mirror of
http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions.git
synced 2025-07-02 11:56:40 +00:00
fix legal + new version of sensitive backups tutorial
This commit is contained in:
nihilist
parent
b25b03ad71
commit
147ade2dd7
29 changed files with 1573 additions and 171 deletions
363
graphs/.$sensitive critical data backups.drawio.bkp
Normal file
363
graphs/.$sensitive critical data backups.drawio.bkp
Normal file
|
|
@ -0,0 +1,363 @@
|
||||||
|
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
||||||
|
<diagram name="Page-1" id="B3SBa8r9e_4KmgIA6ZR_">
|
||||||
|
<mxGraphModel dx="3057" dy="161" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
||||||
|
<root>
|
||||||
|
<mxCell id="0" />
|
||||||
|
<mxCell id="1" parent="0" />
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-1" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1598" y="1480.5" width="155" height="180.25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-2" value="Laptop (DDR4/5 RAM)" style="image;html=1;image=img/lib/clip_art/computers/MacBook_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1366.5" y="1503.5" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-77" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-4">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1327.5" y="1341.6666666666667" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-4" value="libvirtd QEMU hypervisor" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#e3c800;fontColor=#000000;strokeColor=#B09500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1408" y="1363" width="161" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-5" value="System Logs (/var/log)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1483.25" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-6" value="Kernel Logs" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1510.75" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-7" value="Kicksecure LIVE Host OS<br>(grub-live + ram-wipe)<br>From the system drive" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1407" y="1408" width="161" height="66" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-8" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0.978;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-2" target="_OaKirOE1PgL4AIJNBQS-7">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-9" value="Command History<br>~/.bash_history<br>&nbsp;~/.zsh_history" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1569.25" width="140" height="44" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-10" value="System Harddrive (HDD)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1249" y="1503.5" width="161" height="40" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-11" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.543;entryY=0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-10">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1162" y="1450" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-12" value="not writing any potential<br>forensic evidence into<br>&nbsp;the system harddrive<br>meaning we can create<br>the hidden volume safely" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="_OaKirOE1PgL4AIJNBQS-11">
|
||||||
|
<mxGeometry x="0.3975" relative="1" as="geometry">
|
||||||
|
<mxPoint x="-5" y="-13" as="offset" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-13" value="Non-standard Logs" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1540.25" width="140" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-14" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1.009;entryY=0.411;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-1">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1425" y="1456" />
|
||||||
|
<mxPoint x="-1425" y="1555" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-15" value="Rest of the memory <br>contents" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1616.5" width="140" height="28.5" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-16" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.509;entryY=1.013;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-4">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-18" value="script reboot.sh&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6d8764;fontColor=#ffffff;strokeColor=#3A5431;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1576" y="1381.75" width="133" height="28" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-19" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1.003;entryY=0.545;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-18">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1425" y="1456" />
|
||||||
|
<mxPoint x="-1425" y="1397" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-23" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-24">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1236" y="1128" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1237" y="1153" />
|
||||||
|
<mxPoint x="-1236" y="1153" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-33" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-613" y="1531" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-614" y="1556" />
|
||||||
|
<mxPoint x="-613" y="1556" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-34" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-692" y="1580" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-35" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-761.5" y="1503" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-36" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-37">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-542" y="1445.3684210526317" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-37" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-611.5" y="1472" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-38" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys,<br>Monero Wallet Seed)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-611.5" y="1380" width="139" height="62" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-39" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-761.5" y="1389" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-40" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-35" target="_OaKirOE1PgL4AIJNBQS-39">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-692.5" y="1486" />
|
||||||
|
<mxPoint x="-692.5" y="1486" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-41" value="Important: for every hidden volume change,<div>the decoy volume also needs to change!<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763" y="1284" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-42" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-188.5" y="1012.75" width="454" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-43" value="<font style="font-size: 17px;">Sensitive Critical Data backup procedure:</font>" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-295" y="848" width="343" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-44" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-188.5" y="1089.25" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-45" value="1) Open the "diary" VC hidden volume <br>to save the critical data in it" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-208.5" y="961.25" width="221" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-46" value="Save the critical data in the Hidden Volume<br>(copy the .kdbx, PGP, SSH, <br>and Monero Seed files in it)&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-238" y="1136.5" width="238" height="44.5" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-47" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-44" target="_OaKirOE1PgL4AIJNBQS-46">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-48" value="VC Decoy Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="116.5" y="1089.25" width="151" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-49" value="3) open the&nbsp;"diary" VC decoy volume <br>to write a diary text file in it.<br><b>(as otherwise you can't justify why<br>the overall VC volume changed)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="267.5" y="1027" width="216" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-50" value="Write a diary text file&nbsp;<br>2025-04-06.txt" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="73.5" y="1141.25" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-51" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-48" target="_OaKirOE1PgL4AIJNBQS-50">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-52" value="(Context: all steps are to be done from the Sensitive VM)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-121" y="881" width="319" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-53" value="2) close the hidden volume" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-201.5" y="1182.25" width="161" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-54" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-55" target="_OaKirOE1PgL4AIJNBQS-68">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="190.5" y="1251.25" />
|
||||||
|
<mxPoint x="60.5" y="1251.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-55" value="4) close the decoy volume.<br><b>(<u>ONLY NOW</u> the "diary" VC volume is ready<br>&nbsp;to be backed up elsewhere)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="59.5" y="1182.25" width="265" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-56" value="5) back up the veracrypt <br>volume in a remote VPS <br>that you rent anonymously." style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-105" y="1258.39" width="161" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-57" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="221" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-58" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="383.5" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-59" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="302" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-60" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-57">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="325.0238095238092" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-61" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-59">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="324.9999999999991" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-62" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-58">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="325.0238095238092" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-63" value="Usb keys to be scattered in places that you control:<br>(<u>ex:</u> in your car, in your bag, in your garden, etc)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="180.5" y="1479.75" width="289" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-64" value="Cheap Remote VPS<br>(rented anonymously)" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="20.5" y="1455.75" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-65" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-66" target="_OaKirOE1PgL4AIJNBQS-64">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-66" value="SSH port (accessible<br>via .onion only)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-18" y="1396.62" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-67" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-68">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="60.5" y="1392.654761904762" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-68" value="Torsocks rsync diary backup-srv:/root/diary" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-59.5" y="1325.0100000000002" width="240" height="29.74" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-69" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-55" target="_OaKirOE1PgL4AIJNBQS-59">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="503.5" y="1061.25" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="190" y="1251" />
|
||||||
|
<mxPoint x="325" y="1251" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-70" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-53" target="_OaKirOE1PgL4AIJNBQS-48">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="38.5" y="1195.25" />
|
||||||
|
<mxPoint x="38.5" y="1064.25" />
|
||||||
|
<mxPoint x="188.5" y="1064.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-71" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.485;entryY=-0.023;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-42" target="_OaKirOE1PgL4AIJNBQS-44">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-121.5" y="1057.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-72" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.061;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-42" target="_OaKirOE1PgL4AIJNBQS-48">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="188.5" y="1057.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-73" value="6) Backup the VC volume<br>in USB keys to be scattered in<br>physical locations that you can access<div>easily and that can hide usb keys</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="327" y="1250.8900000000003" width="221" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-74" value="<u>End result:</u> your critical sensitive data is safely backed up in 4 different places.<br>Your computer, the VPS and all 3 usb keys would all need to be destroyed<br>to effectively destroy your critical data" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="15" y="1590" width="432" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-75" value="" style="group;rounded=0;strokeColor=#6F0000;strokeWidth=6;fillColor=#a20025;fontColor=#ffffff;" vertex="1" connectable="0" parent="1">
|
||||||
|
<mxGeometry x="-1386" y="881" width="292" height="244" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-26" value=""diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="1.5" y="219" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-27" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-75" source="_OaKirOE1PgL4AIJNBQS-28">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="221" y="161.36842105263167" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-28" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="151.5" y="188" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-29" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys,<br>Monero Wallet Seed)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="151.5" y="97" width="139" height="61" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-30" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="1.5" y="105" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-31" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-75" source="_OaKirOE1PgL4AIJNBQS-26" target="_OaKirOE1PgL4AIJNBQS-30">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="70.5" y="202" />
|
||||||
|
<mxPoint x="70.5" y="202" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-32" value="Important: for every hidden volume change,<div>the decoy volume also needs to change.<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-78" value="" style="group;strokeColor=#6F0000;strokeWidth=6;perimeterSpacing=7;rounded=0;glass=0;fillColor=#a20025;fontColor=#ffffff;" vertex="1" connectable="0" parent="1">
|
||||||
|
<mxGeometry x="-1498" y="1175" width="340" height="165.8800000000001" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-76" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-78" source="_OaKirOE1PgL4AIJNBQS-3">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="170" y="108.66666666666674" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-3" value="Non-System<br>Harddrive (HDD) (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#76608a;fontColor=#ffffff;strokeColor=#432D57;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry y="129.8800000000001" width="340" height="36" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-21" value="Veracrypt Decoy (outer) Volume (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="1" y="81" width="338" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-22" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="153" y="45" width="187" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="183" y="2" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="1" width="144" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-80" value="<font color="#00f038">Cheap Remote VPS<br>(rented anonymously)</font>" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png;labelPosition=center;verticalLabelPosition=top;align=center;verticalAlign=bottom;textShadow=0;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1435" y="725.0000000000001" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-84" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#a20025;strokeColor=#6F0000;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1293.5" y="732" width="29.44" height="64" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-85" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#008a00;strokeColor=#005700;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1131" y="732" width="29.9" height="65" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-86" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#a20025;strokeColor=#6F0000;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1212.5" y="732" width="29.9" height="65" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-87" value="Usb keys scattered in places that you control:<br>(<u>ex:</u>&nbsp;<font color="#ff0000">in your car, in your bag, </font><font color="#00cc00">in your garden</font>, etc)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1326" y="691" width="273" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-89" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-80">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="839" />
|
||||||
|
<mxPoint x="-1395" y="839" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-90" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-84">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="839" />
|
||||||
|
