Start9/documentation
2
0
Fork 0
mirror of https://github.com/Start9Labs/documentation.git synced 2026-03-30 12:11:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

New layout init

Browse Source
This commit is contained in:
kn0wmad
2021-12-20 14:50:47 -07:00
committed by Lucy Cifferello
parent 7f4957aaa4
commit 296362cd12
107 changed files with 70 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
site/source/support/user-manual/configuration/basic-config.rst Normal file
View File

@@ -0,0 +1,58 @@
.. _basic-config:
===================
Basic Configuration - ***NEEDS BUG REPORT LINK***
===================
.. _device-name:
Set Device Name
---------------
Here you can change the name of your Embassy!
1. Go to the ``Embassy`` tab on the main menu on the left side of the UI
.. figure:: /_static/images/config/basic-config0.png
:width: 60%
:alt: Embassy Tab
2. Under the ``Settings`` section, click ``Preferences``
.. figure:: /_static/images/config/basic-config1.png
:width: 60%
:alt: Preferences
3. Then click ``Device Name``, set to desired name, and click ``Save``
.. figure:: /_static/images/config/basic-config2.png
:width: 60%
:alt: Rename Embassy
.. _auto-reporting:
Automatically Report Bugs
-------------------------
You are asked at first setup if you would like to provide bug reports to Start9. You can edit that setting here if you change your mind. This data is anonymous and you can see exactly what is collected `here<>`.
1. As in the :ref:`Set Device Name<device-name>` steps above, go to the ``Embasssy`` tab, then under ``Settings``, click ``Preferences``
2. Click ``Auto Report Bugs`` and either ``Enable`` or ``Disable``
.. figure:: /_static/images/config/basic-config3.png
:width: 60%
:alt: Automatically Report Bugs
.. _auto-update:
Automatically Check for Updates
-------------------------------
Automatic check for updates enables you to choose whether you want to be informed of EmbassyOS updates. Enabling this feature makes a request to the Start9 Marketplace to see if a new OS version has been released, and notifies you if so. This request is only made when you log into a new session or refresh your current session.
1. As in the :ref:`Set Device Name<device-name>` steps above, go to the ``Embasssy`` tab, then under ``Settings``, click ``Preferences``
2. Click ``Automatically Check for Updates`` and either ``Enable`` or ``Disable``
.. figure:: /_static/images/config/basic-config4.png
:width: 60%
:alt: Automatically Report Bugs

14
site/source/support/user-manual/configuration/index.rst Normal file
View File

@@ -0,0 +1,14 @@
=============
Configuration
=============
Configuration, setup guides, and known limitations are provided here by device
.. toctree::
:maxdepth: 2
basic-config
tor-setup/index
lan-setup/index
wifi
limitations/index

16
site/source/support/user-manual/configuration/lan-setup/index.rst Normal file
View File

@@ -0,0 +1,16 @@
.. _lan-setup:
============
Local Access
============
When you are on the same network as your Embassy (typically a home or small office), :ref:`Local Access<lan>` is much faster and will allow access to your data, even with no Internet connection.
.. toctree::
:maxdepth: 2
lan-linux
lan-mac
lan-windows
lan-android
lan-ios

80
site/source/support/user-manual/configuration/lan-setup/lan-ios.rst Normal file
View File

@@ -0,0 +1,80 @@
.. _lan-ios:
===
iOS - ***UPDATE SCREENS***
===
#. Navigate back to the `Start9 Setup App <https://apps.apple.com/us/app/start9-setup-app/id1528125889>`_.
#. Select your claimed Embassy to view the setup results.
#. Find the "LAN (advanced)" menu item at the bottom of the Setup App screen.
.. figure:: /_static/images/ssl/mobile/ssl_setup_app_complete.png
:width: 70%
:alt: Setup app complete
Completed Setup App screen
#. Select the "Embassy Local Root CA" menu item. Clicking this will prompt you to “Save to device”.
.. figure:: /_static/images/ssl/mobile/ssl_setup_app_advanced.png
:width: 70%
:alt: Setup app advanced menu
Setup App advanced menu
#. You will be directed to a page in your default browser indicating next steps and that the profile has been successfully downloaded.
.. note::
If you have changed the default browser from Safari to Brave, the following auto save certificate to device flow will *not* work. Safari, Firefox, and Chrome work as expected. We recommend you temporarily use one of these browsers to complete this action.
#. Be sure to complete all steps in this process! These steps are also outlined below.
.. figure:: /_static/images/ssl/mobile/ssl_certificate_install_page.png
:width: 70%
:alt: Certificate install page
Select "Allow" on the certificate install page
#. Go to Settings on your iOS device.
.. figure:: /_static/images/ssl/mobile/ssl_ipad_general_settings.png
:width: 70%
:alt: General settings
General settings
#. Navigate to *General > Profile(s) > Downloaded Profile > Install*.
.. figure:: /_static/images/ssl/mobile/ssl_ipad_profiles.png
:width: 70%
:alt: Profiles
Profiles view
.. figure:: /_static/images/ssl/mobile/ssl_ipad_install_profile.png
:width: 70%
:alt: Install profile
Select "Install" for Embassy Local Root CA
#. Select “yes” to any warning prompts.
#. Next, navigate to *General > About > Certificate Trust Settings*.
.. figure:: /_static/images/ssl/mobile/ssl_ipad_cert_trust_settings.png
:width: 70%
:alt: Certificate trust settings
Select Certificate Trust Settings (scroll all the way down)
#. Enable full trust for root certificates.
.. figure:: /_static/images/ssl/mobile/ssl_ipad_cert_trust.png
:width: 70%
:alt: Enable full trust
Toggle to enable full trust for root certificates. "Continue" when warning prompts.
#. Test that this process worked successfully by navigating to the LAN address provided in the Setup App. You should no longer see warnings about the security of this site in your browser. We recommend using Start9s own `Consulate browser <https://apps.apple.com/us/app/consulate/id1528124570>`_ for a faster and better experience.

27
site/source/support/user-manual/configuration/lan-setup/lan-linux.rst Normal file
View File

@@ -0,0 +1,27 @@
.. _lan-linux:
=====
Linux - ***UPDATE SCREENS***
=====
Nothing specific needs to be configured for this environment, so you just need the certificate from your Embassy.
#. Visit your Embassy at its Tor Address.
#. Navigate to --> Embassy --> Connect Over LAN
.. figure:: /_static/images/embassy_lan_setup.png
:width: 90%
:alt: LAN setup menu item
Select the "Connect over LAN" menu item
#. Select the "Root Certificate Authority" sub menu. This will prompt a download to save the certificate file to your machine.
.. figure:: /_static/images/secure_lan_setup_page.png
:width: 90%
:alt: LAN setup page
Select the "Root Certificate Authority" sub menu
Then open your favorite browser to import this certificate and follow the steps for :ref:`browser setup <browser-setup>`.

65
site/source/support/user-manual/configuration/lan-setup/lan-mac.rst Normal file
View File

@@ -0,0 +1,65 @@
.. _lan-mac:
===
Mac - ***UPDATE SCREENS***
===
#. Visit your Embassy at its Tor Address.
#. Navigate to --> Embassy --> Connect Over LAN
.. figure:: /_static/images/embassy_lan_setup.png
:width: 90%
:alt: LAN setup menu item
Select the "Connect over LAN" menu item
#. Select the "Root Certificate Authority" sub menu. This will prompt a download to save the certificate file to your machine.
.. figure:: /_static/images/secure_lan_setup_page.png
:width: 90%
:alt: LAN setup page
Select the "Root Certificate Authority" sub menu
#. Select the option to open your key with Keychain Access. If you choose to save file, double click on it once downloaded.
.. figure:: /_static/images/secure_lan_setup_prompt.png
:width: 90%
:alt: LAN setup prompt
Open with "Keychain Access" and select "OK"
#. Enter your computer password when prompted. It will be imported into your computers keychain.
.. figure:: /_static/images/ssl/macos/certificate_untrusted.png
:width: 90%
:alt: Keychain access import menu
Keychain access import menu
#. If the keychain console did not open, press "Command + spacebar" and type “Keychain Access”, and hit enter to open it.
#. Navigate to the "System" tab and find the certificate entitled “Embassy Local Root CA”.
#. Double click on this certificate. A second window will pop up.
#. Open the “Trust” dropdown and select “Always Trust” from the dropdown next to “when using this certificate”.
.. figure:: /_static/images/ssl/macos/always_trust.png
:width: 90%
:alt: Keychain submenu
Select "Always trust" under SSL dropdown for Embassy Local CA
#. Close this window and enter your password to apply the settings.
#. The “Embassy Local Root CA” cert will now read “This certificate is marked as trusted for all users” in Keychain Access.
.. figure:: /_static/images/ssl/macos/certificate_trusted.png
:width: 90%
:alt: Keychain menu trusted certificate
Trusted Embassy Local CA certificate
#. Open your favorite browser to import this certificate and follow the steps for :ref:`browser setup <browser-setup>`.

