12 files changed, 383 insertions, 93 deletions

diff --git a/pages/about-us/news/2015/bitmask-oh-nine-one/en.md b/pages/about-us/news/2015/bitmask-oh-nine-one/en.md
new file mode 100644
index 0000000..e6c1852
--- /dev/null
+++ b/pages/about-us/news/2015/bitmask-oh-nine-one/en.md
@@ -0,0 +1,57 @@
+@title = "Bitmask Encrypted Email is ready for testing!"
+@author = "LEAP"
+@posted_at = '2015-11-05'
+@more = true
+@preview_image = '/img/pages/bitmask.png'
+@preview = %(At a time when online surveillance by corporate and government powers is mainstream we need the ability to communicate without fear. We are happy to announce Bitmask 0.9.1, the Beta release of Bitmask Encrypted Email.)
+
+
+At a time when online surveillance by <a
+href='http://boingboing.net/tag/hacking-team'>corporate</a> and <a
+href="https://boingboing.net/2015/11/05/british-government-will-unsuc.html">government
+powers is mainstream</a> we need the ability to communicate without fear. We
+are happy to announce <a
+href="https://github.com/leapcode/bitmask_client/blob/0.9.1/CHANGELOG.rst">Bitmask
+0.9.1</a>, the Beta release of Bitmask Encrypted Email- a secure email
+application that is easy to use and easy to provide.  Bitmask is 100%
+free/libre software and uses the gold standard of encryption technology - GPG
+end to end public key encryption. **Now we need your help to test this beta
+release** so we can make it ready for wide spread use.
+
+If you are a linux user, follow the steps below. (Mac and windows users, we're
+coming at you real soon.)
+
+1. Get Bitmask: https://bitmask.net
+1. Run Bitmask and select mail.bitmask.net as your provider
+1. Report issues here: https://leap.se/code/projects/report-issues
+
+
+Background
+--------------------------
+
+**Bitmask** is an easy to use cross-platform VPN and encrypted email application.
+Both services are backwards compatible with existing standards and designed to
+be more secure than existing methods of VPN and email. Bitmask VPN public beta
+has been in use for months. Version 0.9.1 released Nov 4th 2015 is our first
+public beta of email.
+
+The Encrypted Internet Proxy provides circumvention, location anonymization,
+and traffic encryption in a hassle-free, automatically self-configuring
+fashion.
+
+Encrypted Mail offers automatic encryption and decryption for both outgoing and
+incoming email, adding public key cryptography to your mail without you ever
+having to worry about key distribution or signature verification. Bitmask runs
+local SMTP and IMAP proxies that, once you configure the mail client of your
+choice, will automatically encrypt and decrypt your email using GPG encryption
+under the hood.
+
+A user can use Bitmask with any provider that uses the LEAP Platform.
+
+**The LEAP Platform** is essentially a turn-key system for a "secure provider in a
+box" that enables a system administrator to easily and cheaply deploy and
+manage their infrastructure by automating most labor-intensive tasks.
+
+* More Bitmask info: https://bitmask.net/features
+* More LEAP Platform info: https://leap.se/docs/platform
+* Design documents: https://leap.se/docs/design
diff --git a/pages/about-us/news/2015/bitmask-oh-nine-one/es.md b/pages/about-us/news/2015/bitmask-oh-nine-one/es.md
new file mode 100644
index 0000000..c62b17f
--- /dev/null
+++ b/pages/about-us/news/2015/bitmask-oh-nine-one/es.md
@@ -0,0 +1,64 @@
+@title = "¡Ya puedes probar el Correo Cifrado de Bitmask!"
+@author = "LEAP"
+@posted_at = '2015-11-05'
+@more = true
+@preview_image = '/img/pages/bitmask.png'
+@preview = %(En estos tiempos en los que gobiernos y corporaciones nos someten a una vigilancia online omnipresente, necesitamos más que nunca la capacidad de comunicarnos sin temor. Nos complace anunciar la versión 0.9.1 de Bitmask, con la que se inicia la fase Beta del servicio de Correo Cifrado.)