<mxPoint x="-1279" y="839" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-91" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-86">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-92" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-85">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-93" value="Weekly Critical Sensitive<br>Data Backup Procedure" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1390" y="840" width="149" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-94" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-40.5" y="907" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-95" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=-0.11;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-94" target="_OaKirOE1PgL4AIJNBQS-42">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
</root>
|
||||||
|
</mxGraphModel>
|
||||||
|
</diagram>
|
||||||
|
</mxfile>
|
||||||
|
|
@ -1,12 +1,9 @@
|
||||||
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
||||||
<diagram name="Page-1" id="2ba70t6hbZqJ66wm7CcH">
|
<diagram name="Page-1" id="2ba70t6hbZqJ66wm7CcH">
|
||||||
<mxGraphModel dx="6104" dy="3119" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
<mxGraphModel dx="3922" dy="2008" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
||||||
<root>
|
<root>
|
||||||
<mxCell id="0" />
|
<mxCell id="0" />
|
||||||
<mxCell id="1" parent="0" />
|
<mxCell id="1" parent="0" />
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-29" value="Decoy files<br>(non-sensitive)<br>(if more than 250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1172" width="190" height="70" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="hzmDhe05OMtC0nZ9Vmrp-14" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" parent="1" vertex="1">
|
<mxCell id="hzmDhe05OMtC0nZ9Vmrp-14" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" parent="1" vertex="1">
|
||||||
<mxGeometry x="-2381" y="1554.63" width="155" height="180.25" as="geometry" />
|
<mxGeometry x="-2381" y="1554.63" width="155" height="180.25" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
|
@ -1613,30 +1610,226 @@
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-23" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-23" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1348" y="1217" width="187" height="25" as="geometry" />
|
<mxGeometry x="-1348" y="1217" width="187" height="25" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-3" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="2zJCXS04gtRcMaTIKBYA-24">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1239" y="1125" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="1150" />
|
||||||
|
<mxPoint x="-1239" y="1150" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1318" y="1174" width="157" height="37" as="geometry" />
|
<mxGeometry x="-1318" y="1174" width="157" height="37" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1500" y="1172" width="144" height="70" as="geometry" />
|
<mxGeometry x="-1500" y="1172" width="144" height="70" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-25" value="Non-System<br>Harddrive (HDD) (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#76608a;fontColor=#ffffff;strokeColor=#432D57;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1288" width="339" height="36" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-26" value="Veracrypt Decoy (outer) Volume (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1253" width="338" height="25" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-27" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-970" y="1217" width="187" height="25" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-28" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-940" y="1174" width="157" height="37" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-30" value="If the decoy files go beyond 250Gb in a 500Gb harddrive,<div>you're going to start to overwrite the hidden partition.</div><div><br></div><div>Therefore make sure the total disk space</div><div>usage in the decoy partition remains less than 250Gb !!!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1113.5" y="1084.37" width="322" height="84" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-31" value="" style="shape=image;verticalLabelPosition=bottom;verticalAlign=top;imageAspect=0;aspect=fixed;image=data:image/png,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;" parent="1" vertex="1">
|
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-31" value="" style="shape=image;verticalLabelPosition=bottom;verticalAlign=top;imageAspect=0;aspect=fixed;image=data:image/png,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;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-2215.5" y="1083" width="50" height="50" as="geometry" />
|
<mxGeometry x="-2215.5" y="1083" width="50" height="50" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-1" value="Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1387.5" y="1097" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-5" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-2">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1168" y="1039.3684210526317" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-2" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1237.5" y="1066" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-4" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1237.5" y="983" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-6" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1387.5" y="983" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-7" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-1" target="oIyLGaqjc_EWpYft89FI-6">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1318.5" y="1080" />
|
||||||
|
<mxPoint x="-1318.5" y="1080" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-8" value="Important: for every hidden volume change,<div>the decoy volume also needs to change.<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1389" y="878" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-11" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1412.5" y="746.7500000000001" width="45" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-12" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-13">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-615" y="1161.63" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-616" y="1186.63" />
|
||||||
|
<mxPoint x="-615" y="1186.63" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-13" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-694" y="1210.63" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-14" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763.5" y="1133.63" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-15" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-16">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-544" y="1075.9984210526318" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-16" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-613.5" y="1102.63" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-17" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-613.5" y="1019.63" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-18" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763.5" y="1019.63" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-19" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-14" target="oIyLGaqjc_EWpYft89FI-18">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-694.5" y="1116.63" />
|
||||||
|
<mxPoint x="-694.5" y="1116.63" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-20" value="Important: for every hidden volume change,<div>the decoy volume also needs to change!<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-765" y="914.63" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-23" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-278" y="914.5" width="454" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-24" value="Sensitive Critical Data backup procedure:" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-404.5" y="795.75" width="229" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-26" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-278" y="991" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-29" value="1) Open the "diary" VC hidden volume <br>to save the critical data in it" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-298" y="863" width="221" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-30" value="Save the critical data in the Hidden Volume<br>(copy the .kdbx, PGP and SSH files in it)&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-327" y="1043" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-31" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-26" target="oIyLGaqjc_EWpYft89FI-30">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-34" value="VC Decoy Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="27" y="991" width="151" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-36" value="3) open the&nbsp;"diary" VC decoy volume <br>to write a diary text file in it.<br><b>(as otherwise you can't justify why<br>the VC volume changed)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="173.5" y="946" width="216" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-37" value="Write a diary text file&nbsp;<br>2025-04-06.txt" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-16" y="1043" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-38" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-34" target="oIyLGaqjc_EWpYft89FI-37">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-39" value="(Context: all steps are to be done from the Sensitive VM)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-376" y="820.75" width="319" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-40" value="2) close the hidden volume" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-291" y="1084" width="161" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-67" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-42" target="oIyLGaqjc_EWpYft89FI-60">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="101" y="1153" />
|
||||||
|
<mxPoint x="-29" y="1153" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-42" value="4) close the decoy volume.<br><b>(<u>ONLY NOW</u> the "diary" VC volume is ready<br>&nbsp;to be backed up elsewhere)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-30.5" y="1075.63" width="265" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-44" value="5) back up the veracrypt volume in a<br>remote VPS that you rent anonymously." style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-265" y="1174.63" width="229" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-45" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="173.5" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-46" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="336" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-47" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="254.5" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-48" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-45">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.5238095238092" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-49" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-47">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.4999999999991" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-50" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-46">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.5238095238092" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-51" value="Usb keys to be scattered in places that you control:<br>in your car, in your bag, in your garden, etc" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="133" y="1385.62" width="289" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-55" value="Cheap Remote VPS" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-69" y="1362.63" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-59" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-56" target="oIyLGaqjc_EWpYft89FI-55">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-56" value="SSH port (accessible<br>via .onion only)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-107.5" y="1298.37" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-62" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-60">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-29" y="1294.404761904762" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-60" value="Torsocks rsync diary backup-srv:/root/diary" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-149" y="1226.7600000000002" width="240" height="29.74" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-65" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-42" target="oIyLGaqjc_EWpYft89FI-47">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="414" y="963" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="102" y="1153" />
|
||||||
|
<mxPoint x="277" y="1153" />
|
||||||
|
<mxPoint x="277" y="1255" />
|
||||||
|
<mxPoint x="278" y="1255" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-68" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-40" target="oIyLGaqjc_EWpYft89FI-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-51" y="1097" />
|
||||||
|
<mxPoint x="-51" y="966" />
|
||||||
|
<mxPoint x="99" y="966" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-69" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.485;entryY=-0.023;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-23" target="oIyLGaqjc_EWpYft89FI-26">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-211" y="959" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-70" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.061;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-23" target="oIyLGaqjc_EWpYft89FI-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="99" y="959" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-71" value="6) Backup the VC volume<br>in USB keys to be scattered in<br>physical locations that you control" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="281" y="1174.63" width="197" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
</root>
|
</root>
|
||||||
</mxGraphModel>
|
</mxGraphModel>
|
||||||
</diagram>
|
</diagram>
|
||||||
|
|
|
||||||
363
graphs/sensitive critical data backups.drawio
Normal file
363
graphs/sensitive critical data backups.drawio
Normal file
|
|
@ -0,0 +1,363 @@
|
||||||
|
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
||||||
|
<diagram name="Page-1" id="B3SBa8r9e_4KmgIA6ZR_">
|
||||||
|
<mxGraphModel dx="4174" dy="754" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
||||||
|
<root>
|
||||||
|
<mxCell id="0" />
|
||||||
|
<mxCell id="1" parent="0" />
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-1" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1598" y="1480.5" width="155" height="180.25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-2" value="Laptop (DDR4/5 RAM)" style="image;html=1;image=img/lib/clip_art/computers/MacBook_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1366.5" y="1503.5" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-77" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-4">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1327.5" y="1341.6666666666667" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-4" value="libvirtd QEMU hypervisor" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#e3c800;fontColor=#000000;strokeColor=#B09500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1408" y="1363" width="161" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-5" value="System Logs (/var/log)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1483.25" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-6" value="Kernel Logs" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1510.75" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-7" value="Kicksecure LIVE Host OS<br>(grub-live + ram-wipe)<br>From the system drive" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1407" y="1408" width="161" height="66" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-8" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0.978;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-2" target="_OaKirOE1PgL4AIJNBQS-7">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-9" value="Command History<br>~/.bash_history<br>&nbsp;~/.zsh_history" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1569.25" width="140" height="44" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-10" value="System Harddrive (HDD)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1249" y="1503.5" width="161" height="40" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-11" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.543;entryY=0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-10">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1162" y="1450" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-12" value="not writing any potential<br>forensic evidence into<br>&nbsp;the system harddrive<br>meaning we can create<br>the hidden volume safely" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="_OaKirOE1PgL4AIJNBQS-11">
|
||||||
|
<mxGeometry x="0.3975" relative="1" as="geometry">
|
||||||
|
<mxPoint x="-5" y="-13" as="offset" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-13" value="Non-standard Logs" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1540.25" width="140" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-14" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1.009;entryY=0.411;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-1">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1425" y="1456" />
|
||||||
|
