 </p>
@@ -670,9 +682,9 @@ Robust and encrypted storage of files on one or more server.
 </p>
 </div>
 </div>
-<div id="outline-container-orgf95d31b" class="outline-2">
-<h2 id="orgf95d31b">Tox</h2>
-<div class="outline-text-2" id="text-orgf95d31b">
+<div id="outline-container-orgd360ee5" class="outline-2">
+<h2 id="orgd360ee5">Tox</h2>
+<div class="outline-text-2" id="text-orgd360ee5">
 <p>
 Client and bootstrap node for the Tox chat/VoIP system.
 </p>
@@ -682,9 +694,9 @@ Client and bootstrap node for the Tox chat/VoIP system.
 </p>
 </div>
 </div>
-<div id="outline-container-org20594a2" class="outline-2">
-<h2 id="org20594a2">Turtl</h2>
-<div class="outline-text-2" id="text-org20594a2">
+<div id="outline-container-org53cf66b" class="outline-2">
+<h2 id="org53cf66b">Turtl</h2>
+<div class="outline-text-2" id="text-org53cf66b">
 <p>
 A system for privately creating and sharing notes and images, similar to Evernote but without the spying.
 </p>
@@ -694,18 +706,18 @@ A system for privately creating and sharing notes and images, similar to Evernot
 </p>
 </div>
 </div>
-<div id="outline-container-orga4d94aa" class="outline-2">
-<h2 id="orga4d94aa">Vim</h2>
-<div class="outline-text-2" id="text-orga4d94aa">
+<div id="outline-container-orgc51045a" class="outline-2">
+<h2 id="orgc51045a">Vim</h2>
+<div class="outline-text-2" id="text-orgc51045a">
 <p>
 If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
 </p>
 </div>
 </div>
 
-<div id="outline-container-org83399c4" class="outline-2">
-<h2 id="org83399c4">Virtual Private Network (VPN)</h2>
-<div class="outline-text-2" id="text-org83399c4">
+<div id="outline-container-org2ae2b61" class="outline-2">
+<h2 id="org2ae2b61">Virtual Private Network (VPN)</h2>
+<div class="outline-text-2" id="text-org2ae2b61">
 <p>
 Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
@@ -715,9 +727,9 @@ Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
 </div>
 </div>
-<div id="outline-container-org409bdd6" class="outline-2">
-<h2 id="org409bdd6">XMPP</h2>
-<div class="outline-text-2" id="text-org409bdd6">
+<div id="outline-container-orgccb41b1" class="outline-2">
+<h2 id="orgccb41b1">XMPP</h2>
+<div class="outline-text-2" id="text-orgccb41b1">
 <p>
 Chat server which can be used together with client such as Gajim or Conversations to provide end-to-end content security and also onion routed metadata security. Includes advanced features such as <i>client state notification</i> to save battery power on your mobile devices, support for seamless roaming between networks and <i>message carbons</i> so that you can receive the same messages while being simultaneously logged in to your account on more than one device.
 </p>

From d5526731f1baae2330924b33abaf72cff9e5d846 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 22:24:43 +0000
Subject: [PATCH 14/15] Missing bracket

---
 doc/EN/apps.org | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/EN/apps.org b/doc/EN/apps.org
index a3e60551..b1d1f42e 100644
--- a/doc/EN/apps.org
+++ b/doc/EN/apps.org
@@ -135,7 +135,7 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 * PostActiv
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 
-[[./app_postactiv.html][How to use it]
+[[./app_postactiv.html][How to use it]]
 * PrivateBin
 A pastebin where the server has zero knowledge of the content being pasted.
