Installation

This commit is contained in:
Bob Mottram 2015-12-14 22:30:40 +00:00
parent b62f69cc2f
commit bfb8e6722f
3 changed files with 87 additions and 65 deletions

View File

@ -4,12 +4,29 @@
#+KEYWORDS: freedombox, debian, beaglebone, hubzilla, email, web server, home server, internet, censorship, surveillance, social network, irc, jabber #+KEYWORDS: freedombox, debian, beaglebone, hubzilla, email, web server, home server, internet, censorship, surveillance, social network, irc, jabber
#+DESCRIPTION: Turn the Beaglebone Black into a personal communications server #+DESCRIPTION: Turn the Beaglebone Black into a personal communications server
#+OPTIONS: ^:nil toc:nil #+OPTIONS: ^:nil toc:nil
#+BEGIN_CENTER
[[./images/logo.png]]
#+END_CENTER
| [[file:index.html][Home]] | [[Building an image for an SBC or Virtual Machine]] | [[Checklist]] | [[./mesh.html][Mesh network]] | [[Installation]] | [[Social Key Management (aka 'The Unforgettable Key')]] | [[Final Setup]] | [[Keydrives]] | [[On Client Machines]] | [[Administering the system]] |
* Building an image for an SBC or Virtual Machine #+BEGIN_HTML
<center>
<a href="index.html"><img style="max-width: 100%; max-height: 100%; padding: 0; margin: 0; display: block; width:100%; top: 0; left: 0; float:right;" src="images/freedom.png"/></a>
</center>
<br><br><br><br><br>
#+END_HTML
#+BEGIN_HTML
<font color="white">.</font>
#+END_HTML
| [[Building an image for a Single Board Computer or Virtual Machine]] |
| [[Checklist]] |
| [[Mesh network]] |
| [[Installation]] |
| [[Social Key Management - the 'Unforgettable Key']] |
| [[Final Setup]] |
| [[Keydrives]] |
| [[On Client Machines]] |
| [[Administering the system]] |
* Building an image for a Single Board Computer or Virtual Machine
You don't have to trust images downloaded from random internet locations signed with untrusted keys. You can build one from scratch yourself, and this is the recommended procedure for maximum security. For guidance on how to build images see the manpage for the *freedombone-image* command. You don't have to trust images downloaded from random internet locations signed with untrusted keys. You can build one from scratch yourself, and this is the recommended procedure for maximum security. For guidance on how to build images see the manpage for the *freedombone-image* command.
Install the freedombone commands onto your laptop/desktop: Install the freedombone commands onto your laptop/desktop:
@ -141,7 +158,7 @@ If you are using Virtualbox then add a new VM and select the Freedombone *vdi* i
The default login will be username 'fbone' and password 'freedombone'. Take a note of the new login password and then you can proceed through the rest of the installation. The default login will be username 'fbone' and password 'freedombone'. Take a note of the new login password and then you can proceed through the rest of the installation.
* Social Key Management (aka 'The Unforgettable Key') * Social Key Management - the 'Unforgettable Key'
During the install procedure you will be asked if you wish to import GPG keys. If you don't already possess GPG keys then just select "Ok" and they will be generated during the install. If you do already have GPG keys then there are a few possibilities During the install procedure you will be asked if you wish to import GPG keys. If you don't already possess GPG keys then just select "Ok" and they will be generated during the install. If you do already have GPG keys then there are a few possibilities
** You have the gnupg keyring on an encrypted USB drive ** You have the gnupg keyring on an encrypted USB drive

Binary file not shown.