<mxPoint x="-1425" y="1555" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-15" value="Rest of the memory <br>contents" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1590" y="1616.5" width="140" height="28.5" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-16" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.509;entryY=1.013;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-4">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-18" value="script reboot.sh&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6d8764;fontColor=#ffffff;strokeColor=#3A5431;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1576" y="1381.75" width="133" height="28" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-19" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1.003;entryY=0.545;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-7" target="_OaKirOE1PgL4AIJNBQS-18">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1425" y="1456" />
|
||||||
|
<mxPoint x="-1425" y="1397" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-23" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-24">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1236" y="1128" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1237" y="1153" />
|
||||||
|
<mxPoint x="-1236" y="1153" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-33" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-613" y="1531" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-614" y="1556" />
|
||||||
|
<mxPoint x="-613" y="1556" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-34" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-692" y="1580" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-35" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-761.5" y="1503" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-36" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-37">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-542" y="1445.3684210526317" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-37" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-611.5" y="1472" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-38" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys,<br>Monero Wallet Seed)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-611.5" y="1380" width="139" height="62" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-39" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-761.5" y="1389" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-40" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-35" target="_OaKirOE1PgL4AIJNBQS-39">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-692.5" y="1486" />
|
||||||
|
<mxPoint x="-692.5" y="1486" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-41" value="Important: for every hidden volume change,<div>the decoy volume also needs to change!<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763" y="1284" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-42" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-188.5" y="1012.75" width="454" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-43" value="<font style="font-size: 17px;">Sensitive Critical Data backup procedure:</font>" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-295" y="848" width="343" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-44" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-188.5" y="1089.25" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-45" value="1) Open the "diary" VC hidden volume <br>to save the critical data in it" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-208.5" y="961.25" width="221" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-46" value="Save the critical data in the Hidden Volume<br>(copy the .kdbx, PGP, SSH, <br>and Monero Seed files in it)&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-238" y="1136.5" width="238" height="44.5" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-47" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-44" target="_OaKirOE1PgL4AIJNBQS-46">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-48" value="VC Decoy Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="116.5" y="1089.25" width="151" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-49" value="3) open the&nbsp;"diary" VC decoy volume <br>to write a diary text file in it.<br><b>(as otherwise you can't justify why<br>the overall VC volume changed)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="267.5" y="1027" width="216" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-50" value="Write a diary text file&nbsp;<br>2025-04-06.txt" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="73.5" y="1141.25" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-51" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-48" target="_OaKirOE1PgL4AIJNBQS-50">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-52" value="(Context: all steps are to be done from the Sensitive VM)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-121" y="881" width="319" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-53" value="2) close the hidden volume" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-201.5" y="1182.25" width="161" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-54" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-55" target="_OaKirOE1PgL4AIJNBQS-68">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="190.5" y="1251.25" />
|
||||||
|
<mxPoint x="60.5" y="1251.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-55" value="4) close the decoy volume.<br><b>(<u>ONLY NOW</u> the "diary" VC volume is ready<br>&nbsp;to be backed up elsewhere)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="59.5" y="1182.25" width="265" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-56" value="5) back up the veracrypt <br>volume in a remote VPS <br>that you rent anonymously." style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-105" y="1258.39" width="161" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-57" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="221" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-58" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="383.5" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-59" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="302" y="1377.75" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-60" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-57">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="325.0238095238092" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-61" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-59">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="324.9999999999991" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-62" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="_OaKirOE1PgL4AIJNBQS-58">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="325.0238095238092" y="1332.38" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-63" value="Usb keys to be scattered in places that you control:<br>(<u>ex:</u> in your car, in your bag, in your garden, etc)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="180.5" y="1479.75" width="289" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-64" value="Cheap Remote VPS<br>(rented anonymously)" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="20.5" y="1455.75" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-65" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-66" target="_OaKirOE1PgL4AIJNBQS-64">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-66" value="SSH port (accessible<br>via .onion only)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-18" y="1396.62" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-67" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-68">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="60.5" y="1392.654761904762" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-68" value="Torsocks rsync diary backup-srv:/root/diary" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-59.5" y="1325.0100000000002" width="240" height="29.74" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-69" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-55" target="_OaKirOE1PgL4AIJNBQS-59">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="503.5" y="1061.25" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="190" y="1251" />
|
||||||
|
<mxPoint x="325" y="1251" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-70" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-53" target="_OaKirOE1PgL4AIJNBQS-48">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="38.5" y="1195.25" />
|
||||||
|
<mxPoint x="38.5" y="1064.25" />
|
||||||
|
<mxPoint x="188.5" y="1064.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-71" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.485;entryY=-0.023;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-42" target="_OaKirOE1PgL4AIJNBQS-44">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-121.5" y="1057.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-72" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.061;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-42" target="_OaKirOE1PgL4AIJNBQS-48">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="188.5" y="1057.25" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-73" value="6) Backup the VC volume<br>in USB keys to be scattered in<br>physical locations that you can access<div>easily and that can hide usb keys</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="327" y="1250.8900000000003" width="221" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-74" value="<u>End result:</u> your critical sensitive data is safely backed up in 4 different places.<br>Your computer, the VPS and all 3 usb keys would all need to be destroyed<br>to effectively destroy your critical data" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="15" y="1590" width="432" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-75" value="" style="group;rounded=0;strokeColor=#6F0000;strokeWidth=6;fillColor=#a20025;fontColor=#ffffff;" vertex="1" connectable="0" parent="1">
|
||||||
|
<mxGeometry x="-1386" y="881" width="292" height="244" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-26" value=""diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="1.5" y="219" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-27" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-75" source="_OaKirOE1PgL4AIJNBQS-28">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="221" y="161.36842105263167" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-28" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="151.5" y="188" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-29" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys,<br>Monero Wallet Seed)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="151.5" y="97" width="139" height="61" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-30" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry x="1.5" y="105" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-31" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-75" source="_OaKirOE1PgL4AIJNBQS-26" target="_OaKirOE1PgL4AIJNBQS-30">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="70.5" y="202" />
|
||||||
|
<mxPoint x="70.5" y="202" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-32" value="Important: for every hidden volume change,<div>the decoy volume also needs to change.<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-75">
|
||||||
|
<mxGeometry width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-78" value="" style="group;strokeColor=#6F0000;strokeWidth=6;perimeterSpacing=7;rounded=0;glass=0;fillColor=#a20025;fontColor=#ffffff;" vertex="1" connectable="0" parent="1">
|
||||||
|
<mxGeometry x="-1498" y="1175" width="340" height="165.8800000000001" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-76" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="_OaKirOE1PgL4AIJNBQS-78" source="_OaKirOE1PgL4AIJNBQS-3">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="170" y="108.66666666666674" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-3" value="Non-System<br>Harddrive (HDD) (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#76608a;fontColor=#ffffff;strokeColor=#432D57;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry y="129.8800000000001" width="340" height="36" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-21" value="Veracrypt Decoy (outer) Volume (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="1" y="81" width="338" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-22" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="153" y="45" width="187" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="183" y="2" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="_OaKirOE1PgL4AIJNBQS-78">
|
||||||
|
<mxGeometry x="1" width="144" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-80" value="<font color="#00f038">Cheap Remote VPS<br>(rented anonymously)</font>" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png;labelPosition=center;verticalLabelPosition=top;align=center;verticalAlign=bottom;textShadow=0;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1435" y="725.0000000000001" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-84" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#a20025;strokeColor=#6F0000;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1293.5" y="732" width="29.44" height="64" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-85" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#008a00;strokeColor=#005700;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1131" y="732" width="29.9" height="65" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-86" value="" style="fontColor=#ffffff;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#a20025;strokeColor=#6F0000;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1212.5" y="732" width="29.9" height="65" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-87" value="Usb keys scattered in places that you control:<br>(<u>ex:</u>&nbsp;<font color="#ff0000">in your car, in your bag, </font><font color="#00cc00">in your garden</font>, etc)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1326" y="691" width="273" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-89" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-80">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="839" />
|
||||||
|
<mxPoint x="-1395" y="839" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-90" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-84">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="839" />
|
||||||
|
<mxPoint x="-1279" y="839" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-91" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-86">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-92" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-32" target="_OaKirOE1PgL4AIJNBQS-85">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-93" value="Weekly Critical Sensitive<br>Data Backup Procedure" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1390" y="840" width="149" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-94" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-40.5" y="907" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="_OaKirOE1PgL4AIJNBQS-95" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=-0.11;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="_OaKirOE1PgL4AIJNBQS-94" target="_OaKirOE1PgL4AIJNBQS-42">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
</root>
|
||||||
|
</mxGraphModel>
|
||||||
|
</diagram>
|
||||||
|
</mxfile>
|
||||||
|
|
@ -1,12 +1,9 @@
|
||||||
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
<mxfile host="Electron" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/25.0.2 Chrome/128.0.6613.186 Electron/32.2.5 Safari/537.36" version="25.0.2">
|
||||||
<diagram name="Page-1" id="2ba70t6hbZqJ66wm7CcH">
|
<diagram name="Page-1" id="2ba70t6hbZqJ66wm7CcH">
|
||||||
<mxGraphModel dx="6104" dy="3119" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
<mxGraphModel dx="3922" dy="2008" grid="0" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="0" pageScale="1" pageWidth="850" pageHeight="1100" math="0" shadow="0">
|
||||||
<root>
|
<root>
|
||||||
<mxCell id="0" />
|
<mxCell id="0" />
|
||||||
<mxCell id="1" parent="0" />
|
<mxCell id="1" parent="0" />
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-29" value="Decoy files<br>(non-sensitive)<br>(if more than 250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1172" width="190" height="70" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="hzmDhe05OMtC0nZ9Vmrp-14" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" parent="1" vertex="1">
|
<mxCell id="hzmDhe05OMtC0nZ9Vmrp-14" value="Only the RAM contents<br>can contain forensic evidence<br>(which can all be erased <br>easily via rebooting)" style="verticalLabelPosition=top;verticalAlign=bottom;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#F7F7F7;strokeColor=#C73500;fontStyle=1" parent="1" vertex="1">
|
||||||
<mxGeometry x="-2381" y="1554.63" width="155" height="180.25" as="geometry" />
|
<mxGeometry x="-2381" y="1554.63" width="155" height="180.25" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
|
@ -1613,30 +1610,226 @@
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-23" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-23" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1348" y="1217" width="187" height="25" as="geometry" />
|
<mxGeometry x="-1348" y="1217" width="187" height="25" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-3" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="2zJCXS04gtRcMaTIKBYA-24">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1239" y="1125" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1240" y="1150" />
|
||||||
|
<mxPoint x="-1239" y="1150" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-24" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1318" y="1174" width="157" height="37" as="geometry" />
|
<mxGeometry x="-1318" y="1174" width="157" height="37" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
<mxCell id="2zJCXS04gtRcMaTIKBYA-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
<mxCell id="2zJCXS04gtRcMaTIKBYA-25" value="Decoy files<br>(non-sensitive)<br>(less than 200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-1500" y="1172" width="144" height="70" as="geometry" />
|
