Silk Road forums

Discussion => Security => Topic started by: mju7 on February 22, 2012, 01:36 pm

Title: Help needed securing my computer.
Post by: mju7 on February 22, 2012, 01:36 pm
So I am buying a netbook and I need to know how to secure it as best as possible.

All help appreciated.
Title: Re: Help needed securing my computer.
Post by: fyodor on February 22, 2012, 09:01 pm
What OS? Mac, Windows, Linux?
I think most would agree that Linux is the most secure... but you may not find that your favorite based on ease-of-use. Whether you use a live cd/usb or your HD for your more nefarious activities, I would definitely go ahead and do FDE (full disk encryption) on your whole comp anyway. Windows and Linux has built in programs for this, and surprisingly Windows has actually rated very well on this utility.
---------------------------------------------------------------------------------
"Only to live, to live and live! Life, whatever it may be!"
Title: Re: Help needed securing my computer.
Post by: OuterLimits on February 22, 2012, 09:28 pm
Full Disk Encryption with plausible deniability for Windows: http://www.truecrypt.org
Title: Re: Help needed securing my computer.
Post by: MailMaxDev on February 22, 2012, 10:16 pm
I'd recommend a hidden Tails Linux install with TrueCrypt.
Title: Re: Help needed securing my computer.
Post by: Trinitron421 on February 22, 2012, 10:42 pm
I'd recommend a hidden Tails Linux install with TrueCrypt.
Or even better, a tails usb with a separate encrypted partition for any needed storage until persistance is enabled.
Mine is small enough to swallow if need be.
Title: Re: Help needed securing my computer.
Post by: mju7 on February 23, 2012, 01:31 am
I'd recommend a hidden Tails Linux install with TrueCrypt.
Or even better, a tails usb with a separate encrypted partition for any needed storage until persistance is enabled.
Mine is small enough to swallow if need be.
For both can I have directions please.
Title: Re: Help needed securing my computer.
Post by: MailMaxDev on February 23, 2012, 01:36 am
I heard that running an operating system from a USB could damage it after prolonged use due to the constant reading and writing but I'm not entirely sure about that. For the instructions, install TrueCrypt, click "system" at the top, and click "create hidden operating system". Follow the instructions, they are relatively straightforward. If you have trouble with anything or need clarification on something specifically post here.
Title: Re: Help needed securing my computer.
Post by: mju7 on February 23, 2012, 11:10 am
Install truecrypt onto what? A Linux distro (if so which)? Windows (is it needed i dont want to have to buy)? Onto a blank netbook?
Title: Re: Help needed securing my computer.
Post by: cache on February 23, 2012, 11:15 am
Its about your practices too, if you have a hidden install of a seperate OS for doing dodgy stuff make sure that you use the other install frequently as well otherwise it might raise eyebrows if your computer is seized.
Title: Re: Help needed securing my computer.
Post by: MailMaxDev on February 23, 2012, 01:34 pm
Install truecrypt onto what? A Linux distro (if so which)? Windows (is it needed i dont want to have to buy)? Onto a blank netbook?
Install whatever you want to use as your primary OS and install TrueCrypt on it. Then create a hidden OS with the instructions above where you can do all your dirty work. Keep the primary OS clean.
Title: Re: Help needed securing my computer.
Post by: omen on February 23, 2012, 06:12 pm
Also MAC OSX have FDE. I have my mac fde:ed and vmware virtual win7 hidden and decoy os by truecrypt.
Title: Re: Help needed securing my computer.
Post by: CaptainSensible on February 23, 2012, 07:50 pm
You might not have known this but Truecrypt comes with Tails.  When booting from a USB drive (assuming you've installed Tails on a USB drive) wait for the language selection to come up.  Mine always defaults to the "English" selection.  Then hit the "Tab" key and the menu will change to what looks like a text-based command line.  Then hit the spacebar and type "truecrypt."  Then hit "Enter."

When your PC finishes booting look under the Applications -> Accessories menu.  There at the bottom you'll see Truecrypt. 

To create a USB drive with Tails all you need is the Tails .iso image and software to create a bootable USB drive.  I've used something called Universal USB Installer (it runs on Windows) to create a bootable USB drive with Tails.  Once you've booted with Tails you can go to System -> Administration -> GParted to create another partition on your USB drive. 

The one thing I really like about running Tails or Liberte Linux from a USB drive is that both will start to shutdown if the USB drive is removed.  So if you suddenly find yourself needing to shut down your Silk Road connection ASAP just yank out the USB drive and the shutdown process starts immediately.  Within about 10 seconds all processes will be stopped and the memory wiped.
Title: Re: Help needed securing my computer.
Post by: QTC on February 23, 2012, 07:55 pm
Tails is super fail because of its lack of persistent Tor guard nodes. Liberte is much more secure for this reason provided you use the live USB flavor and disable the cables system it has.
Title: Re: Help needed securing my computer.
Post by: CaptainSensible on February 23, 2012, 08:30 pm
Tails is super fail because of its lack of persistent Tor guard nodes. Liberte is much more secure for this reason provided you use the live USB flavor and disable the cables system it has.

Ah but there's a way to have relay persistence in Tails!  Follow the instructions in my first paragraph but instead of typing "truecrypt" type "bridge."  This starts Tails in Bridge mode, which takes you to the Bridge Settings of Vidalia.  Enter a bridge/port number combination, click "OK", and then Tails will use that entry (bridge) node.  Use the same bridge entry each time and you'll connect to the Tor network at the same point of entry.

Better yet, run your own bridge.  That way you know that your first entry to the Tor network has not been taken over by an attacker.
Title: Re: Help needed securing my computer.
Post by: QTC on February 23, 2012, 11:35 pm
Ah but there's a way to have relay persistence in Tails!  Follow the instructions in my first paragraph but instead of typing "truecrypt" type "bridge."  This starts Tails in Bridge mode, which takes you to the Bridge Settings of Vidalia.  Enter a bridge/port number combination, click "OK", and then Tails will use that entry (bridge) node.  Use the same bridge entry each time and you'll connect to the Tor network at the same point of entry.
Good call although it's kind of annoying. ;-)
Quote
Better yet, run your own bridge.  That way you know that your first entry to the Tor network has not been taken over by an attacker.
This is great advice.
Title: Re: Help needed securing my computer.
Post by: v01d on February 23, 2012, 11:51 pm
My guide for all things SR:
http://dkn255hz262ypmii.onion/index.php?topic=9067.0
Title: Re: Help needed securing my computer.
Post by: kuwahara on February 24, 2012, 12:17 am
I am sure that this is basic and there is better advice above, but I have a drive installed that is XFS format which Windows cannot read without third party apps.  It is also a dual boot for Ubuntu, which can only be accessed through BIOS changes.  I am pretty sure that the fuzz would be too dumb to even realize this was part of my pc and they would just boot to windows first which doesn't and can't see the other drive.
I reckon if my computer was seized for small time stuff they wouldn't even find my hidden stash inside it (hidden there so the girlfriend never finds it).

I also store any keys and stuff on my NAS, which is hidden in my house, so doubt they would even think to collect that.

:)

Oh...and thinking of building a self-destruct option if they press the wrong keys.

Seriously though, I think that police resources that are that trained in security forensics etc are very expensive and only interested in serious criminals - especially terrorism.

Title: Re: Help needed securing my computer.
Post by: anonamoose420 on February 24, 2012, 04:52 am
Are you guys accessing Tor from your home network? or does everyone use a public network?
Title: Re: Help needed securing my computer.
Post by: mju7 on February 24, 2012, 04:24 pm
Liberte is much more secure for this reason provided you use the live USB flavor and disable the cables system it has.
Please explain this setup and how to.
Title: Re: Help needed securing my computer.
Post by: MailMaxDev on February 24, 2012, 05:23 pm
Are you guys accessing Tor from your home network? or does everyone use a public network?
Using a public network probably isn't necessary unless you're a vendor. If you want to be more secure use a bridge, that way your ISP can't tell you're using Tor.
Title: Re: Help needed securing my computer.
Post by: QTC on February 24, 2012, 11:40 pm
Please explain this setup and how to.
A member called "v01d" has a guide floating around somewhere although I don't believe it covers disabling cables since this is a hardening technique I have not previously read about anywhere.

edit: i am an idiot, it's actually posted earlier in this thread
Title: Re: Help needed securing my computer.
Post by: Fah-Q on February 25, 2012, 09:34 pm
I know on the Dells you can set 3 passwords. Other words you have 3 levels of security. You have a BIOS password, Administrator Password and a Hard drive password. If you have set all the passwords set. This done in the bios. If you have the HD password set. It is impossible to access any information on the hard drive. Even if you try using it in another computer. If you forget your password your screwed. You have to buy another hard drive. Some other computers have these options too. You have to check B4 your buy.( I'm former Dell Tech )