 

From 0f9e185c7770b6fcb94215ff247cc3ccdb023d05 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Wed, 10 Jan 2018 22:25:44 +0000
Subject: [PATCH 15/15] Missing bracket

---
 website/EN/apps.html | 244 +++++++++++++++++++++----------------------
 1 file changed, 122 insertions(+), 122 deletions(-)

diff --git a/website/EN/apps.html b/website/EN/apps.html
index 29f18a6b..5eea8214 100644
--- a/website/EN/apps.html
+++ b/website/EN/apps.html
@@ -3,7 +3,7 @@
 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
 <head>
-<!-- 2018-01-10 Wed 22:22 -->
+<!-- 2018-01-10 Wed 22:25 -->
 <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
 <meta name="viewport" content="width=device-width, initial-scale=1" />
 <title>&lrm;</title>
@@ -265,9 +265,9 @@ The base install of the system just contains an email server and Mutt client, bu
 </div>
 
 
-<div id="outline-container-org8de0dd5" class="outline-2">
-<h2 id="org8de0dd5">Akaunting</h2>
-<div class="outline-text-2" id="text-org8de0dd5">
+<div id="outline-container-org882df4a" class="outline-2">
+<h2 id="org882df4a">Akaunting</h2>
+<div class="outline-text-2" id="text-org882df4a">
 <p>
 A web based accounts system for small businesses or freelancers.
 </p>
@@ -277,9 +277,9 @@ A web based accounts system for small businesses or freelancers.
 </p>
 </div>
 </div>
-<div id="outline-container-org5c4daa6" class="outline-2">
-<h2 id="org5c4daa6">CryptPad</h2>
-<div class="outline-text-2" id="text-org5c4daa6">
+<div id="outline-container-orge821a92" class="outline-2">
+<h2 id="orge821a92">CryptPad</h2>
+<div class="outline-text-2" id="text-orge821a92">
 <p>
 Collaborate on editing documents, presentations and source code, or vote on things. All with a good level of security.
 </p>
@@ -289,9 +289,9 @@ Collaborate on editing documents, presentations and source code, or vote on thin
 </p>
 </div>
 </div>
-<div id="outline-container-orgfe3ddd3" class="outline-2">
-<h2 id="orgfe3ddd3">DLNA</h2>
-<div class="outline-text-2" id="text-orgfe3ddd3">
+<div id="outline-container-org6d56481" class="outline-2">
+<h2 id="org6d56481">DLNA</h2>
+<div class="outline-text-2" id="text-org6d56481">
 <p>
 Enables you to use the system as a music server which any DLNA compatible devices can connect to within your home network.
 </p>
@@ -301,9 +301,9 @@ Enables you to use the system as a music server which any DLNA compatible device
 </p>
 </div>
 </div>
-<div id="outline-container-orgf6be7d2" class="outline-2">
-<h2 id="orgf6be7d2">Dokuwiki</h2>
-<div class="outline-text-2" id="text-orgf6be7d2">
+<div id="outline-container-org0aaf2bf" class="outline-2">
+<h2 id="org0aaf2bf">Dokuwiki</h2>
+<div class="outline-text-2" id="text-org0aaf2bf">
 <p>
 A databaseless wiki system.
 </p>
@@ -313,9 +313,9 @@ A databaseless wiki system.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd16b0b8" class="outline-2">
-<h2 id="orgd16b0b8">Emacs</h2>
-<div class="outline-text-2" id="text-orgd16b0b8">
+<div id="outline-container-orga523977" class="outline-2">
+<h2 id="orga523977">Emacs</h2>
+<div class="outline-text-2" id="text-orga523977">
 <p>
 If you use the Mutt client to read your email then this will set it up to use emacs for composing new mail.
 </p>
@@ -325,9 +325,9 @@ If you use the Mutt client to read your email then this will set it up to use em
 </p>
 </div>
 </div>
-<div id="outline-container-org824cdf1" class="outline-2">
-<h2 id="org824cdf1">Etherpad</h2>
-<div class="outline-text-2" id="text-org824cdf1">
+<div id="outline-container-org11ae2d9" class="outline-2">
+<h2 id="org11ae2d9">Etherpad</h2>
+<div class="outline-text-2" id="text-org11ae2d9">
 <p>
 Collaborate on creating documents in real time. Maybe you're planning a holiday with other family members or creating documentation for a Free Software project along with other volunteers. Etherpad is hard to beat for simplicity and speed. Only users of the system will be able to access it.