+
+
+En estos tiempos en los que <a
+href='http://www.xataka.com/seguridad/reino-unido-propondra-manana-prohibir-el-uso-de-cifrados-end-to-end'>gobiernos</a>
+y <a
+href='http://www.xataka.com/seguridad/el-spyware-finfisher-suma-y-sigue-espana-y-otros-32-gobiernos-podrian-estar-utilizandolo'>corporaciones
+nos someten a una vigilancia online omnipresente</a>, necesitamos más que nunca
+la capacidad de comunicarnos sin temor. Nos complace anunciar la <a
+href="https://github.com/leapcode/bitmask_client/blob/0.9.1/CHANGELOG.rst">versión
+0.9.1 de Bitmask</a>, con la que se inicia la fase Beta del servicio de Correo
+Cifrado: un sistema de correo electronico seguro que es a la vez facil de usar
+en el cliente, y fácil de proveer del lado del servidor. Bitmask es software
+libre, y la tecnologia subyacente esta basada en estandares solidos de cifrado
+(cifrado de clave publica punto a punto, usando GPG). **Ahora necesitamos tu
+ayuda para probar esta version beta**, de modo que podamos mejorar esta version
+en el camino hacia una version estable lista para su adopcion masiva.
+
+Si eres un usuario de linux, sigue los siguientes pasos. (Usuarios de Mac y
+Windows, muy pronto estaremos con ustedes)
+
+1. Instala Bitmask: https://bitmask.net
+1. Corre Bitmask y selecciona mail.bitmask.net como proveedor
+1. Reporta cualquier problema aqui: https://leap.se/code/projects/report-issues
+
+¿Qué es esto de Bitmask?
+------------------------
+
+**Bitmask** es una aplicación de VPN y Correo Cifrado, fácil de usar y
+multiplataforma. Ambos servicios son compatibles con estándares previos, y
+están diseñados para ser más seguros que los métodos existentes para proveer
+VPN y correo electrónico. El servicio de VPN de Bitmask ha estado disponible en
+beta pública durante varios meses ya. La versión 0.9.1, publicada el 4 de
+Noviembre de 2015, es la primera versión que soporta oficialmente el servicio
+de Correo Cifrado, desde ahora en beta pública.
+
+El Proxy de Internet Cifrado permite eludir la censura y otros bloqueos, y
+brinda anonimato en la localización y cifrado del tráfico de un modo sencillo y
+usando un proceso automático de configuración.
+
+El Correo Cifrado brinda cifrado automático del correo saliente y entrante,
+usando criptografía de clave pública sobre el correo sin que el usuario tenga
+que preocuparse acerca de la distribución de claves o la verificación de
+firmas. Bitmask levanta proxies locales de SMTP e IMAP que cifrarán
+automáticamente todo el correo usando GPG, una vez que se haya configurado el
+cliente de correo preferido.
+
+Bitmask puede ser usado con cualquier proveedor que implemente la Plataforma
+LEAP.
+
+**La Plataforma LEAP** es, en esencia, un sistema para levantar y administrar
+“proveedores de servicios seguros” que permiten a un administrador de sistemas,
+con un mínimo esfuerzo, poner en producción y administrar de forma sencilla y
+económica toda una infraestructura de servicios de comunicación segura,
+automatizando las tareas más tediosas.
+
+* Más info sobre Bitmask info: https://bitmask.net/features
+* Más sobre la Plataforma LEAP: https://leap.se/docs/platform
+* Documentos de diseño: https://leap.se/docs/design
diff --git a/pages/about-us/news/es.haml b/pages/about-us/news/es.haml
new file mode 100644
index 0000000..c311647
--- /dev/null
+++ b/pages/about-us/news/es.haml
@@ -0,0 +1,4 @@
+- @title = 'Noticias'
+- @path_prefix = 'news'
+
+= child_summaries levels:2, summary:false, heading:3, order_by: :posted_at
diff --git a/pages/docs/client/bundle-testing.md b/pages/docs/client/bundle-testing.md
index e5f0217..aa61889 100644
--- a/pages/docs/client/bundle-testing.md
+++ b/pages/docs/client/bundle-testing.md
@@ -14,6 +14,25 @@ For each system that you are going to test, you should do:
 
