Executable file
Deployment and setup

Your personal services

Advantages
<div class="hero">
<div class="max-width">
<div class="flex-box-wrap flex-wrap">
<div class="hero-first-block ">
<div class="hero-img-box">
<img src="../img/Illustration.svg" alt="">
<div class="hero-second-block">
<p class="paragraph">
Platform on user's hosting provider, managed via mobile application.
<div class="img-box-slider">
<div class="side-screens">
<img src="img/screenshot1.jpg" alt="img">
<img src="img/screenshot2.jpg" alt="img">
<img src="img/screenshot2.jpg" alt="img">
<img src="img/screenshot4.jpg" alt="img">
<div class="side-screens">
<img src="img/screenshot5.jpg" alt="img">
<div class="hero-third-block">
<a class="download-btn" href="">Get it on F-Droid</a>
<a class="download-btn color-grey" href="second.html">Detailed manual</a>
<p class="paragraph"><a class="git-link" href="">Project source in the
git-repo</a><br /></p>
<div class="margin-16 boxes">
<div class="max-width">
Your personal services
<div class="flex-box-wrap flex-wrap jc-sb">
<div class="text-box">
<p class="top-p">
<p class="bottom-p">
For the company or family. Unlimited mailboxes amount.
<div class="text-box">
<p class="top-p">
<p class="bottom-p">
The most private messenger
is the messenger, which server part resides on your own server. That's what makes Delta.Chat
more private then Telegram or Signal.
<div class="text-box">
<p class="top-p">
Password Manager
<p class="bottom-p">
No more need to design, remember and manually input your passwords.
Bitwarden — reliable password manager for all of your devices.
<div class="text-box">
<p class="top-p">
Cloud storage
<p class="bottom-p">
Nextcloud — private
and functional replacement
of Dropbox and G-drive.
<div class="text-box">
<p class="top-p">
<p class="bottom-p">
No more need in Zoom and Google-meet, when there's Jitsi-meet around. Simple and handy solution for videoconferences.
<div class="text-box">
<p class="top-p">
Git repository
<p class="bottom-p">
Gitea is a great Github alternative, that belongs to you,
but not to Microsoft.
<div class="text-box">
<p class="top-p custom-p">
VPN for all of your friends and relatives devices
<p class="bottom-p">
No public VPN
can be private,
but only those, deployed on your own server.
— connect unlimited amount of devices.
<div class="text-box">
<p class="top-p">
Decentralized social network
<p class="bottom-p">
Pleroma is a social network where you decide who to ban and what to post. No more advertisments and tracking.
<div class="margin-16 ">
<div class="max-width">
<h2 class="second">Advantages</h2>
<div class="flex-box-wrap flex-wrap jc-sb">
<div class="big-box">
<div class="blue-box">
Zero trust
SelfPrivacy is designed according to "zero trust" concept, even in relation to SelfPrivacy developers.
It means that you're the only owner of your data.
It just works. No console, complicated manuals, monitoring and staff involvement.
Your data won't disappear without any trace due to regular backups into the
separate datacenter.
<div class="big-box">
<div class="text-image-box">
<img src="../img/cd-icon.png" alt="icon">
<p class="top-p">
Data control
<p class="bottom-p">
Why corporations need your data?
To make you buy more and vote as they want.
With SelfPrivacy, your data is only in your hands.
<div class="text-image-box">
<img src="../img/shield-icon.png" alt="icon">
<p class="top-p">
<p class="bottom-p">
Open source. Reward of $1000 for found RCE vulnerability drastically rises security
in comparison with other self-hosted solutions.
<div class="big-box">
<div class="text-image-box">
<img src="../img/list-icon.png" alt="icon">
<p class="top-p">
No license agreements
<p class="bottom-p">
What do you allow to do with your data, while agreeing to license agreements without reading?
You allow to do anything that companies want.
SelfPrivacy has no license agreements.
<div class="text-image-box">
<img src="../img/like-icon.png" alt="icon">
<p class="top-p">
Save your time and money
<p class="bottom-p">
How to save $500 or two weeks of your life?
How much time and money will specialist require to setup everything of that from the very beginning?
SelfPrivacy team works hard to speed up and simplify this process to the few clicks.
Now anyone will be capable of setting up their own DC.
<div class="big-box">
<div class="text-image-box">
<img src="../img/ind-icon.png" alt="icon">
<p class="top-p">
<p class="bottom-p">
Your communications on the internet no longer depend on Google, Facebook, Amazon and others E-Corps.
