updated

opsec/index.html

@@ -133,7 +133,6 @@
                 <li><a href="passwordmanagement/index.html">✅ Password Management 101 (How to use Keepass)</a></li>
                 <li><a href="serversideencryption/index.html">✅ Serverside: Should I trust serverside encryption? Should I use PGP?</a></li>
                 <li><a href="pgp/index.html">✅ Private Messaging (PGP encryption)</a></li>
-                <li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/44">❌ How to use GPG SmartCards to secure your PGP keys</a></li>
 </ol></br>
 
 <p>⚠️ Miscellaneous - In real life</p>
@@ -242,7 +241,6 @@
         <li><a href="torwebsite/index.html">🟠 Hidden Service with custom .onion Vanity V3 address</a></li>
 		<li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/20">❌ Basic Webserver setup (NGINX / PHP / MYSQL)</a></li>
 		<li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/21">❌ Minimalistic MoneroSSO .onion setup</a></li>
-		<li><a href="xmpp2024/index.html">✅ XMPP Chat Server Setup (Clearnet + Onion + OMEMO E2EE)</a></li>
 		<li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/22">❌ Gitea .onion setup (Code repositories)</a></li>
 		<li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/23">❌ Nextcloud .onion setup (cloud storage)</a></li>
 		<li><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/24">❌ Mastodon .onion setup (Microblogging)</a></li>
@@ -257,7 +255,6 @@
 		<li><a href="anondomain/index.html">✅ How to rent remote domains anonymously (Registrar resellers) ⭐</a></li>
 		<li><a href="anonaccess/index.html">✅ Remote anonymous access setup (cockpit + ssh through tor)</a></li>
 		<li><a href="dns/index.html">✅ Clearnet Bind9 DNS server setup (with DNSSEC)</a></li>
-		<li><a href="matrixnew/index.html">✅ Clearnet Matrix server (federated clearnet chatting)</a></li>
         <li><a href="mailprivate/index.html">✅ Anonymous (remote or self-hosted) clearnet Mail Server ⭐</a></li>
 </br>
 </ol></br>

opsec/matrixnew/index.html

@@ -1,342 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <meta charset="utf-8">
-    <meta http-equiv="X-UA-Compatible" content="IE=edge">
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <meta name="description" content="">
-    <meta name="author" content="">
-    <link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
-
-    <title>Matrix Chat Setup</title>
-
-    <!-- Bootstrap core CSS -->
-    <link href="../../assets/css/bootstrap.css" rel="stylesheet">
-	<link href="../../assets/css/xt256.css" rel="stylesheet">
-    
-    
-
-    <!-- Custom styles for this template -->
-    <link href="../../assets/css/main.css" rel="stylesheet">
-
-    
-
-    <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
-    <!--[if lt IE 9]>
-      <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
-      <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
-    <![endif]-->
-  </head>
-
-  <body>
-
-    <!-- Static navbar -->
-    <div class="navbar navbar-inverse-anon navbar-static-top">
-      <div class="container">
-        <div class="navbar-header">
-          <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-          </button>
-          <a class="navbar-brand-anon" href="\index.html">The Nihilism Blog</a>
-        </div>
-        <div class="navbar-collapse collapse">
-          <ul class="nav navbar-nav navbar-right">
-
-            <li><a  href="/about.html">About</a></li>
-            <li><a  href="/blog.html">Categories</a></li>
-<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
-            <li><a  href="/contact.html">Contact</a></li>
-          </ul>
-        </div><!--/.nav-collapse -->
-        
-      </div>
-    </div>
-
-	<!-- +++++ Posts Lists +++++ -->
-	<!-- +++++ First Post +++++ -->
-	<div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-  					<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>root@Datura - 2024-01-14</ba></p>
-<h1>Matrix Chat Setup </h1>
-<img src="0.png" style="width:250px">
-<p>In this tutorial we're going to setup a private matrix chat server along with VoIP support for the element desktop client. </p>
-<p><u>Disclaimer:</u> If you want this service to remain anonymous, make sure you at least keep <a href="../sensitiveremotevshome/index.html">TOR between you and the service</a> from the <a href="../anonymousremoteserver/index.html">VPS acquisition</a> to actual service usage. </p>
-          
-	       </div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /grey -->
-
-	<!-- +++++ Second Post +++++ -->
-	<div id="anon3">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>Initial Setup </b></h2>
-<p>First install the required packages:</p>
-<pre><code class="nim">
-apt install docker.io docker-compose
-	
-</code></pre>
-
-<p>Then create the directories required:</p>
-<pre><code class="nim">
-mkdir /srv/matrix/data -p
-chown -R 755 /srv/matrix/data
-cd /srv/matrix
-
-</code></pre>
-<p>Then we'll create the docker-compose.yml file and the generateconfig.sh script:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat docker-compose.yml
-version: "3.3"
-
-services:
- synapse:
-  image: "matrixdotorg/synapse:latest"
-  container_name: "matrix_synapse"
-  ports:
-   - 8008:8008
-  volumes:
-   - "./data:/data" #it will look at the current directory where you save the file and look for the data folder inside
-  environment:
-   VIRTUAL_HOST: "m.nowhere.moe"
-   VIRTUAL_PORT: 8008
-   LETSENCRYPT_HOST: "m.nowhere.moe"
-   SYNAPSE_SERVER_NAME: "m.nowhere.moe"
-   SYNAPSE_REPORT_STATS: "yes"
- coturn:
-  image: instrumentisto/coturn:latest
-  restart: unless-stopped
-  volumes:
-   - ./coturn/turnserver.conf:/etc/coturn/turnserver.conf
-  ports:
-   - 47160-47200:47160-47200/udp
-   - 3478:3478
-   - 5349:5349
-  networks:
-   - mybridge
-networks:
- mybridge:
-  driver: bridge
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat generateconfig.sh
-#!/bin/bash
-
-docker-compose run --rm -e SYNAPSE_SERVER_NAME=m.nowhere.moe -e SYNAPSE_REPORT_STATS=yes synapse generate
-	
-</code></pre>
-<p>My matrix server will have the "m.nowhere.moe" domain name. The coturn config mentioned here is used for the VOIP support. Now let's generate the initial keys of the matrix server like so:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ ./generateconfig.sh
-Creating network "matrix_default" with the default driver
-Creating network "matrix_mybridge" with driver "bridge"
-Setting ownership on /data to 991:991
-Creating log config /data/m.nowhere.moe.log.config
-Generating config file /data/homeserver.yaml
-Generating signing key file /data/m.nowhere.moe.signing.key
-A config file has been generated in '/data/homeserver.yaml' for server name 'm.nowhere.moe'. Please review this file and customise it to your needs.