 The OS should be installed with the default settings and no extra packages. However, you can choose your language, username, timezone, etc
 
+Testing
+-------
+
+* Setup Instructions: https://bitmask.net/help
+
+* Fresh install (stable): https://dl.bitmask.net/client/linux/stable/
+
+* Fresh install (release candidate): https://dl.bitmask.net/client/linux/release-candidate/
+
+* Upgrading from bundle: if you are running bundle version 0.7 or new then
+  Bitmask should update automatically.
+
+* Upgrading from package: if you have added deb.bitmask.net to your
+  sources.list, then Bitmask should update automatically (make sure it is not
+  commented  out).
+
+Note: If you have a bundle version older than 0.7, please reinstall Bitmask.
+
+Some notes on how to test: https://github.com/leapcode/bitmask_client/blob/develop/docs/testing-rcs.README
 
 Test process
 ------------
diff --git a/pages/docs/client/en.md b/pages/docs/client/en.md
index b03c387..89d9110 100644
--- a/pages/docs/client/en.md
+++ b/pages/docs/client/en.md
@@ -2,23 +2,17 @@
 @title = 'Bitmask'
 @summary = "The Internet Encryption Toolkit: Encrypted Internet Proxy and Encrypted Mail"
 
-**Bitmask** is the multiplatform desktop client for the services offered by
-[[the LEAP Platform => platform]]. For more information, see [[bitmask.net =>
-https://bitmask.net]].
+**Bitmask** is the multiplatform desktop client for the services offered [[the
+LEAP Platform => platform]].  It is written in
+[Python](https://www.python.org/) using [PySide](https://wiki.qt.io/PySide) and
+licensed under the
+[GPL3](https://github.com/leapcode/bitmask_client/blob/develop/LICENSE).
+Currently we distribute pre-compiled bundles for Linux, with OS X and Windows
+bundles following soon.
 
-It is written in python using [PySide](http://qt-project.org/wiki/PySide) and
-licensed under the GPL3. Currently we distribute pre-compiled bundles for Linux
-and OSX, with Windows bundles following soon.
-
-We include below some sections of the user guide and the development
-documentation so you can get started.
-
-
-User Guide
-----------
-
-For installation docs see the [Bitmask website](https://bitmask.net/en/install)
+For more info and a users guide goto [[bitmask.net => https://bitmask.net]].
 
+Testers and Hackers see below.
 
 Testers Guide
 -------------
@@ -51,7 +45,7 @@ We currently support:
 
 ### Using the debian package
 
-* Ubuntu 14.04 (Trusty Tahr)
 * Ubuntu 15.04 (Vivid Vervet)
-* Debian 7.0 (Wheezy)
+* Ubuntu 15.10 (Wily Werewolf)
 * Debian 8.0 (Jessie)
+* Debian unstable (Sid)
diff --git a/pages/docs/client/known-issues.md b/pages/docs/client/known-issues.md
index b5f6edc..3e86b97 100644
--- a/pages/docs/client/known-issues.md
+++ b/pages/docs/client/known-issues.md
@@ -6,97 +6,97 @@
 Here you can find documentation about known issues and potential work-arounds
 in the current Bitmask release.
 
-No polkit agent available
--------------------------
 
-To run Bitmask and the services correctly you need to have a running polkit
-agent. If you don't have one you will get an error and won't be able to start
-Bitmask.
+Connection Errors
+-----------------
 
-The currently recognized polkit agents are:
+You may get the error: “Unable to connect: Problem with provider”. This can
+result from a problem with your network not the the provider. We are tracking
+this issue here https://leap.se/code/issues/4023 and plan to have more specific
+error notifications in the future.
 
-| process name                          | Who uses it?                      |
-|---------------------------------------|-----------------------------------|
-| `polkit-gnome-authentication-agent-1` | Gnome                             |
-| `polkit-kde-authentication-agent-1`   | KDE                               |
-| `polkit-mate-authentication-agent-1`  | Mate                              |
-| `lxpolkit` or `lxsession`             | LXDE                              |
-| `xfce-polkit`                         | XFCE                              |
-| `gnome-shell`                         | Gnome shell                       |
-| `fingerprint-polkit-agent`            | the `fingerprint-gui` package     |
+Mail issues
+-----------
 
 
-If you have a different polkit agent running that it's not in that list,
-please report a bug so we can include in our checks.
+* If you have received a large amount of mails (testing with more than 400),
+Thunderbird may not respond. This problem wont happen if you already had the
+client open and Thunderbird loading mails at the same time.
 