 </p>
@@ -337,9 +337,9 @@ Collaborate on creating documents in real time. Maybe you're planning a holiday
 </p>
 </div>
 </div>
-<div id="outline-container-org2ba453d" class="outline-2">
-<h2 id="org2ba453d">Federated wiki</h2>
-<div class="outline-text-2" id="text-org2ba453d">
+<div id="outline-container-org7f75cbc" class="outline-2">
+<h2 id="org7f75cbc">Federated wiki</h2>
+<div class="outline-text-2" id="text-org7f75cbc">
 <p>
 A new approach to creating wiki content.
 </p>
@@ -349,9 +349,9 @@ A new approach to creating wiki content.
 </p>
 </div>
 </div>
-<div id="outline-container-orge281313" class="outline-2">
-<h2 id="orge281313">Friendica</h2>
-<div class="outline-text-2" id="text-orge281313">
+<div id="outline-container-org538cc52" class="outline-2">
+<h2 id="org538cc52">Friendica</h2>
+<div class="outline-text-2" id="text-org538cc52">
 <p>
 Federated social network system.
 </p>
@@ -361,9 +361,9 @@ Federated social network system.
 </p>
 </div>
 </div>
-<div id="outline-container-org73e47e5" class="outline-2">
-<h2 id="org73e47e5">Ghost</h2>
-<div class="outline-text-2" id="text-org73e47e5">
+<div id="outline-container-orga0e917c" class="outline-2">
+<h2 id="orga0e917c">Ghost</h2>
+<div class="outline-text-2" id="text-orga0e917c">
 <p>
 Modern looking blogging system.
 </p>
@@ -373,9 +373,9 @@ Modern looking blogging system.
 </p>
 </div>
 </div>
-<div id="outline-container-orgf3aaa00" class="outline-2">
-<h2 id="orgf3aaa00">GNU Social</h2>
-<div class="outline-text-2" id="text-orgf3aaa00">
+<div id="outline-container-org5741481" class="outline-2">
+<h2 id="org5741481">GNU Social</h2>
+<div class="outline-text-2" id="text-org5741481">
 <p>
 Federated social network based on the OStatus protocol. You can "<i>remote follow</i>" other users within the GNU Social federation.
 </p>
@@ -385,9 +385,9 @@ Federated social network based on the OStatus protocol. You can "<i>remote follo
 </p>
 </div>
 </div>
-<div id="outline-container-org18b93b5" class="outline-2">
-<h2 id="org18b93b5">Gogs</h2>
-<div class="outline-text-2" id="text-org18b93b5">
+<div id="outline-container-org0b7fe9f" class="outline-2">
+<h2 id="org0b7fe9f">Gogs</h2>
+<div class="outline-text-2" id="text-org0b7fe9f">
 <p>
 Lightweight git project hosting system. You can mirror projects from Github, or if Github turns evil then just host your own projects while retaining the familiar <i>fork-and-pull</i> workflow. If you can use Github then you can also use Gogs.
 </p>
@@ -397,9 +397,9 @@ Lightweight git project hosting system. You can mirror projects from Github, or
 </p>
 </div>
 </div>
-<div id="outline-container-org7baab7d" class="outline-2">
-<h2 id="org7baab7d">HTMLy</h2>
-<div class="outline-text-2" id="text-org7baab7d">
+<div id="outline-container-org0cb9182" class="outline-2">
+<h2 id="org0cb9182">HTMLy</h2>
+<div class="outline-text-2" id="text-org0cb9182">
 <p>
 Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
@@ -409,9 +409,9 @@ Databaseless blogging system. Quite simple and with a markdown-like format.
 </p>
 </div>
 </div>
-<div id="outline-container-org197b501" class="outline-2">
-<h2 id="org197b501">Hubzilla</h2>
-<div class="outline-text-2" id="text-org197b501">
+<div id="outline-container-orgd9569c1" class="outline-2">
+<h2 id="orgd9569c1">Hubzilla</h2>
+<div class="outline-text-2" id="text-orgd9569c1">
 <p>
 Web publishing platform with social network like features and good privacy controls so that it's possible to specify who can see which content. Includes photo albums, calendar, wiki and file storage.