<mxGeometry x="-1500" y="1172" width="144" height="70" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-25" value="Non-System<br>Harddrive (HDD) (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#76608a;fontColor=#ffffff;strokeColor=#432D57;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1288" width="339" height="36" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-26" value="Veracrypt Decoy (outer) Volume (500Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1122" y="1253" width="338" height="25" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-27" value="Veracrypt Hidden Volume (250Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-970" y="1217" width="187" height="25" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-28" value="Sensitive Whonix<br>QEMU VMs (200Gb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-940" y="1174" width="157" height="37" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-30" value="If the decoy files go beyond 250Gb in a 500Gb harddrive,<div>you're going to start to overwrite the hidden partition.</div><div><br></div><div>Therefore make sure the total disk space</div><div>usage in the decoy partition remains less than 250Gb !!!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" parent="1" vertex="1">
|
|
||||||
<mxGeometry x="-1113.5" y="1084.37" width="322" height="84" as="geometry" />
|
|
||||||
</mxCell>
|
|
||||||
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-31" value="" style="shape=image;verticalLabelPosition=bottom;verticalAlign=top;imageAspect=0;aspect=fixed;image=data:image/png,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;" parent="1" vertex="1">
|
<mxCell id="QBJzXO1PlPJi1QOZ0zM4-31" value="" style="shape=image;verticalLabelPosition=bottom;verticalAlign=top;imageAspect=0;aspect=fixed;image=data:image/png,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;" parent="1" vertex="1">
|
||||||
<mxGeometry x="-2215.5" y="1083" width="50" height="50" as="geometry" />
|
<mxGeometry x="-2215.5" y="1083" width="50" height="50" as="geometry" />
|
||||||
</mxCell>
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-1" value="Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1387.5" y="1097" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-5" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-2">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-1168" y="1039.3684210526317" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-2" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1237.5" y="1066" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-4" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1237.5" y="983" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-6" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1387.5" y="983" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-7" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-1" target="oIyLGaqjc_EWpYft89FI-6">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-1318.5" y="1080" />
|
||||||
|
<mxPoint x="-1318.5" y="1080" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-8" value="Important: for every hidden volume change,<div>the decoy volume also needs to change.<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1389" y="878" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-11" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-1412.5" y="746.7500000000001" width="45" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-12" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-13">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-615" y="1161.63" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-616" y="1186.63" />
|
||||||
|
<mxPoint x="-615" y="1186.63" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-13" value="Sensitive VM <br>(Whonix Workstation)<br>QEMU VM" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-694" y="1210.63" width="157" height="49" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-14" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763.5" y="1133.63" width="289" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-15" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-16">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-544" y="1075.9984210526318" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-16" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-613.5" y="1102.63" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-17" value="Critical Data<br>(Keepass .kdbx file,<br>PGP keys, SSH keys)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-613.5" y="1019.63" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-18" value="Decoy Data<br>(Weekly diary)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-763.5" y="1019.63" width="139" height="53" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-19" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.496;entryY=1.007;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-14" target="oIyLGaqjc_EWpYft89FI-18">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-694.5" y="1116.63" />
|
||||||
|
<mxPoint x="-694.5" y="1116.63" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-20" value="Important: for every hidden volume change,<div>the decoy volume also needs to change!<br><br>Because if the decoy volume contents don't change<br>while the overall veracrypt volume changes,&nbsp;<br>that proves the existance of a VC hidden volume!</div>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-765" y="914.63" width="292" height="98" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-23" value=""Diary" Veracrypt Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-278" y="914.5" width="454" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-24" value="Sensitive Critical Data backup procedure:" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-404.5" y="795.75" width="229" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-26" value="VC Hidden Volume (5Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#008a00;fontColor=#ffffff;strokeColor=#005700;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-278" y="991" width="139" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-29" value="1) Open the "diary" VC hidden volume <br>to save the critical data in it" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-298" y="863" width="221" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-30" value="Save the critical data in the Hidden Volume<br>(copy the .kdbx, PGP and SSH files in it)&nbsp;" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#a20025;fontColor=#ffffff;strokeColor=#6F0000;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-327" y="1043" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-31" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-26" target="oIyLGaqjc_EWpYft89FI-30">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-34" value="VC Decoy Volume (10Mb)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#fa6800;fontColor=#000000;strokeColor=#C73500;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="27" y="991" width="151" height="25" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-36" value="3) open the&nbsp;"diary" VC decoy volume <br>to write a diary text file in it.<br><b>(as otherwise you can't justify why<br>the VC volume changed)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="173.5" y="946" width="216" height="70" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-37" value="Write a diary text file&nbsp;<br>2025-04-06.txt" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-16" y="1043" width="237" height="35" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-38" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.499;entryY=0.015;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-34" target="oIyLGaqjc_EWpYft89FI-37">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-39" value="(Context: all steps are to be done from the Sensitive VM)" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-376" y="820.75" width="319" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-40" value="2) close the hidden volume" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-291" y="1084" width="161" height="26" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-67" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-42" target="oIyLGaqjc_EWpYft89FI-60">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="101" y="1153" />
|
||||||
|
<mxPoint x="-29" y="1153" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-42" value="4) close the decoy volume.<br><b>(<u>ONLY NOW</u> the "diary" VC volume is ready<br>&nbsp;to be backed up elsewhere)</b>" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-30.5" y="1075.63" width="265" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-44" value="5) back up the veracrypt volume in a<br>remote VPS that you rent anonymously." style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-265" y="1174.63" width="229" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-45" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="173.5" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-46" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="336" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-47" value="" style="fontColor=#0066CC;verticalAlign=top;verticalLabelPosition=bottom;labelPosition=center;align=center;html=1;outlineConnect=0;fillColor=#CCCCCC;strokeColor=#6881B3;gradientColor=none;gradientDirection=north;strokeWidth=2;shape=mxgraph.networks.usb_stick;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="254.5" y="1283.62" width="46" height="100" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-48" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-45">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.5238095238092" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-49" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-47">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.4999999999991" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-50" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" target="oIyLGaqjc_EWpYft89FI-46">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="277.5238095238092" y="1238.25" as="sourcePoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-51" value="Usb keys to be scattered in places that you control:<br>in your car, in your bag, in your garden, etc" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="133" y="1385.62" width="289" height="41" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-55" value="Cheap Remote VPS" style="image;html=1;image=img/lib/clip_art/computers/Server_128x128.png" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-69" y="1362.63" width="80" height="80" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-59" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-56" target="oIyLGaqjc_EWpYft89FI-55">
|
||||||
|
<mxGeometry relative="1" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-56" value="SSH port (accessible<br>via .onion only)" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-107.5" y="1298.37" width="157" height="37" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-62" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-60">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="-29" y="1294.404761904762" as="targetPoint" />
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-60" value="Torsocks rsync diary backup-srv:/root/diary" style="verticalLabelPosition=middle;verticalAlign=middle;html=1;shape=mxgraph.basic.rect;fillColor2=none;strokeWidth=1;size=20;indent=5;labelPosition=center;align=center;fillColor=#6a00ff;fontColor=#ffffff;strokeColor=#3700CC;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="-149" y="1226.7600000000002" width="240" height="29.74" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-65" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-42" target="oIyLGaqjc_EWpYft89FI-47">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<mxPoint x="414" y="963" as="targetPoint" />
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="102" y="1153" />
|
||||||
|
<mxPoint x="277" y="1153" />
|
||||||
|
<mxPoint x="277" y="1255" />
|
||||||
|
<mxPoint x="278" y="1255" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-68" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.042;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-40" target="oIyLGaqjc_EWpYft89FI-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-51" y="1097" />
|
||||||
|
<mxPoint x="-51" y="966" />
|
||||||
|
<mxPoint x="99" y="966" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-69" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.485;entryY=-0.023;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-23" target="oIyLGaqjc_EWpYft89FI-26">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="-211" y="959" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-70" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.474;entryY=-0.061;entryDx=0;entryDy=0;entryPerimeter=0;" edge="1" parent="1" source="oIyLGaqjc_EWpYft89FI-23" target="oIyLGaqjc_EWpYft89FI-34">
|
||||||
|
<mxGeometry relative="1" as="geometry">
|
||||||
|
<Array as="points">
|
||||||
|
<mxPoint x="99" y="959" />
|
||||||
|
</Array>
|
||||||
|
</mxGeometry>
|
||||||
|
</mxCell>
|
||||||
|
<mxCell id="oIyLGaqjc_EWpYft89FI-71" value="6) Backup the VC volume<br>in USB keys to be scattered in<br>physical locations that you control" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" vertex="1" parent="1">
|
||||||
|
<mxGeometry x="281" y="1158.63" width="197" height="55" as="geometry" />
|
||||||
|
</mxCell>
|
||||||
</root>
|
</root>
|
||||||
</mxGraphModel>
|
</mxGraphModel>
|
||||||
</diagram>
|
</diagram>
|
||||||
|
|
|
||||||
|
|
@ -138,7 +138,7 @@
|
||||||
<div class="col-lg-4">
|
<div class="col-lg-4">
|
||||||
<h4>Nihilism</h4>
|
<h4>Nihilism</h4>
|
||||||
<p>
|
<p>
|
||||||
Until there is Nothing left.</p></br></br><p>Creative Commons Zero: <a href="../../../../opsec/runtheblog/index.html">No Rights Reserved</a></br><img src="\CC0.png">
|
Until there is Nothing left.</p><p><a href="../../../../opsec/legal.html">Legal Disclaimer</a></p></br></br><p>Creative Commons Zero: <a href="../../../../opsec/runtheblog/index.html">No Rights Reserved</a></br><img src="\CC0.png">
|
||||||
|
|
||||||
</p>
|
</p>
|
||||||
</div><!-- /col-lg-4 -->
|
</div><!-- /col-lg-4 -->
|
||||||
|
|
|
||||||
|
|
@ -313,8 +313,8 @@
|
||||||
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/92">✅</a><a href="tailsqemuvm/index.html"> Tails OS for Easy Temporary Sensitive Use</a><img src="logos/tails.png" class="logo"></li>
|
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/92">✅</a><a href="tailsqemuvm/index.html"> Tails OS for Easy Temporary Sensitive Use</a><img src="logos/tails.png" class="logo"></li>
|
||||||
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/160">✅</a><a href="livemode/index.html"> Using the Host-OS in live-mode to enable Sensitive Use</a><img src="logos/kicksecure.png" class="logo"><img src="logos/poweroff.png" class="logo"></li>
|
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/160">✅</a><a href="livemode/index.html"> Using the Host-OS in live-mode to enable Sensitive Use</a><img src="logos/kicksecure.png" class="logo"><img src="logos/poweroff.png" class="logo"></li>
|
||||||
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/255">✅</a><a href="veracrypt/index.html"> The main source of Plausible Deniability: Deniable Encryption</a><img src="logos/veracrypt.png" class="logo"></li>
|
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/255">✅</a><a href="veracrypt/index.html"> The main source of Plausible Deniability: Deniable Encryption</a><img src="logos/veracrypt.png" class="logo"></li>
|
||||||
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/256">✅</a><a href="sensitivevm/index.html"> Sensitive use VMs Setup (Whonix VMs in a Veracrypt Hidden Volume)⭐</a><img src="logos/poweroff.png" class="logo"><img src="logos/veracrypt.png" class="logo"><img src="logos/whonix.png" class="logo"></li>
|
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/256">✅</a><a href="sensitivevm/index.html"> Sensitive VMs Setup (Whonix VMs in a Veracrypt Hidden Volume)⭐</a><img src="logos/poweroff.png" class="logo"><img src="logos/veracrypt.png" class="logo"><img src="logos/whonix.png" class="logo"></li>
|
||||||
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/130">🚧</a><a href="plausiblydeniabledataprotection/index.html"> Plausibly Deniable Critical Data Backups</a><img src="logos/veracrypt.png" class="logo"></li>
|
<li><a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/130">✅</a><a href="plausiblydeniabledataprotection/index.html"> Sensitive Critical Data Backup Procedure</a><img src="logos/veracrypt.png" class="logo"></li>
|
||||||
</ol></br>
|
</ol></br>
|
||||||
<p>💻 Steganography - Hiding secrets in plain sight</p>
|
<p>💻 Steganography - Hiding secrets in plain sight</p>
|
||||||
<ol>
|
<ol>
|
||||||
|
|
|
||||||
|
|
@ -45,7 +45,7 @@
|
||||||
Across the entirety of the blog, in all articles that have been, and will ever be made, we ONLY advocate for the legal use of technologies - even when we are talking about Privacy-enhancing, or Anonymity-enabling, or Deniability-enabling technologies. We are NOT advocating for illegal use of the technology showcased in any article on the blog, as the goal of this blog is to remain strictly informative and educative.
|
Across the entirety of the blog, in all articles that have been, and will ever be made, we ONLY advocate for the legal use of technologies - even when we are talking about Privacy-enhancing, or Anonymity-enabling, or Deniability-enabling technologies. We are NOT advocating for illegal use of the technology showcased in any article on the blog, as the goal of this blog is to remain strictly informative and educative.
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
We decline any and all responsibility for any mis-use of any of the technology that we showcase throughout the blog. We also decline responsibility for any physical, digital and psychological damage caused by the mis-use of showcased technology, as the responsibility of such acts remains with the perpetrating third-party. By reading this blog, you permanently, irrevocably, and world-widely agree that the blog writers are in no way responsible for any illegal actions done by you or anyone that uses the technology showcased in blog articles.