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ ls
-coturn  data  docker-compose.yml  docker-compose.yml.coturn  generateconfig.sh  m.nowhere.moe.conf.nginx
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ ls data -lash
-total 20K
-4.0K drwxr-xr-x 2  991  991 4.0K Jan 14 11:12 .
-4.0K drwxr-xr-x 4 root root 4.0K Jan  4 13:50 ..
-4.0K -rw-r--r-- 1 root root 1.3K Jan 14 11:12 homeserver.yaml
-4.0K -rw-r--r-- 1 root root  694 Jan 14 11:12 m.nowhere.moe.log.config
-4.0K -rw-r--r-- 1 root root   59 Jan 14 11:12 m.nowhere.moe.signing.key
-	
-</code></pre>
-<p>Now that's done, we can edit the homeserver.yaml if you want to remove trust into the "matrix.org" keys for federation to make it a truly private server:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat data/homeserver.yaml | grep server
-
-trusted_key_servers:
-  - server_name: ""
-
-</code></pre>
-<p>Then we can edit the coturn config like so:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ ls
-coturn  data  docker-compose.yml  docker-compose.yml.coturn  generateconfig.sh  m.nowhere.moe.conf.nginx
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat coturn/turnserver.conf
-use-auth-secret
-static-auth-secret=cuAWWAAWWAAWWAWADDWADWADWADWADWADWAWADDWADWWADWADDWADWDWoy
-realm=m.nowhere.moe
-listening-port=3478
-tls-listening-port=5349
-min-port=47160
-max-port=47200
-verbose
-allow-loopback-peers
-cli-password=cuAWWAAWWAAWWAWADDWADWADWADWADWADWAWADDWADWWADWADDWADWDWoy
-external-ip=116.202.216.190	
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat data/homeserver.yaml | grep turn
-turn_uris: [ "turn:m.nowhere.moe?transport=udp", "turn:m.nowhere.moe?transport=tcp" ]
-turn_shared_secret: "cuAWWAAWWAAWWAWADDWADWADWADWADWADWAWADDWADWWADWADDWADWDWoy"
-turn_user_lifetime: 86400000
-turn_allow_guests: true
-
-
-</code></pre>
-<p>Make sure the ports match the ones in the docker-compose.yml file, and the external IP is the one of your server:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ curl ifconfig.me -4
-116.202.216.190
-	
-</code></pre>
-<p>Then we start the docker-compose:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ docker-compose up -d
-Creating matrix_coturn_1 ... done
-Creating matrix_synapse  ... done
-	
-</code></pre>
-<p>Then we create the accounts like so:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ docker container ls | grep matrixdot
-134d440b1480   matrixdotorg/synapse:latest                          "/start.py"              About a minute ago   Up 25 seconds (healthy)   8009/tcp, 0.0.0.0:8008->8008/tcp, :::8008->8008/tcp, 8448/tcp                                                                                                           matrix_synapse
-
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ docker exec -it 134 bash
-root@134d440b1480:/#
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ docker exec -it 134 bash
-
-root@134d440b1480:/# register_new_matrix_user -c /data/homeserver.yaml http://localhost:8008
-New user localpart [root]: nihilist
-Password:
-Confirm password:
-Make admin [no]: yes
-Sending registration request...
-Success!
-
-root@134d440b1480:/# exit
-exit
-
-</code></pre>
-<p>Then we make sure that we can access the matrix server via nginx:</p>
-<pre><code class="nim">
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ cat /etc/nginx/sites-enabled/m.nowhere.moe.conf
-server {
-    listen 443 ssl http2;
-    listen [::]:443 ssl http2;
-
-    # For the federation port
-    listen 8448 ssl http2;
-    listen [::]:8448 ssl http2;
-
-    server_name m.nowhere.moe;
-
-        ssl_certificate                         /etc/acme/certs/m.nowhere.moe/fullchain.cer;
-        ssl_certificate_key                     /etc/acme/certs/m.nowhere.moe/m.nowhere.moe.key;
-
-    location ~ ^(/_matrix|/_synapse/client) {
-        # note: do not add a path (even a single /) after the port in `proxy_pass`,
-        # otherwise nginx will canonicalise the URI and cause signature verification
-        # errors.
-        proxy_pass http://localhost:8008;
-        proxy_set_header X-Forwarded-For $remote_addr;
-        proxy_set_header X-Forwarded-Proto $scheme;
-        proxy_set_header Host $host;
-
-        # Nginx by default only allows file uploads up to 1M in size
-        # Increase client_max_body_size to match max_upload_size defined in homeserver.yaml
-        client_max_body_size 50M;
-
-        # Synapse responses may be chunked, which is an HTTP/1.1 feature.
