Gibberfish, Inc./Gibberfish User Documentation
-
TWO-FACTOR AUTHENTICATION
TWO-FACTOR AUTHENTICATION
AUTENTICAÇÃO EM DUAS ETAPAS -
Once you’ve changed your passphrase, we also strongly encourage you to enable Two-Factor authentication (“2FA”). This involves installing an app on your mobile device that generates a unique 6-digit code you must enter each time you log in. For someone to hack your account, they would need to know your passphrase and physically possess your phone. This combination keeps you more secure. Because Gibberfish is part of the Nextcloud ecosystem, you can use the Nextcloud 2FA app. This app supports FreeOTP, which can be downloaded in the app store for Android and iOS devices.
Once you’ve changed your passphrase, we also strongly encourage you to enable Two-Factor authentication (“2FA”). This involves installing an app on your mobile device that generates a unique 6-digit code you must enter each time you log in. For someone to hack your account, they would need to know your passphrase and physically possess your phone. This combination keeps you more secure. Because Gibberfish is part of the Nextcloud ecosystem, you can use the Nextcloud 2FA app. This app supports FreeOTP, which can be downloaded in the app store for Android and iOS devices.
Depois de mudar sua frase secreta, é extremamente recomendável também habilitar a autenticação em duas etapas ("2FA"). Para isso, será necessário instalar no seu dispositivo móvel um aplicativo que gere um código único de seis dígitos, que deverá ser inserido no início de cada sessão. Para invadir sua conta, um hacker precisaria conhecer sua frase secreta e ter a posse física do seu dispositivo. Essa combinação aumenta a sua segurança. Como o Gibberfish é parte do ecossistema Nextcloud, você pode usar o aplicativo Nextcloud 2FA. Ele oferece FreeOTP, disponível para download nas lojas de aplicativos do Android e do iOS. -
KEY VAULTS
KEY VAULTS
COFRES DE CHAVES -
If you’re not already in the habit of doing so, it would be a good idea to store your passphrases in a key vault like KeePass. Key vaults make it easy to securely remember all your passphrases. You will need to lock your key vault itself with a Diceware generated passphrase. In addition, we strongly recommend you enable full-disk encryption on the device storing your key vault.
If you’re not already in the habit of doing so, it would be a good idea to store your passphrases in a key vault like KeePass. Key vaults make it easy to securely remember all your passphrases. You will need to lock your key vault itself with a Diceware generated passphrase. In addition, we strongly recommend you enable full-disk encryption on the device storing your key vault.
Se você ainda não tem o hábito, é uma boa ideia passar a armazenar suas frases secretas em um cofre de chaves como o KeePass. Esse recurso torna fácil lembrar com segurança de todas as suas frases secretas. O cofre em si terá que ser protegido com uma senha gerada pelo método Diceware. Além disso, recomendamos veementemente que você habilite criptografia de disco inteiro no dispositivo que armazenará seu cofre. -
DIGITAL HYGIENE
DIGITAL HYGIENE
HIGIENE DIGITAL -
Good Digital Hygiene is the consistent use of robust security practices.
Good Digital Hygiene is the consistent use of robust security practices.
Ter boa higiene digital significa usar práticas de segurança robustas consistentemente. -
THREATS
THREATS
AMEAÇAS -
Understanding the threats you and your group will encounter is an important step in establishing a useful security strategy. The goal is to use only the techniques necessary to protect against your likely adversaries. This will prevent your security regime from becoming so burdensome that you stop using it. Your administrator may have already created a Threat Model describing the security challenges you and your group may expect. If you are unsure, please contact them and ask.
Understanding the threats you and your group will encounter is an important step in establishing a useful security strategy. The goal is to use only the techniques necessary to protect against your likely adversaries. This will prevent your security regime from becoming so burdensome that you stop using it. Your administrator may have already created a Threat Model describing the security challenges you and your group may expect. If you are unsure, please contact them and ask.
Compreender as ameaças que você e seu grupo vão encontrar é um passo importante no estabelecimento de uma estratégia de segurança útil. A ideia é usar apenas as técnicas necessárias para se proteger contra prováveis adversários. Assim, você evita que seu regime de segurança se torne tão cansativo que seja deixado de lado. A administração já deve ter criado um Modelo de Ameaças que descreva os desafios de segurança que você e seu grupo podem esperar. Se tiver alguma dúvida, entre em contato com ela e pergunte. -
EXISTING COMMUNICATIONS
EXISTING COMMUNICATIONS
COMUNICAÇÕES EXISTENTES -
It is likely that you are adding Gibberfish to a variety of existing accounts and services associated with your online activities. These older accounts and services may already be compromised. We recommend using fresh accounts for any activity that involves your Gibberfish server, the content stored there, or the activities associated with it.