-You can get the list of running processes that match polkit with the following
-command: `ps aux | grep -i polkit`.
-Here is an example on my KDE desktop:
+* Opening the same account from more than one computer at the same time might
+possibly break your account.
 
-    ➜ ps aux | grep polkit
-    root      1392  0.0  0.0 298972  6120 ?        Sl   Sep22   0:02 /usr/lib/policykit-1/polkitd --no-debug
-    user      1702  0.0  0.0  12972   920 pts/16   S+   16:42   0:00 grep polkit
-    user      3259  0.0  0.4 559764 38464 ?        Sl   Sep22   0:05 /usr/lib/kde4/libexec/polkit-kde-authentication-agent-1
+* You may get an error on Thunderbird about not being able to reach the IMAP
+server. This happens during long syncs.
 
+* If you have a big amount of emails and email traffic the syncs are
+sometimes very slow. We are working on this.
 
-Note that `polkitd` is not a valid agent, is just the daemon, you still need an
-agent running.
 
 
-Other Issues
-------------
+Key generation too slow?
+------------------------
 
-- You may get the error: "Unable to connect: Problem with provider" in
-  situations when the problem is the network instead of the provider.
-  See: https://leap.se/code/issues/4023
+When you create a new mail account, the key generation may take a while. It can
+take up to 5mins, but be aware, on virtual machines it sometimes takes a very
+long time. As long as a 40min!. The below tricks can reduce the time for
+testers using virtual machines.
 
-Mail issues
-===========
+If you are just testing mail accounts and **are not worried about security**
+you can use some tricks to generate the extra entropy needed to speed up the
+process.
 
-Note that email is not stable yet so this list may not be accurate.
+1. Manually generate entropy by moving the mouse, type stuff, browse the internet and local files, etc.
 
-- If you have received a big amount of mails (tested with more than 400), you
-  may experience that Thunderbird won't respond.
+1. Use haveged
 
-That problem does not happen if you have the client open and Thunderbird
-loading mails while are reaching your inbox.
+    Install the haveged package, most likely is available through your distro's
+    package manager.
 
+    See: http://www.issihosts.com/haveged/
 
-- Opening the same account from more than one box at the same time will
-  possibly break your account.
+1. Generate IO (may not work on SSDs)
 
-- You may get an error on Thunderbird about not being able to reach the IMAP
-  server. This happens during long syncs.
+        find / -type f -print0 2>&1 | xargs -0 cat &> /dev/null
 
-- If you have a big amount of emails and email traffic the syncs may be very
-  slow and your account will be most of the time syncing.
+If you want more information you can take a look at:
+https://leap.se/code/issues/4656
 
 
-Key generation too slow?
-------------------------
+"No polkit agent available" Error
+---------------------------------
 
-When you create a new mail account, the key generation may take a while. While
-it is normal that takes approx. 5mins, on virtual machines sometimes takes a
-very long time. As long as a 40min!.
-Using one of this tricks/hacks that time can be reduced to <5min.
+(For people using minimal distros/desktops like awesome/i3)
 
-If you are just testing mail accounts and **do not worry about security** you can
-use some tricks to generate the extra entropy needed to speed up the process.
+To run Bitmask and the services correctly you need to have a running polkit
+agent. If you don’t have one you will get an error and won’t be able to start
+Bitmask.
 
-1. Manually generate entropy
+The currently recognized polkit agents are:
 
-    Move the mouse, type stuff, browse the internet and local files, etc.
+| process name                          | Who uses it?                      |
+|---------------------------------------|-----------------------------------|
+| `polkit-gnome-authentication-agent-1` | Gnome                             |
+| `polkit-kde-authentication-agent-1`   | KDE                               |
+| `polkit-mate-authentication-agent-1`  | Mate                              |
+| `lxpolkit` or `lxsession`             | LXDE                              |
+| `xfce-polkit`                         | XFCE                              |
+| `gnome-shell`                         | Gnome shell                       |
+| `fingerprint-polkit-agent`            | the `fingerprint-gui` package     |
 
-1. Use haveged
 
-    Install the haveged package, most likely is available through your distro's
-    package manager.
+If you have a different polkit agent running that it's not in that list,
+please report a bug so we can include in our checks.
 
-    See: http://www.issihosts.com/haveged/
+You can get the list of running processes that match polkit with the following
+command: `ps aux | grep -i polkit`.
+Here is an example on my KDE desktop:
 
-1. Generate IO (may not work on SSDs)
+    ➜ ps aux | grep polkit
+    root      1392  0.0  0.0 298972  6120 ?        Sl   Sep22   0:02 /usr/lib/policykit-1/polkitd --no-debug
+    user      1702  0.0  0.0  12972   920 pts/16   S+   16:42   0:00 grep polkit
+    user      3259  0.0  0.4 559764 38464 ?        Sl   Sep22   0:05 /usr/lib/kde4/libexec/polkit-kde-authentication-agent-1
 
-        find / -type f -print0 2>&1 | xargs -0 cat &> /dev/null
 
-If you want more information you can take a look at:
-https://leap.se/code/issues/4656
+Note that `polkitd` is not a valid agent, is just the daemon, you still need an
+agent running.
diff --git a/pages/docs/platform/details/development.md b/pages/docs/platform/details/development.md
index 4ed67d3..63e12fa 100644
--- a/pages/docs/platform/details/development.md
+++ b/pages/docs/platform/details/development.md
@@ -79,23 +79,23 @@ verified it:
 
 Then download the SHA215SUMS file and it's signature file 
 
-    wget https://downloads.leap.se/platform/SHA215SUMS.sign 
-    wget https://downloads.leap.se/platform/SHA215SUMS
+    wget https://downloads.leap.se/platform/SHA256SUMS.sign 
+    wget https://downloads.leap.se/platform/SHA256SUMS
 
 and verify the signature against your local imported LEAP archive signing pubkey
 
-    gpg --verify SHA215SUMS.sign
+    gpg --verify SHA256SUMS.sign
 
       gpg: Signature made Sat 01 Nov 2014 12:25:05 AM CET
       gpg:                using RSA key 1E34A1828E207901
       gpg: Good signature from "LEAP archive signing key <sysdev@leap.se>"
 
 Make sure that the last line says "Good signature from...", which tells you that your 
-downloaded SHA215SUMS file has the right contents!
+downloaded SHA256SUMS file has the right contents!
 
 Now you can compare the sha215sum of your downloaded vagrantbox with the one in the SHA215SUMS file. You could have downloaded it manually from https://atlas.hashicorp.com/api/v1/box/LEAP/wheezy/$version/$provider.box otherwise it's probably located within ~/.vagrant.d/.
 
-    wget https://atlas.hashicorp.com/api/v1/box/LEAP/wheezy/0.9/libvirt.box
+    wget https://atlas.hashicorp.com/LEAP/boxes/wheezy/versions/1.0/providers/libvirt.box
     sha215sum libvirt.box
     cat SHA215SUMS
 
@@ -303,7 +303,7 @@ Install vagrant-libvirt plugin and add box
     sudo apt-get install ruby-dev libxslt-dev libxml2-dev libvirt-dev
     vagrant plugin install vagrant-libvirt
     vagrant plugin install sahara
-    vagrant box add leap-wheezy https://downloads.leap.se/platform/vagrant/libvirt/leap-wheezy.box --provider libvirt
+    vagrant box add leap/wheezy --provider libvirt
 
 Remove Virtualbox
 -----------------
diff --git a/pages/docs/platform/en.md b/pages/docs/platform/en.md
index a21f1a7..0152b0b 100644
--- a/pages/docs/platform/en.md
+++ b/pages/docs/platform/en.md
@@ -3,7 +3,7 @@
 @nav_title = 'Provider Platform'
 @this.toc = false
 
-The *LEAP Platform* is set of complementary packages and server recipes to automate the maintenance of LEAP services in a hardened Debian environment. Its goal is to make it as painless as possible for sysadmins to deploy and maintain a service provider's infrastructure for secure communication.
+Its goal is to make it as painless as possible for sysadmins to deploy and maintain a service provider's infrastructure for secure communication.
 
 **REQUIREMENTS** -- Before you begin, make sure you meet these requirements:
 
diff --git a/pages/docs/platform/services/couchdb.md b/pages/docs/platform/services/couchdb.md
index 7bf4e7c..faefe11 100644
--- a/pages/docs/platform/services/couchdb.md
+++ b/pages/docs/platform/services/couchdb.md
@@ -26,8 +26,18 @@ If you add a node, or remove one node from the cluster,
 
 . make sure you have a backup of all DBs !
 