-        proxy_http_version 1.1;
-    }
-}
-	
-[ nowhere.moe ] [ /dev/pts/1 ] [/srv/matrix]
-→ nginx -t
-nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
-nginx: configuration file /etc/nginx/nginx.conf test is successful
-
-</code></pre>
-<p>Then we test that we can login from a matrix client (which can be installed inside a <a href="../whonixqemuvms/index.html">whonix VM</a>), let's use <a href="https://element.io/download">element</a> because we want to be able to do voicecalls:</p>
-<img src="1.png" class="imgRz">
-<img src="2.png" class="imgRz">
-<img src="3.png" class="imgRz">
-<img src="4.png" class="imgRz">
-<img src="5.png" class="imgRz">
-<p>Here we will setup a secure backup password, that is a separate password, for end to end encryption purposes. Then you can do the following steps:</p>
-<img src="6.png" class="imgRz">
-<p>Make sure you log out of every unverified session:</p>
-<img src="7.png" class="imgRz">
-<img src="8.png" class="imgRz">
-<p>You may need to log in and log out before being able to send messages so do that, then create the space along with the chatroom</p>
-<img src="9.png" class="imgRz">
-<img src="10.png" class="imgRz">
-<img src="11.png" class="imgRz">
-<img src="12.png" class="imgRz">
-<img src="13.png" class="imgRz">
-<img src="14.png" class="imgRz">
-<img src="15.png" class="imgRz">
-
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-	<!-- +++++ Footer Section +++++ -->
-
-	<div id="anonb">
-		<div class="container">
-			<div class="row">
-				<div class="col-lg-4">
-					<h4>Nihilism</h4>
-          <p>
-						Until there is Nothing left.</p></br></br><p>Creative Commons Zero: No Rights Reserved</br><img src="\CC0.png">
-						
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>My Links</h4>
-					<p>
-
-						<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://simplex.chat/contact#/?v=2-7&smp=smp%3A%2F%2FL5jrGV2L_Bb20Oj0aE4Gn-m5AHet9XdpYDotiqpcpGc%3D%40nowhere.moe%2FH4g7zPbitSLV5tDQ51Yz-R6RgOkMEeCc%23%2F%3Fv%3D1-3%26dh%3DMCowBQYDK2VuAyEAkts5T5AMxHGrZCCg12aeKxWcpXaxbB_XqjrXmcFYlDQ%253D&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22c3Y-iDaoDCFm6RhptSDOaw%3D%3D%22%7D">SimpleX Chat</a><br/>
-
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>About nihilist</h4>
-					<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br><p><u>Contact:</u> nihilist@contact.nowhere.moe (<a href="https://nowhere.moe/nihilist.pubkey">PGP</a>)</p>
-				</div><!-- /col-lg-4 -->
-
-			</div>
-
-		</div>
-	</div>
-
-
-    <!-- Bootstrap core JavaScript
-    ================================================== -->
-    <!-- Placed at the end of the document so the pages load faster -->
-    
-  </body>
-</html>

opsec/xmpp/index.html

@@ -1,369 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <meta charset="utf-8">
-    <meta http-equiv="X-UA-Compatible" content="IE=edge">
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <meta name="description" content="">
-    <meta name="author" content="">
-    <link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
-
-    <title>XMPP server (Gajim, OMEO encryption, ejabberd .onion setup)</title>
-
-    <!-- Bootstrap core CSS -->
-    <link href="../../assets/css/bootstrap.css" rel="stylesheet">
-	<link href="../../assets/css/xt256.css" rel="stylesheet">
-    
-    
-
-    <!-- Custom styles for this template -->
-    <link href="../../assets/css/main.css" rel="stylesheet">
-
-    
-
-    <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
-    <!--[if lt IE 9]>
-      <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
-      <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
-    <![endif]-->
-  </head>
-
-  <body>
-
-    <!-- Static navbar -->
-    <div class="navbar navbar-inverse-anon navbar-static-top">
-      <div class="container">
-        <div class="navbar-header">
-          <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-          </button>
-          <a class="navbar-brand-anon" href="\index.html">The Nihilism Blog</a>
-        </div>
-        <div class="navbar-collapse collapse">
-          <ul class="nav navbar-nav navbar-right">
-
-            <li><a  href="/about.html">About</a></li>
-            <li><a  href="/blog.html">Categories</a></li>
-<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
-            <li><a  href="/contact.html">Contact</a></li>
-          </ul>
-        </div><!--/.nav-collapse -->
-        
-      </div>
-    </div>
-
-	<!-- +++++ Posts Lists +++++ -->
-	<!-- +++++ First Post +++++ -->
-	<div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-  					<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2024-05-29</ba></p>
-<h1>XMPP server (Gajim, OMEO encryption, ejabberd .onion setup) </h1>
-<p>In this tutorial we're going to cover how to setup an XMPP chatting service over Tor. </p>
-<p><u>Disclaimer:</u> If you want this service to remain anonymous, make sure you at least keep <a href="../sensitiveremotevshome/index.html">TOR between you and the service</a> from the <a href="../anonymousremoteserver/index.html">VPS acquisition</a> to actual service usage. </p>
-
-
-          
-	       </div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /grey -->
-
-	<!-- +++++ Second Post +++++ -->
-	<div id="anon3">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>Initial Setup </b></h2>
-<p>First let's install the required packages, and then run the xmpp server using docker (you can check the documentation <a href="https://github.com/processone/docker-ejabberd/blob/master/ecs/README.md">here</a>), we'll follow <a href="https://landchad.net/ejabberd/">Lukesmith's tutorial</a> specifically:</p>
-<pre><code class="nim">
-apt install ejabberd -y
-
-</code></pre>
-<p>Now we need the following domain names to point to your server:</p>
-<pre><code class="nim">
-    nowhere.moe - Your XMPP hostname
-    xmpp.nowhere.moe - For mod_muc, Multi User Chats (MUCs)
-    upload.nowhere.moe - For mod_http_upload, file upload support
-    proxy.nowhere.moe - For mod_proxy65, SOCKS5 proxy support
-    pubsub.nowhere.moe - For mod_pubsub, publish-subscribe support (A fancier RSS)
-	
-</code></pre>
-<p>Then we edit the ejabberd config file accordingly:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [/srv]
-→ vim /etc/ejabberd/ejabberd.yml
-
-[...]
-
-hosts:
-  - nowhere.moe
-
-[...]
-
-  mod_muc:
-    host: xmpp.nowhere.moe
-
-[...]
-
-</code></pre>
-<p>Next we need to obtain the TLS certificate for the xmpp.nowhere.moe domain, to do so we'll use acme.sh: </p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ systemctl stop nginx ; acme.sh --issue --standalone -d xmpp.nowhere.moe -k 4096 ; systemctl start nginx
-
-[Sun Jun  9 07:12:21 PM CEST 2024] Using CA: https://acme-v02.api.letsencrypt.org/directory
-[Sun Jun  9 07:12:21 PM CEST 2024] Standalone mode.
