Silk Road forums

Discussion => Security => Topic started by: goblin on August 09, 2013, 01:51 pm

Title: Whonix
Post by: goblin on August 09, 2013, 01:51 pm
OK, you experts out there. say I got the VM software ready to go and I got the whonix gateway and the other whonix component, ready to install into my computer. How do I transfer all the SR data (ALL of it) onto the new OS? I mean since it is so isolated from the rest of the computer. How in heavens' name do you do it?

Also, is there any special knack to getting all the peripherals (printer, scanner, etc.) to work with the whonix OS?

Thanks a lot in advance.

goblin
Title: Re: Whonix
Post by: astor on August 09, 2013, 03:17 pm
OK, you experts out there. say I got the VM software ready to go and I got the whonix gateway and the other whonix component, ready to install into my computer. How do I transfer all the SR data (ALL of it) onto the new OS? I mean since it is so isolated from the rest of the computer. How in heavens' name do you do it?

There are 3 ways to do it.

1. Encrypt the data and transfer it to a web site or email account, which you access from inside the Whonix Workstation and download into it.

2. Install the VirtualBox Guest Additions and create a shared folder between the host OS and the Whonix Workstation.

3. Setup SSH forwarding between the host OS and the Gateway, then ssh from the Gateway to the Workstation. On a Linux host OS, you can use scp to transfer the files. On a Windows host OS, you can use the WinSCP application.

Probably option 2 is the easiest, but you should disable the shared folder after you are done transferring the files, because it's a security risk. That is how malware can escape the VM.
Title: Re: Whonix
Post by: BlackIris on August 09, 2013, 03:52 pm
Also, is there any special knack to getting all the peripherals (printer, scanner, etc.) to work with the whonix OS?

That depends on the guest OS. The guest should already accept USB (and similar) connections and recognize them, but it can depend on the OS for the proper configuration. In a Windows OS guest, for example, the system is Plug & Play as it happens with the host.
Title: Re: Whonix
Post by: astor on August 09, 2013, 04:36 pm
You can configure VirtualBox to work with peripherals. The Whonix documentation is some of the best documentation about anonymity and security on the internet. I think everyone should read it:

https://whonix.org/wiki/Documentation

It also discusses adding USB devices to Whonix:

https://whonix.org/wiki/File_Transfer#Adding_USB_device_to_VirtualBox

Apparently there are closed-sourced VirtualBox extensions that will do it. They should allow you to use thumb drives and USB printers.

Whonix is based on the same version of Debian as Tails. Not sure if they use the kernel, but hardware support should be roughly the same.

Title: Re: Whonix
Post by: goblin on August 10, 2013, 12:02 am
Hey, Astor and BlackIris, thanks so much! I am now much more confident and I think I can do it. I think I can, I think I can...
Title: Re: Whonix
Post by: comsec on August 10, 2013, 12:46 am
Anybody running Whonix know what /etc/dhclient.conf or /etc/dhcp3/dhclient.conf shows? VirtualBox NAT exposes resolvers and search domains via DHCP from the host environment by default wonder if they have supersede domain-name and supersede domain-name-servers in there.
Title: Re: Whonix
Post by: astor on August 10, 2013, 07:35 pm
/etc/dhclient.conf doesn't exist. These are the only uncommented lines in /etc/dhcp/dhclient.conf

option rfc3442-classless-static-routes code 121 = array of unsigned integer 8;

request subnet-mask, broadcast-address, time-offset, routers,
    domain-name, domain-name-servers, domain-search, host-name,
    netbios-name-servers, netbios-scope, interface-mtu,
    rfc3442-classless-static-routes, ntp-servers;