|
We decline any and all responsibility for any mis-use of any of the technology that we showcase throughout the blog. We also decline any and all responsibility for any physical, digital and psychological damage caused by the mis-use of showcased technology, as the responsibility of such acts remains with the perpetrating third-party. <b>By reading this blog, you permanently, irrevocably, and world-widely agree that the blog writers are in no way responsible for any illegal actions done by you or anyone that uses the technology showcased in blog articles.</b>
|
||||||
</p>
|
</p>
|
||||||
|
|
||||||
</div>
|
</div>
|
||||||
|
|
|
||||||
BIN
opsec/plausiblydeniabledataprotection/30.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/30.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 272 KiB |
BIN
opsec/plausiblydeniabledataprotection/31.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/31.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 316 KiB |
BIN
opsec/plausiblydeniabledataprotection/32.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/32.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 123 KiB |
BIN
opsec/plausiblydeniabledataprotection/33.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/33.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 955 KiB |
BIN
opsec/plausiblydeniabledataprotection/34.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/34.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 238 KiB |
BIN
opsec/plausiblydeniabledataprotection/35.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/35.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 205 KiB |
BIN
opsec/plausiblydeniabledataprotection/36.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/36.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 330 KiB |
BIN
opsec/plausiblydeniabledataprotection/37.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/37.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 251 KiB |
BIN
opsec/plausiblydeniabledataprotection/38.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/38.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 504 KiB |
BIN
opsec/plausiblydeniabledataprotection/39.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/39.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 170 KiB |
BIN
opsec/plausiblydeniabledataprotection/40.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/40.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 552 KiB |
BIN
opsec/plausiblydeniabledataprotection/41.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/41.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 545 KiB |
BIN
opsec/plausiblydeniabledataprotection/42.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/42.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 906 KiB |
BIN
opsec/plausiblydeniabledataprotection/43.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/43.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 425 KiB |
BIN
opsec/plausiblydeniabledataprotection/44.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/44.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 1 MiB |
BIN
opsec/plausiblydeniabledataprotection/45.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/45.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 1.4 MiB |
BIN
opsec/plausiblydeniabledataprotection/46.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/46.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 600 KiB |
BIN
opsec/plausiblydeniabledataprotection/47.png
Normal file
BIN
opsec/plausiblydeniabledataprotection/47.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 246 KiB |
|
|
@ -8,7 +8,7 @@
|
||||||
<meta name="author" content="">
|
<meta name="author" content="">
|
||||||
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
||||||
|
|
||||||
<title>Plausibly Deniable Data Backups Setup</title>
|
<title>Sensitive Critical Data Backup Procedure</title>
|
||||||
|
|
||||||
<!-- Bootstrap core CSS -->
|
<!-- Bootstrap core CSS -->
|
||||||
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
||||||
|
|
@ -60,21 +60,13 @@
|
||||||
<div class="container">
|
<div class="container">
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="col-lg-8 col-lg-offset-2">
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2024-03-10</ba></p>
|
<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist - 2025 / 04 / 06</ba></p>
|
||||||
<h1>Plausibly Deniable Data Backups Setup</h1>
|
<h1>Sensitive Critical Data Backup Procedure </h1>
|
||||||
<img src="0.png" style="width:250px">
|
<img src="31.png" class="imgRz">
|
||||||
<p>In this tutorial we're going to look at how you can backup your critical data (Keepass accesses, pgp key, ssh key, etc) while still maintaining the plausible deniability. </p>
|
<p>In this tutorial we're going to cover how to backup the critical data that you would normally store inside of your <a href="../sensitivevm/index.html">Sensitive use VM</a>, in order to make sure that your critical data (meaning your keepass .kdbx file, your SSH keys, your PGP keys, your Monero seed files) can still be accessed and reused, even if the adversary were to seize and destroy your devices in multiple takedowns. </p>
|
||||||
</br><b>DISCLAIMER: we're using only harddrives (HDDs) here, because using SSDs are not a secure way to have Plausible Deniability, that is due to hidden Volumes being detectable on devices that utilize wear-leveling</b>
|
|
||||||
<pre><code class="nim">
|
|
||||||
source: https://anonymousplanet.org/guide.html#understanding-hdd-vs-ssd
|
|
||||||
|
|
||||||
regarding wear leveling:
|
|
||||||
"Also as mentioned earlier, disabling Trim will reduce the lifetime of your SSD drive and will significantly impact its performance over time (your laptop will become slower and slower over several months of use until it becomes almost unusable, you will then have to clean the drive and re-install everything). But you must do it to prevent data leaks that could allow forensics to defeat your plausible deniability. The only way around this at the moment is to have a laptop with a classic HDD drive instead."
|
|
||||||
|
|
||||||
</pre></code>
|
|
||||||
<p><img src="../logos/daturagit.png" style="width:100px"> <u>Sidenote:</u> Help us improve this tutorial by letting us know if there's anything missing or incorrect on this <a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/132">git issue</a> directly!</p>
|
|
||||||
|
|
||||||
|
|
||||||
|
<p><img src="../logos/daturagit.png" style="width:100px"> <u>Sidenote:</u> Help us improve this tutorial by letting us know if there's anything missing or incorrect on this <a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/260">git issue</a> directly!</p>
|
||||||
|
|
||||||
</div>
|
</div>
|
||||||
</div><!-- /row -->
|
</div><!-- /row -->
|
||||||
|
|
@ -86,54 +78,13 @@ regarding wear leveling:
|
||||||
<div class="container">
|
<div class="container">
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="col-lg-8 col-lg-offset-2">
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
<h2><b>Initial Setup </b></h2>
|
<h2><b>Why is this setup important ?</b></h2>
|
||||||
<p>Before starting, make sure that your Whonix VM you need to make sure the USB controller is set to USB 2:</p>
|
<p>As we have covered <a href="../sensitivevm/index.html">previously</a>, we need a specific setup in order to be able to maintain deniability regarding the sensitive activies that are conducted from inside the Sensitive VM. Due to the nature of those activities, you need to be ready for the worst, including having your main computer being seized and destroyed by the adversaries.</p>
|
||||||
<img src="21.png" class="imgRz">
|
|
||||||
|
|
||||||
<p>First install veracrypt in the plausibly deniable whonix VM (for more details on how to set that environment up in <a href="../anonymity/index.html">this</a> previous tutorial), go <a href="https://veracrypt.fr/en/Downloads.html">there</a> to download the latest .deb package:</p>
|
|
||||||
<pre><code class="nim">
|
|
||||||
wget https://launchpad.net/veracrypt/trunk/1.26.7/+download/veracrypt-1.26.7-Debian-12-amd64.deb
|
|
||||||
|
|
||||||
dpkg -i veracrypt-1.26.7-Debian-12-amd64.deb
|
|
||||||
apt install -f
|
|
||||||
dpkg -i veracrypt-1.26.7-Debian-12-amd64.deb
|
|
||||||
|
|
||||||
</code></pre>
|
|
||||||
<p>Once veracrypt is setup, we're going to create a small volume with a hidden partition, which will contain all of your critical data, and the decoy partition will contain a weekly diary.</p>
|
|
||||||
<p>So let's create the volume, we want to keep the size to be low so that it will contain only the critical information.</p>
|
|
||||||
|
|
||||||
<img src="1.png" class="imgRz">
|
|
||||||
<img src="2.png" class="imgRz">
|
|
||||||
<img src="3.png" class="imgRz">
|
|
||||||
<img src="4.png" class="imgRz">
|
|
||||||
<img src="5.png" class="imgRz">
|
|
||||||
<img src="6.png" class="imgRz">
|
|
||||||
<img src="7.png" class="imgRz">
|
|
||||||
<img src="8.png" class="imgRz">
|
|
||||||
<img src="9.png" class="imgRz">
|
|
||||||
<img src="10.png" class="imgRz">
|
|
||||||
<img src="11.png" class="imgRz">
|
|
||||||
<img src="12.png" class="imgRz">
|
|
||||||
|
|
||||||
<p>Note: It is important to make sure that the decoy partition is changed everytime the hidden partition is changed, because as it is detailed <a href="https://anonymousplanet.org/guide.html#online-backups">here</a> it is not advised to backup veracrypt drives online because cloud services almost always retain history of files, meaning if you give your decoy password to all of the previous veracrypt file versions, it must justify that the entire container is different. <b>If the entire container is different while the decoy partition is the same, it means that an adversary can prove that there is a hidden partition.</b> Hence there needs to be a procedure as to how you backup your veracrypt volume online.</p>
|
|
||||||
<pre><code class="nim">
|
|
||||||
Weekly procedure to backup your critical data:
|
|
||||||
-open the hidden volume of the veracrypt volume diary.vc
|
|
||||||
-backup all of your critical data (ssh config, ssh keys, pgp keys, keepass .kdbx files, etc.) (max size= 10Mb)
|
|
||||||
-close the hidden volume
|
|
||||||
-open the decoy volume of the veracrypt volume diary.vc
|
|
||||||
-recap your week in a small text file, name it with today's date. (don't reveal the presence of a hidden file in the text content)
|
|
||||||
-close the decoy volume
|
|
||||||
|
|
||||||
ONLY THEN the veracrypt volume is completed, and can be backed up somewhere else:
|
|
||||||
-copy it to your mainpc, laptop, homeserver and phone
|
|
||||||
-copy it to a usb key, which is to be hidden somewhere
|
|
||||||
-hide it in plain sight using steghide inside of a very large image.
|
|
||||||
|
|
||||||
</code></pre>
|
|
||||||
<p>Now let's take a look at how this looks like once it's applied:</p>
|
|
||||||
|
|
||||||
|
|
||||||
|
<img src="../sensitivevm/0.png" class="imgRz">
|
||||||
|
<p>The problem here is that if the adversary were to seize and destroy your laptop, including the non-system harddrive, <b>you'd permanently loose your critical sensitive data (which includes your PGP key, your SSH key, your monero wallet seed phrase, and your accesses that were stored in your Keepass .KDBX file)</b></p>
|
||||||
|
<img src="30.png" class="imgRz">
|
||||||
|
<p> <b>Therefore we need a way to backup the critical data from your sensitive VM, while still maintaining deniability about what it contains if ever found by the adversary.</b></p>
|
||||||
</div>
|
</div>
|
||||||
</div><!-- /row -->
|
</div><!-- /row -->
|
||||||
</div> <!-- /container -->
|
</div> <!-- /container -->
|
||||||
|
|
@ -143,89 +94,147 @@ ONLY THEN the veracrypt volume is completed, and can be backed up somewhere else
|
||||||
<div class="container">
|
<div class="container">
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="col-lg-8 col-lg-offset-2">
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
<h2><b>Backup Procedure</b></h2> </br> </br>
|
<h2><b>What is the Critical Data backup procedure ?</b></h2> </br> </br>
|
||||||
<p>First we open the hidden volume:</p>
|
<p>From inside the Sensitive Use Whonix Workstation VM, we'll need a small veracrypt volume (which is 10Mb big) to simultaneously store a decoy volume containing some textfiles, and to store a small hidden volume (which is 5Mb big) which will contain your critical data:</p>
|
||||||
<img src="13.png" class="imgRz">
|
<img src="32.png" class="imgRz">
|
||||||
<img src="14.png" class="imgRz">
|
<p>This small veracrypt volume will be called "diary" and it's decoy partition will simply contain a text-based diary of yours. However we need to be careful as we're going to save that file in places that the adversary may access, <b>We need to make sure that the decoy volume data changes, every time the hidden volume changes.</b> This is because otherwise we wouldn't have a way to justify why the overall veracrypt volume changed while the decoy volume didn't change (which would then prove the existance of the hidden volume).</p>
|
||||||
<p>Backup all of your critical data (ssh config, ssh keys, pgp keys, keepass .kdbx files, etc.) (max size= 10Mb)</p>
|
<img src="31.png" class="imgRz">
|
||||||
<img src="15.png" class="imgRz">
|
<p>Therefore, to meet the deniability requirements, we have the following backup procedure:</p>
|
||||||
<p>Then close the hidden volume:</p>
|
|
||||||
<img src="16.png" class="imgRz">
|
|
||||||
<p>Open the decoy volume of the veracrypt volume diary.vc</p>
|
|
||||||
<img src="17.png" class="imgRz">
|
|
||||||
<p>write something in there such as your week in a small text file, name it with today's date. (don't reveal the presence of a hidden file in the text content). This is just an example as to what content you could put there. <b>Goal is that the content must make sense in case if you're forced to type in your password there.</b> Second goal is that <b>for each veracrypt hidden volume changes that occur, the content of the decoy partition must also change because otherwise it will reveal the existance of the hidden volume if the remote server keeps the previous versions of each file.</b></p>
|
|
||||||
<img src="18.png" class="imgRz">
|
|
||||||
<p>Once you have closed the decoy volume, the Veracrypt volume is ready to be backed up, there you need to add the USB keys to the Whonix Workstation VM like so:</p>
|
|
||||||
<img src="22.png" class="imgRz">
|
|
||||||
<p>And you need to copy the "diary" file to a server (wherever you want online), and then copy the file on your mainpc, your laptop and then you can also put it on a usb key to be hidden somewhere.</p>
|
|
||||||
<img src="0.1.png" class="imgRz">
|
|
||||||
<p>If you want to automate the backup process, place the following backup.sh bashscript inside the whonix VM:</p>
|
|
||||||
<pre><code class="nim">
|
<pre><code class="nim">
|
||||||
[ Whonix ] [ /dev/pts/2 ] [~]
|
1) open the diary Veracrypt hidden volume to save the critical data in it
|
||||||
→ cat backup.sh
|
2) after saving the critical data in it, close the hidden volume
|
||||||
|
3) open the diary veracrypt decoy volume to write a new diary text file in it. (as otherwise you wouldnt be able to justify why the overall VC volume changed)
|
||||||
|
4) close the decoy volume (ONLY NOW the overall veracrypt volume is ready to be backed up elsewhere)
|
||||||
|
5) backup the veracrypt diary volume on a cheap remote VPS that was rented anonymously (accessed via SSH, via the .onion domain only)
|
||||||
|
6) backup the VC volume in USB keys that are scattered in physical locations that you can access easily, and that can hide USB keys.