-[Sun Jun  9 07:12:21 PM CEST 2024] Creating domain key
-[Sun Jun  9 07:12:23 PM CEST 2024] The domain key is here: /root/.acme.sh/xmpp.nowhere.moe/xmpp.nowhere.moe.key
-[Sun Jun  9 07:12:23 PM CEST 2024] Single domain='xmpp.nowhere.moe'
-[Sun Jun  9 07:12:25 PM CEST 2024] Getting webroot for domain='xmpp.nowhere.moe'
-[Sun Jun  9 07:12:25 PM CEST 2024] Verifying: xmpp.nowhere.moe
-[Sun Jun  9 07:12:25 PM CEST 2024] Standalone mode server
-[Sun Jun  9 07:12:26 PM CEST 2024] Pending, The CA is processing your order, please just wait. (1/30)
-[Sun Jun  9 07:12:30 PM CEST 2024] Pending, The CA is processing your order, please just wait. (2/30)
-[Sun Jun  9 07:12:33 PM CEST 2024] Pending, The CA is processing your order, please just wait. (3/30)
-[Sun Jun  9 07:12:37 PM CEST 2024] Success
-[Sun Jun  9 07:12:37 PM CEST 2024] Verify finished, start to sign.
-[Sun Jun  9 07:12:37 PM CEST 2024] Lets finalize the order.
-[Sun Jun  9 07:12:37 PM CEST 2024] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/1581078457/276884921497'
-[Sun Jun  9 07:12:38 PM CEST 2024] Downloading cert.
-[Sun Jun  9 07:12:38 PM CEST 2024] Le_LinkCert='https://acme-v02.api.letsencrypt.org/acme/cert/03a21dfde3a1a017ddaec55ef3c43a3cae0c'
-[Sun Jun  9 07:12:39 PM CEST 2024] Cert success.
-
-[...]
-
-[Sun Jun  9 07:12:39 PM CEST 2024] Your cert is in: /root/.acme.sh/xmpp.nowhere.moe/xmpp.nowhere.moe.cer
-[Sun Jun  9 07:12:39 PM CEST 2024] Your cert key is in: /root/.acme.sh/xmpp.nowhere.moe/xmpp.nowhere.moe.key
-[Sun Jun  9 07:12:39 PM CEST 2024] The intermediate CA cert is in: /root/.acme.sh/xmpp.nowhere.moe/ca.cer
-[Sun Jun  9 07:12:39 PM CEST 2024] And the full chain certs is there: /root/.acme.sh/xmpp.nowhere.moe/fullchain.cer
-
-[ Datura ] [ /dev/pts/10 ] [~]
-→ chown -R ejabberd:ejabberd /root/.acme.sh/xmpp.nowhere.moe
-
-[ Datura ] [ /dev/pts/10 ] [~]
-→ cat /etc/ejabberd/ejabberd.yml
-
-[...]
-
-certfiles:
-   - "/root/.acme.sh/xmpp.nowhere.moe/fullchain.cer"
-
-[...]
-
-</code></pre>
-<p>Then we add the admin user in ejabberd.yml:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ cat /etc/ejabberd/ejabberd.yml
-
-[...]
-
-acl:
-  admin:
-     user:
-       - "nihilist"
-
-[...]
-	
-</code></pre>
-<p>We also add the File Uploads:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ cat /etc/ejabberd/ejabberd.yml
-
-[...]
-
-  mod_http_upload:
-    put_url: https://@HOST@:5443/upload
-    docroot: /srv/xmpp/upload/
-    custom_headers:
-      "Access-Control-Allow-Origin": "https://@HOST@"
-      "Access-Control-Allow-Methods": "GET,HEAD,PUT,OPTIONS"
-      "Access-Control-Allow-Headers": "Content-Type"
-
-[...]
-
-[ Datura ] [ /dev/pts/10 ] [~]
-→ mkdir /srv/xmpp/upload/ -p
-
-[ Datura ] [ /dev/pts/10 ] [~]
-→ chown -R ejabberd:ejabberd /srv/xmpp/upload/
-	
-</code></pre>
-<p>We enable message archives too:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ cat /etc/ejabberd/ejabberd.yml
-
-[...]
-
-  mod_mam:
-     ## Mnesia is limited to 2GB, better to use an SQL backend
-     ## For small servers SQLite is a good fit and is very easy
-     ## to configure. Uncomment this when you have SQL configured:
-     ## db_type: sql
-     assume_mam_usage: true
-     default: always
-
-[...]
-	
-</code></pre>
-<p>Next, you setup a coturn service for the VOIP <a href="https://landchad.net/coturn/">here</a>, but in this case we'll use the same coturn service that we previously setup for the <a href="../matrixnew/index.html">matrix server</a></p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ cat /etc/ejabberd/ejabberd.yml
-
-[...]
-
-  mod_stun_disco:
-    secret: "DAWDDWADWADAWDWAWDDWAADWADWDWADWADWAAWDDWAWAD"
-    services:
-      -
-        host: m.nowhere.moe
-        type: stun
-      -
-        host: m.nowhere.moe
-        type: turn
-
-[...]
