1 |
Nils Gillmann <niasterisk <at> grrlz.net> writes: |
2 |
|
3 |
|
4 |
> > So I just read about how Tails is now available on Debian [1]. |
5 |
|
6 |
> > [1] https://bits.debian.org/2016/02/tails-installer-in-debian.html |
7 |
|
8 |
> > [2] https://tails.boum.org/blueprint/bootstrapping/installer/ |
9 |
|
10 |
Trimmed down per gmane posting rules. |
11 |
|
12 |
|
13 |
> I did dig into this when I had the idea to rebuild a Whonix + |
14 |
> Tails on the basis of Gentoo before I realized the brokeness of |
15 |
> virtualization (as in: insecure the better virtualization works), |
16 |
> asked the whonix devs about a statement, got none, asked contacts |
17 |
> and eventually got enough info over the last year to consider it |
18 |
> something I wouldn't try. |
19 |
|
20 |
Hmmm. Well I usually use a minimal gentoo (profile -1) amd64 system to first |
21 |
build things, only installing packages requisite for the intended target. |
22 |
That avoids VM issues. I guess there is the Whonix gateway, and that looks |
23 |
pretty straightforward here [A]. |
24 |
|
25 |
|
26 |
> There are gentoo based systems with security in mind, but I am not very |
27 |
> positive about re-creating Tails on current state of Gentoo. |
28 |
|
29 |
Hmmmm. LikeWhoa, one of the gentoo devs, put together a gentoo install |
30 |
system from usb, that includes persistence, quite some time ago. [B] |
31 |
|
32 |
|
33 |
> Tails and/or Whonix have tried and shifted focus away from Gentoo |
34 |
> for reasons which can be read on their github repo wiki and with |
35 |
> good websearches. |
36 |
|
37 |
Tails is the tor-node on a usb, with persistence, or did I miss some of |
38 |
the deeper capabilities? Having a debian and gentoo similar (anonymous) |
39 |
device does seem a bit enticing to me. For sure it'd be a great additional |
40 |
protection for credit card usage over the net, in addition to the existing |
41 |
pathetic protections folks currently have. |
42 |
|
43 |
|
44 |
I certainly appreciate your candor. However, I cannot find the listing of |
45 |
issues with these aforementioned codes(packages) on gentoo. All I think I |
46 |
really need it the software (packages) listings and some guidelines and |
47 |
gotchas. Also you should look at Anthony's excellent works [C]. I'd |
48 |
ceratainly appreciate a bit more detail (private email is ok too), or a |
49 |
'data dump' on exactly what problems exist. My interest is to master a |
50 |
similar device for stealth usage, that is gentoo centric. Most of the pieces |
51 |
seem to be present, so it's mostly an integration and testing effort? |
52 |
|
53 |
James |
54 |
|
55 |
|
56 |
[A] https://www.whonix.org/wiki/HardenedGentooTG |
57 |
|
58 |
[B] https://forums.gentoo.org/viewtopic-t-995118.html |
59 |
https://wiki.gentoo.org/wiki/Install_Gentoo_on_a_bootable_USB_stick |
60 |
|
61 |
[C] http://opensource.dyc.edu/tinhat-howtocook |