 </p>
@@ -421,9 +421,9 @@ Web publishing platform with social network like features and good privacy contr
 </p>
 </div>
 </div>
-<div id="outline-container-org4838262" class="outline-2">
-<h2 id="org4838262">Icecast media stream</h2>
-<div class="outline-text-2" id="text-org4838262">
+<div id="outline-container-orgab4800e" class="outline-2">
+<h2 id="orgab4800e">Icecast media stream</h2>
+<div class="outline-text-2" id="text-orgab4800e">
 <p>
 Make your own internet radio station.
 </p>
@@ -433,9 +433,9 @@ Make your own internet radio station.
 </p>
 </div>
 </div>
-<div id="outline-container-org5d3dd13" class="outline-2">
-<h2 id="org5d3dd13">IRC Server (ngirc)</h2>
-<div class="outline-text-2" id="text-org5d3dd13">
+<div id="outline-container-orgd862282" class="outline-2">
+<h2 id="orgd862282">IRC Server (ngirc)</h2>
+<div class="outline-text-2" id="text-orgd862282">
 <p>
 Run your own IRC chat channel which can be secured with a password and accessible via an onion address. A bouncer is included so that you can receive messages sent while you were offline. Works with Hexchat and other popular clients.
 </p>
@@ -445,18 +445,18 @@ Run your own IRC chat channel which can be secured with a password and accessibl
 </p>
 </div>
 </div>
-<div id="outline-container-orge4b4b21" class="outline-2">
-<h2 id="orge4b4b21">Jitsi Meet</h2>
-<div class="outline-text-2" id="text-orge4b4b21">
+<div id="outline-container-orgd19b0f8" class="outline-2">
+<h2 id="orgd19b0f8">Jitsi Meet</h2>
+<div class="outline-text-2" id="text-orgd19b0f8">
 <p>
 Experimental WebRTC video conferencing system, similar to Google Hangouts. This may not be fully functional, but is hoped to be in the near future.
 </p>
 </div>
 </div>
 
-<div id="outline-container-org65e3fd6" class="outline-2">
-<h2 id="org65e3fd6">KanBoard</h2>
-<div class="outline-text-2" id="text-org65e3fd6">
+<div id="outline-container-org4fd23ed" class="outline-2">
+<h2 id="org4fd23ed">KanBoard</h2>
+<div class="outline-text-2" id="text-org4fd23ed">
 <p>
 A simple kanban system for managing projects or TODO lists.
 </p>
@@ -466,9 +466,9 @@ A simple kanban system for managing projects or TODO lists.
 </p>
 </div>
 </div>
-<div id="outline-container-orgb890e3d" class="outline-2">
-<h2 id="orgb890e3d">Key Server</h2>
-<div class="outline-text-2" id="text-orgb890e3d">
+<div id="outline-container-org091b6da" class="outline-2">
+<h2 id="org091b6da">Key Server</h2>
+<div class="outline-text-2" id="text-org091b6da">
 <p>
 An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
@@ -478,9 +478,9 @@ An OpenPGP key server for storing and retrieving GPG public keys.
 </p>
 </div>
 </div>
-<div id="outline-container-org3087dee" class="outline-2">
-<h2 id="org3087dee">Koel</h2>
-<div class="outline-text-2" id="text-org3087dee">
+<div id="outline-container-org471027b" class="outline-2">
+<h2 id="org471027b">Koel</h2>
+<div class="outline-text-2" id="text-org471027b">
 <p>
 Access your music collection from any internet connected device.
 </p>
@@ -490,9 +490,9 @@ Access your music collection from any internet connected device.
 </p>
 </div>
 </div>
-<div id="outline-container-org0b1728a" class="outline-2">
-<h2 id="org0b1728a">Lychee</h2>
-<div class="outline-text-2" id="text-org0b1728a">
+<div id="outline-container-org0424b63" class="outline-2">
+<h2 id="org0424b63">Lychee</h2>
+<div class="outline-text-2" id="text-org0424b63">
 <p>
 Make your photo albums available on the web.
 </p>
@@ -502,9 +502,9 @@ Make your photo albums available on the web.
 </p>
 </div>
 </div>
-<div id="outline-container-orgf3b475a" class="outline-2">
-<h2 id="orgf3b475a">Mailpile</h2>
-<div class="outline-text-2" id="text-orgf3b475a">
+<div id="outline-container-orga6a88dd" class="outline-2">
+<h2 id="orga6a88dd">Mailpile</h2>
+<div class="outline-text-2" id="text-orga6a88dd">
 <p>
 Modern email client which supports GPG encryption.
 </p>
@@ -514,9 +514,9 @@ Modern email client which supports GPG encryption.
 </p>
 </div>
 </div>
-<div id="outline-container-org23214e6" class="outline-2">
-<h2 id="org23214e6">Matrix</h2>
-<div class="outline-text-2" id="text-org23214e6">
+<div id="outline-container-org6518c3d" class="outline-2">
+<h2 id="org6518c3d">Matrix</h2>
+<div class="outline-text-2" id="text-org6518c3d">
 <p>
 Multi-user chat with some security and moderation controls.
 </p>
@@ -526,9 +526,9 @@ Multi-user chat with some security and moderation controls.
 </p>
 </div>
 </div>
-<div id="outline-container-org296571f" class="outline-2">
-<h2 id="org296571f">Mediagoblin</h2>
-<div class="outline-text-2" id="text-org296571f">
+<div id="outline-container-org1413e81" class="outline-2">
+<h2 id="org1413e81">Mediagoblin</h2>
+<div class="outline-text-2" id="text-org1413e81">
 <p>
 Publicly host video and audio files so that you don't need to use YouTube/Vimeo/etc.
 </p>
@@ -538,9 +538,9 @@ Publicly host video and audio files so that you don't need to use YouTube/Vimeo/
 </p>
 </div>
 </div>
-<div id="outline-container-orgaa7afe5" class="outline-2">
-<h2 id="orgaa7afe5">Mumble</h2>
-<div class="outline-text-2" id="text-orgaa7afe5">
+<div id="outline-container-orgb8d2738" class="outline-2">
+<h2 id="orgb8d2738">Mumble</h2>
+<div class="outline-text-2" id="text-orgb8d2738">
 <p>
 The popular VoIP and text chat system. Say goodbye to old-fashioned telephony conferences with silly dial codes. Also works well on mobile.
 </p>
@@ -550,9 +550,9 @@ The popular VoIP and text chat system. Say goodbye to old-fashioned telephony co
 </p>
 </div>
 </div>
-<div id="outline-container-org4c18b61" class="outline-2">
-<h2 id="org4c18b61">NextCloud</h2>
-<div class="outline-text-2" id="text-org4c18b61">
+<div id="outline-container-org78d79cd" class="outline-2">
+<h2 id="org78d79cd">NextCloud</h2>
+<div class="outline-text-2" id="text-org78d79cd">
 <p>
 Store files on your server and sync them with laptops or mobile devices. Includes many plugins including videoconferencing and collaborative document editing.
 </p>
@@ -562,9 +562,9 @@ Store files on your server and sync them with laptops or mobile devices. Include
 </p>
 </div>
 </div>
-<div id="outline-container-orgce573a5" class="outline-2">
-<h2 id="orgce573a5">PeerTube</h2>
-<div class="outline-text-2" id="text-orgce573a5">
+<div id="outline-container-org40a7fdc" class="outline-2">
+<h2 id="org40a7fdc">PeerTube</h2>
+<div class="outline-text-2" id="text-org40a7fdc">
 <p>
 Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better enables the streaming load to be shared across servers.
 </p>
@@ -574,9 +574,9 @@ Peer-to-peer video hosting. Similar to Mediagoblin, but the P2P aspect better en
 </p>
 </div>
 </div>
-<div id="outline-container-orgda7ea20" class="outline-2">
-<h2 id="orgda7ea20">PI-Hole</h2>
-<div class="outline-text-2" id="text-orgda7ea20">
+<div id="outline-container-orgfca92a1" class="outline-2">
+<h2 id="orgfca92a1">PI-Hole</h2>
+<div class="outline-text-2" id="text-orgfca92a1">
 <p>
 The black hole for web adverts. Block adverts at the domain name level within your local network. It can significantly reduce bandwidth, speed up page load times and protect your systems from being tracked by spyware.
