Corrections to the tor and email guides

[daviduhden]

The Tor guide makes people download a gpg key to /usr/share/keyrings/tor-archive-keyring.gpg and request signatures from that key for the repository. It also recommends installing the deb.torproject.org-keyring package, which should update this key before it expires.

However, this package actually writes to /usr/share/keyrings/deb.torproject.org-keyring.gpg. This causes people to get errors when the key they downloaded expires, and the configuration is still looking at that key, not the one that is automatically updated.

This pull request corrects this issue, which has already been fixed in the official documentation of the Tor project ¹.

On the other hand, the Fail2Ban configuration in the hardening section of the guide to setting up a email server will not work on Debian 12 or other recent Linux distributions that use systemd for the following reasons:

1. The Postfix SASL and RBL filters have been merged with the Postfix filter and no longer exist separately in Fail2Ban ².

2. In modern systemd-based distributions, such as recent versions of Ubuntu, Debian, Archlinux, RHEL, Fedora, etc, services such as SSH, Postfix and Dovecot are logged in the systemd journal ³.

Footnotes

1. Issue 368 ↩

2. NethServer Forum ↩

3. Issue 3292 ↩