-	
-</code></pre>
-<p>Then we restart the ejabberd service:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ systemctl restart ejabberd
-
-[ Datura ] [ /dev/pts/10 ] [~]
-→ systemctl status ejabberd
-● ejabberd.service - robust, scalable and extensible realtime platform (XMPP server + MQTT broker + SIP service)
-     Loaded: loaded (/lib/systemd/system/ejabberd.service; enabled; preset: enabled)
-     Active: active (running) since Sun 2024-06-09 21:21:41 CEST; 6s ago
-       Docs: https://www.process-one.net/en/ejabberd/docs/
-   Main PID: 3664214 (sh)
-      Tasks: 116 (limit: 77002)
-     Memory: 111.9M
-        CPU: 3.022s
-     CGroup: /system.slice/ejabberd.service
-	
-</code></pre>
-<p>Now that the ejabberd service has restarted successfully, we can register the admin user:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/10 ] [~]
-→ ejabberdctl register nihilist nowhere.moe P@SSW0RD
-
-User nihilist@contact.nowhere.moe successfully registered
-
-	
-</code></pre>
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-  <div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>Setup</b></h2> </br> </br>
-
-<p>Now the xmpp server is active, along with your nihilist user, so let's connect to it from a XMPP client like gajim:</p>
-<pre><code class="nim">
-[ mainpc ] [ /dev/pts/8 ] [~]
-→ sudo apt install gajim -y
-	
-</code></pre>
-<img src="1.png" class="imgRz">
-
-<p></p>
-<img src="" class="imgRz">
-<pre><code class="nim">
-	
-</code></pre>
-
-<p></p>
-<img src="" class="imgRz">
-<pre><code class="nim">
-	
-</code></pre>
-
-<p></p>
-<img src="" class="imgRz">
-<pre><code class="nim">
-	
-</code></pre>
-
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-
-  <!-- +++++ Second Post +++++ -->
-	<div id="anon1">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>Setup</b></h2> </br> </br>
-<p></p>
-<pre><code class="nim">
-	
-</code></pre>
-
-<p></p>
-<pre><code class="nim">
-	
-</code></pre>
-
-<p></p>
-<pre><code class="nim">
-	
-</code></pre>
-
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-	<!-- +++++ Footer Section +++++ -->
-
-	<div id="anonb">
-		<div class="container">
-			<div class="row">
-				<div class="col-lg-4">
-					<h4>Nihilism</h4>
-          <p>
-						Until there is Nothing left.</p></br></br><p>Creative Commons Zero: No Rights Reserved</br><img src="\CC0.png">
-						
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>My Links</h4>
-					<p>
-
-						<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://simplex.chat/contact#/?v=2-7&smp=smp%3A%2F%2FL5jrGV2L_Bb20Oj0aE4Gn-m5AHet9XdpYDotiqpcpGc%3D%40nowhere.moe%2FH4g7zPbitSLV5tDQ51Yz-R6RgOkMEeCc%23%2F%3Fv%3D1-3%26dh%3DMCowBQYDK2VuAyEAkts5T5AMxHGrZCCg12aeKxWcpXaxbB_XqjrXmcFYlDQ%253D&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22c3Y-iDaoDCFm6RhptSDOaw%3D%3D%22%7D">SimpleX Chat</a><br/>
-
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>About nihilist</h4>
-					<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br><p><u>Contact:</u> nihilist@contact.nowhere.moe (<a href="https://nowhere.moe/nihilist.pubkey">PGP</a>)</p>
-				</div><!-- /col-lg-4 -->
-
-			</div>
-
-		</div>
-	</div>
-
-
-    <!-- Bootstrap core JavaScript
-    ================================================== -->
-    <!-- Placed at the end of the document so the pages load faster -->
-    
-  </body>
-</html>

opsec/xmpp2024/index.html

@@ -1,481 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <meta charset="utf-8">
-    <meta http-equiv="X-UA-Compatible" content="IE=edge">
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <meta name="description" content="">
-    <meta name="author" content="">
-    <link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
-
-    <title>XMPP Chat Server Setup (Clearnet + Onion + OMEMO E2EE)</title>
-
-    <!-- Bootstrap core CSS -->
-    <link href="../../assets/css/bootstrap.css" rel="stylesheet">
-	<link href="../../assets/css/xt256.css" rel="stylesheet">
-    
-    
-
-    <!-- Custom styles for this template -->
-    <link href="../../assets/css/main.css" rel="stylesheet">
-
-    
-
-    <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
-    <!--[if lt IE 9]>
-      <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
-      <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
-    <![endif]-->
-  </head>
-
-  <body>
-
-    <!-- Static navbar -->
-    <div class="navbar navbar-inverse-anon navbar-static-top">
-      <div class="container">
-        <div class="navbar-header">
-          <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-            <span class="icon-bar"></span>
-          </button>
-          <a class="navbar-brand-anon" href="\index.html">The Nihilism Blog</a>
-        </div>
-        <div class="navbar-collapse collapse">
-          <ul class="nav navbar-nav navbar-right">
-
-            <li><a  href="/about.html">About</a></li>
-            <li><a  href="/blog.html">Categories</a></li>
-<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
-            <li><a  href="/contact.html">Contact</a></li>
-          </ul>
-        </div><!--/.nav-collapse -->
-        
-      </div>
-    </div>
-
-	<!-- +++++ Posts Lists +++++ -->
-	<!-- +++++ First Post +++++ -->
-	<div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-  					<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2024-08-05</ba></p>
-<h1>XMPP Chat Server Setup (Clearnet + Onion + OMEMO E2EE)</h1>
-          
-<p>In this tutorial, we're going to check out how to setup a XMPP chat server, that is accessible over Tor, as a hidden service, using Prosody. We'll also cover how to have a Clearnet XMPP server, and how to have OMEMO End to End encryption using the Gajim XMPP client.</p>
-	       </div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /grey -->
-
-	<!-- +++++ Second Post +++++ -->
-	<div id="anon3">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>XMPP Onion Server Setup </b></h2>
-<p>Before starting, check out <a href="../torwebsite/index.html">this</a> tutorial on how to create your first hidden service.</p>
-<pre><code class="nim">
-root@ANON-home:~# apt install prosody prosody-modules lua-unbound -y
-	
-root@ANON-home:~# prosodyctl about 
-  /var/lib/prosody/custom_plugins - not a directory!
-  /usr/local/lib/prosody/modules - not a directory!
-  /var/lib/prosody/custom_plugins/share/lua/5.4/?.lua
-  /var/lib/prosody/custom_plugins/share/lua/5.4/?/init.lua
-
-
-root@ANON-home:~# mkdir /var/lib/prosody/custom_plugins
-root@ANON-home:~# mkdir /usr/local/lib/prosody/modules -p
-
-</code></pre>
-
-<p>Then, we make sure that the tor hidden service includes the XMPP ports:</p>
-<pre><code class="nim">
-root@ANON-home:# vim /etc/tor/torrc
-root@ANON-home:# cat /etc/tor/torrc
-HiddenServiceDir /var/lib/tor/onions/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion/
-
-[...]