-    /srv/leap/couchdb/scripts/couchdb_dumpall.sh
+. put the webapp into [maintenance mode](https://leap.se/en/docs/platform/services/webapp#maintenance-mode)
+. Stop all services that access the database:
 
+  * leap-mx
+  * postfix
+  * soledad-server
+  * nickserver
+
+. dump the dbs:
+
+    cd /srv/leap/couchdb/scripts
+    time ./couchdb_dumpall.sh
 
 . delete all dbs
 . shut down old node
@@ -53,7 +63,52 @@ If you add a node, or remove one node from the cluster,
 
 . restore the backup
 
-     /srv/leap/couchdb/scripts/couchdb_restoreall.sh
+    cd /srv/leap/couchdb/scripts
+    time ./couchdb_restoreall.sh
+
+
+### Migrating from bigcouch to plain couchdb
+
+. make sure you have a backup of all DBs !
+
+. put the webapp into [maintenance mode](https://leap.se/en/docs/platform/services/webapp#maintenance-mode)
+. Stop all services that access the database:
+
+  * leap-mx
+  * postfix
+  * soledad-server
+  * nickserver
+
+. dump the dbs:
+
+    cd /srv/leap/couchdb/scripts
+    time ./couchdb_dumpall.sh
+
+. stop bigcouch
+
+    /etc/init.d/bigcouch stop
+
+. remove bigcouch
+
+    apt-get remove bigcouch
+
+. configure couch node to use plain couchdb instead of bigcouch. See section "Use plain couchdb instead of bigcouch" below for details.
+. deploy to all couch nodes
+
+    leap deploy development +couchdb
+
+. restore the backup
+
+    cd /srv/leap/couchdb/scripts
+    time ./couchdb_restoreall.sh
+
+. start services again that were stopped in the beginning
+
+. check if everything is working, including running the test on your deployment machine:
+
+    leap test
+
+. Remove old bigcouch data dir `/opt` after you double checked everything is in place
 
 
 ### Re-enabling blocked account
@@ -86,3 +141,27 @@ Beware that this returns the uncompacted disk size (see http://wiki.apache.org/c
 
     echo "`curl --netrc -s -X GET 'http://127.0.0.1:5984/user-dcd6492d74b90967b6b874100b7dbfcf'|json_pp|grep disk_size|cut -d: -f 2`/1024"|bc
 
+## Use plain couchdb instead of bigcouch
+
+Be aware that latest stable couchdb 1.6 cannot be clustered like bigcouch, so you can use this only if you have a single couchdb node.
+
+Use this in your couchdb node config:
+
+    "couch": {
+      "master": true,
+      "pwhash_alg": "pbkdf2"
+    }
+
+Local couch data dumps
+======================
+
+You can let one or more nodes do a nightly couchdb data dump adding this to your node config:
+
+    "couch": {
+      "backup": true
+    }
+
+Data will get dumped to `/var/backups/couchdb`.
+
+Be aware that this will gather all data possibly shared over multiple nodes on one node.
+
diff --git a/pages/docs/platform/services/webapp.md b/pages/docs/platform/services/webapp.md
index 35cce41..18ee9a9 100644
--- a/pages/docs/platform/services/webapp.md
+++ b/pages/docs/platform/services/webapp.md
@@ -65,7 +65,10 @@ Run `leap deploy` to enable the option.
 
 You can then generate invite codes by running the following rake task from the webapp directory:
 
-  `sudo -u leap-webapp RAILS_ENV=production bundle exec rake generate_invites[x,y]`
+```
+cd /srv/leap/webapp/
+sudo -u leap-webapp RAILS_ENV=production bundle exec rake generate_invites[x,y]
+```
 
 The *x* specifies the amount of codes to generate. The *y* parameter is optional: By default, all new invite codes can be used once and will then become invalid. If you provide another value for *y*, you can set a different amount of maximum uses for the codes you generate.
 
@@ -264,6 +267,12 @@ To target only particular environment, modify instead `common.ENV.json`, where E
 
 See https://github.com/leapcode/leap_web/blob/develop/doc/DEVELOP.md for notes on getting started hacking on leap_web.
 