116
site/source/support/user-manual/configuration/lan-setup/lan-windows.rst Normal file
View File

@@ -0,0 +1,116 @@
.. _lan-windows:
=======
Windows - ***UPDATE SCREENS***
=======
#. Install `Bonjour Print Services <https://support.apple.com/kb/DL999>`_ on your Windows machine. This is necessary in order to visit .local addresses on Windows.
#. If you are having issues running Bonjour after installing, you might have had Bonjour previously installed. To fix:
#. Check out this video: https://www.youtube.com/watch?v=9ECCB3bqNDQ
#. Uninstall Bonjour completely via ``system settings -> remove programs``
#. Reinstall Bonjour Printer Driver package (download at https://support.apple.com/kb/DL999?locale=en_US)
#. Restart Windows
#. Note: Uninstalling Bonjour via the setup package seems to be not enough to solve the issue. Bonjour must be uninstalled via windows system settings.
#. Visit your Embassy at its Tor Address.
#. Navigate to --> Embassy --> Connect Over LAN
.. figure:: /_static/images/embassy_lan_setup.png
:width: 90%
:alt: LAN setup menu item
Select the "Connect over LAN" menu item
#. Select the "Root Certificate Authority" sub menu. This will prompt a download to save the certificate file to your machine.
.. figure:: /_static/images/secure_lan_setup_page.png
:width: 90%
:alt: LAN setup page
Select the "Root Certificate Authority" sub menu download icon
#. Select the option to save the *Embassy Local CA.crt* file.
.. figure:: /_static/images/ssl/windows/windows_download_cert.png
:width: 90%
:alt: LAN setup prompt
"Save file" when Opening Embassy Local CA.crt
#. On your computer, right-click the “Start” menu and select “Run”.
#. Type in “mmc” and click “OK”. When prompted on the “User Account Control” window, select “Yes” to allow this program to run.
.. figure:: /_static/images/ssl/windows/1_windows_mmc.png
:width: 90%
:alt: Windows MMC
Access the Windows Management Console
#. When the Management Console opens, navigate to *File > Add/Remove Snap-in*.
.. figure:: /_static/images/ssl/windows/2_windows_console_root.png
:width: 90%
:alt: Windows Console Root
Add Snap-in from Console Root
#. Select “Certificates” in the left side menu, then “Add”. This will open another window.
.. figure:: /_static/images/ssl/windows/3_windows_add_certificates.png
:width: 90%
:alt: Add Certificates
Add Certificates to selected snap-ins
#. Select “Computer account” and click “Next. Leave defaulted options on the next screen and click “Finish”.
#. When you return to the “Add or Remove Snap-ins” page, ensure “Certificates (Local Computer)” exists under “Console Root” in the “Selected snap-ins” section, then click “OK”.
.. figure:: /_static/images/ssl/windows/4_windows_selected_snapin.png
:width: 90%
:alt: Snap-in Selected
Certificates (Local Computer) is selected as snap-in
#. In the left hand menu of the Management Console, navigate to Certificates (Local Computer) > Trusted Root Certification Authorities > Certificates.
.. figure:: /_static/images/ssl/windows/5_windows_trusted_certificate_menu.png
:width: 90%
:alt: Certificates in Management Console
Access Certificates in Management Console
#. Right click on “Certificates”, then navigate to *All Tasks > Import*.
.. figure:: /_static/images/ssl/windows/6_windows_import_cert.png
:width: 90%
:alt: Import certificate
Select "Import" from Certificates sub-menu
#. Click “Next” on the first page of the Certificate Import Wizard, then browse to the location where you saved the downloaded certificate and click “Open”.
.. figure:: /_static/images/ssl/windows/7_windows_import_cert_wizard.png
:width: 90%
:alt: Import cert wizard
Add downloaded certificate int he Certificate Import Wizard
#. On the “Certificate Store” window, ensure that it says “Trusted Root Certificate Authorities” and click “Next”.
#. Select “OK” when the import is successful.
#. Verify the Embassy Local Root CA certificate is in the “Certificates” folder.
.. figure:: /_static/images/ssl/windows/8_windows_successful_cert_install.png
:width: 90%
:alt: Successful cert install
Embassy Local Root CA imported into Certificate folder
#. You can save the settings to the console if desired or cancel.
#. Open your favorite browser to import this certificate and follow the steps for :ref:`browser setup <browser-setup>`.

16
site/source/support/user-manual/configuration/limitations/index.rst Normal file
View File

@@ -0,0 +1,16 @@
.. _limitations:
=================
Known Limitations
=================
The following pages describe functionality that is known to be missing from certain platforms. Please bother the appropriate company or developers until they have been remedied.
.. toctree::
:maxdepth: 2
lim-linux
lim-mac
lim-windows
lim-android
lim-ios

13
site/source/support/user-manual/configuration/limitations/lim-android.rst Normal file
View File

@@ -0,0 +1,13 @@
.. _lim-android:
=========================
Android Known Limitations
=========================
Local Access
------------
Android does not have native support for :ref:`mDNS<mdns>` and therefore cannot resolve ``.local`` addresses. This issue has been long known by Google, and can be tracked `here <https://issuetracker.google.com/issues/140786115>`_ (Google account required to view).
Workarounds
...........
An app developer can add mDNS support, and some projects, such as Chromium, have long `considered it <https://bugs.chromium.org/p/chromium/issues/detail?id=405925>`_, but the real solution is for support to occur at the OS level.

21
site/source/support/user-manual/configuration/limitations/lim-ios.rst Normal file
View File

@@ -0,0 +1,21 @@
.. _lim-ios:
=====================
iOS Known Limitations
=====================
Tor
---
It is not currently possible to run Tor natively (in the background) on iOS. The best chance for this functionality coming to iOS is via the `iCepa Project <https://github.com/iCepa>`_.
Workarounds
...........
The only way to use Tor on iOS is with apps that come with Tor built-in, such as :ref:`Zap Wallet <zap>`.
Matrix
------
The lack of Tor support on iOS means that Element/Matrix cannot be run on an iPhone in conjunction with your Embassy Matrix server, as that currently requires a Tor connection. This will be fixed when `Element <https://github.com/vector-im/element-ios>`_ builds Tor into their app. An issue specifically in regard to this can be found `here <https://github.com/vector-im/element-ios/issues/1085>`_.
Workarounds
...........
None currently known.

7
site/source/support/user-manual/configuration/limitations/lim-linux.rst Normal file
View File

@@ -0,0 +1,7 @@
.. _lim-linux:
=======================
Linux Known Limitations
=======================
Currently, Linux has no known limitations in regard to Embassy. Congratulations, Master Race...

7
site/source/support/user-manual/configuration/limitations/lim-mac.rst Normal file
View File

@@ -0,0 +1,7 @@
.. _lim-mac:
=====================
Mac Known Limitations
=====================
MacOS has no known limitations in regard to Embassy.

5
site/source/support/user-manual/configuration/limitations/lim-windows.rst Normal file
View File

@@ -0,0 +1,5 @@
.. _lim-windows:
=========================
Windows Known Limitations
=========================

11
site/source/support/user-manual/configuration/tor-setup/index.rst Normal file
View File

@@ -0,0 +1,11 @@
=========
Tor Setup
=========
Setup :ref:`Tor<tor>` to run on your devices, either natively (in the background), or by configuring an application, such as Firefox.
.. toctree::
:maxdepth: 2
tor-os/index
tor-firefox/index

18
site/source/support/user-manual/configuration/tor-setup/tor-firefox/index.rst Normal file
View File

@@ -0,0 +1,18 @@
.. _tor-firefox:
====================
Using Tor on Firefox
====================
.. caution:: This guide assumes you are already :ref:`running Tor on your phone or computer<running-tor>`.
Once you have completed native :ref:`Tor Setup<tor-os>`, you can configure :ref:`Firefox<firefox>` to use the Tor Network. This will allow you to visit both ``.onion`` and "normal" (.com, .net, etc) websites from within the same browser.
.. toctree::
:maxdepth: 2
torff-linux
torff-mac
torff-windows
torff-android
torff-ios

47
site/source/support/user-manual/configuration/tor-setup/tor-firefox/torff-android.rst Normal file
View File

@@ -0,0 +1,47 @@
.. _torff-android:
=======
Android - ***NEEDS UPDATED***
=======
.. warning::
This guide assumes you have completed :ref:`setting up Tor for Android<tor-android>`. Please visit this section before proceeding as it is required for Firefox to properly work with Tor.
Once Tor is setup on your system, you can proceed to setup Firefox:
1. Download `Firefox Beta <https://play.google.com/store/apps/details?id=org.mozilla.firefox_beta>`_ from the Play Store, or `Fennec <https://f-droid.org/en/packages/org.mozilla.fennec_fdroid/>`_ from F-Droid.
2. Next, download a `Proxy Auto Config` file that will use Orbot to resolve `.onion` URLs. We have one hosted `here <https://registry.start9labs.com/sys/proxy.pac>`_.
3. Navigate to ``about:config`` in the Firefox URL bar.
.. figure:: /_static/images/tor/about_config.png
:width: 50%
:alt: Firefox about config
4. You are going to have to change a few options in here. First, type ``network.proxy.type`` into the search bar, and set the value to ``2``.
.. figure:: /_static/images/tor/network_proxy_type.png
:width: 50%
:alt: Firefox network proxy type setting screenshot
5. Search for ``network.proxy.autoconfig_url``, and set the value to ``file:///storage/emulated/0/Download/proxy.pac``.
.. figure:: /_static/images/tor/autoconfig_url.png
:width: 50%
:alt: Firefox autoconfig url setting screenshot
6. Search for ``network.proxy.socks_remote_dns``, and set the value to ``true``.
.. figure:: /_static/images/tor/socks_remote_dns.png
:width: 50%
:alt: Firefox socks remote dns setting screenshot
7. Search for ``dom.securecontext.whitelist_onions`` and set the value to ``true``.
.. figure:: /_static/images/tor/firefox_whitelist_mobile.png
:width: 50%
:alt: Firefox whitelist onions screenshot
8. Restart Firefox, and youre all set! You should now be able to navigate to `.onion` URLs in Firefox. This means you can bookmark Cups Messenger, and use your Bitwarden Tor address in the `Bitwarden Password Manager <https://play.google.com/store/apps/details?id=com.x8bit.bitwarden&hl=en_US&gl=US>`_ native application.