-
-HiddenServicePort 5222 127.0.0.1:5222
-HiddenServicePort 5269 127.0.0.1:5269
-HiddenServicePort 5280 127.0.0.1:5280
-HiddenServicePort 5281 127.0.0.1:5281
-	
-root@ANON-home:# systemctl restart tor@default
-
-</code></pre>
-
-<p>Here, my hidden service is aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion, let's check that the mod_onions module is installed and configure the prosody.cfg.lua file:</p>
-<pre><code class="nim">
-root@ANON-home:~# ls /usr/lib/prosody/modules/mod_onions
-mod_onions.lua
-	
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-[...]
-
-VirtualHost "localhost"
--- Prosody requires at least one enabled VirtualHost to function. You can
--- safely remove or disable 'localhost' once you have added another.
-
-VirtualHost "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion"
-        modules_enabled = {"onions"};
-        onions_only = true;
-        disco_items = {
-                {"conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion","Public Chatroom"},
-                {"upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion","Public Chatroom"}
-        }
-
-Component "conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "muc"
-        modules_enabled = { "onions" };
-        onions_only = true;
-
-Component "upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "http_file_share"
-        modules_enabled = { "onions" };
-        onions_only = true;
-
-[...]
-
-</code></pre>
-<p></p>
-<pre><code class="nim">
-root@ANON-home:~# prosodyctl cert generate aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-Choose key size (2048):
-<b>Key written to /var/lib/prosody/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion.key</b>
-Please provide details to include in the certificate config file.
-Leave the field empty to use the default value or '.' to exclude the field.
-countryName (GB):
-localityName (The Internet):
-organizationName (Your Organisation):
-organizationalUnitName (XMPP Department):
-commonName (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion):
-emailAddress (xmpp@aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion):
-
-<b>Config written to /var/lib/prosody/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion.cnf
-Certificate written to /var/lib/prosody/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion.crt</b>
-
-root@ANON-home:~# prosodyctl check
-
-[...]
-
-Checking certificates...
-Checking certificate for conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-certmanager         info        No certificate present in SSL/TLS configuration for conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion. SNI will be required.
-  No 'certificate' found for conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-Checking certificate for localhost
-certmanager         info        No certificate present in SSL/TLS configuration for localhost. SNI will be required.
-  No 'certificate' found for localhost
-Checking certificate for upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-certmanager         info        No certificate present in SSL/TLS configuration for upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion. SNI will be required.
-  No 'certificate' found for upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-Checking certificate for aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-certmanager         info        No certificate present in SSL/TLS configuration for aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion. SNI will be required.
-  No 'certificate' found for aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-
-For more information about certificates please see https://prosody.im/doc/certificates
-
-Problems found, see above.
-
-	
-root@ANON-home:# mv /var/lib/prosody/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion.* /etc/prosody/certs/
-
-</code></pre>
-<p></p>
-<pre><code class="nim">
-root@ANON-home:/etc/prosody/certs# prosodyctl adduser nihilist@aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion
-Enter new password:
-Retype new password:
-
-#if you want to create users in batch:
-root@ANON-home:/etc/prosody/certs# prosodyctl adduser testuser aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion p4ssw0rd
-
-root@ANON-home:/etc/prosody/certs# systemctl restart prosody
-root@ANON-home:/etc/prosody/certs# systemctl status prosody
-● prosody.service - Prosody XMPP Server
-     Loaded: loaded (/lib/systemd/system/prosody.service; enabled; preset: enabled)
-     Active: active (running) since Mon 2024-08-05 22:02:47 CEST; 4s ago
-       Docs: https://prosody.im/doc
-   Main PID: 3419 (lua5.4)
-      Tasks: 1 (limit: 4653)
-     Memory: 7.8M
-        CPU: 139ms
-     CGroup: /system.slice/prosody.service
-             └─3419 lua5.4 /usr/bin/prosody -F
-
-Aug 05 22:02:47 ANON-home systemd[1]: Started prosody.service - Prosody XMPP Server.
-
-	
-</code></pre>
-<p>all good now, now let's connect to it using pidgin:</p>
-<pre><code class="nim">
-[ mainpc ] [ /dev/pts/9 ] [~/Nextcloud/blog]
-→ apt install pidgin -y
-
-[ mainpc ] [ /dev/pts/9 ] [~/Nextcloud/blog]
-→ pidgin
-	
-</code></pre>
-<p>Then, create your account on the XMPP server:</p>
-<img src="1.png" class="imgRz">
-<img src="2.png" class="imgRz">
-<img src="3.png" class="imgRz">
-<img src="4.png" class="imgRz">
-<img src="6.png" class="imgRz">
-<img src="5.png" class="imgRz">
-<p>Next, we can start chatting with Alice, who is another user on that XMPP server like so:</p>
-<img src="7.png" class="imgRz">
-<p>Then from Alice's XMPP client, we accept nihilist's buddy request:</p>
-<img src="8.png" class="imgRz">
-<img src="9.png" class="imgRz">
-<img src="10.png" class="imgRz">
-<img src="11.png" class="imgRz">
-<p></p>
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-  <div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>Optional XMPP server options:</b></h2> </br> </br>
-<p>if you want to enable message archiving, enable the "mam" module by uncommenting it:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-[...]
-
-modules_enabled = {
-                "mam"; -- Store recent messages to allow multi-device synchronization
-}
-
-[...]
