I just wanna harden my network to its fullest potential, if that means setting up my own vpn server with a ras pi and then connecting to that then im down. Also setting up my hot devices onto another network seperated from my sus network then that'd be cool. I just need pointers on where to start. thanks
/u/sir_monster · N/A votes · 22nd January, 2021 - 10:43 · Link
What is your plan?
/u/codeofconduct · N/A votes · 22nd January, 2021 - 10:45 · Link
Vending mostly with max opesec
/u/sir_monster · N/A votes · 22nd January, 2021 - 10:57 · Link
Step 1. Get yourself a burner laptop. Step 2. Use Tails with Encrypted Persistent Storage. Step 3. Remove the laptop's battery. Step 4. Route all your traffic over Tor. Step 5. Only use it for vending. Step 6. You'll be fine. That should be it, if not, correct me. If you don't want your ISP to know that you're using Tor, use a bridge. PS: The hardware side of things certainly isn't everything.
/u/princessnatasha · N/A votes · 22nd January, 2021 - 13:45 · Link
[removed]
/u/sir_monster · N/A votes · 22nd January, 2021 - 14:03 · Link
The data is kept encrypted on the USB drives and also when in operation in the RAM. When the battery is removed chances that, when just closing the laptop's lid, the RAM isn't cleared are high, that would defeat the purpose of encryption. This just ensures the laptop is completely to be shut down.
/u/codeofconduct · N/A votes · 22nd January, 2021 - 11:06 · Link
Tails just seems very unsecure and im thinkuing of going the qubes route just becasue it seems that you can disconnect every thing you do from one another. But Tails is just so convient, it just seems im having a confilction between convience and security. Do you know any tails hardening ideas
/u/Paris · N/A votes · 22nd January, 2021 - 11:13 · Link
Tails is secure but not the most convenient OS to do a lot of things on. Qubes OS is great but a pain in the ass to get loaded up and operating with. My recommendation is simply, keep it simple. Don't have multiple devices which can fail. One device for everything and setup in a way which uses VMs to protect your identity. It's not that hard. If you are very paranoid about it, I would recommend not starting to vend on the darknet.
/u/codeofconduct · N/A votes · 22nd January, 2021 - 11:26 · Link
I think paranoia is the best opsec a person could have, it makes one think of the gaps.
/u/sir_monster · N/A votes · 22nd January, 2021 - 11:33 · Link
Too much paranoia is bad. Have a healthy amount of it. Too much paranoia is making your focus fade from the mayor obstacles and is overall venom for your mental health.