rework tor and ff recommendations

site/source/user-manual/connecting-lan.rst

@@ -5,9 +5,16 @@ Connecting Locally
 ==================
 When connected to the same Local Area Network (LAN) as your server, you can use its `.local` URLs for fast and secure connections.
 
-#. Ensure you have properly :ref:`downloaded and trusted your Root CA<trust-ca>`, including configuring Firefox if you are using it (recommended).
+All platforms
+-------------
 
-#. Ensure your client device (phone/laptop) is connected to the same Local Area Network (LAN) as your server. This usually means your server and your client device are using the same router, either by ethernet or WiFi
+.. warning:: You cannot access .local URLs from the Tor Browser.
+
+#. Ensure you have properly :ref:`downloaded and trusted your Root CA<trust-ca>`.
+
+#. Ensure your client device (phone/laptop) is connected to the same Local Area Network (LAN) as your server. This usually means your server and your client device are using the same router, either by ethernet or WiFi.
+
+#. Input your .local URL into the browser.
 
 .. _connecting-lan-windows:
 
@@ -17,4 +24,10 @@ On Windows, it is necessary to install Bonjour Print Services in order to access
 
 #. Simply install Bonjour Print Services from Apple: https://support.apple.com/kb/DL999
 
-.. warning:: Bonjour can be unreliable. If your `local` URLs suddenly stop working, you may need to uninstall and re-install Bonjour. Go to `System Settings > Remove Programs`, uninstall Bonjour `and` Bonjour Print Services, re-install Bonjour Print Services from the link above, then restart Windows.
+.. warning:: Bonjour can be unreliable. If your `local` URLs suddenly stop working, you may need to uninstall and re-install Bonjour. Go to `System Settings > Remove Programs`, uninstall Bonjour `and` Bonjour Print Services, re-install Bonjour Print Services from the link above, then restart Windows.
+
+Troubleshooting
+---------------
+If you followed the above instructions and are experiencing issues, click :ref:`here <lan-troubleshoot>` to resolve.
+
+

site/source/user-manual/connecting-tor.rst

@@ -7,10 +7,24 @@ You can connect to your server and installed services from anywhere in the world
 
 It is not currently supported to access your server and its installed services using a VPN. This functionality is coming in the next major release of StartOS.
 
-.. note:: It is normal for Tor connections to be slow or unreliable at times
+.. caution:: It is normal for Tor connections to be slow or unreliable at times.
 
-Running Tor on Your Phone/Computer (Recommended)
-------------------------------------------------
+Using a Tor Browser
+-------------------
+Your StartOS dashboard, as well as many installed services, can be accessed via their unique Tor (.onion) URLs. These URLs and the websites they serve are completely private, known only to you.
+
+#. To access your private websites, simply download the official Tor Browser and input the URL.
+
+- For Linux, Mac, Windows, and Android, download the `Official Tor Browser <https://torproject.org/download/>`_
+- For iOS, download `Onion Browser <https://onionbrowser.com/>`_ (iOS 17+ only). When prompted, use Orbot *inn-app* Tor, *not* Orbot.
+
+.. _connecting-tor-native:
+
+Using Native Apps
+-----------------
+Some apps have Tor built in, allowing you to use your .onion URLs without extra configuration.
+
+Other apps lack support for Tor. In such cases, you must run Tor as a global process on your laptop/desktop/phone.
 