 </p>
@@ -586,21 +586,21 @@ The black hole for web adverts. Block adverts at the domain name level within yo
 </p>
 </div>
 </div>
-<div id="outline-container-org4a4d87f" class="outline-2">
-<h2 id="org4a4d87f">PostActiv</h2>
-<div class="outline-text-2" id="text-org4a4d87f">
+<div id="outline-container-org78a2d24" class="outline-2">
+<h2 id="org78a2d24">PostActiv</h2>
+<div class="outline-text-2" id="text-org78a2d24">
 <p>
 An alternative federated social networking system compatible with GNU Social, Pleroma and Mastodon. It includes some optimisations and fixes currently not available within the main GNU Social project.
 </p>
 
 <p>
-[[./app_postactiv.html][How to use it]
+<a href="./app_postactiv.html">How to use it</a>
 </p>
 </div>
 </div>
-<div id="outline-container-orgf29d988" class="outline-2">
-<h2 id="orgf29d988">PrivateBin</h2>
-<div class="outline-text-2" id="text-orgf29d988">
+<div id="outline-container-org233a0fb" class="outline-2">
+<h2 id="org233a0fb">PrivateBin</h2>
+<div class="outline-text-2" id="text-org233a0fb">
 <p>
 A pastebin where the server has zero knowledge of the content being pasted.
 </p>
@@ -610,9 +610,9 @@ A pastebin where the server has zero knowledge of the content being pasted.
 </p>
 </div>
 </div>
-<div id="outline-container-orgb785763" class="outline-2">
-<h2 id="orgb785763">Profanity</h2>
-<div class="outline-text-2" id="text-orgb785763">
+<div id="outline-container-org70bfbdf" class="outline-2">
+<h2 id="org70bfbdf">Profanity</h2>
+<div class="outline-text-2" id="text-org70bfbdf">
 <p>
 A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
@@ -622,9 +622,9 @@ A shell based XMPP client which you can run on the Freedombone server via ssh.
 </p>
 </div>
 </div>
-<div id="outline-container-orgb577c3c" class="outline-2">
-<h2 id="orgb577c3c">Riot Web</h2>
-<div class="outline-text-2" id="text-orgb577c3c">
+<div id="outline-container-org3e596b4" class="outline-2">
+<h2 id="org3e596b4">Riot Web</h2>
+<div class="outline-text-2" id="text-org3e596b4">
 <p>
 A browser based user interface for the Matrix federated communications system, including WebRTC audio and video chat.
 </p>
@@ -634,9 +634,9 @@ A browser based user interface for the Matrix federated communications system, i
 </p>
 </div>
 </div>
-<div id="outline-container-org650041a" class="outline-2">
-<h2 id="org650041a">SearX</h2>
-<div class="outline-text-2" id="text-org650041a">
+<div id="outline-container-org19a30bc" class="outline-2">
+<h2 id="org19a30bc">SearX</h2>
+<div class="outline-text-2" id="text-org19a30bc">
 <p>
 A metasearch engine for customised and private web searches.
 </p>
@@ -646,9 +646,9 @@ A metasearch engine for customised and private web searches.
 </p>
 </div>
 </div>
-<div id="outline-container-org231058a" class="outline-2">
-<h2 id="org231058a">tt-rss</h2>
-<div class="outline-text-2" id="text-org231058a">
+<div id="outline-container-orgfdae631" class="outline-2">
+<h2 id="orgfdae631">tt-rss</h2>
+<div class="outline-text-2" id="text-orgfdae631">
 <p>
 Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via an onion address. Have "<i>the right to read</i>" without the Surveillance State knowing what you're reading. Also available with a user interface suitable for viewing on mobile devices via a browser such as OrFox.