17
site/source/support/user-manual/configuration/tor-setup/tor-firefox/torff-ios.rst Normal file
View File

@@ -0,0 +1,17 @@
.. _torff-ios:
===
iOS -***NEEDS UPDATED***
===
NO TOR FOR YOU
.. _firefox-tor-ios:
**********************************
Setting up Firefox with Tor on iOS
**********************************
Unfortunately, Apple does not allow tor to be run natively on iOS. This means that Firefox cannot be configured to use tor. This leaves the following options for iOS users:
You can use Start9's own Consulate Browser, which is available `here <https://apps.apple.com/us/app/start9-consulate-browser/id1528124570>`_, or you can select another Tor Browser by searching the `App Store <https://www.apple.com/us/search/onion-browser?src=serp>`_.

95
site/source/support/user-manual/configuration/tor-setup/tor-firefox/torff-linux.rst Normal file
View File

@@ -0,0 +1,95 @@
.. _torff-linux:
=====
Linux - ***NEEDS UPDATED***
=====
.. warning::
This guide assumes you have completed :ref:`setting up Tor<running-tor>`. Please visit this section first before you proceed as it is required for Firefox to properly work with Tor.
1. Open Firefox.
2. Enter ``about:config`` in the URL bar. Accept any warnings that may appear about accessing advanced settings.
3. Search for ``dom.securecontext.whitelist_onions`` and set the value to ``true``.
.. figure:: /_static/images/tor/firefox_whitelist.png
:width: 80%
:alt: Firefox whitelist onions screenshot
4. Download a `Proxy Auto Config` file to inform Firefox how to use the Tor daemon running on your computer. You can get Start9's standard file by following the OS-specific instructions below:
Windows:
Click `here <https://registry.start9labs.com/sys/proxy.pac>`_ to get the file and save the file somewhere you wont delete it. Please remember the location you save the file in if you do not use our example location. For this example:
.. code-block::
C:\Program Files\Tor Browser\proxy.pac
Mac:
Open the ``Terminal`` App on your Mac. You can find it in your list of Applications. In the terminal, enter:
.. code-block::
brew install wget
And then:
.. code-block::
wget -P /usr/local/etc/tor https://registry.start9labs.com/sys/proxy.pac
Linux:
From a terminal, enter:
.. code-block::
sudo wget -P /etc/tor https://registry.start9labs.com/sys/proxy.pac
5. Now open your Firefox web browser, and select options (Windows), or preferences (Mac/Linux):
.. figure:: /_static/images/tor/firefox_options_windows.png
:width: 80%
:alt: Firefox options screenshot
Select :menuselection:``Settings --> Options``
6. Search for the term “proxy” in the search bar in the upper right, then select the button that says ``Settings…``:
.. figure:: /_static/images/tor/firefox_search.png
:width: 80%
:alt: Firefox search screenshot
7. This should open a menu that will allow you to configure your proxy settings. Select ``Automatic proxy configuration URL`` and paste in the path to your PAC file from earlier, prefixed with ``file://``. For example:
Windows:
.. code-block::
file://C:/Program Files/Tor Browser/proxy.pac
Mac:
.. code-block::
file:///usr/local/etc/tor/proxy.pac
Linux:
.. code-block::
file:///etc/tor/proxy.pac
8. Then, check the box labeled ``Proxy DNS when using SOCKS v5``:
.. figure:: /_static/images/tor/firefox_proxy.png
:width: 80%
:alt: Firefox proxy settings screenshot
9. Click ``OK`` and then restart Firefox for the changes to take effect.
10. Youre all set! You should now be able to navigate to ``.onion`` URLs in Firefox. This means you can bookmark Cups Messenger, and use your Bitwarden Tor address in the `Bitwarden Firefox Plugin <https://addons.mozilla.org/en-US/firefox/addon/bitwarden-password-manager/>`_.

95
site/source/support/user-manual/configuration/tor-setup/tor-firefox/torff-mac.rst Normal file
View File

@@ -0,0 +1,95 @@
.. _torff-mac:
===
Mac - ***NEEDS UPDATED***
===
.. warning::
This guide assumes you have completed :ref:`setting up Tor<running-tor>`. Please visit this section first before you proceed as it is required for Firefox to properly work with Tor.
1. Open Firefox.
2. Enter ``about:config`` in the URL bar. Accept any warnings that may appear about accessing advanced settings.
3. Search for ``dom.securecontext.whitelist_onions`` and set the value to ``true``.
.. figure:: /_static/images/tor/firefox_whitelist.png
:width: 80%
:alt: Firefox whitelist onions screenshot
4. Download a `Proxy Auto Config` file to inform Firefox how to use the Tor daemon running on your computer. You can get Start9's standard file by following the OS-specific instructions below:
Windows:
Click `here <https://registry.start9labs.com/sys/proxy.pac>`_ to get the file and save the file somewhere you wont delete it. Please remember the location you save the file in if you do not use our example location. For this example:
.. code-block::
C:\Program Files\Tor Browser\proxy.pac
Mac:
Open the ``Terminal`` App on your Mac. You can find it in your list of Applications. In the terminal, enter:
.. code-block::
brew install wget
And then:
.. code-block::
wget -P /usr/local/etc/tor https://registry.start9labs.com/sys/proxy.pac
Linux:
From a terminal, enter:
.. code-block::
sudo wget -P /etc/tor https://registry.start9labs.com/sys/proxy.pac
5. Now open your Firefox web browser, and select options (Windows), or preferences (Mac/Linux):
.. figure:: /_static/images/tor/firefox_options_windows.png
:width: 80%
:alt: Firefox options screenshot
Select :menuselection:``Settings --> Options``
6. Search for the term “proxy” in the search bar in the upper right, then select the button that says ``Settings…``:
.. figure:: /_static/images/tor/firefox_search.png
:width: 80%
:alt: Firefox search screenshot
7. This should open a menu that will allow you to configure your proxy settings. Select ``Automatic proxy configuration URL`` and paste in the path to your PAC file from earlier, prefixed with ``file://``. For example:
Windows:
.. code-block::
file://C:/Program Files/Tor Browser/proxy.pac
Mac:
.. code-block::
file:///usr/local/etc/tor/proxy.pac
Linux:
.. code-block::
file:///etc/tor/proxy.pac
8. Then, check the box labeled ``Proxy DNS when using SOCKS v5``:
.. figure:: /_static/images/tor/firefox_proxy.png
:width: 80%
:alt: Firefox proxy settings screenshot
9. Click ``OK`` and then restart Firefox for the changes to take effect.
10. Youre all set! You should now be able to navigate to ``.onion`` URLs in Firefox. This means you can bookmark Cups Messenger, and use your Bitwarden Tor address in the `Bitwarden Firefox Plugin <https://addons.mozilla.org/en-US/firefox/addon/bitwarden-password-manager/>`_.

96
site/source/support/user-manual/configuration/tor-setup/tor-firefox/torff-windows.rst Normal file
View File

@@ -0,0 +1,96 @@
.. _torff-windows:
=======
Windows - *** NEEDS UPDATED***
=======
.. warning::
This guide assumes you have completed :ref:`setting up Tor<running-tor>`. Please visit this section first before you proceed as it is required for Firefox to properly work with Tor.
1. Open Firefox.
2. Enter ``about:config`` in the URL bar. Accept any warnings that may appear about accessing advanced settings.
3. Search for ``dom.securecontext.whitelist_onions`` and set the value to ``true``.
.. figure:: /_static/images/tor/firefox_whitelist.png
:width: 80%
:alt: Firefox whitelist onions screenshot
4. Download a `Proxy Auto Config` file to inform Firefox how to use the Tor daemon running on your computer. You can get Start9's standard file by following the OS-specific instructions below:
Windows:
Click `here <https://registry.start9labs.com/sys/proxy.pac>`_ to get the file and save the file somewhere you wont delete it. Please remember the location you save the file in if you do not use our example location. For this example:
.. code-block::
C:\Program Files\Tor Browser\proxy.pac
Mac:
Open the ``Terminal`` App on your Mac. You can find it in your list of Applications. In the terminal, enter:
.. code-block::
brew install wget
And then:
.. code-block::
wget -P /usr/local/etc/tor https://registry.start9labs.com/sys/proxy.pac
Linux:
From a terminal, enter:
.. code-block::
sudo wget -P /etc/tor https://registry.start9labs.com/sys/proxy.pac
5. Now open your Firefox web browser, and select options (Windows), or preferences (Mac/Linux):
.. figure:: /_static/images/tor/firefox_options_windows.png
:width: 80%
:alt: Firefox options screenshot
Select :menuselection:``Settings --> Options``
6. Search for the term “proxy” in the search bar in the upper right, then select the button that says ``Settings…``:
.. figure:: /_static/images/tor/firefox_search.png
:width: 80%
:alt: Firefox search screenshot
7. This should open a menu that will allow you to configure your proxy settings. Select ``Automatic proxy configuration URL`` and paste in the path to your PAC file from earlier, prefixed with ``file://``. For example:
Windows:
.. code-block::
file://C:/Program Files/Tor Browser/proxy.pac
Mac:
.. code-block::
file:///usr/local/etc/tor/proxy.pac
Linux:
.. code-block::
file:///etc/tor/proxy.pac
8. Then, check the box labeled ``Proxy DNS when using SOCKS v5``:
.. figure:: /_static/images/tor/firefox_proxy.png
:width: 80%
:alt: Firefox proxy settings screenshot
9. Click ``OK`` and then restart Firefox for the changes to take effect.
10. Youre all set! You should now be able to navigate to ``.onion`` URLs in Firefox. This means you can bookmark Cups Messenger, and use your Bitwarden Tor address in the `Bitwarden Firefox Plugin <https://addons.mozilla.org/en-US/firefox/addon/bitwarden-password-manager/>`_.