-
-</code></pre>
-
-<p>and then you can mention the expiration time of messages like so:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-archive_expires_after = "1w" -- remove archived messages after 1 week
-
-</code></pre>
-<p>you can choose to limit the bandwidth usage of your server too, using the mod_limits module:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-limits = {
-	c2s = {
-		rate = "10kb/s";
-	}
-	s2sin = {
-		rate = "30kb/s";
-	}
-
-}
-</code></pre>
-<p>You can also enable archiving on the multi-user chats like so :</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-Component "conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "muc"
-        modules_enabled = { "onions", "muc_mam" };
-        onions_only = true;
-
-</code></pre>
-<p>And just like in mod_mam, you can set the expiration time of the messages in MUCs:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-Component "conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "muc"
-        modules_enabled = { "onions", "muc_mam" };
-        onions_only = true;
-		muc_log_expires_after = "1w"
-	
-</code></pre>
-
-<p>Then, you can also enable file archiving using mod_http_file_share:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-Component "upload.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "http_file_share"
-        modules_enabled = { "onions" };
-        onions_only = true;
-		http_file_share_daily_quota = 100*1024*1024;	-- 100 MiB
-		http_file_share_after = 7*86400;				-- One week in seconds
-		http_file_share_size_limit = 10*1024*1024		-- 10 Mib
-	
-</code></pre>
-<p>Then,  as you're going to have a multi user chat, you'll most likely need the mod_muc_moderation module:</p>
-<pre><code class="nim">
-root@ANON-home:~# vim /etc/prosody/prosody.cfg.lua
-root@ANON-home:~# cat /etc/prosody/prosody.cfg.lua
-
-Component "conference.aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.onion" "muc"
-        modules_enabled = { "onions", "muc_mam", "muc_moderation" };
-        onions_only = true;
-        muc_log_expires_after = "1w"
-	
-</code></pre>
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-
-  <div id="anon1">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>XMPP Clearnet Server Setup</b></h2> </br> </br>
-<p>First edit prosody.cfg.lua like so :</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/3 ] [~]
-→ vim /etc/prosody/prosody.cfg.lua
-
-[...]
-
-VirtualHost "nowhere.moe"
-ssl = {
-     certificate = "/etc/ssl/nowhere.moe/fullchain.cer";
-         key = "/etc/ssl/nowhere.moe/nowhere.moe.key";
-}
-
-VirtualHost "nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion"
-
-[...]
-
-</code></pre>
-<p>Then copy the existing acme.sh certificates for nowhere.moe into another non-root directory, otherwise prosody wont be able to read them:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/4 ] [/etc/ssl/nowhere.moe]
-→ mkdir -p /etc/ssl/nowhere.moe/
-
-[ Datura ] [ /dev/pts/4 ] [/etc/ssl/nowhere.moe]
-→ cp -r /root/.acme.sh/nowhere.moe/* /etc/ssl/nowhere.moe
-
-[ Datura ] [ /dev/pts/4 ] [/etc/ssl/nowhere.moe]
-→ sudo setfacl -R -m u:prosody:rx  /etc/ssl/nowhere.moe/
-
-[ Datura ] [ /dev/pts/4 ] [/etc/ssl/nowhere.moe]
-→ sudo -u prosody cat /etc/ssl/nowhere.moe/nowhere.moe.cer
------BEGIN CERTIFICATE-----
-MIIF5zCCBM+gAwIBAgISBCVaPZeC38+C4bWEm3yPX1LMMA0GCSqGSIb3DQEBCwUA
-MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
-EwNSMTAwHhcNMjQwODExMjAyMjI5WhcNMjQxMTA5MjAyMjI4WjAWMRQwEgYDVQQD
-Ewtub3doZXJlLm1vZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJPO
-[...]
------END CERTIFICATE-----
-
-
-</code></pre>
-<p>to copy it once a day to the correct folder, you can do it via cronjob:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/7 ] [~]
-→ crontab -e
-
-0 0 * * * cp -r /root/.acme.sh/nowhere.moe/* /etc/ssl/nowhere.moe ; setfacl -R -m u:prosody:rx  /etc/ssl/nowhere.moe ; systemctl restart prosody
-
-</code></pre>
-<p>Then, don't forget to create the clearnet user:</p>
-<pre><code class="nim">
-[ Datura ] [ /dev/pts/7 ] [~]
-→ prosodyctl adduser usertest usertestpwd
-
-[ Datura ] [ /dev/pts/7 ] [~]
-→ prosodyctl passwd  usertest@nowhere.moe
-
-</code></pre>
-<p>Then you can just connect to the XMPP server over clearnet aswell, but one thing to note is that pidgin is limited when it comes to encrypting chats, so let's use Gajim instead as it comes with OMEMO encryption out of the box:</p>
-<pre><code class="nim">
-user@laptop: apt install gajim -y
-
-</pre></code>
-<img src="12.png" class="imgRz">
-<img src="13.png" class="imgRz">
-<img src="14.png" class="imgRz">
-<img src="15.png" class="imgRz">
-
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-
-  <div id="anon2">
-	    <div class="container">
-			<div class="row">
-				<div class="col-lg-8 col-lg-offset-2">
-          <h2><b>XMPP OMEMO End to End Encryption (E2EE)</b></h2> </br> </br>
-<img src="16.png" class="imgRz">
-<img src="17.png" class="imgRz">
-<img src="18.png" class="imgRz">
-<img src="19.png" class="imgRz">
-<img src="20.png" class="imgRz">
-<img src="21.png" class="imgRz">
-<img src="22.png" class="imgRz">
-<p>Now here, you need to tell the other peer (if they don't have OMEMO enabled) to install a XMPP client like gajim, just like you, to use OMEMO encryption just like you, to have end to end encryption.</p>
-<img src="23.png" class="imgRz">
-<img src="25.png" class="imgRz">
-<img src="26.png" class="imgRz">
-<img src="27.png" class="imgRz">
-<img src="28.png" class="imgRz">
-<img src="29.png" class="imgRz">
-<img src="30.png" class="imgRz">
-<p>And that's it! you now have a XMPP server working over both Clearnet, and Tor, with end to end encryption.</p>
-
-				</div>
-			</div><!-- /row -->
-	    </div> <!-- /container -->
-	</div><!-- /white -->
-
-	<!-- +++++ Footer Section +++++ -->
-
-	<div id="anonb">
-		<div class="container">
-			<div class="row">
-				<div class="col-lg-4">