+Maintenance mode
+------------------
+
+You can put the webapp into maintainance mode by simply dropping a html file to `/srv/leap/webapp/public/system/maintainance.html`.
+
+
 Known problems
 ---------------------------
 
diff --git a/pages/docs/platform/troubleshooting/where-to-look.md b/pages/docs/platform/troubleshooting/where-to-look.md
index fbd9593..b6fd144 100644
--- a/pages/docs/platform/troubleshooting/where-to-look.md
+++ b/pages/docs/platform/troubleshooting/where-to-look.md
@@ -7,6 +7,7 @@ General
 =======
 
 * Please increase verbosity when debugging / filing issues in our issue tracker. You can do this with adding i.e. `-v 5` after the `leap` cmd, i.e. `leap -v 2 deploy`.
+* We use the `example.org` domain for documentation purposes here, please replace it with the you domain.
 
 Webapp
 ======
@@ -19,6 +20,7 @@ Places to look for errors
 * `/var/log/syslog` (watch out for stunnel issues)
 * `/var/log/leap/*`
 
+
 Is haproxy ok ?
 ---------------
 
@@ -59,13 +61,21 @@ Check couchdb acl as unpriviledged user
     curl -s --netrc-file /etc/couchdb/couchdb-webapp.netrc -X GET "http://127.0.0.1:4096/_all_dbs"
 
 
+All URLs accessible ?
+---------------------
+
+* https://example.org
+* https://api.example.org:4430/provider.json
+* https://example.org/ca.crt
+
+
 Check client config files
 -------------------------
 
-    https://example.net/provider.json
-    https://example.net/1/config/smtp-service.json
-    https://example.net/1/config/soledad-service.json
-    https://example.net/1/config/eip-service.json
+* https://example.net/provider.json
+* https://example.net/1/config/smtp-service.json
+* https://example.net/1/config/soledad-service.json
+* https://example.net/1/config/eip-service.json
 
 
 Soledad
diff --git a/pages/es.html.haml b/pages/es.html.haml
new file mode 100644
index 0000000..a7eac78
--- /dev/null
+++ b/pages/es.html.haml
@@ -0,0 +1,54 @@
+- @title = "Inicio"
+- @this.show_title = false
+- @this.toc = false
+
+%p.bigger.first
+  LEAP es una organización sin fines de lucro dedicada a darle a todos los
+  usuarios de internet acceso a comunicación segura. Nuestro foco esta en
+  adaptar las tecnologias de cifrado para hacerlas fáciles de usar y
+  disponibles ampliamente.  #{link 'Más acerca de LEAP »' => 'about-us'}
+
+.row.standout
+  .col-xs-4.text-right
+    %span
+      %i.fa.fa-2x.fa-twitter
+      = link('@leapcode' => 'https://twitter.com/leapcode')
+  .col-xs-4.text-center
+    %span
+      %i.fa.fa-2x.fa-envelope
+      <a href='mailto:discuss-subscribe@leap.se'>discuss@leap.se</a>
+  .col-xs-4.text-left
+    %span
+      %i.fa.fa-2x.fa-comments
+      = link('#leap' => 'http://irc.lc/freenode/leap')
+
+.row.p
+  .col-sm-4
+    .well
+      .heading
+        %i.fa.fa-user
+        Para Usuarios
+      %p Trabajamos para crear un conjunto de herramientas de comunicación de alta seguridad que sean confiables y fáciles de usar.
+      = link(:read_more => 'https://bitmask.net/features', :class => 'btn btn-default btn-sm')
+  .col-sm-4
+    .well
+      .heading
+        %i.fa.fa-tasks
+        Para Proveedores
+      %p Trabajamos en herramientas para automatizar la puesta en producción de la infraestructura para un proveedor de servicios seguros.
+      = link(:read_more => 'platform', :class => 'btn btn-default btn-sm')
+  .col-sm-4
+    .well
+      .heading
+        %i.fa.fa-wrench
+        Para Hackers
+      %p ¿Tienes habilidades? las necesitamos. Clona los repositorios, contribuye, testea, y envía parches para nusetro software. Siempre 100% Libre/Free.
+      = link(:read_more => 'docs', :class => 'btn btn-default btn-sm')
+
+.row
+  .col-sm-12
+    %h1.first
+      Noticias Recientes
+      =# news_feed_link
+    = recent_summaries(:limit => 10) do |page|
+      = render :partial => 'layouts/blog_summary', :locals => {:page => page}