|
||||||
|
|
||||||
|
</code></pre>
|
||||||
|
<p>So let's see how this looks like in action:</p>
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /white -->
|
||||||
|
|
||||||
|
|
||||||
|
<!-- +++++ Second Post +++++ -->
|
||||||
|
<div id="anon1">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<h2><b>How to perform the Backup Procedure</b></h2> </br> </br>
|
||||||
|
<p>First, boot the Host OS in live mode:</p>
|
||||||
|
<img src="../livemode/12.png" class="imgRz">
|
||||||
|
<p>Then open up the non-system veracrypt hidden volume:</p>
|
||||||
|
<img src="../sensitivevm/109.png" class="imgRz">
|
||||||
|
<img src="../sensitivevm/110.png" class="imgRz">
|
||||||
|
<img src="../sensitivevm/111.png" class="imgRz">
|
||||||
|
<p>Then run script.sh (using the <b>Super+S</b> shortcut) to setup your sensitive whonix VMs:</p>
|
||||||
|
<img src="../sensitivevm/113.png" class="imgRz">
|
||||||
|
<p>Before starting the Workstation however, make sure that the VM's USB controller is set to "USB 2" mode by editing the settings like so in the XML directly:</p>
|
||||||
|
<pre><code class="nim">
|
||||||
|
[user ~]% cd /run/media/private/user/sda
|
||||||
|
[user /run/media/private/user/sda]% vim Whonix-Workstation.xml
|
||||||
|
[user /run/media/private/user/sda]% cat Whonix-Workstation.xml
|
||||||
|
|
||||||
|
[...]
|
||||||
|
|
||||||
|
<<i></i>controller type="usb" index="0" model="ich9-ehci1">
|
||||||
|
|
||||||
|
[...]
|
||||||
|
|
||||||
|
</pre></code>
|
||||||
|
<p>Once done, you can create the "diary" veracrypt volume inside the sensitive VM, (we'll use it to backup our critical data into it's hidden volume):</p>
|
||||||
|
<img src="36.png" class="imgRz">
|
||||||
|
<img src="37.png" class="imgRz">
|
||||||
|
<img src="38.png" class="imgRz">
|
||||||
|
<img src="39.png" class="imgRz">
|
||||||
|
<p>Now that the diary veracrypt volume has been created we can start to use it to backup our important data into it: </p>
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /white -->
|
||||||
|
|
||||||
|
|
||||||
|
<!-- +++++ Second Post +++++ -->
|
||||||
|
<div id="anon2">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<h2><b>How to perform the Backup Procedure</b></h2> </br> </br>
|
||||||
|
<p>First, plug in your 3 usb keys into your computer and then make sure that they are attached to the Whonix Workstation VM:</p>
|
||||||
|
<img src="33.png" class="imgRz">
|
||||||
|
<img src="34.png" class="imgRz">
|
||||||
|
<img src="35.png" class="imgRz">
|
||||||
|
<p>Then once you verified that the USB sticks are detected from the VM, you can start to backup your critical data inside the veracrypt volumes:</p>
|
||||||
|
<img src="40.png" class="imgRz">
|
||||||
|
<p>And then after backing up your critical data, you can unmount the hidden volume, to mount the decoy volume instead, where you'll write a diary entry (that way you'll be able to justify why the overall veracrypt volume changed):</p>
|
||||||
|
<img src="41.png" class="imgRz">
|
||||||
|
<p>Now that's done, unmount the decoy volume, and use the following backup.sh script to backup your diary veracrypt volume to the 3 usb sticks:</p>
|
||||||
|
<pre><code class="nim">
|
||||||
|
[user ~]% vim backup.sh
|
||||||
|
[user ~]% cat backup.sh
|
||||||
|
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
|
|
||||||
#QEMU setting:
|
echo 'creating all 3 usb mount directories...'
|
||||||
#whonix workstation configuration > Controller USB 0 > USB 2
|
|
||||||
# add each USB as host usb passthrough
|
|
||||||
|
|
||||||
#mount all 3 usb sticks:
|
|
||||||
sudo mkdir /mnt/usb1
|
sudo mkdir /mnt/usb1
|
||||||
sudo mkdir /mnt/usb2
|
sudo mkdir /mnt/usb2
|
||||||
sudo mkdir /mnt/usb3
|
sudo mkdir /mnt/usb3
|
||||||
|
|
||||||
|
echo 'mounting all 3 usb sticks...'
|
||||||
sudo mount /dev/sda1 /mnt/usb1
|
sudo mount /dev/sda1 /mnt/usb1
|
||||||
sudo mount /dev/sdb1 /mnt/usb2
|
sudo mount /dev/sdb1 /mnt/usb2
|
||||||
sudo mount /dev/sdc1 /mnt/usb3
|
sudo mount /dev/sdc1 /mnt/usb3
|
||||||
|
|
||||||
#mount the veracrypt volume to add new diary:
|
echo 'copying the diary file on all 3 usb sticks...'
|
||||||
echo "[+] Mount DECOY volume, to add new diary:"
|
|
||||||
veracrypt --mount /home/user/diary
|
|
||||||
vim /media/veracrypt1/$(date --iso-8601).txt
|
|
||||||
echo '[+] DIARY COMPLETE:'
|
|
||||||
ls -lash /media/veracrypt1
|
|
||||||
|
|
||||||
#mount the veracrypt volume to add new diary:
|
|
||||||
echo "Mount remounting volume, to backup critical data:"
|
|
||||||
veracrypt --dismount /home/user/diary
|
|
||||||
veracrypt --mount /home/user/diary
|
|
||||||
|
|
||||||
#backup whats critical in the veracrypt volume:
|
|
||||||
cp -r /home/user/.gnupg /media/veracrypt1/
|
|
||||||
cp -r /home/user/.ssh /media/veracrypt1/
|
|
||||||
cp -r /home/user/backup.sh /media/veracrypt1/
|
|
||||||
cp -r /home/user/Passwords.kdbx /media/veracrypt1/
|
|
||||||
|
|
||||||
ls -lash /media/veracrypt1
|
|
||||||
echo '[+] CRITICAL DATA ADDED TO VERACRYPT, BACKING IT UP TO USB STICKS:'
|
|
||||||
veracrypt --dismount /home/user/diary
|
|
||||||
|
|
||||||
sudo cp -r /home/user/diary /mnt/usb1/diary
|
sudo cp -r /home/user/diary /mnt/usb1/diary
|
||||||
sudo cp -r /home/user/diary /mnt/usb2/diary
|
sudo cp -r /home/user/diary /mnt/usb2/diary
|
||||||
|
sudo cp -r /home/user/diary /mnt/usb3/diary
|
||||||
|
|
||||||
ls -lash /mnt/usb*
|
echo 'copying completed, hence unmounting all 3 usb sticks...'
|
||||||
|
|
||||||
echo '[+] CRITICAL DATA BACKUP ON the 3 USB STICKS COMPLETE, UNMOUNTING...'
|
|
||||||
sudo umount /mnt/usb1
|
sudo umount /mnt/usb1
|
||||||
sudo umount /mnt/usb2
|
sudo umount /mnt/usb2
|
||||||
#sudo umount /mnt/usb3
|
sudo umount /mnt/usb3
|
||||||
|
|
||||||
echo '[+] REMOTE BACKUP'
|
echo 'remote backup to a VPS rented anonymously...'
|
||||||
rsync /home/user/diary remoteserver:/root/diary -razP
|
torsocks scp /home/user/diary user@yourremotevpsaddress.onion:/root/diary:
|
||||||
|
|
||||||
echo '[+] REMOVING LOGS'
|
[user ~]% chmod +x backup.sh
|
||||||
echo '' > ~/.histfile
|
[user ~]% ./backup.sh
|
||||||
sudo rm /var/log/*.log /var/log/*/*.log
|
|
||||||
sudo dmesg -c
|
|
||||||
|
|
||||||
echo '[+] SENSITIVE BACKUP COMPLETED, NOW HIDE ALL 3 IN HIDDEN LOCATIONS, UNMOUNTING...'
