tor tutos fix + windows segregation + fix typos

2025-07-02 11:56:40 +00:00 · 2024-11-10 22:33:39 +01:00 · 2024-11-10 22:33:39 +01:00 · 318ee8cf25
commit 318ee8cf25
parent c537bc87f0
12 changed files with 21 additions and 4 deletions
--- a/opsec/hypervisorsetup/30.png
+++ b/opsec/hypervisorsetup/30.png
--- a/opsec/hypervisorsetup/50.png
+++ b/opsec/hypervisorsetup/50.png
--- a/opsec/hypervisorsetup/51.png
+++ b/opsec/hypervisorsetup/51.png
--- a/opsec/hypervisorsetup/index.html
+++ b/opsec/hypervisorsetup/index.html
@ -163,6 +163,9 @@ nihilist@debian:~# virt-manager
 </code></pre>
 <p>Next just make sure that the NAT network is created, and that the ISOs and VMs folders are with the correct permissions:</p>
 <img src="11.png" class="imgRz">
+<p>And also create another NAT network so that we can put all the untrusted VMs such as Windows into:</p>
+<img src="50.png" class="imgRz">
+<p>That way, the adversary that can normally see what's going on in the network attached to the Windows VM can no longer see as it is being put in a different network altogether. </p>
 <pre><code class="nim">
 nihilist@debian:~$ mkdir ISOs
 nihilist@debian:~$ mkdir VMs
@ -203,6 +206,10 @@ nihilist@debian:~$ sudo chown nihilist:libvirt -R ISOs
 <img src="28.png" class="imgRz">
 <img src="29.png" class="imgRz">
 <img src="30.png" class="imgRz">
+<p>Then before we begin the installation, we make sure that the windows VM uses the untrusted NAT network to make sure it remains isolated:</p>
+<img src="51.png" class="imgRz">
+<p>Then we hit Apply, and then we click on begin installation</p>
+
 <img src="31.png" class="imgRz">
 <img src="32.png" class="imgRz">
 <img src="33.png" class="imgRz">
--- a/opsec/sensitivevm/index.html
+++ b/opsec/sensitivevm/index.html
@ -586,7 +586,7 @@ stress -m 1 --vm-bytes $(free -ght | grep Mem | cut -d ' ' -f 12 | cut -d 'G' -f
 			<div class="row">
 				<div class="col-lg-8 col-lg-offset-2">
          <h2><b>In what context is there Deniability ?</b></h2>
-<p>With this setup, you have deniability the moment that the script finishes running, regarding the existance of the veracrypt hidden volume, and the whonix sensitive VMs. <b>Meaning that it is impossible for an adversary that seizes your computer to prove the existance of the Whonix Sensitive VMs after shutting down the Host OS.</b></p>
+<p>With this setup, you have deniability the moment that the Host OS finishes shutting down, regarding the existance of the veracrypt hidden volume, and the whonix sensitive VMs that are in it. <b>Meaning that it is impossible for an adversary that seizes your computer to prove the existance of the Whonix Sensitive VMs after the Host OS finished shutting down.</b></p>
 <p>Below is all an adversary will be able to see, if he were to seize your laptop after you manage to shut it down:</p>
 <img src="40.png" class="imgRz">
 <p>Of course, if you are ever forced to, <b>ONLY give your decoy password to the adversary.</b> The existance of the hidden volume, and of the secret password thats used to reveal it must remain a secret at all costs, it must remain known only by you.</p>
--- a/opsec/tailsqemuvm/21.png
+++ b/opsec/tailsqemuvm/21.png
--- a/opsec/tailsqemuvm/index.html
+++ b/opsec/tailsqemuvm/index.html
@ -66,6 +66,7 @@
 <p>In this tutorial we're going to look at how you can run Tails OS (The Amnesic Incognito Linux System) in a QEMU VM, following the official documentation <a href="https://tails.net/doc/advanced_topics/virtualization/virt-manager/index.en.html">here</a>. </p>

 <p><b>Tails OS is suitable for Short Term Sensitive Use due to it's default live-mode feature</b>, where upon shutting down the OS, every forensic trace of what you were doing is completely erased from memory, where the entire OS is loaded into. There are no disk-writes at all by default. (Unless if you use the persistent storage, which is not suitable for sensitive use, due to not being deniable encryption like <a href="../veracrypt/index.html">Veracrypt</a> ).</p>
+<img src="21.png" class="imgRz">

 <p><h2><u>OPSEC Recommendations:</u></h2></p>
 <ol>
--- a/opsec/tor/bridge/index.html
+++ b/opsec/tor/bridge/index.html
@ -64,7 +64,11 @@
 					<h1>TOR Bridge (June 2023 update)</h1>
 					<img src="../logo.png" class="imgRz">
                    <p> Before we start, you will need a Debian VPS (you can get one on digitalocean for example), if you prefer to use your own self hosted server, make sure that port 80 and 443 are correctly port forwarded so that the public ip points to the server and not the router. Once that's done, go and ssh into your Debian server. </p>
-          
+<p>Now regarding the choice of location for the server, in order to make sure that Tor remains decentralised,  make sure that you are picking a country that doesn't have many tor nodes (see the <a href="https://metrics.torproject.org/bubbles.html#country">bubbles graph</a>):</p>
+<img src="../relay/country.png" class="imgRz">
+<p><u>Disclaimer:</u> <b>Do not host your Tor node in Germany, Netherlands or in the US, as there are already too many nodes in those countries.</b> Try to run your own Tor nodes in countries that have the least nodes preferably, as this will help keeping the Tor network decentralized.</p>
+
+ 
 	       </div>
 			</div><!-- /row -->
 	    </div> <!-- /container -->
--- a/opsec/tor/exit_node/index.html
+++ b/opsec/tor/exit_node/index.html
@ -77,6 +77,9 @@ If you are still motivated to get your own exit node, keep the phone number of a

 <p>Now you can get a domain name to resolve to your exit node, or just use the one provided by njal.la :</p>
 <img src="8.png" class="imgRz">
+<p>Now regarding the choice of location for the server, in order to make sure that Tor remains decentralised,  make sure that you are picking a country that doesn't have many tor nodes (see the <a href="https://metrics.torproject.org/bubbles.html#country">bubbles graph</a>):</p>
+<img src="../relay/country.png" class="imgRz">
+<p><u>Disclaimer:</u> <b>Do not host your Tor node in Germany, Netherlands or in the US, as there are already too many nodes in those countries.</b> Try to run your own Tor nodes in countries that have the least nodes preferably, as this will help keeping the Tor network decentralized.</p>

          
 	       </div>
--- a/opsec/tor/relay/country.png
+++ b/opsec/tor/relay/country.png
--- a/opsec/tor/relay/index.html
+++ b/opsec/tor/relay/index.html
@ -67,7 +67,9 @@
 					<p>You will also need to make sure that the VPS provider allows the hosting of a tor node! check torproject's good/bad isps page <a href="https://community.torproject.org/relay/community-resources/good-bad-isps/">here</a>. </p>
 					<img src="1.png" class="imgRz">
 					<p> For example, you wouldn't be able to host an exit node on DigitalOcean, however hosting a regular node is completely fine.</p>
-<p><a href="https://git.nowhere.moe/nihilist/blog-contributions/issues/101">TODO</a>: showcase the Tor DDOS PoW protection </p>
+<p>Now regarding the choice of location for the server, in order to make sure that Tor remains decentralised,  make sure that you are picking a country that doesn't have many tor nodes (see the <a href="https://metrics.torproject.org/bubbles.html#country">bubbles graph</a>):</p>
+<img src="country.png" class="imgRz">
+<p><u>Disclaimer:</u> <b>Do not host your Tor node in Germany, Netherlands or in the US, as there are already too many nodes in those countries.</b> Try to run your own Tor nodes in countries that have the least nodes preferably, as this will help keeping the Tor network decentralized.</p>
          
 	       </div>
 			</div><!-- /row -->
--- a/productivity/diet-n-mental-health/index.html
+++ b/productivity/diet-n-mental-health/index.html
@ -413,7 +413,7 @@
 	<li><p><b>How friction-free is the digestion ?</b></p></li>
 	<li><p><b>How energetic and alive your body feels after digesting it ?</b></p></li>
 </ol>
-<p>You will see after experimenting a bit, that <b>your body digests best what is furthest away from you from an evolutionnary perspective.</b> Try out eating only meat for one meal and observe how your body feels, based off the above 3 criterias. You'll see that it takes forever to digest that kind of food, the body will be dragged down by the inertia caused by the digestion itself, and you won't feel energetic at all you'll most likely want to sleep (even though you cannot properly sleep and properly digest at the same time). And as a counter example, see what how your body feels after eating what i recommend below:</p>
+<p>You will see after experimenting a bit, that <b>your body digests best what is furthest away from you from an evolutionnary perspective.</b> Try out eating only meat for one meal and observe how your body feels, based off the above 3 criterias. You'll see that it takes forever to digest that kind of food, the body will be dragged down by the inertia caused by the digestion itself, and you won't feel energetic at all you'll most likely want to sleep (even though you cannot properly sleep and properly digest at the same time). And as a counter example, see how your body feels after eating what i recommend below:</p>

 <p>If your <b>body feels agile and alive</b> and it <b>doesn't take long to digest</b>, your body is telling you that <b>this is good food</b> because it is not building up inertia, but rather it is making it feel alive and well. Inertia is not what you are looking for when you want to live, as death basically is total inertia. You need aliveness, energy and agility.</p>
 <p>On top of that, the more intertia you make your body go through while eating, the more you will need to sleep for your body to repair the damage done that has been done. But if you eat the right kind of food, your sleep quota will go down, as there will be less damage done to the body, meaning less maintenance to do on the body, meaning less sleep will be required.</p>