Before

Width:  |  Height:  |  Size: 218 KiB

After

Width:  |  Height:  |  Size: 203 KiB

View File

@ -3,15 +3,15 @@
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"> <html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head> <head>
<!-- 2015-12-04 Fri 09:59 -->
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title></title> <title></title>
<!-- 2015-12-14 Mon 22:30 -->
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<meta name="generator" content="Org-mode" /> <meta name="generator" content="Org-mode" />
<meta name="author" content="Bob Mottram" /> <meta name="author" content="Bob Mottram" />
<meta name="description" content="Turn the Beaglebone Black into a personal communications server" <meta name="description" content="Turn the Beaglebone Black into a personal communications server"
/> />
<meta name="keywords" content="freedombox, debian, beaglebone, hubzilla, email, web server, home server, internet, censorship, surveillance, social network, irc, jabber" /> <meta name="keywords" content="freedombox, debian, beaglebone, hubzilla, email, web server, home server, internet, censorship, surveillance, social network, irc, jabber" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<style type="text/css"> <style type="text/css">
<!--/*--><![CDATA[/*><!--*/ <!--/*--><![CDATA[/*><!--*/
.title { text-align: center; .title { text-align: center;
@ -154,55 +154,60 @@ for the JavaScript code in this tag.
<a name="top" id="top"></a> <a name="top" id="top"></a>
</div> </div>
<div id="content"> <div id="content">
<div class="center"> <center>
<a href="index.html"><img style="max-width: 100%; max-height: 100%; padding: 0; margin: 0; display: block; width:100%; top: 0; left: 0; float:right;" src="images/freedom.png"/></a>
</center>
<br><br><br><br><br>
<font color="white">.</font>
<div class="figure">
<p><img src="./images/logo.png" alt="logo.png" />
</p>
</div>
</div>
<table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides"> <table border="2" cellspacing="0" cellpadding="6" rules="groups" frame="hsides">
<colgroup> <colgroup>
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" />
<col class="org-left" /> <col class="org-left" />
</colgroup> </colgroup>
<tbody> <tbody>
<tr> <tr>
<td class="org-left"><a href="index.html">Home</a></td> <td class="org-left"><a href="#orgheadline1">Building an image for a Single Board Computer or Virtual Machine</a></td>
<td class="org-left"><a href="#orgheadline1">Building an image for an SBC or Virtual Machine</a></td> </tr>
<tr>
<td class="org-left"><a href="#orgheadline2">Checklist</a></td> <td class="org-left"><a href="#orgheadline2">Checklist</a></td>
<td class="org-left"><a href="./mesh.html">Mesh network</a></td> </tr>
<td class="org-left"><a href="#orgheadline3">Installation</a></td>
<td class="org-left"><a href="#orgheadline4">Social Key Management (aka 'The Unforgettable Key')</a></td> <tr>
<td class="org-left"><a href="#orgheadline5">Final Setup</a></td> <td class="org-left"><a href="#orgheadline3">Mesh network</a></td>
<td class="org-left"><a href="#orgheadline6">Keydrives</a></td> </tr>
<td class="org-left"><a href="#orgheadline7">On Client Machines</a></td>
<td class="org-left"><a href="#orgheadline8">Administering the system</a></td> <tr>
<td class="org-left"><a href="#orgheadline4">Installation</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgheadline5">Social Key Management - the 'Unforgettable Key'</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgheadline6">Final Setup</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgheadline7">Keydrives</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgheadline8">On Client Machines</a></td>
</tr>
<tr>
<td class="org-left"><a href="#orgheadline9">Administering the system</a></td>
</tr> </tr>
</tbody> </tbody>
</table> </table>
<div id="outline-container-orgheadline1" class="outline-2"> <div id="outline-container-orgheadline1" class="outline-2">
<h2 id="orgheadline1">Building an image for an SBC or Virtual Machine</h2> <h2 id="orgheadline1">Building an image for a Single Board Computer or Virtual Machine</h2>
<div class="outline-text-2" id="text-orgheadline1"> <div class="outline-text-2" id="text-orgheadline1">
<p> <p>
You don't have to trust images downloaded from random internet locations signed with untrusted keys. You can build one from scratch yourself, and this is the recommended procedure for maximum security. For guidance on how to build images see the manpage for the <b>freedombone-image</b> command. You don't have to trust images downloaded from random internet locations signed with untrusted keys. You can build one from scratch yourself, and this is the recommended procedure for maximum security. For guidance on how to build images see the manpage for the <b>freedombone-image</b> command.
@ -295,17 +300,17 @@ Before installing Freedombone you will need a few things.
</ul> </ul>
</div> </div>
</div> </div>
<div id="outline-container-orgheadline9" class="outline-2"> <div id="outline-container-orgheadline3" class="outline-2">
<h2 id="orgheadline9">Mesh network</h2> <h2 id="orgheadline3">Mesh network</h2>
<div class="outline-text-2" id="text-orgheadline9"> <div class="outline-text-2" id="text-orgheadline3">
<p> <p>
If you are installing one of the mesh network variants then see <a href="./mesh.html">these instructions</a> for details. If you are installing one of the mesh network variants then see <a href="./mesh.html">these instructions</a> for details.
</p> </p>
</div> </div>
</div> </div>
<div id="outline-container-orgheadline3" class="outline-2"> <div id="outline-container-orgheadline4" class="outline-2">
<h2 id="orgheadline3">Installation</h2> <h2 id="orgheadline4">Installation</h2>
<div class="outline-text-2" id="text-orgheadline3"> <div class="outline-text-2" id="text-orgheadline4">
<p> <p>
There are three install options: Laptop/Desktop/Netbook, SBC and Virtual Machine. There are three install options: Laptop/Desktop/Netbook, SBC and Virtual Machine.
</p> </p>
@ -440,9 +445,9 @@ The default login will be username 'fbone' and password 'freedombone'. Take a no
</div> </div>
</div> </div>
<div id="outline-container-orgheadline4" class="outline-2"> <div id="outline-container-orgheadline5" class="outline-2">
<h2 id="orgheadline4">Social Key Management (aka 'The Unforgettable Key')</h2> <h2 id="orgheadline5">Social Key Management - the 'Unforgettable Key'</h2>
<div class="outline-text-2" id="text-orgheadline4"> <div class="outline-text-2" id="text-orgheadline5">
<p> <p>
During the install procedure you will be asked if you wish to import GPG keys. If you don't already possess GPG keys then just select "Ok" and they will be generated during the install. If you do already have GPG keys then there are a few possibilities During the install procedure you will be asked if you wish to import GPG keys. If you don't already possess GPG keys then just select "Ok" and they will be generated during the install. If you do already have GPG keys then there are a few possibilities
</p> </p>
@ -460,7 +465,7 @@ If you previously made a master keydrive containing the full keyring (the .gnupg
<h3 id="orgheadline14">You have a number of key fragments on USB drives retrieved from friends</h3> <h3 id="orgheadline14">You have a number of key fragments on USB drives retrieved from friends</h3>
<div class="outline-text-3" id="text-orgheadline14"> <div class="outline-text-3" id="text-orgheadline14">
<p> <p>
If you previously made some USB drives containing key fragments then retrieve them from your friends and plug them in one after the other. After the last drive has been read then remove it and just select "Ok". The system will then try to reconstruct the key. For this to work you will need to have previously made three or more <a href="#orgheadline6">Keydrives</a>. If you previously made some USB drives containing key fragments then retrieve them from your friends and plug them in one after the other. After the last drive has been read then remove it and just select "Ok". The system will then try to reconstruct the key. For this to work you will need to have previously made three or more <a href="#orgheadline7">Keydrives</a>.
</p> </p>
</div> </div>
</div> </div>
@ -473,9 +478,9 @@ Enter three or more sets of login details and the installer will try to retrieve
</div> </div>
</div> </div>
</div> </div>
<div id="outline-container-orgheadline5" class="outline-2"> <div id="outline-container-orgheadline6" class="outline-2">
<h2 id="orgheadline5">Final Setup</h2> <h2 id="orgheadline6">Final Setup</h2>
<div class="outline-text-2" id="text-orgheadline5"> <div class="outline-text-2" id="text-orgheadline6">
<p> <p>
Any manual post-installation setup instructions or passwords can be found in /home/username/README. You should remove any passwords from that file and store them within a password manager such as KeepassX. Any manual post-installation setup instructions or passwords can be found in /home/username/README. You should remove any passwords from that file and store them within a password manager such as KeepassX.
</p> </p>
@ -598,9 +603,9 @@ On your internet router, typically under firewall settings, open the following p
</div> </div>
</div> </div>
<div id="outline-container-orgheadline6" class="outline-2"> <div id="outline-container-orgheadline7" class="outline-2">
<h2 id="orgheadline6">Keydrives</h2> <h2 id="orgheadline7">Keydrives</h2>
<div class="outline-text-2" id="text-orgheadline6"> <div class="outline-text-2" id="text-orgheadline7">
<p> <p>
After installing for the first time it's a good idea to create some keydrives. These will store your gpg key so that if all else fails you will still be able to restore from backup. There are two ways to do this: After installing for the first time it's a good idea to create some keydrives. These will store your gpg key so that if all else fails you will still be able to restore from backup. There are two ways to do this:
</p> </p>
@ -648,9 +653,9 @@ Fragments are randomly assigned and so you will need at least three or four keyd
</div> </div>
</div> </div>
</div> </div>
<div id="outline-container-orgheadline7" class="outline-2"> <div id="outline-container-orgheadline8" class="outline-2">
<h2 id="orgheadline7">On Client Machines</h2> <h2 id="orgheadline8">On Client Machines</h2>
<div class="outline-text-2" id="text-orgheadline7"> <div class="outline-text-2" id="text-orgheadline8">
<p> <p>
You can configure laptops or desktop machines which connect to the Freedombone server in the following way. This alters encryption settings to improve overall security. You can configure laptops or desktop machines which connect to the Freedombone server in the following way. This alters encryption settings to improve overall security.
</p> </p>
@ -668,9 +673,9 @@ freedombone-client
</div> </div>
</div> </div>
<div id="outline-container-orgheadline8" class="outline-2"> <div id="outline-container-orgheadline9" class="outline-2">
<h2 id="orgheadline8">Administering the system</h2> <h2 id="orgheadline9">Administering the system</h2>
<div class="outline-text-2" id="text-orgheadline8"> <div class="outline-text-2" id="text-orgheadline9">
<p> <p>
To administer the system after installation log in via ssh, become the root user and then launch the control panel. To administer the system after installation log in via ssh, become the root user and then launch the control panel.
</p> </p>