It is likely that you are adding Gibberfish to a variety of existing accounts and services associated with your online activities. These older accounts and services may already be compromised. We recommend using fresh accounts for any activity that involves your Gibberfish server, the content stored there, or the activities associated with it.
É provável que você esteja acrescentando o Gibberfish a uma miríade de serviços e contas associados às suas atividades on-line. Esses serviços e contas podem já ter sido comprometidos. Por isso, recomendamos o uso de contas recém-criadas para toda atividade que envolva seu servidor Gibberfish ou o conteúdo armazenado nele. -
We recognize that this is not always convenient or appropriate for every user. In this case, please take the time to re-secure any account or service you intend to use for private activities. Change your passphrases in order to lock-out unauthorized users who may have gained access without your knowledge. Wherever possible, enable two-factor authorization. Check for software updates for all your devices, including your phone, and install them.
We recognize that this is not always convenient or appropriate for every user. In this case, please take the time to re-secure any account or service you intend to use for private activities. Change your passphrases in order to lock-out unauthorized users who may have gained access without your knowledge. Wherever possible, enable two-factor authorization. Check for software updates for all your devices, including your phone, and install them.
Sabemos que isso não é sempre conveniente ou apropriado para todos. Se for o seu caso, reforce a segurança de qualquer conta ou serviço que pretenda usar para atividades particulares. Mude suas senhas para barrar o acesso de quem possa tê-las conseguido sem o seu conhecimento. Sempre que possível, habilite a autenticação em duas etapas. Verifique se há atualizações de software disponíveis para todos os seus dispositivos, inclusive seu smartphone, e instale-as. -
TOR
TOR
TOR -
VIDEO CALLS
VIDEO CALLS
CHAMADAS DE VÍDEO -
The Nextcloud “Talk” app allows you to create and join video calls in your web browser. For best performance on mobile devices, we recommend that you install and use the “Nextcloud Talk” mobile app, which is available from iTunes, Google Play, and F-Droid.
The Nextcloud “Talk” app allows you to create and join video calls in your web browser. For best performance on mobile devices, we recommend that you install and use the “Nextcloud Talk” mobile app, which is available from iTunes, Google Play, and F-Droid.
Com o "Talk" da Nextcloud, é possível iniciar e participar de chamadas de vídeo usando seu navegador. Para melhor desempenho em dispositivos móveis, recomendamos a instalação do aplicativo "Nextcloud Talk", disponível no iTunes, Google Play e F-Droid. -
CHAT
CHAT
BATE-PAPO -
The chat system uses the standard XMPP protocol, which will allow you to chat not only with fellow Gibberfish users, but also with anyone else in the world using an XMPP server. Your XMPP address is <your username>@<your gibberfish server>. For example,
The chat system uses the standard XMPP protocol, which will allow you to chat not only with fellow Gibberfish users, but also with anyone else in the world using an XMPP server. Your XMPP address is
<your username>
@<your gibberfish server>
. For example,O sistema de bate-papo funciona a partir do protocolo XMPP padrão, que possibilita a comunicação não apenas com outros usuários do Gibberfish, mas com qualquer pessoa que use um servidor XMPP. Seu endereço XMPP é<your username>
@<your gibberfish server>
. Por exemplo, -
FURTHER READING
FURTHER READING
LEITURA ADICIONAL -
For more extensive documentation of the core features, please refer to the Nextcloud User Manual, which is also located in your Gibberfish home folder.
For more extensive documentation of the core features, please refer to the Nextcloud User Manual, which is also located in your Gibberfish home folder.
Para informações mais detalhadas acerca dos principais recursos, consulte o Manual do Usuário Nextcloud, localizado na sua pasta inicial no Gibberfish. -
FINAL NOTES
FINAL NOTES
OBSERVAÇÕES FINAIS -
We hope you enjoy using Gibberfish. We have worked hard make it a secure and easy-to use platform, as have the many independent contributors to the various open source projects that we have integrated into our service. Special thanks goes to the folks at Nextcloud, without whom our platform would not be possible.
We hope you enjoy using Gibberfish. We have worked hard make it a secure and easy-to use platform, as have the many independent contributors to the various open source projects that we have integrated into our service. Special thanks goes to the folks at Nextcloud, without whom our platform would not be possible.
Esperamos que você goste do Gibberfish. Trabalhamos duro para torná-lo uma plataforma segura e fácil de usar, assim como trabalharam as muitas pessoas que contribuiram independentemente para os vários projetos de código aberto que integramos ao nosso serviço. Agradecemos especialmente ao pessoal da Nextcloud, sem a qual nossa plataforma não seria possível.