How to make the perfect TOR VM in VirtualBox
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
root 69ccf5d1b6 replaced gnome with i3 4 years ago
static/etc removed old script 4 years ago
user/.mozilla/firefox added mozilla config 4 years ago replaced gnome with i3 4 years ago replaced gnome with i3 4 years ago

TORVM - a perfectly automated TOR VM


TORMV is an installation script to setup a pretty secure Linux VM (debian) for “super anonymous” browsing (might need to rework that description, but you get it).


  • install VirtualBox for your OS
  • create a new VM and make sure you have
    • enabled 3D acceleration
    • enabled NAT networking
  • download debian (Buster is needed as it has an up-to-date enlightenment release)
  • install debian and make sure you do the following during installation:
    • select “Expert install” (under “Advanced options”) in grub
    • do not enable NTP, it will not work. Make sure your host has an accurate time, the guest will use it.
    • partition disk with LVM and crypto (use a long password, possibly a sentence)
    • don’t allow root login, create an anonymous user account (for example “user”)
    • unselect everything at tasksel (Desktop installation, print server,…)
  • finish install and reboot
  • after reboot, login and sudo su to become root
  • install git client apt-get install git
  • download installation setup git clone
  • in the VirtualBox VM “Devices” menu, select “Install Guest Additions CD Image…” (needed by the next step)
  • cd torvm and run ./ (still as root)
  • during package installation two prompts will appear:
    • save IPv4/IPv6 rules (iptables), say yes
    • choose gdm/lightdm, choose lightdm
  • reboot
  • lightdm/i3 should start after boot and you can then login and follow the setup wizard of enlightenment

What’s in the installer script ?

  • Install various packages including but not limited to, i3 window manager, lightdm login, Xorg, redsocks, tor, iptables-persistent, firefox-esr, transmission, unbound, …
  • Remove nano, because <full stop>
  • mount and compile VirtualBox drivers
  • copy configured configuration files for unbound, redsocks and iptables
  • disable IPv6 via /etc/sysctl.conf
  • install a preconfigured firefox profile for all existing users (except root)
  • delete all .bash_history files and replace them by symblink to /dev/null
  • clean apt cache
  • stop syslog (temporarly) and delete all files in /var/log

What’s in this firefox profile ?

  • security settings
  • default search engine set to duckduckgo
  • disabled saving passwords, history, …
  • preconfigured socks proxy (it’s still faster than doing REDIRECT in iptables, going over redsocks to finally land in the tor socks5 server)
  • preinstalled add-ons:
    • NoScript (default configuration)
    • uBlock Origin (default configuration)

Should I trust you?

  • You can check the yourself or even do all the steps manually, there’s really no magic here…
  • You can simply delete the “user/.mozilla” folder before running installation and it will not install the preconfigured firefox profile