16
site/source/support/user-manual/configuration/tor-setup/tor-os/index.rst Normal file
View File

@@ -0,0 +1,16 @@
.. _tor-os:
==================
Using Tor Natively
==================
Select your Operating System to setup Tor to run in the background (natively) of any device that you might want to use to access your Embassy with remotely.
.. toctree::
:maxdepth: 2
tor-linux
tor-mac
tor-windows
tor-android
tor-ios

84
site/source/support/user-manual/configuration/tor-setup/tor-os/tor-android.rst Normal file
View File

@@ -0,0 +1,84 @@
.. _tor-android:
=======
Android
=======
Some apps, such as :ref:`Tor Browser<tor-browser>`, have Tor built in. They do not require additional software or configurations to utilize Tor. Most apps, however, do not have Tor built in. They require an app called Orbot to be installed in order to utilize the Tor Network.
.. youtube:: b__mVfN-BP8
Running Orbot
-------------
Orbot is a system wide proxy for your Android or Graphene device that enables communications over Tor.
1. Download Orbot from the `Play Store <https://play.google.com/store/apps/details?id=org.torproject.android>`_ , or from `F-Droid <https://f-droid.org/packages/org.torproject.android>`_.
2. Launch Orbot.
3. Open the kebab menu in the upper right hand corner and select `Settings`:
.. figure:: /_static/images/tor/orbot_menu.png
:width: 50%
:alt: Orbot menu
4. Make sure the options for `Start Orbot on Boot` and `Allow Background Starts` are checked:
.. figure:: /_static/images/tor/orbot_settings.png
:width: 50%
:alt: Orbot settings
5. Go back, and tap start:
.. figure:: /_static/images/tor/orbot_start.png
:width: 50%
:alt: Orbot start
6. Orbot will start up the Tor service. Once complete, you will see:
.. figure:: /_static/images/tor/orbot_started.png
:width: 50%
:alt: Orbot started
7. That's it. Certain apps, such as Firefox or DuckDuckGo will now just work. Other apps, however, require that Orbot be running VPN mode.
Orbot VPN mode
--------------
To utilize Tor, most apps require that Orbot be running in VPN mode.
1. Disable Private DNS on your device. To do so, navigate to:
``Settings > Network & Internet > Advanced > Private DNS > Off``
.. figure:: /_static/images/tor/private_dns_off.png
:width: 50%
:alt: Private DNS off
Toggle Private DNS to "off"
2. Launch Orbot and toggle VPN Mode on:
.. figure:: /_static/images/tor/orbot_vpn.png
:width: 50%
:alt: Orbot vpn mode
Toggle VPN Mode to "on"
Under `Tor-Enabled Apps`, click the gear icon and add apps you want to utilize Tor.
.. figure:: /_static/images/tor/orbot_apps.png
:width: 50%
:alt: Orbot apps
Examples of applications that need this feature are:
- Bitwarden
- Element (Matrix)
- Zeus
You can also add the following browsers to the Tor-Enabled Apps list to easily access Tor addresses (`.onion` URLs):
- Chrome
- Firefox

7
site/source/support/user-manual/configuration/tor-setup/tor-os/tor-ios.rst Normal file
View File

@@ -0,0 +1,7 @@
.. _tor-ios:
===
iOS
===
Unforutnately, Tor it is not currently possible to run Tor natively on iOS. Please see :ref:`iOS Limitations<lim-ios>` for details.

88
site/source/support/user-manual/configuration/tor-setup/tor-os/tor-linux.rst Normal file
View File

@@ -0,0 +1,88 @@
.. _tor-linux:
=====
Linux
=====
Debian / Ubuntu
---------------
For Debian and Debian-based systems, such as Mint, PopOS etc.
.. note:: The following install is for the LTS (Long Term Support) version of Tor from Debian. If you would like the latest stable release, The Tor Project maintain their own Debian repository. The instructions to connect to this can be found `here <https://support.torproject.org/apt/tor-deb-repo/>`_.
Install the Tor proxy service to your system. To do so, open your terminal and run the following command:
.. code-block:: bash
sudo apt update && sudo apt install tor
.. tip:: You can check that Tor is running with:
.. code-block:: bash
systemctl status tor
In the rare event that Tor is having connectivity issues, you can reset your connection with:
.. code-block:: bash
sudo systemctl restart tor
Arch
----
Simply install Tor with:
.. code-block:: bash
sudo pacman -S tor
.. tip:: You can check that Tor is running with:
.. code-block:: bash
systemctl status tor
In the rare event that Tor is having connectivity issues, you can reset your connection with:
.. code-block:: bash
sudo systemctl restart tor
CentOS / Fedora / RHEL
----------------------
1. Configure the Tor Package repository. Add the following to ``/etc/yum.repos.d/tor.repo``:
- CentOS / RHEL:
.. code-block:: bash
[Tor]
name=Tor for Enterprise Linux $releasever - $basearch
baseurl=https://rpm.torproject.org/centos/$releasever/$basearch
enabled=1
gpgcheck=1
gpgkey=https://rpm.torproject.org/centos/public_gpg.key
cost=100
- Fedora:
.. code-block:: bash
[Tor]
name=Tor for Fedora $releasever - $basearch
baseurl=https://rpm.torproject.org/fedora/$releasever/$basearch
enabled=1
gpgcheck=1
gpgkey=https://rpm.torproject.org/fedora/public_gpg.key
cost=100
2. Then install the Tor package:
.. code-block:: bash
sudo dnf install tor

59
site/source/support/user-manual/configuration/tor-setup/tor-os/tor-mac.rst Normal file
View File

@@ -0,0 +1,59 @@
.. _tor-mac:
===
Mac
===
Install Homebrew
----------------
1. If you do not have Homebrew installed, follow the installation instructions `here <https://brew.sh/>`_. TLDR: Open the Terminal and paste the following line:
.. code-block::
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install.sh)"
2. You will be prompted for your system password before installation; proceed with entering your password:
.. figure:: /_static/images/tor/install_homebrew.png
:width: 80%
:alt: Homebrew installation
Enter your password
3. You will be notified which directories Homebrew is going to create, hit :code:`RETURN`:
.. figure:: /_static/images/tor/install_homebrew1.png
:width: 80%
:alt: Homebrew installation
Homebrew creates the directories and downloads any other files it needs e.g. “Command Line Tool for Xcode” and “Homebrew”.
Wait a few minutes while it downloads and installs what it needs.
.. warning:: Surprisingly, Homebrew uses Google Analytics to collect anonymous usage data. You can deselect the option to share usage data by `opting out <https://docs.brew.sh/Analytics#opting-out>`_.
Install Tor
-----------
.. warning:: If you have the Tor Browser open, close it and quit the application.
#. In the command line, install Tor:
.. code-block::
brew install tor
Once it is finished you have the following options:
.. figure:: /_static/images/tor/install_tor.png
:width: 80%
:alt: Tor installation
#. Then run Tor with:
.. code-block::
brew services start tor
This will start Tor and ensure that it is always running, even after a restart. See the `Tor Project <https://2019.www.torproject.org/docs/tor-doc-osx.html.en>`_ for more details.

61
site/source/support/user-manual/configuration/tor-setup/tor-os/tor-windows.rst Normal file
View File

@@ -0,0 +1,61 @@
.. _tor-windows:
=======
Windows
=======
#. Unfortunately, `torproject.org` no longer publishes a standalone Tor binary for Windows, so the recommended way to get it is with the Tor Browser Bundle. You can download it `here <https://www.torproject.org/download/>`_.
.. figure:: /_static/images/tor/tor_download_windows.png
:width: 80%
:alt: Tor download
Download Tor for Windows
#. Once it is downloaded, go ahead and run the installer. If you want to install the program outside of your user directory, you will have to right click and select `Run as Administrator`.
#. Once you have selected a language, you should see a menu like this:
.. figure:: /_static/images/tor/tor_windows_install.png
:width: 80%
:alt: Tor install wizard
Note Tor destination folder when installing
#. It does not matter where you set the destination folder; however, you need to make note of it for later. Go ahead and finish the installation.
#. Now you want to set up Tor to run as a service: to run in the background and keep itself running so you dont have to worry about it again. To do so, you need to open your Command Prompt as an administrator.
* In Windows 10, you can simply type ``cmd`` in the Windows search bar, right click on the first result, and select `Run as Administrator`.
#. Once it opens, you can run the following commands, inserting your destination folder (from above) in place of ``<PATH TO>``:
.. code-block::
sc create tor start= auto binPath= "<PATH TO>\Browser\TorBrowser\Tor\tor.exe -nt-service"
.. tip:: If you get the error "Access denied," please ensure you are running the command prompt in Administrator mode. You can tell because the prompt will show C:\\Users\\YOUR-USERNAME> if you are NOT in admin mode, and it will show C:\\WINDOWS\\system32 if you ARE in admin mode.
.. code-block::
sc start tor
#. When you run this, it should look something like this:
.. figure:: /_static/images/tor/tor_windows_terminal.png
:width: 80%
:alt: Tor windows terminal
Replace highlighted section with noted destination folder
.. note:: If you get the error "The specified service already exists," complete the following steps:
1. Run the command:
.. code-block::
sc delete tor
2. Uninstall the Tor Browser, following `these steps <https://tb-manual.torproject.org/uninstalling/>`_.
3. Begin this guide again from the beginning.
#. That's it! Your Windows computer is now setup to natively use Tor.

32
site/source/support/user-manual/configuration/wifi.rst Normal file
View File

@@ -0,0 +1,32 @@
.. _wifi:
===============
Setting up WiFi - ***VERIFY CONNECTION BEHAVIOR***
===============
You can connect your Embassy with a wireless connection if you prefer. Follow the directions below to connect to a WiFi network, or save your credentials for later to connect to a network you are not currently in proximity to.
#. On the ``Embassy`` tab, Under ``Settings``, Click ``WiFi``
#. Select the appropriate region at the top
.. figure:: /_static/images/config/wifi0.png
:width: 60%
:alt: Select Region
#. Click the ``+ Add new network``
.. figure:: /_static/images/config/wifi1.png
:width: 60%
:alt: Add WiFi Network
#. Enter your WiFi SSID and password and either select ``Save for Later`` or ``Save and Connect`` to connect immediately
.. figure:: /_static/images/config/wifi2.png
:width: 60%
:alt: Enter Credentials
#. The saved network will appear in the list when successfully added. Click on it for connection options. If you are successfully connected, the WiFi symbol will be green, at which point, you can safely disconnect the Embassy from your router.
.. figure:: /_static/images/config/wifi3.png
:width: 60%
:alt: Connect

17
site/source/support/user-manual/getting-started/device-guides/dg-android.rst Normal file
View File

@@ -0,0 +1,17 @@
.. _dg-android:
=======
Android
=======
Tor Setup (Connectivity)
------------------------
`Setup Tor <docs.start9.com/user-manual/configuration/tor-setup/tor-os/tor-android>`_ to run natively (in the background) on your device. This will allow you to use applications on your Android via the :ref:`Tor Network<tor>` so they can communicate with your Embassy.
Tor Firefox Config (Connectivity)
---------------------------------
`Configure Firefox <docs.start9.com/user-manual/configuration/tor-setup/tor-firefox/torff-android>`_ to be able to use the :ref:`Tor Network<tor>` so that you can reach ``.onion`` sites without needing to change browsers.
.. note:: Please see Android's :ref:`Known Limitations<lim-android>` to understand what is currently not possible on these devices

12
site/source/support/user-manual/getting-started/device-guides/dg-ios.rst Normal file
View File

@@ -0,0 +1,12 @@
.. _dg-ios:
===
iOS
===
LAN Setup (Connectivity, Performance)
-------------------------------------
`Setup LAN Access <docs.start9.com/user-manual/configuration/lan-setup/lan-ios>`_ for a fast and secure connection while on your Embassy's local network.
.. note:: Please see iOS's :ref:`Known Limitations<lim-ios>` to understand what is currently not possible on these devices

22
site/source/support/user-manual/getting-started/device-guides/dg-linux.rst Normal file
View File

@@ -0,0 +1,22 @@
.. _dg-linux:
============
Linux Guides
============
LAN Setup (Connectivity, Performance)
-------------------------------------
`Setup LAN Access <docs.start9.com/user-manual/configuration/lan-setup/lan-linux>`_ for a fast and secure connection while on your Embassy's local network.
Tor Setup (Connectivity)
------------------------
`Setup Tor <docs.start9.com/user-manual/configuration/tor-setup/tor-os/tor-linux>`_ to run natively (in the background) on your device. This will allow you to use applications on your Linux machine via the :ref:`Tor Network<tor>` so they can communicate with your Embassy.
Tor Firefox Config (Connectivity)
---------------------------------
`Configure Firefox <docs.start9.com/user-manual/configuration/tor-setup/tor-firefox/torff-linux>`_ to be able to use the :ref:`Tor Network<tor>` so that you can reach ``.onion`` sites without needing to change browsers.
.. note:: Please see Linux's :ref:`Known Limitations<lim-linux>` to understand what is currently not possible on these devices

22
site/source/support/user-manual/getting-started/device-guides/dg-mac.rst Normal file
View File

@@ -0,0 +1,22 @@
.. _dg-mac:
===
Mac
===
LAN Setup (Connectivity, Performance)
-------------------------------------
`Setup LAN Access <docs.start9.com/user-manual/configuration/lan-setup/lan-mac>`_ for a fast and secure connection while on your Embassy's local network.
Tor Setup (Connectivity)
------------------------
`Setup Tor <docs.start9.com/user-manual/configuration/tor-setup/tor-os/tor-mac>`_ to run natively (in the background) on your device. This will allow you to use applications on your Mac via the :ref:`Tor Network<tor>` so they can communicate with your Embassy.
Tor Firefox Config (Connectivity)
---------------------------------
`Configure Firefox <docs.start9.com/user-manual/configuration/tor-setup/tor-firefox/torff-mac>`_ to be able to use the :ref:`Tor Network<tor>` so that you can reach ``.onion`` sites without needing to change browsers.
.. note:: Please see Mac's :ref:`Known Limitations<lim-mac>` to understand what is currently not possible on these devices

22
site/source/support/user-manual/getting-started/device-guides/dg-windows.rst Normal file
View File

@@ -0,0 +1,22 @@
.. _dg-windows:
=======
Windows
=======
LAN Setup (Connectivity, Performance)
-------------------------------------
`Setup LAN Access <docs.start9.com/user-manual/configuration/lan-setup/lan-windows>`_ for a fast and secure connection while on your Embassy's local network.
Tor Setup (Connectivity)
------------------------
`Setup Tor <docs.start9.com/user-manual/configuration/tor-setup/tor-os/tor-windows>`_ to run natively (in the background) on your device. This will allow you to use applications on your Windows machine via the :ref:`Tor Network<tor>` so they can communicate with your Embassy.
Tor Firefox Config (Connectivity)
---------------------------------
`Configure Firefox <docs.start9.com/user-manual/configuration/tor-setup/tor-firefox/torff-windows>`_ to be able to use the :ref:`Tor Network<tor>` so that you can reach ``.onion`` sites without needing to change browsers.
.. note:: Please see Window's :ref:`Known Limitations<lim-windows>` to understand what is currently not possible on these devices

14
site/source/support/user-manual/getting-started/device-guides/index.rst Normal file
View File

@@ -0,0 +1,14 @@
======================
Device-Specific Guides
======================
An overview of EmbassyOS general capabilities.
.. toctree::
:maxdepth: 2
dg-linux
dg-mac
dg-windows
dg-android
dg-ios

16
site/source/support/user-manual/getting-started/index.rst Normal file
View File

@@ -0,0 +1,16 @@
.. _getting-started:
===============
Getting Started
===============
Take your first steps!
.. toctree::
:maxdepth: 2
introduction
purchasing
initial-setup
recover
device-guides/index

107
site/source/support/user-manual/getting-started/initial-setup.rst Normal file
View File

@@ -0,0 +1,107 @@
.. _initial-setup:
=============
Initial Setup - ***COMPACT / SIMPLIFY??***
=============
Connect and Power Up
--------------------
Check out our quick setup video below, and follow along with the steps in this guide:
.. youtube:: DmTlwp5_zvY
1. Connect your Embassy to power and Internet, normally using an ethernet port on your home Internet router.
.. tip:: To avoid networking issues, it is recommended to use your primary router, not an extender or mesh router.
2. Plug in your external drive to one of the USB 3.0 (blue) ports on Embassy.
Embassy will initialize, which may take 10-15min. You will hear 2 distinct sounds:
* "bep" Starting up
* "chime" Embassy is ready
Setup Your Embassy
------------------
1. Ensure the device you are using (desktop/laptop or mobile) is connected to the same network as your router.
.. caution:: Sometmies a router will have a "guest WiFi network," which might be different than the network your Embassy is placed on via ethernet.
2. Visit ``embassy.local`` from your web browser. You will be prompted to enter your :ref:`Product Key`. This is found on the bottom side of your device.
.. figure:: /_static/images/setup/setup0.png
:width: 60%
:alt: Enter Product Key
.. admonition:: Explanation
:class: toggle expand
The product key is used to discover your Embassy's IP address on the Local Area Network using a hashing function and a protocol named :ref:`MDNS (or Zeroconf) <mdns>`.
3. Next, select "Start Fresh" if this is your first time using an Embassy. If you'd like to "Recover" from an existing Embassy, please follow that guide :ref:`here<recover>`.
.. figure:: /_static/images/setup/setup1.png
:width: 60%
:alt: Fresh Install
4. Select your storage drive. You should only have one drive plugged into your Embassy at this time, but always verify it is what you expect before clicking (such as, is it a 1TB drive?)
.. figure:: /_static/images/setup/setup2.png
:width: 60%
:alt: Select Drive
5. Create your *permanent* master password and complete setup.
.. figure:: /_static/images/setup/setup3.png
:width: 60%
:alt: Enter a New Password
.. admonition:: Explanation
:class: toggle expand
In this step, the setup process will provide your Embassy with three pieces of critical information:
* An ed25519 private key. Used by the Embassy to create a .onion public address for encrypted and anonymous communication over Tor.
* A 4096 bit RSA private key. Used by the Embassy to create a SSL certificate for encrypted communication over LAN.
* A master password. Used by the Embassy to authenticate you as its owner.
All three secrets are packaged together and transmitted to the Embassy encrypted with its :ref:`Product Key<product-key>`.
.. warning:: There is also currently no way to change your password. Choose a strong master password. Write it down. Store it somewhere safe. DO NOT LOSE IT. If you lose this password, you may be forced to reset the device, resulting in permanent loss of data. **This one responsibility is the price of sovereignty.**
6. That's it!
.. figure:: /_static/images/setup/setup4.png
:width: 60%
:alt: Setup Complete
Your Embassy is now hosted on the private web! After setup is complete you will be presented with connection information. You can view and manage your Embassy by visiting its unique Tor Address from any Tor-enabled browser, or by accessing it's ``.local`` address from your LAN (see :ref:`LAN Setup<lan-setup>` for assistance).
Enjoy!
------
.. figure:: /_static/images/setup/setup5.png
:width: 60%
:alt: Fresh Embassy
Upon accessing your Embassy for the first time, you will be greeted with an empty Services page. Start9 firmly believe that the only software that should be on your device is the software you choose to be on there. So go ahead and visit the Marketplace to get your first Service!!
Troubleshooting
---------------
Try these steps if you have any issues with setup.
#. Confirm that the Embassy is plugged into both power and Ethernet, with the USB drive in a USB 3.0 (blue) slot.
#. Confirm the Embassy emitted two sounds when powering on: a bep and a chime.
#. Confirm you are entering the product key correctly and exactly.
#. Confirm your device you are using is not connected to a "Guest" network
#. Confirm your device is not using a VPN.
#. Try to refresh the ``embassy.local`` page.
#. Very rarely, a router may not support mDNS. In this case:
- On your desktop or laptop computer, navigate to your router configuration settings within the browser. This is usually an IP address such as 192.168.1.1. A simple web search will usually reveal how to access the router configuration settings for a particular brand.
- Once in the router config settings, find the section that lists the devices on your network. You should see an item labeled "embassy". Take note of the associated IP address and enter it into your browser's URL field to enter the setup.
If you are still having issues, please reach out to us for :ref:`Assistance<contact>`.

15
site/source/support/user-manual/getting-started/introduction.rst Normal file
View File

@@ -0,0 +1,15 @@
.. _introduction:
============
Introduction
============
:ref:`Embassy<embassy>` is a new kind of personal computer - one that sits quietly on your shelf and runs all day and night. It has no screen and no keyboard. You access your Embassy from anywhere in the world in total, trustless privacy, simply by visiting its unique Tor address (.onion URL) right from the browser.
Embassy is composed of commonly available hardware components that can be sourced and assembled by anyone, anywhere, for a marginal fee. Embassy is powered by EmbassyOS, the open-source operating system by Start9.
So, what do you do with your Embassy? You use it to run services: Bitcoin, Lightning, personal cloud storage, P2P messaging, password management, etc. The list of available services is growing quickly and will eventually encompass the entirety of open-source, self-hosted software.
Every communication between you and your Embassy is end-to-end encrypted and onion routed over the :ref:`Tor network<tor>`. All services are open-source and self-hosted, meaning there are no trusted third parties of any kind.
To get an Embassy, you can :ref:`purchase<purchasing>` one directly from :ref:`Start9<start9>`, or you can :ref:`build one yourself<diy>`.

9
site/source/support/user-manual/getting-started/purchasing.rst Normal file
View File

@@ -0,0 +1,9 @@
.. _purchasing:
==========
Purchasing
==========
For maximum convenience, you can purchase an Embassy device directly from Start9 through our `Shopify Store <https://store.start9.com>`_. The device comes in a beautiful box, fully-assembled, and pre-installed with the latest version of :ref:`EmbassyOS<embassy-os>`. We do our own hardware assembly and fulfillment, and we only collect the minimal information necessary to fulfill your order. And yes, we accept Bitcoin, as well as Lightning payments.
If you prefer to build your own Embassy, you can follow the :ref:`DIY Guide <diy>`.

15
site/source/support/user-manual/getting-started/recover.rst Normal file
View File

@@ -0,0 +1,15 @@
.. _recover:
===============
Recover Embassy
===============
.. _recover-02x:
Recover Embassy from version series 0.2.x
-----------------------------------------
.. _recover-03x:
Recover Embassy from Version Series 0.3.x
-----------------------------------------

30
site/source/support/user-manual/index.rst Normal file
View File

@@ -0,0 +1,30 @@
.. _user-manual:
===========
User Manual
===========
.. toctree::
:maxdepth: 2
:hidden:
getting-started/index
configuration/index
troubleshooting/index
tuning/index
walkthrough/index
services/index
.. panel-box::
:title: Overview
:id: "getting-started"
:class: my-panel
EmbassyOS is designed to work out of the box with a minimal setup and immediate practicality. That being said, there are a great many different use-cases and utilities that can be added at your convenience. You can get started right away with :ref:`Initial Setup <initial-setup>`. In the :ref:`User Manual <user-manual>`, you will find information on what EmbassyOS can do for you, as well as configuration and customization options. Use our :ref:`Knowledge Base <knowledge-base>` to learn more about the technologies behind Embassy, including Frequently Asked Questions. When you're ready to build, please check out our :ref:`Developer Docs <dev-docs>`. Please don't hestitate to `Contact Us <https://start9.com/contact>`_ if you have any issues, questions, or suggestions that are not covered here.
* :doc:`Getting Started <getting-started/index>` - Initial setup and device-specific guides to connect with your Embassy.
* :doc:`Configuration Options <configuration/index>` - Configuration your Embassy.
* :doc:`Troubleshooting <troubleshooting/index>` - Resolve any common issues you may encounter.
* :doc:`Tuning <tuning/index>` - Customize your Embassy with advanced configuration and external service integrations.
* :doc:`Services <services/index>` - Overview of featured Services and general usage on EmbassyOS.
* :doc:`Walkthrough <walkthrough/index>` - A guided tour of EmbassyOS.

13
site/source/support/user-manual/services/index.rst Normal file
View File

@@ -0,0 +1,13 @@
.. _services-index:
========
Services - ***NEEDS UPDATING / SCREENS***
========
An overview of EmbassyOS general capabilities.
.. toctree::
:maxdepth: 2
marketplace
managing-services

124
site/source/support/user-manual/services/managing-services.rst Normal file
View File

@@ -0,0 +1,124 @@
.. _managing-services:
=================
Managing Services
=================
.. _managing-dependencies:
Dependencies
------------
Some services have dependencies on other services. A service may even require its dependency to be *configured* in a particular way.
Traditionally, managing dependencies was a massive headache and a huge barrier to running a personal server. But no more! The Embassy's revolutionary dependency management system makes the process transparent and simple.
If a service has one or more dependencies, or a dependency needs to be configured in a particular way, your Embassy will inform you and offer solutions.
Sometimes, a dependency can be satisfied in multiple ways. For example, Lightning has a dependency on Bitcoin. But that does not necessarily mean you need to have Bitcoin installed on your Embassy. You could just as easily configure Lightning to use another Bitcoin node located somewhere else!
.. _installing:
.. note:: Some services have :ref:`dependencies<managing-dependencies>` on other services. Adding, updating, or removing a service can sometimes have requirements or consequences for other services. Your Embassy will inform you of these issues along the way.
Installing
----------
To add a new service, find it's listing inside the Service Marketplace: *Marketplace > [Service Name] > Install*.
Depending on the size of the service and your Internet connection, installation should take between 60 seconds and a few minutes.
After installation, you can view the service's instructions by navigating to *Services > [Service Name] > Instructions*
.. note:: You can only start and use a service once its dependencies are met, its :ref:`configuration<service-config>` complete, and is in a *running* state.
.. _updates:
Updating
--------
To see if an update is available for a service, you can click the *refresh* button inside the dashboard of the installed service or by visiting its listing in the Service Marketplace.
If an update is available, simply click "Update" and confirm the action.
.. _uninstalling:
Uninstalling
------------
To remove a service, navigate to *Services > [Service Name] > Uninstall*.
.. _instructions:
Instructions
------------
To view the instructions for a particular service, navigate to *Services > [Service Name] > Instructions*.
.. figure:: /_static/images/bitcoin_instructions.png
:width: 90%
:alt: Bitcoin instructions menu item
Instructions menu item
.. figure:: /_static/images/bitcoin_instructions_view.png
:width: 90%
:alt: Bitcoin instructions view
Instructions view
.. note:: For advanced instructions and integration guides, visit the wrapper repository for an :ref:`available service <available-services>`.
.. _service-config:
Service Config
--------------
Navigate to *Services > [Service Name] > Config*
After installation or update, some services require configuration before they can be started.
Traditionally, configuring services was a massive headache and a huge barrier to running a personal server. But no more! The Embassy's revolutionary service config system makes the process transparent, simple, and safe.
Config options are defined by the service developer and can be almost anything. They are represented as simple UI elements - such as toggles and drop downs - and they include explanations and validations, such that users understand their purpose and are prevented from making mistakes.
.. _properties:
Properties
----------
Navigate to *Services > [Service Name] > Properties*
Properties are both static and dynamic information about a service. They could be almost anything: a default username/password, an invite code, or a list of peers - anything the service developer thought might be useful.
Properties may be accompanied by one or more of the following:
* a *help* icon for further explanation.
* a *copy* icon for copying the value to your clipboard.
* a *QR* icon for viewing the value as a QR code.
.. _actions:
Actions
-------
.. _interfaces:
Interfaces
----------
.. _logs:
Logs
----
Naviage to *Services > [Service Name] > Logs*
Every service emits logs while it is in a *running* state. Logs give an *under-the-hood* glimpse of a service and can be extremely useful for debugging purposes. To a non-technical user, logs may look like gibberish, and sometimes there is nothing to see at all.
.. _donate:
Donate
------
This link is provided by the developer so that you may donate to them or the developer of the service they packaged directly.

10
site/source/support/user-manual/services/marketplace.rst Normal file
View File

@@ -0,0 +1,10 @@
.. _service-marketplace:
===========
Marketplace
===========
LINK TO MARKETPLACE
FIND A PLACE TO LINK S9 ALTWEB SERVICE MOST WANTED LIST
ROADMAP NEEDS A HOME

13
site/source/support/user-manual/troubleshooting/index.rst Normal file
View File

@@ -0,0 +1,13 @@
.. _troubleshooting:
===============
Troubleshooting
===============
Sometimes things don't go as planned. Check here for solutions to common problems with your Embassy.
.. toctree::
:maxdepth: 2
shoot-connection
shoot-embassy

19
site/source/support/user-manual/troubleshooting/shoot-connection.rst Normal file
View File

@@ -0,0 +1,19 @@
.. _shoot-connection:
===========================
Troubleshooting Connections
===========================
During initial setup, I am unable to connect to ``embassy.local``.
------------------------------------------------------------------
Please ensure that the device you are attempting to connect with is on the same network as your Embassy. This cannot be a "Guest" network, or a WiFi network that is in any way separated from the network Embassy is on.
If you still cannot connect, you can log into your router (the directions for which can be founnd with a simple web search for your router model and 'how to log in'). Once you are in your router, find the device labeled 'Embassy,' and visit it's associated IP address, which will look something like: ``192.168.1.9``
I am unable to reach Embassy via it's ``embassy-xxxxxxxx.local`` (LAN) address
------------------------------------------------------------------------------
Make sure you have successfully followed the :ref:`LAN Setup<lan-setup>` instructions for your device. If you still cannot connect, make sure you are on the same network using the solution above. If you are able to visit your Embassy via its IP address, then something is wrong in your LAN Setup. Keep in mind that different devices have different methods of resolving ``.local`` addresses, and some devices, such as :ref:`Android<lim-android>`, lack the ability at an OS level.
I am unable to reach Embassy via it's ``xxxxxxxxxxxxxxxxxx.onion`` (Tor) address
--------------------------------------------------------------------------------
First, attmept to connect using :ref:`The Tor Browser<tor-browser>`. This is a good test because Tor Browser has Tor built in. If you cannot reach your ``.onion`` with Tor Browser, reboot the Embassy by unplugging power and plugging it back in. This will reset your Tor connection. If you can reach via Tor Browser, but not with another browser, then follow the setup guides to run Tor on your device :ref:`Natively<tor-os>` and/or to :ref:`Configure Your Browser<tor-firefox>`.

25
site/source/support/user-manual/troubleshooting/shoot-embassy.rst Normal file
View File

@@ -0,0 +1,25 @@
.. _shoot-embassy:
=======================
Troubleshooting Embassy - ***ADD LIST OF SOUNDS***
=======================
Hardware
--------
Embassy is making noises
........................
The plug and play Embassy sold by Start9 has no moving parts, so the only noises it should ever make would come from its internal speaker. The following is a list of all possible sounds:
#.
Embassy will not boot
.....................
If the device will not power on at all (no lights whatsoever), then the only issues could be that the Pi is not getting the power it needs, or it is completely dead (extremely rare). If you sourced your own parts, please ensure that the power supply meets the minimum required specificiations in the `DIY Guide<diy>`. If you received your device from us and it will not power up at all, please `Contact us<contact>` for assistance.
Software
--------
I'm having an issue with a particular Service
.............................................
If a Service is crashing or acting up in some way, check the `Documentation<services>` and `FAQ<faq-services>` for that particular Service. You can also check the `Logs` of a service, which might tell you what the problem is. If that is not helpful, try to restart the service to see if that clears up the issue. If you are still having issues, please reach out in one of our `Community Channels` for immediate assistance, or email support@start9labs.com for help during business hours.

19
site/source/support/user-manual/tuning/advanced-config/alt-marketplace.rst Normal file
View File

@@ -0,0 +1,19 @@
=======================
Alternative Marketplace
=======================
.. caution:: EmbassyOS supports accessing alternative marketplaces. Start9 is not responsible for issues encountered when downloading services from alternative marketplaces, and cannot provide support for Services that are not from our offical marketplace. Here be dragons!!
After SSH-ing into the Embassy, run the following command, replacing ``<url>`` with your desired marketplace URL:
.. code-block:: bash
embassy-cli server set-marketplace <url>
or to only change the marketplace for fetching packages, but not os updates:
.. code-block:: bash
embassy-cli package set-marketplace <url>
.. note:: Make sure you have the URL **EXACTLY CORRECT.** If you do not, your Embassy may crash. In this case, just reboot the device and try again.

11
site/source/support/user-manual/tuning/advanced-config/index.rst Normal file
View File

@@ -0,0 +1,11 @@
======================
Advanced Configuration
======================
Custom options for folks that "know what they're doing."
.. toctree::
:maxdepth: 2
ssh-setup
alt-marketplace

26
site/source/support/user-manual/tuning/advanced-config/ssh-setup.rst Normal file
View File

@@ -0,0 +1,26 @@
.. _ssh-setup:
=========
SSH Setup
=========
.. warning:: This is an advanced feature and should be used with caution. Start9 is not responsible for any damage you might cause through SSH access.
Connecting via CLI
------------------
#. Navigate to the ``Embassy`` tab, then under ``Settings``, click ``SSH``
#. Click the ``+ Add New Key`` button
#. Paste in your SSH key and hit ``Submit``
#. You can now access your Embassy from the command line (Linux and Mac) using:
.. code-block:: bash
ssh root@<LAN URL>
Replacing ``<LAN URL>`` with your Embassy's LAN (``embassy-xxxxxxx.local``) address
Connecting via SSH on Windows, using PuTTY
------------------------------------------
One of our community members, @brewsbitcoin, has put together this guide for connecting via PuTTY on Windows: https://medium.com/@brewsbitcoin/ssh-to-start9-embassy-from-windows-4a4e17891b5a

93
site/source/support/user-manual/tuning/diy.rst Normal file
View File

@@ -0,0 +1,93 @@
.. _diy:
=========
DIY Guide - ***UPDATE BUILD GUIDE LINK***
=========
.. figure:: /_static/images/diy/pi.png
:width: 40%
:alt: Raspberry Pi
Raspberry Pi Board
By popular demand, we are pleased to present this "Do it Yourself" (DIY) guide for the Start9 Embassy personal server!
Motivation
----------
There are four reasons you might prefer to build your own Embassy instead of purchasing one from us.
#. You already own the necessary hardware and would like to re-purpose it.
#. You live outside the US and want to save on shipping costs.
#. You do not trust Start9's supply chain.
#. You do not want to share your shipping address.
#. You just like building things.
Building an Embassy
-------------------
Hardware: Components
....................
#. `Raspberry Pi 4B (8GB) <https://raspberrypi.org/products/raspberry-pi-4-model-b/?variant=raspberry-pi-4-model-b-8gb>`_
#. `Power supply for Raspberry Pi 4B <https://raspberrypi.org/products/type-c-power-supply/>`_ Make sure this is at minimum 15w and 3.5a.
#. Case for Raspberry Pi 4B (`passive cooling recommended <https://www.amazon.com/Geekworm-Raspberry-Aluminum-Passive-Heatsink/dp/B07Z6FYHCH/>`_ `*`)
#. A `16GB microSD card <https://amazon.com/SanDisk-Endurance-microSDXC-Adapter-Monitoring/dp/B07NY23WBG/>`_ (no need for bigger). If you have ABSOLUTELY NO data to migrate, you may choose to re-use the card already in your Embassy.
#. `GPIO mini speaker/buzzer <https://www.amazon.com/Corporate-Computer-Motherboard-Internal-Speaker/dp/B01527H4W2/>`_ (These often sell out, please let us know if this link needs to be refreshed)
#. Ethernet cable
#. MicroSD → USB adapter (or you may have a microSD port on your computer)
#. An external drive (1TB minimum, 2TB SSD recommended), or an `internal drive <https://www.amazon.com/Crucial-MX500-NAND-SATA-Internal/dp/B078211KBB>`_ with an `USB enclosure <https://www.amazon.com/gp/product/B07T9D8F6C>`_, as sold with our upgrade kits. MUST CONNECT OVER USB 3.0
`*` If you use a fan, **DO NOT** use the official Raspberry Pi fan, as it requires the same GPIO pins as the audio speaker. Instead, we recommend `this fan <https://www.amazon.com/Raspberry-iUniker-30x30x7mm-Brushless-RetroFlag/dp/B076H3TKBP/>`_.
Hardware: Assembly Instructions
...............................
#. Insert mini speaker/buzzer into GPIO pins 6/8/10/12 with the word "speaker" facing out, `away from the board`.
.. figure:: /_static/images/diy/pins.png
:width: 60%
:alt: Speaker board spec
#. Place the Raspberry Pi 4 board (with speaker attached), into its case.
#. Plug in the external drive to one of the USB 3.0 (blue) slots
Getting EmbassyOS
-----------------
Getting EmbassyOS: Purchasing
.............................
You can purchase EmbassyOS `here <https://store.start9.com/collections/embassy/products/embassyos-software-download>`_. This is by far the easiest path to get up and running.
Depending on your Internet speed, the download should take between 5 and 30 minutes.
Getting EmbassyOS: Building from Source
.......................................
***Placehodler for build guide - https://github.com/Start9Labs/embassy-os/tree/integration/0.3.0/build***
Installing EmbassyOS
--------------------
Whether you purchase EmbassyOS from us or build it yourself, you need to flash it onto a microSD card.
#. Download `balenaEtcher <https://www.balena.io/etcher/>`_ onto your Mac, Windows, or Linux computer.
#. Insert the microSD card into your computer, either directly or using an adapter.
#. Open balenaEtcher.
#. Click `Select Image`, then find and select your copy of EmbassyOS.
#. Click `Select Target`, then find and select your micro SD card.
#. Click `Flash!` You may be asked to (1) approve the unusually large disk target or (2) enter your password. Both are normal.
.. figure:: /_static/images/diy/balena.png
:width: 60%
:alt: Balena Etcher Dashboard
#. Once the image is flashed and verified, you may remove the micro SD, insert it into your Embassy, and power up the device.
#. The Embassy is now ready for use, and you may following the normal :ref:`setup <initial-setup>` instructions. ``*``
``*`` The first time you power it on, your Embassy will make more noises than future attempts, and it may take several minutes to finally complete.

15
site/source/support/user-manual/tuning/embassy-os.rst Normal file
View File

@@ -0,0 +1,15 @@
.. _tune-embassy-os:
=====================
Customizing EmbassyOS
=====================
Rename Device
-------------
Duplicate in walkthrough, probably move to here
Reorder Service Page
--------------------
Customize Services layout

14
site/source/support/user-manual/tuning/index.rst Normal file
View File

@@ -0,0 +1,14 @@
======
Tuning
======
Here, you can customize your Embassy with advanced configuration, setup external tools, migrate from old projects, or build your own Embassy from scratch.
.. toctree::
:maxdepth: 2
diy
migrating
advanced-config/index
embassy-os
service-guides/index

21
site/source/support/user-manual/tuning/migrating.rst Normal file
View File

@@ -0,0 +1,21 @@
.. _migrating:
====================
Migrating To Embassy
====================
From Umbrel
-----------
Dreadlocked
======================
Migrating From Embassy
======================
We hate to see you go, but respect your freedom to choose. If you decide to use your hardware with different software, here are some guidelines.
.. warning:: For obvious reasons, we cannot officially support anything that happens when you leave the Embassy ecosystem
To Umbrel
---------

63
site/source/support/user-manual/tuning/service-guides/bitcoin.rst Normal file
View File

@@ -0,0 +1,63 @@
.. _bitcoin:
=======
Bitcoin
=======
Here you will find guides on how to connect different kinds of Bitcoin wallets (hardware and software) to your Embassy node, to complete your sovereign Bitcoin stack!
.. _bitcoin-cli:
Using Bitcoin-Cli
-----------------
Instructions for accessing the bitcoind service in order to issue commands directly.
.. warning:: This is an advanced feature and should be used with caution. Start9 is not responsible for any damage you might cause through SSH access.
1. First, you will need SSH access. Please see the :ref:`setup instructions <ssh-setup>` for details.
2. Access your Embassy and then you can interact with the bitcoind docker container using the following syntax::
sudo docker exec bitcoind bitcoin-cli COMMAND
.. admonition:: Example
sudo docker exec bitcoind bitcoin-cli getnetworkinfo
A list of possible commands can be found `here <https://chainquery.com/bitcoin-cli>`_.
You can also drop into a shell using::
sudo docker exec -it bitcoind bash
and then enter ``bitcoin-cli`` commands. When you are finished, simply type ``exit``.
.. _electrum:
Electrum
--------
.. _fully-noded:
FullyNoded
----------
.. _sparrow:
Sparrow
-------
.. _specter:
Specter
-------
.. _trezor:
Trezor
------
.. _ledger:
Ledger Live
-----------

13
site/source/support/user-manual/tuning/service-guides/index.rst Normal file
View File

@@ -0,0 +1,13 @@
=======================
Service-Specific Guides
=======================
These guides will help you to setup external tools to connect or interact with specific :ref:`Services<services>`, such as a chat client or :ref:`Bitcoin<bitcoin>` wallet.
.. toctree::
:maxdepth: 2
vaultwarden
matrix
bitcoin
lightning

30
site/source/support/user-manual/tuning/service-guides/lightning.rst Normal file
View File

@@ -0,0 +1,30 @@
.. _lightning:
=========
Lightning
=========
.. _rtl:
Ride the Lightning
------------------
.. _spark:
Spark
-----
.. _thunderhub:
Thunderhub
----------
.. _zap:
Zap
---
.. _zeus:
Zeus
----

7
site/source/support/user-manual/tuning/service-guides/matrix.rst Normal file
View File

@@ -0,0 +1,7 @@
.. _matrix:
======
Matrix
======
https://www.youtube.com/watch?v=PtwQsybFapo

7
site/source/support/user-manual/tuning/service-guides/vaultwarden.rst Normal file
View File

@@ -0,0 +1,7 @@
.. _vaultwarden:
===========
Vaultwarden
===========
https://www.youtube.com/watch?v=YcxxVHpm9j0

57
site/source/support/user-manual/walkthrough/backup.rst Normal file
View File

@@ -0,0 +1,57 @@
.. _backup:
==================
Backing Up Embassy
==================
There are 2 options for backing up your Embassy and all its service data. You can setup a shared folder on a remote machine, such as a laptop or desktop, or you can backup to a local drive, which must be externally powered or plugged into a powered USB hub before plugging into Embassy.
Remote Backups
--------------
Linux
=====
#. IYKYK
Mac
===
#. go to system settings
#. click sharing
#. click file sharing
#. click the + under shared folders
#. add a folder
#. click options
#. enable Windows file sharing for the user you would like to use to authenticate
#. click done
#. enter the name of your macbook, as shown in the computer name field at the top of the sharing page into the hostname field in embassy ui
#. enter the name of the folder as shown in the shared folders section as the path
#. enter your macbook username and password for the user that you enabled windows file sharing for
Windows
=======
#. Create a folder
#. Right click the folder
#. select "properties"
#. click the share tab
#. click share...
#. select a user you want to use for login, or select everyone
#. click share
#. enter your computer name into the hostname field in embassy ui (the name is shown after a \\ in the windows ui)
#. enter the path that is shown after the hostname in the windows ui into the path field
#. enter your username for the windows computer
#. enter the password for the windows computer
Local Backups
-------------
Linux
=====
Mac
===
Windows
=======

15
site/source/support/user-manual/walkthrough/index.rst Normal file
View File

@@ -0,0 +1,15 @@
.. _walkthrough:
===========
Walkthrough
===========
An overview of EmbassyOS general capabilities.
.. toctree::
:maxdepth: 2
overview
updates
backup
password

80
site/source/support/user-manual/walkthrough/overview.rst Normal file
View File

@@ -0,0 +1,80 @@
.. _overview:
=====================
Overview of EmbassyOS - ***NEED SCREENSHOTS / DETAILS***
=====================
.. _services-tab:
Services Tab
------------
The Services Tab will show you all of your currently installed :ref:`Services<services>`, or in the case of a fresh install, no Services.
Services
========
.. _embassy-tab:
Embassy Tab
-----------
The Embassy Tab is where you can perform :ref:`Backups<backups>`, get Insights into EOS, change some basic Settings, and Power cycle your device if necessary.
Backups
=======
Do the backups
Insights
========
Get the insights
Settings
========
Set the things
Power
=====
Restart
.......
#. Be patient while services shut down. A *tune* will play, indicating the shutdown is complete.
#. A gentle *bep* will sound when the Embassy is powered back on.
#. A *chime* will sound when the Embassy is ready to use. Please be patient as a Restart will take some time.
Shutdown
........
#. Be patient while services shut down. A *tune* will play, indicating the shutdown is complete.
#. It is now safe to unplug the Embassy from power and the ethernet cable, if connected.
.. note:: After a shutdown, the *only* way to turn your Embassy back on is to unplug it and plug it back in. As such, we do not recommend shutting down your Embassy when you are not physically near it. Instead, you should use the restart option.
.. _marketplace-tab:
Marketplace Tab
---------------
The Marketplace Tab is obviously the home of the Marketplace, where you can install new Services, or manange existing ones.
Marketplace
===========
.. _notifications-tab:
Notifications Tab
-----------------
The Notifications Tab is where you can view and manage Notifications produced by EOS and your Services
Notifications
=============
* successful or failed EmbassyOS updates
* successful or failed service installations
* successful or failed service backups
* successful or failed service updates

76
site/source/support/user-manual/walkthrough/password.rst Normal file
View File

@@ -0,0 +1,76 @@
.. _forgot-password:
===============
Forgot Password - ***NEEDS UPDATING***
===============
There is currently no way to reset you Embassy master password through a standard UI flow.
SSH/Linux
---------
If you already have :ref:`SSH keys registered with your Embassy<ssh-setup>` **OR** you have access to a Linux computer, you can reset your Embassy password without losing any data.
* SSH:
* Use the command line to gain SSH access to your Embassy::
ssh pi@start9-[network-id].local
* Check if you have sqlite3 installed. If not, install it::
which sqlite3
sudo apt install sqlite3
* Access the sqlite3 terminal::
sudo sqlite3 /root/agent/start9_agent.sqlite3
* Run::
delete from account;
.quit
* Exit the SSH session::
exit
* You can now use the Start9 Setup App to reclaim your Embassy and set a new password.
.. warning:: Running setup process will generate new certificate and Tor address for your Embassy.
* Linux computer:
* Shut down your Embassy, disconnect from power, and remove the microSD card.
* Insert the microSD card into your Linux computer and mount the drive::
mount [drive] [mount folder]
* Check if you have sqlite3 installed. If not, install it::
which sqlite3
sudo apt install sqlite3
* Access the sqlite3 terminal::
sudo sqlite3 /root/agent/start9_agent.sqlite3
* Run::
delete from account;
.quit
* Un-mount the microSD card::
umount [mount folder]
* Return the microSD card to your Embassy and power it on.
* You can now use the Start9 Setup App to reclaim your Embassy and set a new password.
.. warning:: Running setup process will generate new certificate and Tor address for your Embassy.
No SSH/Linux
------------
You must factory reset your device by re-installing EmbassyOS, resulting in permanent loss of data. Visit the `image downloader <https://images.start9labs.com/download>`_ to obtain a new EmbassyOS image, then follow the `installation instructions </getting-started/diy.html#installing-embassyos>`_.

32
site/source/support/user-manual/walkthrough/updates.rst Normal file
View File

@@ -0,0 +1,32 @@
.. _updates:
========
Updating
========
Keeping current on Updates ensures a fast and secure system.
.. _update-eos:
Updating EmbassyOS
------------------
When an Operating System update is available, a big, beautiful banner will appear in the Marketplace as an announcement. Simply click on this and follow the UI flow to update EmbassyOS. It is recommended to keep EOS up to date for the latest security and performance patches, as well as to take advantage of new features.
.. _auto-check-updates:
Enable Auto Check for Updates
-----------------------------
#. Navigate to the ``Embassy`` tab -> ``Preferences``
#. Click "Auto Check for Updates" and click Enable
#. If there is an update available, you will be prompted to install it.
#. While updating, your Embassy will emit a gentle chime every 20 seconds.
#. You can also enable automatic check for updates in the :ref:`Embassy config <auto-update>` tab.
.. note:: Ensure you have a stable Internet connection, and do not unplug your Embassy during an update. Updates usually complete within a few minutes, but depending on the size of the update and your Internet bandwidth, they can sometimes take up to an hour.
Manually Checking Updates
-------------------------
If you choose not to enable automatic updates, service updates will appear in the `Updates` tab of the Marketplace when ready.