Your services — your rules!
You won't be banned for any reason. Your infrastructure and data
will always be with you.
<div class="text-image-box">
<img src="../img/eye-icon.png" alt="icon">
<p class="top-p">
<p class="bottom-p">
No registration, cookies, telemetry, logs, analytics, clouds.
Deployment and setup
<div class="margin-16 boxes">
<div class="max-width">
<h2 class="install-page-header">
Deployment and setup
<div class="blue-border">
<p class="bottom-p">
SelfPrivacy-server takes about an hour to be created. Sounds scary, but believe me, no PhD
required to accomplish that. It's as simple as purchase in the e-shop.
<!--1. -->Searching for ID and a card with balance of $10-15
<!--2. -->Registering your accounts
<!--3. -->Securing your accounts
<!--4. -->Purchasing a domain
<!--5. -->Pointing your domain to a DNS server
<!--6. -->🔑 Generating tokens
<!--7. -->Installation
<!--8. -->Connecting to the services 🎉
<p class="bottom-p">
If you delegate this process to someone else, you'll loose your privacy. For the 100% independency
and control
we recommend to do everything on your own.
<div class="blue-border">
<p class="top-p">
Account registration
<p class="bottom-p">
SelfPrivacy makes use of many different accounts for the reliablity. If you hold everything in one
you'll get the same you've been running from. All data in hands of one corporation🤦
<p class="bottom-p">
That's why, different parts of your system will be in different places. Let's register:
<a href="">Hetzner </a>is a virtual server hosting. Here
will be a home for all of yor data.
<a href="">NameCheap</a> or any other
registrar, to buy your personal address on the Internet, that will point directly to your
<a href="">CloudFlare </a>is a DNS server, where your
address(domain) works.
Backblaze </a>is an IaaS, that provides free storage for your encrypted backups.
<p class="bottom-p">
Registration is trivial, but sometimes account activation may take up to few days, but not longer.
That's why please be advised to use real data.
Providers protect themselves from spam in such way. Nothing personal.
<div class="blue-border">
<p class="top-p">
Protecting your accounts
<p class="bottom-p">
Systems are being compromised by the weakest part. That's why, password for all your accounts
should be different and complicated. TwinkleTwinkleLittleStar is a great example of a bad password.
A good one 🌈 is a
<p class="code-p">
expert repose postwar anytime glimpse freestyle liability effects
<p class="bottom-p">or</p>
<p class="code-p">
<p class="bottom-p">
How to remember such complicated password? No way! No need to remember passwords. They should be
created and stored in the <a href="">password manager</a>. Though,
have to remember at least one... Main password for the password manager.
<p class="bottom-p">
Additional protection for your accounts should be enabled in the mandatory order.
It called multifactor authentication(MFA, 2FA).
Without this simple step, all your data will be insecure.
<p class="bottom-p">
It may have been complicated a bit, but now you're protected better than 95% of users.
You can be proud of yourself🤗
Getting a domain
<p class="top-header-p">
Enabled 2FA? Then let's proceed to the most interesting part!
<div class="blue-border-img">
<img src="../img/nc-buy-domain.gif" alt="gif">
<p class="bottom-p pb-25">
<i>Domain</i> — it's a piece of Internet, which you can name like your home pet. Potential for
creativity is huge.
Your only limitations are 63 symbols length + .com .org .icu or other domain zones. Feel free to choose
among hundreds of others.
You can choose your surname as a domain, like this: or, or it can be
something creative,
<div class="blue-border">
<p class="top-p">
<li>Attentively check price for the annual domain prolongation. It may drastically differ from the
initial acquision price.</li>
<li>Average domain price is around $8-10 anually. The most cheap are .icu and .cyou — $4-6.</li>
<li>Memorable domain name can be easily shared during phone call or written on the business card.
<li>Surname in the domain is good as you can share your domain with everyone who carries your
surname, like this:
| or or</li>
<li>During domain registration, make sure to enter your real e-mail address, otherwise your
registration can be
canceled. If you wont be able to prolong your domain, nothing will work as intended.</li>
<li>Did I mentioned 2FA?</li>
<p class="top-header-p">
Connecting your domain to the DNS server
<p class="bottom-p">
After acquision, add your domain itno CloudFlare:
<div class="blue-border-img">
<img src="../img/add-domain-to-cf.gif" alt="gif">
<p class="bottom-p">
Using <span class="color-blue"></span> as example, we picked free service plan
and got nameservers: <span class="color-blue"></span> and <span
class="color-blue"></span>, that should be defined at your registrar.
