Hello to all !
Considering researches I do for a vending setup for both DNMs & OpenBazaar, I would like to share some thought & get some advices.
I do get up to 3 finals differents setups which seems the best suited, but all with pros & cons on differents aspects:
- TAILS
- Virtualbox/Whonix in secure Linux on Encrypted usb3 key
- Qubes/Whonix on Encrypted usb3 key
--Actually, TAILS seems best suited for illicit usages, as it offers "Amnesia", immediatlly after USB removal (in case of LE raid). But Eh ! they're not stupid, booting the USB key, they find "Tails". even with encrypted persistence it is known for dark activities, so suspicion may arise ... It is also a pain in the ass to use efficiently with Openbazaar..
--Next we got Linux/VB/Whonix, which is suited for OB, but is not "amnesic"(maybe with a USB-kill script ?) and thus only rely on Encryption... However when booting usb key, LE found an encrypted Debian or Ubuntu, which seems less suspicious at first...
Is it useful to add multiple layer of encryption, beside the Full Disk one, in case it gets cracked ? like 3 layers : Linux FDE > Veracrypt Folder with VMs > Encrypted Virtualbox VM ?
--Finally Qubes/Whonix, which seems the best regarding "internet OPSEC" and usability. But the "amnesia" is actually terrible in my opinion.. Not speaking of dispVM, but if LE got past your FDE password, its game-over..
The 2 final solutions using Whonix seems best suited, But they are severely lacking amnesic features, not speaking about the "shutdown time" of Qubes OS...
What would be the best approach regarding direct targeted suspicion ?
Thanks for your inputs !
Alright so you seem confused about amnesia. Yes Tails offers amnesia but as a vendor that feature is essentially useless as you need to keep your key, passwords & order info. So you'll need to use persistence and if I recall Tails uses LUKS which is the same as Qubes or a Linux distro. So it really doesn't matter which one you use if amnesia was your main worry.
Personally, skip Tails, go to Whonix or Qubes. Linux + Whonix is easier to set up but in my own experience it ran heavier than Qubes. Both will give you more protection in terms of running your shit in a VM sectioned off from everything else & protection from IP leaks/noob mistakes. It's also just easier to run random software in Whonix when compared to Tails and in Qubes you can theoretically run anything you could in Linux with significantly more security than normal. Qubes has more system requirements so if that doesn't work go with Whonix.