-					<h4>Nihilism</h4>
-          <p>
-						Until there is Nothing left.</p></br></br><p>Creative Commons Zero: No Rights Reserved</br><img src="\CC0.png">
-						
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>My Links</h4>
-					<p>
-
-						<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://simplex.chat/contact#/?v=2-7&smp=smp%3A%2F%2FL5jrGV2L_Bb20Oj0aE4Gn-m5AHet9XdpYDotiqpcpGc%3D%40nowhere.moe%2FH4g7zPbitSLV5tDQ51Yz-R6RgOkMEeCc%23%2F%3Fv%3D1-3%26dh%3DMCowBQYDK2VuAyEAkts5T5AMxHGrZCCg12aeKxWcpXaxbB_XqjrXmcFYlDQ%253D&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22c3Y-iDaoDCFm6RhptSDOaw%3D%3D%22%7D">SimpleX Chat</a><br/>
-
-					</p>
-				</div><!-- /col-lg-4 -->
-
-				<div class="col-lg-4">
-					<h4>About nihilist</h4>
-					<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br><p><u>Contact:</u> nihilist@contact.nowhere.moe (<a href="https://nowhere.moe/nihilist.pubkey">PGP</a>)</p>
-				</div><!-- /col-lg-4 -->
-
-			</div>
-
-		</div>
-	</div>
-
-
-    <!-- Bootstrap core JavaScript
-    ================================================== -->
-    <!-- Placed at the end of the document so the pages load faster -->
-    
-  </body>
-</html>

productivity/microworkflow/index.html

@@ -0,0 +1,164 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="utf-8">
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <meta name="description" content="">
+    <meta name="author" content="">
+    <link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
+
+    <title>Micro Workflow: Todo Listing, Contextualizing, and Ordering Tasks</title>
+
+    <!-- Bootstrap core CSS -->
+    <link href="../../assets/css/bootstrap.css" rel="stylesheet">
+	<link href="../../assets/css/xt256.css" rel="stylesheet">
+    
+    
+
+    <!-- Custom styles for this template -->
+    <link href="../../assets/css/main.css" rel="stylesheet">
+
+    
+
+    <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
+    <!--[if lt IE 9]>
+      <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
+      <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
+    <![endif]-->
+  </head>
+
+  <body>
+
+    <!-- Static navbar -->
+    <div class="navbar navbar-inverse-productivity navbar-static-top">
+      <div class="container">
+        <div class="navbar-header">
+          <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
+            <span class="icon-bar"></span>
+            <span class="icon-bar"></span>
+            <span class="icon-bar"></span>
+          </button>
+          <a class="navbar-brand-productivity" href="\index.html">The Nihilism Blog</a>
+        </div>
+        <div class="navbar-collapse collapse">
+          <ul class="nav navbar-nav navbar-right">
+
+            <li><a  href="/about.html">About</a></li>
+            <li><a  href="/blog.html">Categories</a></li>
+<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
+            <li><a  href="/contact.html">Contact</a></li>
+          </ul>
+        </div><!--/.nav-collapse -->
+        
+      </div>
+    </div>
+
+	<!-- +++++ Posts Lists +++++ -->
+	<!-- +++++ First Post +++++ -->
+	<div id="productivity2">
+	    <div class="container">
+			<div class="row">
+				<div class="col-lg-8 col-lg-offset-2">
+  					<a href="../index.html">Previous Page</a>
+<h1>Micro Workflow: Todo Listing, Contextualizing, and Ordering Tasks </h1>
+          
+	       </div>
+			</div><!-- /row -->
+	    </div> <!-- /container -->
+	</div><!-- /grey -->
+
+	<!-- +++++ Second Post +++++ -->
+	<div id="productivity3">
+	    <div class="container">
+			<div class="row">
+				<div class="col-lg-8 col-lg-offset-2">
+          <h2><b>a </b></h2>
+<p></p>
+<img src="" class="imgRz">
+<pre><code class="nim">
+	
+</code></pre>
+
+<p></p>
+				</div>
+			</div><!-- /row -->
+	    </div> <!-- /container -->
+	</div><!-- /white -->
+
+  <div id="productivity2">
+	    <div class="container">
+			<div class="row">
+				<div class="col-lg-8 col-lg-offset-2">
+          <h2><b>b</b></h2> </br> </br>
+<p></p>
+<img src="" class="imgRz">
+<pre><code class="nim">
+	
+</code></pre>
+
+<p></p>
+
+				</div>
+			</div><!-- /row -->
+	    </div> <!-- /container -->
+	</div><!-- /white -->
+
+
+  <!-- +++++ Second Post +++++ -->
+	<div id="productivity1">
+	    <div class="container">
+			<div class="row">
+				<div class="col-lg-8 col-lg-offset-2">
+          <h2><b>c</b></h2> </br> </br>
+<p></p>
+<pre><code class="nim">
+	
+</code></pre>
+
+<p></p>
+
+				</div>
+			</div><!-- /row -->
+	    </div> <!-- /container -->
+	</div><!-- /white -->
+
+	<!-- +++++ Footer Section +++++ -->
+
+	<div id="productivityb">
+		<div class="container">
+			<div class="row">
+				<div class="col-lg-4">
+					<h4>Nihilism</h4>
+          <p>
+						Until there is Nothing left.</p></br></br><p>Creative Commons Zero: No Rights Reserved</br><img src="\CC0.png">
+						
+					</p>
+				</div><!-- /col-lg-4 -->
+
+				<div class="col-lg-4">
+					<h4>My Links</h4>
+					<p>
+
+						<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://simplex.chat/contact#/?v=2-7&smp=smp%3A%2F%2FL5jrGV2L_Bb20Oj0aE4Gn-m5AHet9XdpYDotiqpcpGc%3D%40nowhere.moe%2FH4g7zPbitSLV5tDQ51Yz-R6RgOkMEeCc%23%2F%3Fv%3D1-3%26dh%3DMCowBQYDK2VuAyEAkts5T5AMxHGrZCCg12aeKxWcpXaxbB_XqjrXmcFYlDQ%253D&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22c3Y-iDaoDCFm6RhptSDOaw%3D%3D%22%7D">SimpleX Chat</a><br/>
+
+					</p>
+				</div><!-- /col-lg-4 -->
+
+				<div class="col-lg-4">
+					<h4>About nihilist</h4>
+					<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br><p><u>Contact:</u> nihilist@contact.nowhere.moe (<a href="https://nowhere.moe/nihilist.pubkey">PGP</a>)</p>
+				</div><!-- /col-lg-4 -->
+
+			</div>
+
+		</div>
+	</div>
+
+
+    <!-- Bootstrap core JavaScript
+    ================================================== -->
+    <!-- Placed at the end of the document so the pages load faster -->
+    
+  </body>
+</html>