In our case it's <span class="color-blue">NameCheap:</span>
<div class="blue-border-img">
<img src="../img/nc-to-cf.gif" alt="gif">
<p class="bottom-p">
By the way, be adviced to check if automatic prolongation and domain theft protection is enabled.
In a few minutes, or a few days in a worst scenario
settings will apply.
🔑 Generating tokens
<div class="blue-border">
<p class="top-p">
API tokens
<p class="bottom-p">
<i>API tokens</i> are almost the same as login and password, but designed to be used by
programs, rather then humans. SelfPivacy Manager uses them to manage your services on your demand.
<p class="bottom-p">
Tokens should be stored in the <a href="">password manager</a>
<p class="bottom-p">
We do not need a token for the NameCheap. But we will need one for the CloudFlare
to use it for domain management.
<p class="header-p">
<li>Visit the following <a href="">link</a></li>
<li>In the upper right corner, click on the profile icon(circled human icon). For the mobile version
of the site, in
upper left corner, press <b>Menu</b> button(three horisontal bars). In the dropdown menu,
click on <b>My Profile</b></li>
<li>We are presented with four settings: <b>Communication, Authentication, API
Tokens, Session. Choose API Tokens.</b></li>
<li>The first thing we'll see is a <b>Create Token</b> button. With full confidence in yourself🤗
push this button.</li>
<li>If you scroll down to the end of the page, you'll see <b>Create Custom Token</b> field and
<b>Get Started</b>
button. Click it.</li>
<li>In the <b>Token Name</b> field, give your token a name, because tokens feel sad when they're
unnamed :)</li>
<li>Next we have Permissions. first field please specify: Zone. In the most wide, central field
please specify: DNS. In the last field, specify: Edit</li>
<li>Next, right under this filed, click on <b>Add More</b>. Similar field will appear.</li>
<li>In the first field, we select <b>Zone</b>, the same way as in previous step.
A the central field, situation slightly differs this time. Here we pick the same as in left
field - <b>Zone</b>. At the right
field, pick <b>Read</b>.</li>
<li>Next, please take a look at the <b>Zone Resources</b>. Under this sign, there's string with two
In the left one should be <b>Include</b>, and in the right one - <b>Specific Zone</b>. As soon
as you pick
<b>Specific Zone</b>, another one field will appear. Select your domain there.
<li>Scroll to the very end of the page and click big and blue <b>Continue to Summary.</b> button.
<li>Check if everything picked correctly. Similar string should be shown: your.domain -
<b>DNS:Edit, Zone:Read.</b>
<li>Click <b>Create Token.</b></li>
<li>Copy newly created token and save it in reliable place(preferrably - in the password manager).
<img src="../img/CloudFlare.gif" alt="gif">
<p class="header-p">
<li>Visit the following<a href="">link</a> and sign into
newly created account.</li>
<li>Enter into previously created project. If you haven't created one, then please proceed.</li>
<li>Hover side panel with mouse cursor. Panel should expand and show us a menu. We're interested
in the last one — <b>Security</b> (icon of a key).</li>
<li>Next, in the upper part of an interface, we can see approximately the following: <b>SSH Keys,
API Tokens,
Certificates, Members.</b> You need <b>API Tokens</b>. Click on it.</li>
<li>In the right part of the interface, there should be <b>Generate API token</b> button. If you're
mobile version og a webpage, in the lower right corner you'll see <b>red cross</b>. Push that
<li>In the <b>Description</b> field, give our token a name (this can be any name that
you like. It doesn't influence the essence.</li>
<li>Under the <b>Description</b> field we can see a possibility to choose <b>permissions</b>. Pick
<b>Read & Write</b>.
<li>Click <b>Generate API Token.</b></li>
<li>After that, our key will be shown. Store it in the reliable place, or in the password
manager, which is better.</li>
<img src="../img/Hetzner.gif" alt="gif">
<p class="header-p">
Backblaze B2
<li>Visit the following <a href="">link</a></li>
<li>In the left part of an interface click on the <b>App Keys</b> in the <b>B2 Cloud Storage</b>
<li>Click on the blue <b>Generate New Master Application Key</b> button.</li>
<li>In the appeared pop-up window confirm the generation.</li>
<li>Save keyID and applicationKey in the reliable place. For example - in the password manager :)
<img src="../img/Backblaze.GIF" alt="gif">
<p class="header-p">
🎉 My congratulations. You're now ready to use your private services.