 </p>
@@ -658,9 +658,9 @@ Private RSS reader. Pulls in RSS/Atom feeds via Tor and is only accessible via a
 </p>
 </div>
 </div>
-<div id="outline-container-org6a2c5e3" class="outline-2">
-<h2 id="org6a2c5e3">Syncthing</h2>
-<div class="outline-text-2" id="text-org6a2c5e3">
+<div id="outline-container-org6c1fb9a" class="outline-2">
+<h2 id="org6c1fb9a">Syncthing</h2>
+<div class="outline-text-2" id="text-org6c1fb9a">
 <p>
 Possibly the best way to synchronise files across all of your devices. Once it has been set up it "just works" with no user intervention needed.
 </p>
@@ -670,9 +670,9 @@ Possibly the best way to synchronise files across all of your devices. Once it h
 </p>
 </div>
 </div>
-<div id="outline-container-org05dcfc7" class="outline-2">
-<h2 id="org05dcfc7">Tahoe-LAFS</h2>
-<div class="outline-text-2" id="text-org05dcfc7">
+<div id="outline-container-org313c9b7" class="outline-2">
+<h2 id="org313c9b7">Tahoe-LAFS</h2>
+<div class="outline-text-2" id="text-org313c9b7">
 <p>
 Robust and encrypted storage of files on one or more server.
 </p>
@@ -682,9 +682,9 @@ Robust and encrypted storage of files on one or more server.
 </p>
 </div>
 </div>
-<div id="outline-container-orgd360ee5" class="outline-2">
-<h2 id="orgd360ee5">Tox</h2>
-<div class="outline-text-2" id="text-orgd360ee5">
+<div id="outline-container-org74af2ab" class="outline-2">
+<h2 id="org74af2ab">Tox</h2>
+<div class="outline-text-2" id="text-org74af2ab">
 <p>
 Client and bootstrap node for the Tox chat/VoIP system.
 </p>
@@ -694,9 +694,9 @@ Client and bootstrap node for the Tox chat/VoIP system.
 </p>
 </div>
 </div>
-<div id="outline-container-org53cf66b" class="outline-2">
-<h2 id="org53cf66b">Turtl</h2>
-<div class="outline-text-2" id="text-org53cf66b">
+<div id="outline-container-org5d5986e" class="outline-2">
+<h2 id="org5d5986e">Turtl</h2>
+<div class="outline-text-2" id="text-org5d5986e">
 <p>
 A system for privately creating and sharing notes and images, similar to Evernote but without the spying.
 </p>
@@ -706,18 +706,18 @@ A system for privately creating and sharing notes and images, similar to Evernot
 </p>
 </div>
 </div>
-<div id="outline-container-orgc51045a" class="outline-2">
-<h2 id="orgc51045a">Vim</h2>
-<div class="outline-text-2" id="text-orgc51045a">
+<div id="outline-container-org2b614c0" class="outline-2">
+<h2 id="org2b614c0">Vim</h2>
+<div class="outline-text-2" id="text-org2b614c0">
 <p>
 If you use the Mutt client to read your email then this will set it up to use vim for composing new mail.
 </p>
 </div>
 </div>
 
-<div id="outline-container-org2ae2b61" class="outline-2">
-<h2 id="org2ae2b61">Virtual Private Network (VPN)</h2>
-<div class="outline-text-2" id="text-org2ae2b61">
+<div id="outline-container-orgdb6427c" class="outline-2">
+<h2 id="orgdb6427c">Virtual Private Network (VPN)</h2>
+<div class="outline-text-2" id="text-orgdb6427c">
 <p>
 Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
@@ -727,9 +727,9 @@ Set up a VPN on your server so that you can bypass local internet censorship.
 </p>
 </div>
 </div>
-<div id="outline-container-orgccb41b1" class="outline-2">
-<h2 id="orgccb41b1">XMPP</h2>
-<div class="outline-text-2" id="text-orgccb41b1">
+<div id="outline-container-org15bc23b" class="outline-2">
+<h2 id="org15bc23b">XMPP</h2>
+<div class="outline-text-2" id="text-org15bc23b">
 <p>
 Chat server which can be used together with client such as Gajim or Conversations to provide end-to-end content security and also onion routed metadata security. Includes advanced features such as <i>client state notification</i> to save battery power on your mobile devices, support for seamless roaming between networks and <i>message carbons</i> so that you can receive the same messages while being simultaneously logged in to your account on more than one device.
 </p>