Nils Gillmann <niasterisk <at> grrlz.net> writes:
> > So I just read about how Tails is now available on Debian [1]. > > [1] https://bits.debian.org/2016/02/tails-installer-in-debian.html > > [2] https://tails.boum.org/blueprint/bootstrapping/installer/ Trimmed down per gmane posting rules. > I did dig into this when I had the idea to rebuild a Whonix + > Tails on the basis of Gentoo before I realized the brokeness of > virtualization (as in: insecure the better virtualization works), > asked the whonix devs about a statement, got none, asked contacts > and eventually got enough info over the last year to consider it > something I wouldn't try. Hmmm. Well I usually use a minimal gentoo (profile -1) amd64 system to first build things, only installing packages requisite for the intended target. That avoids VM issues. I guess there is the Whonix gateway, and that looks pretty straightforward here [A]. > There are gentoo based systems with security in mind, but I am not very > positive about re-creating Tails on current state of Gentoo. Hmmmm. LikeWhoa, one of the gentoo devs, put together a gentoo install system from usb, that includes persistence, quite some time ago. [B] > Tails and/or Whonix have tried and shifted focus away from Gentoo > for reasons which can be read on their github repo wiki and with > good websearches. Tails is the tor-node on a usb, with persistence, or did I miss some of the deeper capabilities? Having a debian and gentoo similar (anonymous) device does seem a bit enticing to me. For sure it'd be a great additional protection for credit card usage over the net, in addition to the existing pathetic protections folks currently have. I certainly appreciate your candor. However, I cannot find the listing of issues with these aforementioned codes(packages) on gentoo. All I think I really need it the software (packages) listings and some guidelines and gotchas. Also you should look at Anthony's excellent works [C]. I'd ceratainly appreciate a bit more detail (private email is ok too), or a 'data dump' on exactly what problems exist. My interest is to master a similar device for stealth usage, that is gentoo centric. Most of the pieces seem to be present, so it's mostly an integration and testing effort? James [A] https://www.whonix.org/wiki/HardenedGentooTG [B] https://forums.gentoo.org/viewtopic-t-995118.html https://wiki.gentoo.org/wiki/Install_Gentoo_on_a_bootable_USB_stick [C] http://opensource.dyc.edu/tinhat-howtocook