|
|
||||||
|
|
||||||
</pre></code>
|
</pre></code>
|
||||||
<p>For instance, you can backup your critical files <b>in places that you own (your apartment, your car, on your keyring)</b>, but these places can be found easily. If you want to actually hide (and be able to claim that there are no more copies of your USB keys), <b>get the USB keys in places totally unrelated to you</b>, get creative such as burying the usb key somewhere you can remember, far away from your home, or hiding the file in a remote server, in a location that you remember.</p>
|
<p>Run the script, and you'll now have your critical data backed up on your Remote VPS, and it's on the 3 usb keys.</p>
|
||||||
<p>Like so you're covered in case if you are forced to give away your password, and in case if an adversary takes your harddrives, USB keys (minus the ones you managed to hide elsewhere), <b>and if the adversary fills the decoy partitions of your veracrypt volumes in an attempt to destroy the hidden partitions, even in that case, you can still recover your data from the remaining places you successfully managed to hide your data to.</b> </p>
|
<p>And now you can unplug the 3 usb keys, and scatter them in 3 different places that you can easily access. <b>You can hide them in your bag, in your car, and bury one in your garden for example.</b> Get creative, but make sure that you can easily retrieve those usb keys back for next week's backup.</p>
|
||||||
<p>Get creative as to how you choose to hide the veracrypt volume aswell, such as replacing a random linux binary in the /bin/ folder, or a library in /lib, or a file in /etc/, burying the usb key somewhere underground, etc</p>
|
<img src="42.png" class="imgRz">
|
||||||
|
<img src="43.png" class="imgRz">
|
||||||
|
<img src="44.png" class="imgRz">
|
||||||
|
<p>However be careful if you intend to hide those usb keys in that are not yours (where you normally never go to either), you need to make sure that you are going there without a cellphone on you. <b>As otherwise the adversary would see that your phone has gone to a novel place that you have never been to before, And that gives them hints regarding where you might've hidden the usb keys.</b> </p>
|
||||||
|
<img src="45.png" class="imgRz">
|
||||||
|
<p>Here for instance, the adversary wouldn't see your movements in pink, the only clues they'd have are the movements in red that they can anyway see from their dashboards.</p>
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /white -->
|
||||||
|
|
||||||
|
|
||||||
|
<!-- +++++ Second Post +++++ -->
|
||||||
|
<div id="anon3">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<h2><b>Emergency Scenario</b></h2> </br> </br>
|
||||||
|
<p>So now let's suppose the following emergency scenario: You made an opsec mistake somewhere along the way, and the chinese authorities are now aware that you've been playing video games after 7 PM, and they are now raiding your appartment again:</p>
|
||||||
|
<img src="../sensitivevm/119.png" class="imgRz">
|
||||||
|
<p>You manage to hit the correct key combination (<b>right Alt to focus out of the VM, and right CTRL to trigger the emergency reboot script</b>) Which closes the sensitive VM and reboots your computer just in time.</p>
|
||||||
|
<img src="46.png" class="imgRz">
|
||||||
|
<p>Then they seize your devices, keep you in custody for just 1 month, and due to not having any further incriminating evidence on you, you avoid the concentration camp life sentence, and thus they release you. <b>But they're not giving back your devices because they destroyed them.</b> </p>
|
||||||
|
|
||||||
|
<img src="47.png" class="imgRz">
|
||||||
|
<p>So your primary data source has been destroyed (including the sensitive VMs and the main diary VC volume), you also realize that they seized and destroyed the usb key you had in your backpack, and in your car. <b>However upon checking further you realize that they didn't get the USB key that you hid in your garden.</b></p>
|
||||||
|
<img src="44.png" class="imgRz">
|
||||||
|
<p>Too bad for them, because they didn't find that one usb key you had buried in your garden, so you dig it up, retrieve it, you purchase a new laptop, <a href="../sensitivevm/index.html">you set up your sensitive VMs once again</a>, and then you simply plug the usb back in the sensitive VM, <b>and with it you can restore your critical sensitive data (which includes your Keepass accesses, your pgp keys, your ssh keys and monero wallet seed) by copying the files back into your new sensitive use VM.</b></p>
|
||||||
|
<p>And once restored you can resume your sensitive activities as usual, minus the opsec mistakes you made that led up to your arrest obviously.</p>
|
||||||
</div>
|
</div>
|
||||||
</div><!-- /row -->
|
</div><!-- /row -->
|
||||||
</div> <!-- /container -->
|
</div> <!-- /container -->
|
||||||
|
|
|
||||||
272
opsec/plausiblydeniabledataprotection/old.html
Normal file
272
opsec/plausiblydeniabledataprotection/old.html
Normal file
|
|
@ -0,0 +1,272 @@
|
||||||
|
<!DOCTYPE html>
|
||||||
|
<html lang="en">
|
||||||
|
<head>
|
||||||
|
<meta charset="utf-8">
|
||||||
|
<meta http-equiv="X-UA-Compatible" content="IE=edge">
|
||||||
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
||||||
|
<meta name="description" content="">
|
||||||
|
<meta name="author" content="">
|
||||||
|
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
||||||
|
|
||||||
|
<title>Plausibly Deniable Data Backups Setup</title>
|
||||||
|
|
||||||
|
<!-- Bootstrap core CSS -->
|
||||||
|
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
||||||
|
<link href="../../assets/css/xt256.css" rel="stylesheet">
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<!-- Custom styles for this template -->
|
||||||
|
<link href="../../assets/css/main.css" rel="stylesheet">
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
<!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
|
||||||
|
<!--[if lt IE 9]>
|
||||||
|
<script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
|
||||||
|
<script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
|
||||||
|
<![endif]-->
|
||||||
|
</head>
|
||||||
|
|
||||||
|
<body>
|
||||||
|
|
||||||
|
<!-- Static navbar -->
|
||||||
|
<div class="navbar navbar-inverse-anon navbar-static-top">
|
||||||
|
<div class="container">
|
||||||
|
<div class="navbar-header">
|
||||||
|
<button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
|
||||||
|
<span class="icon-bar"></span>
|
||||||
|
<span class="icon-bar"></span>
|
||||||
|
<span class="icon-bar"></span>
|
||||||
|
</button>
|
||||||
|
<a class="navbar-brand-anon" href="\index.html">The Nihilism Opsec Blog</a>
|
||||||
|
</div>
|
||||||
|
<div class="navbar-collapse collapse">
|
||||||
|
<ul class="nav navbar-nav navbar-right">
|
||||||
|
|
||||||
|
<li><a href="/about.html">About</a></li>
|
||||||
|
<li><a href="/blog.html">Categories</a></li>
|
||||||
|
|
||||||
|
<li><a href="/contact.html">Contact</a></li>
|
||||||
|
</ul>
|
||||||
|
</div><!--/.nav-collapse -->
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<!-- +++++ Posts Lists +++++ -->
|
||||||
|
<!-- +++++ First Post +++++ -->
|
||||||
|
<div id="anon2">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2024-03-10</ba></p>
|
||||||
|
<h1>Plausibly Deniable Data Backups Setup</h1>
|
||||||
|
<img src="0.png" style="width:250px">
|
||||||
|
<p>In this tutorial we're going to look at how you can backup your critical data (Keepass accesses, pgp key, ssh key, etc) while still maintaining the plausible deniability. </p>
|
||||||
|
</br><b>DISCLAIMER: we're using only harddrives (HDDs) here, because using SSDs are not a secure way to have Plausible Deniability, that is due to hidden Volumes being detectable on devices that utilize wear-leveling</b>
|
||||||
|
<pre><code class="nim">
|
||||||
|
source: https://anonymousplanet.org/guide.html#understanding-hdd-vs-ssd
|
||||||
|
|
||||||
|
regarding wear leveling:
|
||||||
|
"Also as mentioned earlier, disabling Trim will reduce the lifetime of your SSD drive and will significantly impact its performance over time (your laptop will become slower and slower over several months of use until it becomes almost unusable, you will then have to clean the drive and re-install everything). But you must do it to prevent data leaks that could allow forensics to defeat your plausible deniability. The only way around this at the moment is to have a laptop with a classic HDD drive instead."
|
||||||
|
|
||||||
|
</pre></code>
|
||||||
|
<p><img src="../logos/daturagit.png" style="width:100px"> <u>Sidenote:</u> Help us improve this tutorial by letting us know if there's anything missing or incorrect on this <a href="http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions/issues/132">git issue</a> directly!</p>
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /grey -->
|
||||||
|
|
||||||
|
<!-- +++++ Second Post +++++ -->
|
||||||
|
<div id="anon3">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<h2><b>Initial Setup </b></h2>
|
||||||
|
<p>Before starting, make sure that your Whonix VM you need to make sure the USB controller is set to USB 2:</p>
|
||||||
|
<img src="21.png" class="imgRz">
|
||||||
|
|
||||||
|
<p>First install veracrypt in the plausibly deniable whonix VM (for more details on how to set that environment up in <a href="../anonymity/index.html">this</a> previous tutorial), go <a href="https://veracrypt.fr/en/Downloads.html">there</a> to download the latest .deb package:</p>
|
||||||
|
<pre><code class="nim">
|
||||||
|
wget https://launchpad.net/veracrypt/trunk/1.26.7/+download/veracrypt-1.26.7-Debian-12-amd64.deb
|
||||||
|
|
||||||
|
dpkg -i veracrypt-1.26.7-Debian-12-amd64.deb
|
||||||
|
apt install -f
|
||||||
|
dpkg -i veracrypt-1.26.7-Debian-12-amd64.deb
|
||||||
|
|
||||||
|
</code></pre>
|
||||||
|
<p>Once veracrypt is setup, we're going to create a small volume with a hidden partition, which will contain all of your critical data, and the decoy partition will contain a weekly diary.</p>
|
||||||
|
<p>So let's create the volume, we want to keep the size to be low so that it will contain only the critical information.</p>
|
||||||
|
|
||||||
|
<img src="1.png" class="imgRz">
|
||||||
|
<img src="2.png" class="imgRz">
|
||||||
|
<img src="3.png" class="imgRz">
|
||||||
|
<img src="4.png" class="imgRz">
|
||||||
|
<img src="5.png" class="imgRz">
|
||||||
|
<img src="6.png" class="imgRz">
|
||||||
|
<img src="7.png" class="imgRz">
|
||||||
|
<img src="8.png" class="imgRz">
|
||||||
|
<img src="9.png" class="imgRz">
|
||||||
|
<img src="10.png" class="imgRz">
|
||||||
|
<img src="11.png" class="imgRz">
|
||||||
|
<img src="12.png" class="imgRz">
|
||||||
|
|
||||||
|
<p>Note: It is important to make sure that the decoy partition is changed everytime the hidden partition is changed, because as it is detailed <a href="https://anonymousplanet.org/guide.html#online-backups">here</a> it is not advised to backup veracrypt drives online because cloud services almost always retain history of files, meaning if you give your decoy password to all of the previous veracrypt file versions, it must justify that the entire container is different. <b>If the entire container is different while the decoy partition is the same, it means that an adversary can prove that there is a hidden partition.</b> Hence there needs to be a procedure as to how you backup your veracrypt volume online.</p>
|
||||||
|
<pre><code class="nim">
|
||||||
|
Weekly procedure to backup your critical data:
|
||||||
|
-open the hidden volume of the veracrypt volume diary.vc
|
||||||
|
-backup all of your critical data (ssh config, ssh keys, pgp keys, keepass .kdbx files, etc.) (max size= 10Mb)
|
||||||
|
-close the hidden volume
|
||||||
|
-open the decoy volume of the veracrypt volume diary.vc
|
||||||
|
-recap your week in a small text file, name it with today's date. (don't reveal the presence of a hidden file in the text content)
|
||||||
|
-close the decoy volume
|
||||||
|
|
||||||
|
ONLY THEN the veracrypt volume is completed, and can be backed up somewhere else:
|
||||||
|
-copy it to your mainpc, laptop, homeserver and phone
|
||||||
|
-copy it to a usb key, which is to be hidden somewhere
|
||||||
|
-hide it in plain sight using steghide inside of a very large image.
|
||||||
|
|
||||||
|
</code></pre>
|
||||||
|
<p>Now let's take a look at how this looks like once it's applied:</p>
|
||||||
|
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /white -->
|
||||||
|
|
||||||
|
<div id="anon2">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
|
<h2><b>Backup Procedure</b></h2> </br> </br>
|
||||||
|
<p>First we open the hidden volume:</p>
|
||||||
|
<img src="13.png" class="imgRz">
|
||||||
|
<img src="14.png" class="imgRz">
|
||||||
|
<p>Backup all of your critical data (ssh config, ssh keys, pgp keys, keepass .kdbx files, etc.) (max size= 10Mb)</p>
|
||||||
|
<img src="15.png" class="imgRz">
|
||||||
|
<p>Then close the hidden volume:</p>
|
||||||
|
<img src="16.png" class="imgRz">
|
||||||
|
<p>Open the decoy volume of the veracrypt volume diary.vc</p>
|
||||||
|
<img src="17.png" class="imgRz">
|
||||||
|
<p>write something in there such as your week in a small text file, name it with today's date. (don't reveal the presence of a hidden file in the text content). This is just an example as to what content you could put there. <b>Goal is that the content must make sense in case if you're forced to type in your password there.</b> Second goal is that <b>for each veracrypt hidden volume changes that occur, the content of the decoy partition must also change because otherwise it will reveal the existance of the hidden volume if the remote server keeps the previous versions of each file.</b></p>
|
||||||
|
<img src="18.png" class="imgRz">
|
||||||
|
<p>Once you have closed the decoy volume, the Veracrypt volume is ready to be backed up, there you need to add the USB keys to the Whonix Workstation VM like so:</p>
|
||||||
|
<img src="22.png" class="imgRz">
|
||||||
|
<p>And you need to copy the "diary" file to a server (wherever you want online), and then copy the file on your mainpc, your laptop and then you can also put it on a usb key to be hidden somewhere.</p>
|
||||||
|
<img src="0.1.png" class="imgRz">
|
||||||
|
<p>If you want to automate the backup process, place the following backup.sh bashscript inside the whonix VM:</p>
|
||||||
|
<pre><code class="nim">
|
||||||
|
[ Whonix ] [ /dev/pts/2 ] [~]
|
||||||
|
→ cat backup.sh
|
||||||
|
|
||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
#QEMU setting:
|
||||||
|
#whonix workstation configuration > Controller USB 0 > USB 2
|
||||||
|
# add each USB as host usb passthrough
|
||||||
|
|
||||||
|
#mount all 3 usb sticks:
|
||||||
|
sudo mkdir /mnt/usb1
|
||||||
|
sudo mkdir /mnt/usb2
|
||||||
|
sudo mkdir /mnt/usb3
|
||||||
|
|
||||||
|
sudo mount /dev/sda1 /mnt/usb1
|
||||||
|
sudo mount /dev/sdb1 /mnt/usb2
|
||||||
|
sudo mount /dev/sdc1 /mnt/usb3
|
||||||
|
|
||||||
|
#mount the veracrypt volume to add new diary:
|
||||||
|
echo "[+] Mount DECOY volume, to add new diary:"
|
||||||
|
veracrypt --mount /home/user/diary
|
||||||
|
vim /media/veracrypt1/$(date --iso-8601).txt
|
||||||
|
echo '[+] DIARY COMPLETE:'
|
||||||
|
ls -lash /media/veracrypt1
|
||||||
|
|
||||||
|
#mount the veracrypt volume to add new diary:
|
||||||
|
echo "Mount remounting volume, to backup critical data:"
|
||||||
|
veracrypt --dismount /home/user/diary
|
||||||
|
veracrypt --mount /home/user/diary
|
||||||
|
|
||||||
|
#backup whats critical in the veracrypt volume:
|
||||||
|
cp -r /home/user/.gnupg /media/veracrypt1/
|
||||||
|
cp -r /home/user/.ssh /media/veracrypt1/
|
||||||
|
cp -r /home/user/backup.sh /media/veracrypt1/
|
||||||
|
cp -r /home/user/Passwords.kdbx /media/veracrypt1/
|
||||||
|
|
||||||
|
ls -lash /media/veracrypt1
|
||||||
|
echo '[+] CRITICAL DATA ADDED TO VERACRYPT, BACKING IT UP TO USB STICKS:'
|
||||||
|
veracrypt --dismount /home/user/diary
|
||||||
|
|
||||||
|
sudo cp -r /home/user/diary /mnt/usb1/diary
|
||||||
|
sudo cp -r /home/user/diary /mnt/usb2/diary
|
||||||
|
|
||||||
|
ls -lash /mnt/usb*
|
||||||
|
|
||||||
|
echo '[+] CRITICAL DATA BACKUP ON the 3 USB STICKS COMPLETE, UNMOUNTING...'