 - :ref:`Linux <tor-linux>`
 - :ref:`Mac <tor-mac>`
@@ -18,9 +32,6 @@ Running Tor on Your Phone/Computer (Recommended)
 - :ref:`Android <tor-android>`
 - :ref:`iOS <tor-ios>`
 
-Using the Tor Browser
----------------------
-Using the official Tor Browser allows you to access `.onion` URLs without additional configuration. However, accessing clearnet (`.com`, `.org`, ect) websites will also be routed over Tor, making them slower, and `.local` URLs cannot be accessed at all.
-
-#. Linux, Mac, Windows, Android: `Download Tor Browser <https://torproject.org/download/>`_
-#. iOS: lacks a well-functioning Tor Browser. We recommend following the guide above.
+Troubleshooting
+---------------
+If you followed the above instructions and are experiencing issues, click :ref:`here <tor-troubleshoot>` to resolve

site/source/user-manual/initial-setup.rst

@@ -8,17 +8,9 @@ Initial Setup
 
 Starting Fresh
 --------------
+#. Connect your server to power and ethernet.
 
-#. If using Firefox to connect to your server (recommended), complete this short guide for your OS:
-
-    .. note:: Start9 recommends Firefox because it is the only browser that can be configured to access both LAN (`.local`) and Tor (`.onion`) URLs, including through browser extensions, without affecting normal browser functionality. For iOS, all browsers actually use Safari under the hood, so it is preferable not to stack unnecessary software on top of it. Just use Safari.
-
-    - :ref:`Mac/Windows/Linux/Android<ca-ff>`
-    - iOS (use Safari)
-
-#. Connect your server to power and Ethernet
-
-#. From your client device (desktop/laptop/phone), open a browser (Firefox recommended) and visit ``http://start.local``. Your client device must be connected to the same Local Area Network (LAN) as your server. This usually means they are using the same router, either by ethernet or WiFi
+#. From a client device (desktop/laptop/phone) connected to the same local network as your server, open a browser and visit ``http://start.local``.
 
 	.. note:: If you are `not` using a Raspberry Pi, you can also plug a monitor and keyboard into the server. This is known as "Kiosk mode".
 
@@ -38,21 +30,6 @@ If you are using an existing drive, transferring data from one drive to another,
 
 Troubleshooting
 ---------------
-If you are experiencing issues with setup, try the following:
+If you followed the above instructions and are experiencing issues, click :ref:`here <setup-troubleshoot>` to resolve.
 
-#. Confirm that the server is plugged into both power `and` Ethernet
-#. Confirm your phone/computer is `not` connected to a "Guest" network
-#. If using Firefox (recommended) from Mac, Windows or Android, ensure you have set ``security.enterprise_roots.enable`` to ``true`` in ``about:config`` per the :ref:`instructions<ca-ff>`
-#. Confirm your phone/computer is not using a VPN, or that if you are, that it allows LAN connections, such as the examples below:
-
-    - Mullvad - Go to "Settings -> VPN Settings -> Local Network Sharing"
-    - ProtonVPN - Go to "Preferences -> Connection -> Allow LAN Connections"
-
-#. Visit or refresh (ctrl+shift+R on Linux/Windows, cmd+shift+R on macOS Firefox, cmd+option+E then cmd+R on macOS Safari) the start.local page in a web browser
-#. To avoid networking issues, it is recommended to use your `primary` router, not an extender or mesh router
-#. Very rarely, your firewall settings may block mDNS. In this case:
-
-    - From your browser, navigate to your router configuration settings. This is usually an IP address such as 192.168.1.1. A simple web search will usually reveal how to access the router configuration settings for a particular brand.
-    - Once in the router config settings, find the section that lists the devices on your network. You should see a device labeled ``start``. Take note of the associated IP address and enter it into your browser's URL field to enter the setup.
-
-You can always to `reach out to support <https://start9.com/contact>`_ if you need a hand.
+You can also to `reach out to support <https://start9.com/contact>`_ if you need a hand.

site/source/user-manual/trust-ca.rst

@@ -3,7 +3,7 @@
 =====================
 Trusting Your Root CA
 =====================
-Download and trust your server's Root Certificate Authority (Root CA) to establish a secure (HTTPS) connection with your server, and to enhance speeds over Tor.
+Download and trust your server's Root Certificate Authority (Root CA) to establish a secure (HTTPS) connection with your server.
 
 .. _root-ca-download: