Start9/documentation
2
0
Fork 0
mirror of https://github.com/Start9Labs/documentation.git synced 2026-04-01 21:13:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

clarify lan-tor setup

Browse Source
This commit is contained in:
Matt Hill
2023-11-14 10:31:29 -07:00
parent 59473a46f7
commit a678eb6743
15 changed files with 84 additions and 106 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
site/source/device-guides/linux/ca-linux.rst
View File

@@ -12,7 +12,7 @@ Trusting Your Server's Root CA on Linux
These instructions will work for most Debian-based Linux distributions, such as Debian, Linux Mint, PopOS, Ubuntu, etc.
#. Ensure you have already `downloaded your server's Root CA </getting-started/trust-ca/#download-root-ca>`_
#. Ensure you have already :ref:`downloaded your Root CA <download-root-ca>`
#. Perform the following commands in the Terminal:
@@ -37,7 +37,7 @@ Trusting Your Server's Root CA on Linux
.. group-tab:: Arch/Garuda
#. Ensure you have already `downloaded your server's Root CA </getting-started/trust-ca/#download-root-ca>`_
#. Ensure you have already :ref:`downloaded your Root CA <download-root-ca>`
#. From the folder you have downloaded your Start9 server's Root CA, run the following commands. Take care to replace `adjective-noun` with your server's unique adjective-noun combination in the command below. If you have changed the certificate's filename, be sure to change it here.
@@ -51,7 +51,7 @@ Trusting Your Server's Root CA on Linux
.. group-tab:: CentOS/Fedora
#. Ensure you have already `downloaded your server's Root CA </getting-started/trust-ca/#download-root-ca>`_
#. Ensure you have already :ref:`downloaded your Root CA <download-root-ca>`
#. In `/etc/systemd/resolved.conf`, ensure you have ``MulticastDNS=Yes``

26
site/source/device-guides/linux/ff-linux.rst
View File

@@ -5,12 +5,10 @@ Configuring Firefox on Linux
============================
Here you will configure Firefox to securely resolve the .local and .onion URLs of your server and installed services.
Local
-----
Local (required for initial setup)
----------------------------------
This guide applies to Firefox, Firefox ESR, Librewolf, and Thunderbird. Mozilla apps need to be configured to use the certificate store of your device. To find out why Mozilla does this differently, you can read their `blog post <https://blog.mozilla.org/security/2019/02/14/why-does-mozilla-maintain-our-own-root-certificate-store/>`_ on the topic (TLDR: for security purposes).
#. Ensure you have already :ref:`trusted your server's Root CA<ca-linux>`
#. Select your distribution below and follow instructions:
.. tabs::
@@ -49,24 +47,8 @@ This guide applies to Firefox, Firefox ESR, Librewolf, and Thunderbird. Mozilla
#. Restart Firefox
#. When you visit your server URL using ``https``, you should see this symbol indicating a secure connection:
.. figure:: /_static/images/ssl/browser/firefox-https-good.png
:width: 80%
:alt: Firefox security settings
#. If you see an exclamation point inside a triangle by the lock, it means you previously made a security exception in the browser. You will need to remove the exception by clicking the lock -> Connection not secure -> Remove Exception.
.. figure:: /_static/images/ssl/browser/cert-trust-exception-remove-1.png
:width: 80%
:alt: Firefox - Remove security exception (Part 1)
.. figure:: /_static/images/ssl/browser/cert-trust-exception-remove-2.png
:width: 80%
:alt: Firefox - Remove security exception (Part 2)
Tor
---
Tor (can be completed later)
----------------------------
#. Ensure you have already :ref:`set up Tor<tor-linux>`
#. Open Firefox and enter ``about:config`` in the URL bar. Accept any warnings that appear