|
||||||
|
sudo umount /mnt/usb1
|
||||||
|
sudo umount /mnt/usb2
|
||||||
|
#sudo umount /mnt/usb3
|
||||||
|
|
||||||
|
echo '[+] REMOTE BACKUP'
|
||||||
|
rsync /home/user/diary remoteserver:/root/diary -razP
|
||||||
|
|
||||||
|
echo '[+] REMOVING LOGS'
|
||||||
|
echo '' > ~/.histfile
|
||||||
|
sudo rm /var/log/*.log /var/log/*/*.log
|
||||||
|
sudo dmesg -c
|
||||||
|
|
||||||
|
echo '[+] SENSITIVE BACKUP COMPLETED, NOW HIDE ALL 3 IN HIDDEN LOCATIONS, UNMOUNTING...'
|
||||||
|
|
||||||
|
</pre></code>
|
||||||
|
<p>For instance, you can backup your critical files <b>in places that you own (your apartment, your car, on your keyring)</b>, but these places can be found easily. If you want to actually hide (and be able to claim that there are no more copies of your USB keys), <b>get the USB keys in places totally unrelated to you</b>, get creative such as burying the usb key somewhere you can remember, far away from your home, or hiding the file in a remote server, in a location that you remember.</p>
|
||||||
|
<p>Like so you're covered in case if you are forced to give away your password, and in case if an adversary takes your harddrives, USB keys (minus the ones you managed to hide elsewhere), <b>and if the adversary fills the decoy partitions of your veracrypt volumes in an attempt to destroy the hidden partitions, even in that case, you can still recover your data from the remaining places you successfully managed to hide your data to.</b> </p>
|
||||||
|
<p>Get creative as to how you choose to hide the veracrypt volume aswell, such as replacing a random linux binary in the /bin/ folder, or a library in /lib, or a file in /etc/, burying the usb key somewhere underground, etc</p>
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div><!-- /row -->
|
||||||
|
</div> <!-- /container -->
|
||||||
|
</div><!-- /white -->
|
||||||
|
|
||||||
|
<!-- +++++ Footer Section +++++ -->
|
||||||
|
|
||||||
|
<div id="anonb">
|
||||||
|
<div class="container">
|
||||||
|
<div class="row">
|
||||||
|
<div class="col-lg-4">
|
||||||
|
<h4>Nihilism</h4>
|
||||||
|
<p>
|
||||||
|
Until there is Nothing left.</p><p><a href="../../../../opsec/legal.html">Legal Disclaimer</a></p><p>Creative Commons Zero: <a href="../../../../opsec/runtheblog/index.html">No Rights Reserved</a></br><img src="\CC0.png">
|
||||||
|
|
||||||
|
</p>
|
||||||
|
</div><!-- /col-lg-4 -->
|
||||||
|
|
||||||
|
<div class="col-lg-4">
|
||||||
|
<h4>My Links</h4>
|
||||||
|
<p>
|
||||||
|
|
||||||
|
<a target="_blank" rel="noopener noreferrer" href="http://blog.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="http://nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/simplex.html">SimpleX Chatrooms</a><br/>
|
||||||
|
|
||||||
|
</p>
|
||||||
|
</div><!-- /col-lg-4 -->
|
||||||
|
|
||||||
|
<div class="col-lg-4">
|
||||||
|
<h4>About nihilist</h4>
|
||||||
|
<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br>
|
||||||
|
</div><!-- /col-lg-4 -->
|
||||||
|
|
||||||
|
</div>
|
||||||
|
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
|
||||||
|
<!-- Bootstrap core JavaScript
|
||||||
|
================================================== -->
|
||||||
|
<!-- Placed at the end of the document so the pages load faster -->
|
||||||
|
|
||||||
|
</body>
|
||||||
|
</html>
|
||||||
|
|
@ -8,7 +8,7 @@
|
||||||
<meta name="author" content="">
|
<meta name="author" content="">
|
||||||
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
||||||
|
|
||||||
<title>Sensitive use VMs Setup (Whonix VMs in a Veracrypt Hidden Volume)</title>
|
<title>Sensitive VMs Setup (Whonix VMs in a Veracrypt Hidden Volume)</title>
|
||||||
|
|
||||||
<!-- Bootstrap core CSS -->
|
<!-- Bootstrap core CSS -->
|
||||||
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
||||||
|
|
@ -61,7 +61,7 @@
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="col-lg-8 col-lg-offset-2">
|
<div class="col-lg-8 col-lg-offset-2">
|
||||||
<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2025-04-02</ba></p>
|
<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist@mainpc - 2025-04-02</ba></p>
|
||||||
<h1>Sensitive use VMs Setup (Whonix VMs in a Veracrypt Hidden Volume) (April 2025 Update) </h1>
|
<h1>Sensitive VMs Setup (Whonix VMs in a Veracrypt Hidden Volume) (April 2025 Update) </h1>
|
||||||
<img src="0.png" class="imgRz">
|
<img src="0.png" class="imgRz">
|
||||||
<p>In this tutorial we're going to cover how to setup Whonix VMs for Sensitive use. This means that our <a href="../opsec4levels/index.html">OPSEC requirement</a> is that <b>we need to be able to deny the existance of the Sensitive Whonix VM if the adversary ever gets access to our laptop.</b> </p>
|
<p>In this tutorial we're going to cover how to setup Whonix VMs for Sensitive use. This means that our <a href="../opsec4levels/index.html">OPSEC requirement</a> is that <b>we need to be able to deny the existance of the Sensitive Whonix VM if the adversary ever gets access to our laptop.</b> </p>
|
||||||
<p>Now the advantage of this setup, is that it is not going to actually destroy the computer, nor any sensitive data, you can keep using it even after triggering an emergency shutdown. </p>
|
<p>Now the advantage of this setup, is that it is not going to actually destroy the computer, nor any sensitive data, you can keep using it even after triggering an emergency shutdown. </p>
|
||||||
|
|
@ -106,7 +106,7 @@
|
||||||
|
|
||||||
<p>I also recommend making a simple shortcut to trigger the script.sh bashscript to avoid having to open up a terminal and run it every time you want to open up the sensitive VMs after booting in live mode:</p>
|
<p>I also recommend making a simple shortcut to trigger the script.sh bashscript to avoid having to open up a terminal and run it every time you want to open up the sensitive VMs after booting in live mode:</p>
|
||||||
<pre><code class="nim">
|
<pre><code class="nim">
|
||||||
[user ~]% xfconf-query -c xfce4-keyboard-shortcuts -n -t 'string' -p '/commands/custom/<Super>s' -s /run/media/private/user/sda/script.sh
|
[user ~]% xfconf-query -c xfce4-keyboard-shortcuts -n -t 'string' -p '/commands/custom/<<i></i>Super>s' -s /run/media/private/user/sda/script.sh
|
||||||
|
|
||||||
</pre></code>
|
</pre></code>
|
||||||
<p>In this example, i set the <b>Super+S</b> shortcut to run script.sh more easily.</p>
|
<p>In this example, i set the <b>Super+S</b> shortcut to run script.sh more easily.</p>
|
||||||
|
|
|
||||||
17
rss/feed.xml
17
rss/feed.xml
|
|
@ -1,13 +1,21 @@
|
||||||
<?xml version='1.0' encoding='UTF-8' ?>
|
<?xml version='1.0' encoding='UTF-8' ?>
|
||||||
<rss version='2.0' xmlns:atom='http://www.w3.org/2005/Atom'>
|
<rss version='2.0' xmlns:atom='http://www.w3.org/2005/Atom'>
|
||||||
<!-- Made using rss-roller http://github.com/maxhebditch/rss-roller -->
|
<!-- Made using rss-roller https://github.com/maxhebditch/rss-roller -->
|
||||||
|
|
||||||
|
|
||||||
<channel>
|
<channel>
|
||||||
<title>nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion Blog</title>
|
<title>Nihilism Network Blog</title>
|
||||||
<link>http://blog.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion</link>
|
<link>https://blog.nihilism.network</link>
|
||||||
<description>Nihilist`s Technical Blog</description>
|
<description>Nihilist`s Technical Blog</description>
|
||||||
<atom:link href='http://blog.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/rss/feed.xml' rel='self' type='application/rss+xml' />
|
<atom:link href='https://blog.nihilism.network/rss/feed.xml' rel='self' type='application/rss+xml' />
|
||||||
|
|
||||||
|
<item>
|
||||||
|
<title>Sensitive Critical Data Backup Procedure</title>
|
||||||
|
<link>http://blog.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/opsec/plausiblydeniabledataprotection/index.html</link>
|
||||||
|
<guid isPermaLink='false'>2025040601</guid>
|
||||||
|
<description>In this tutorial we're going to cover how to backup the critical data that you would normally store inside of your Sensitive use VM, in order to make sure that your critical data (meaning your keepass .kdbx file, your SSH keys, your PGP keys, your Monero seed files) can still be accessed and reused, even if the adversary were to seize and destroy your devices in multiple takedowns.</description>
|
||||||
|
</item>
|
||||||
|
|
||||||
|
|
||||||
<item>
|
<item>
|
||||||
<title>Why is Metadata detrimental to Anonymity?</title>
|
<title>Why is Metadata detrimental to Anonymity?</title>
|
||||||
|
|
@ -937,6 +945,7 @@
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
</channel>
|
</channel>
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue