[Opsec] Best setup/opsec for developement of a hidden service.

I am not new to this and use tails to do all darknet activities. I want to play around with creating a onion site.

My question is what is the best setup to use to be untraceable while creating this site? Maybe Kali linux bootable on a very large flash drive, or maybe a VM running Whonix with a vpn before it on my main computer? Would it be better to just get a burner laptop?

I am not going to be doing anything illegal, I just want to get some of your opinions, because I know there are some very bright minds out there.

Thanks in advance,

Cheers!


Comments


[2 Points] sandman_never_sleeps:

Good question, I have often wondered this myself, I hope someone can shed some light on the issue.


[1 Points] ThrowawayTehGay:

If opsec is even remotely a concern then it shouldn't be hosted on any service that's tied to your real identity. If you don't care enough about opsec to host it remotely then it doesn't matter what platform you host it from. You might as well just run it from a basic Linux VM on your desktop or something. Why bother with Whonix, Tails, or anything else at that point?

There's been a guide written on this topic and the link has floated around the sub a few times. I'll see if I can find it. I can tell you though that it's only even comprehensible if you have a SOLID background in networking and system administration. This will almost certainly require real world industry experience.

EDIT: I can't find the guide I had in mind. It was the most legit one I've seen so far, and the most realistic about the technical complexities and opsec variables to weigh and consider. The following two guides are more than sufficient for a proof-of-concept non-illegal hidden service though:

http://www.deepdotweb.com/2015/03/27/onionshop-guide-how-to-set-up-a-hidden-service/

https://www.thecthulhu.com/setting-up-a-hidden-service-with-nginx/


[1 Points] lilwayneknight:

Onion sites aren't illegal in and of themselves, so if you aren't planning to break any laws, a burner laptop doesn't seem like it would have any use.

Set up a VM running Ubuntu server or whatever distro you want, install Apache/nginx, mysql, tor, etc. The VM could run in Virtualbox on your computer locally if you're just testing and playing around. SSH into the VM from whatever computer you normally use and do your development on that server VM.