From dbb84df2cdce61002866d7c71b2bff078e50da12 Mon Sep 17 00:00:00 2001 From: Bob Mottram Date: Wed, 23 Nov 2016 18:02:14 +0000 Subject: [PATCH] Improve setup description --- website/EN/homeserver.html | 39 +++++++++++++++++++++++++++++--------- 1 file changed, 30 insertions(+), 9 deletions(-) diff --git a/website/EN/homeserver.html b/website/EN/homeserver.html index c3dc213a..2b22168c 100644 --- a/website/EN/homeserver.html +++ b/website/EN/homeserver.html @@ -3,7 +3,7 @@ "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> - + @@ -358,8 +358,7 @@ If you're installing from a microSD card on a single board computer without a sc

-
freedombone-client
-ssh fbone@freedombone.local -p 2222
+
ssh fbone@freedombone.local -p 2222
 
@@ -372,20 +371,30 @@ You will then be shown a new randomly generated password. It's very important

-You'll be asked to set a username and a "real" name (or nickname), then the rest of the installation will be automatic. Again, it takes a while, so go and do something less boring instead. +You'll be asked to set a username and a "real" name (or nickname), then the rest of the installation will be automatic. Again, it takes a while, so go and do something less boring instead. At the end of the base install you can also choose to install specific apps, but if you want to do that later then just press Enter.

-When it's installed on your local system open a terminal and run: +When it's installed on your local system open a terminal and verify the ssh server key hash with:

-
ssh myusername@freedombone.local -p 2222
+
freedombone-client --verify
 

-Use the password you wrote down earlier to log in. +This will show the hash code for the public ssh key of the Freedombone system. Open another terminal window then run: +

+ +
+
freedombone-client
+ssh myusername@freedombone.local -p 2222
+
+
+ +

+Use the password you wrote down earlier to log in. Select the administrator control panel with up and down cursor keys, space bar and enter key. You should see something like this, and you might need to re-enter your password.

@@ -397,7 +406,7 @@ Use the password you wrote down earlier to log in.

-Select the administrator control panel with up and down cursor keys, space bar and enter key. You might need to re-enter your password. Then select About. You'll see a list of sites and their onion addresses. +Then select About. You'll see a list of sites and their onion addresses.

@@ -409,7 +418,19 @@ Select the administrator control panel with up and down cursor keys, spac

-On your local system open a Tor compatible browser and enter your blog's onion address. If it's all working then you should see your new blog. +The About screen contains the ssh server public key hashes and you can compare the relevant one with the previous terminal window to verify that they're the same. If they're not then you might have a machine-in-the-middle snooping on you. +

+ +

+You have now confirmed a secure connection. Probably. If you're still sceptical then you can power off the system, remove the microSD card and manually check the public keys within the /etc/ssh directory on the drive. +

+ +

+Press any key to exit from the About screen. You can then select Add/Remove apps and add whatever applications you wish to run. Note that some apps will only run on x86 systems, but most will install and run on ARM single board computers. +

+ +

+Once your apps have installed you can go back to the About screen, pick an onion address and try it within a Tor compatible browser.