oxeo0/blog-contributions
1
0
Fork 0
mirror of http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions.git synced 2025-07-02 11:56:40 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fixed issues

Browse source
This commit is contained in:
Gnulinux0 2024-12-27 21:58:59 +03:00
parent e15ad166d2
commit a365623d50
6 changed files with 68 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

69
opsec/hypervisorsetup/index.html
View file

@ -239,6 +239,73 @@ reboot now
</div><!-- /row -->
</div> <!-- /container -->
</div><!-- /white -->
<div id="anon2">
<div class="container">
<div class="row">
<div class="col-lg-8 col-lg-offset-2">
<h2><b>How to harden your private VM by distro-morphing it into Kicksecure</b></h2> </br> </br>
<p><b>What is Kicksecure?</b> Kicksecure is a free and open-source Linux distribution designed to provide a highly secure computing environment. It is built on a hardened version of Debian, implementing a defense-in-depth security model that protects against various types of malware and attacks.</p>
<p><b>Reasons to use Kicksecure</b></p>
<ul>
<li>Enhanced Security Features:</li>
<p>Kicksecure is designed with a strong focus on security, incorporating various hardening techniques such as kernel hardening, user account isolation, and application-specific restrictions.</p>
<li>Privacy Protection:</li>
<p>All updates and software installations are routed through the Tor network, ensuring that user identities and IP addresses remain anonymous.</p>
<li>Lower Attack Surface:</li>
<p>Kicksecure minimizes potential vulnerabilities by not having open server ports or unnecessary services running by default. </p>
<li>User -Friendly Experience:</li>
<p>The operating system is designed to be accessible, with many applications pre-installed and configured for immediate use. </p>
<li>Compatibility with Virtualization:</li>
<p>Kicksecure supports various virtualization options, allowing users to run it in a virtual machine.</p>
<li>Free and Open Source:</li>
<p>As an open-source project, Kicksecure allows users to review, modify, and redistribute the source code.</p>
</ul>
<p>
<b>Kicksecure is important in many scenarios.</b> It is ideal for individuals handling sensitive data, such as personal or financial information, as its robust security features protect against data breaches and unauthorized access. Journalists, activists, and whistleblowers can maintain anonymity while communicating, safeguarding their identities from surveillance. Users accessing public Wi-Fi can rely on Kicksecure for secure browsing, reducing the risk of data interception. Running Kicksecure in a virtual machine helps contain potential malware threats, protecting the primary operating system. Additionally, developers and researchers can create a secure environment for security tools and cybersecurity research. Kicksecure also serves as an educational resource, offering documentation and community support for users looking to enhance their security knowledge. Its hardened configuration defends against brute force attacks, making it suitable for securing sensitive accounts. Overall, Kicksecure is essential for anyone prioritizing security, privacy, and anonymity in their digital activities.</p>
<p>Now let's setup Kicksecure. First,we need to create a new group called console. Then add the your user to the console group</p>
<!-- <img src="" class="imgRz"> -->
<pre><code class="nim">sudo addgroup --system console</code></pre>
<!-- <p></p> -->
<pre><code class="nim">sudo adduser "your_username" console</code></pre>
<p>After that,we need to install console related packages.</p>
<pre><code class="nim"> sudo apt install console-data console-common kbd keyboard-configuration</code></pre>
<!-- <img src="assets/05_installing_requirements.png" class="imgRz"> -->
<p>Now, we will install extrepo to get the kicksecure APT repository. We will also enable the repository</p>
<pre><code class="nim"> sudo apt install extrepo </code></pre>
<pre><code class="nim"> sudo extrepo enable kicksecure </code></pre>
<!-- <pre><code class="nim"> sudo apt install apt-transort-tor</code></pre> -->
<p>Next step is to download the kicksecure packages. Note that this will install a desktop environment(Xfce) and other applications</p>
<pre><code class="nim">sudo apt install kicksecure-xfce-host</code></pre>
<!-- <img src="assets/09_installs_kicksecure_packges.png" class="imgRz"> -->
<p>Finally, we need to enable the Kicksecure APT derivative.list in /etc/apt/sources.list.d/derivative.list</p>
<pre><code class="nim">sudo repository-dist --enable --repository onion</code></pre>
<p>This command will generate derivative.list file.</p>
<img src="10_dev_list_over_onion.png" class="imgRz">
<p>Disable the extrepo kicksecure APT repository. This is to avoid a duplicate Kicksecure repository.</p>
<pre><code class="nim"> sudo extrepo disable kicksecure</code></pre>
<p>That's it! A quick reboot will apply all the new settings and configurations.</p>
<p><b>Changes after reboot</b></p>
<p>New GNU GRUB menu</p>
<img src="new_grub.png">
<p>sdwdate synchronizes the system clock with time servers over the Tor network. </p>
<img src="sdwdate.png">
<p>System Integrity Checks</p>
<img src="sys_inter.png">
<p>System updates over Tor</p>
<img src="tor.png">
</div>
</div><!--
Extensive Documentation: Kicksecure provides comprehensive documentation and community support to help users understand and enhance their security practices.
/row -->
</div> <!-- /container -->
</div><!-- /white -->
<!-- +++++ Footer Section +++++ -->
@ -271,7 +338,7 @@ reboot now
</div>
</div>
<!-- Bootstrap core JavaScript
================================================== -->