pascal
hace 6 años
Se han modificado 1 ficheros con 50 adiciones y 12 borrados
+ 50
- 12
README.md
Ver fichero
| @@ -1,15 +1,53 @@ | |||
| PTS aka the Perfect Tor Setup | |||
| # TORVM - a perfectly automated TOR VM | |||
| # redirects all TCP traffic to Tor | |||
| # runs its own DNS resolver | |||
| ## About | |||
| - create a VirtualBox VM | |||
| - install debian 9 | |||
| - setup LVM and crypto partition, set a long passowrd, possibly a sentence | |||
| - unselect everything at tasksel | |||
| **TORMV is an installation script to setup a _pretty secure_ Linux VM (debian) for "super anonymous" browsing** (might need to rework that description, but you get it). | |||
| ## Installation | |||
| - install VirtualBox for your OS | |||
| - create a new VM and make sure you have: | |||
| -- enabled 3D acceleration | |||
| -- enabled NAT networking | |||
| - download the current release of debian9 https://cdimage.debian.org/debian-cd/current/amd64/iso-cd/ (take the netinst image) | |||
| - install debian9 and make sure you do the following during installation: | |||
| -- partition disk with LVM and crypto (use a long password, possibly a sentence) | |||
| -- don't allow root login, create an anonymous user account (for example "user") | |||
| -- unselect everything at tasksel (Desktop installation, print server,...) | |||
| - finish install and reboot | |||
| - login and sudo apt-get install git | |||
| - git clone https://git.home.spale.com/home/torvm.git | |||
| - in the Virtaulbox VM Devices menu, select "Install Guest Additions CD Image..." (needed by the next step) | |||
| - run install.sh script as root | |||
| - reboot, done | |||
| - after reboot, login and sudo su to become root | |||
| - install git client `apt-get install git` | |||
| - download installation setup `git clone https://git.home.spale.com/home/torvm.git` | |||
| - in the VirtualBox VM "Devices" menu, select "Install Guest Additions CD Image..." (needed by the next step) | |||
| - cd torvm and run `./install.sh` (still as root) | |||
| - `reboot` | |||
| - gdm should start after boot and you can then login and follow the setup wizard of enlightenment | |||
| ## What's in the installer script ? | |||
| - Install various packages including but not limited to, enlighenment window manager, gdm login, Xorg, redsocks, tor, iptables-persistent, firefox-esr, transmission, unbound, ... | |||
| - Remove nano, because <full stop> | |||
| - mount and compile VirtualBox drivers | |||
| - copy configured configuration files for unbound, redsocks and iptables | |||
| - disable IPv6 via `/etc/sysctl.conf` | |||
| - install a preconfigured firefox profile for all existing users (except root) | |||
| - delete all .bash_history files and replace them by symblink to `/dev/null` | |||
| - clean apt cache | |||
| - stop syslog (temporarly) and delete all files in `/var/log` | |||
| ## What's in this firefox profile? | |||
| - security settings | |||
| - default search engine set to duckduckgo | |||
| - disabled saving passwords, history, ... | |||
| - preconfigured socks proxy (it's still faster than doing REDIRECT in iptables, going over redsocks to finally land in the tor socks5 server) | |||
| - preinstalled add-ons: | |||
| -- NoScript (default configuration) | |||
| -- uBlock Origin (default configuration) | |||
| ## Should I trust you? | |||
| - You can check the install.sh yourself or even do all the steps manually, there's really no magic here... | |||
| - You can simply delete the "user/.mozilla" folder before running installation and it will not install the preconfigured firefox profile | |||
Cargando…