Silk Road forums
Discussion => Security => Topic started by: merbs on June 10, 2012, 04:14 pm
-
how safe is this set up?
installed ubuntu (12.04 lts) on a 256bit AES hardware ecrypted USB stick (pin code on the actual drive) . i load the OS through VMware workstation and then use NAT which i have a feeling is not so secure. im using tor browser bundle for linux.
running vmware workstaion 8 on windows 7, currently the network setting for vmware are NAT: which makes me think its not really that safe as it still uses your hosts IP address. could anybody with some experience give me some advice on how i could make this a completely secure method for using SR if that is even possible. any constructive criticism would be helpful.
any advice would be appreciated.
thanks in advanced.
UPDATE* id like to add that im using prepaid mobile phone internet for this and i did not have to reveal any information about my self, i used a "third part"
so to speak. who has no connection to me to purchase the sim card.
-
Mobile phones can be located to within a few meters even without the use of gps. Piggyback over someone with insecure wireless internet (WEP is very easily cracked - use aircrack-ng suite) and change your MAC address (macchanger). Would advise running from a live CD/DVD pre-configured for anonymity and privacy. Liberte linux or TAILS are good bets. USB sticks are read-write. CD/DVDs are read only, so any trojans or keyloggers that could *potentially* be installed on your machine would be wiped when you shut it down. When you go to your target wireless location (also change location frequently) turn off your phone completely and keep it off, you might be sending logs that could be used to trace you.
-
how safe is this set up?
installed ubuntu (12.04 lts) on a 256bit AES hardware ecrypted USB stick (pin code on the actual drive) . i load the OS through VMware workstation and then use NAT which i have a feeling is not so secure. im using tor browser bundle for linux.
running vmware workstaion 8 on windows 7, currently the network setting for vmware are NAT: which makes me think its not really that safe as it still uses your hosts IP address. could anybody with some experience give me some advice on how i could make this a completely secure method for using SR if that is even possible. any constructive criticism would be helpful.
any advice would be appreciated.
thanks in advanced.
UPDATE* id like to add that im using prepaid mobile phone internet for this and i did not have to reveal any information about my self, i used a "third part"
so to speak. who has no connection to me to purchase the sim card.
What you're doing is actually pretty damn secure.
buttonmashkNFDmhgFGHFMgfd above says that mobile phones can be located to within a few meters even without the use of gps, which is true however since you are using the Tor on a computer and only tunneling through your phones internet connection you are perfectly secure. If you were running the Tor directly of your phone, that's a different matter and very insecure. Noone can work out that you're piggy backing off a mobile phone internet connection as long as you do everything through Tor from a laptop.
As buttonmashkNFDmhgFGHFMgfd mentions, a live CD would be an even better option, but is impractical for saving lots of documents, the ultimate solution for you would be to use Liberte Linux from a USB stick. It already includes all the encryption of read/write files that you need to be worried about, and doesn't have as many potential security leaks as Ubuntu.