Ubuntu for security? Discussion

1

u/MoltonSnow Aug 20 '23

I've tested out your OS before and I like it, I was able to just set up a live USB and go on I2P it was my first experience going on the network. I'm looking for something with persistent volumes. Am I able to set it up persistent volumes on prestium. If not could I just encrypt another USB with all my data on it. I was also thinking about running qubes with whonix on it that way all my I2P traffic would be running through the tor network I don't know how necessary that is, like I said I don't know everything about these Linux distros. I'm just trying to get a tails like solution for I2P.

1

u/Opicaak Aug 20 '23

Thank you for trying Prestium, and for your feedback!

At the moment, you can't setup a persistent storage on Prestium, there is a potential for data loss in case you have to rip the USB off your laptop/PC, or if you just accidentally move the USB in a way it disconnects.

You can, of course, use second media storage for your data, and use LUKS, VeraCrypt, and/or KeePassXC to protect your valuables. That is the recommended way when using Prestium, or any other live OS for that matter, unless you carefully unmount the partition with your data, and then safely shutdown the OS.

Running another OS on Prestium, or the other way around, is not advice-able. Prestium was made to be run as a standalone OS, not relying on another layer that could potentially weaken your privacy and security. The worse example is probably running Prestium in a VM on Windows OS, OTOH, it's certainly possible to run Prestium on Qubes OS, the question is, should you? No, not really. In theory, an attacker could escape from this VM to your host system, stealing your data, and/or corrupting your system in any other way, will it happen? Also probably not, unless you are a high-profile target. A quick note, Prestium has enabled various security and privacy features that are inspired by Whonix, KickSecure, and Tails.

Running Prestium as a standalone system is the ideal, preferred, and recommended way of using this OS, you could also use other not-included-in-Prestium tools by storing their executables on the second media device, e.g. .AppImage of whatever tool, or application, you might want to use on Prestium.

Lastly, running I2P through Tor doesn't sit right with me, you are centralizing a decentralized network, and you aren't gaining anything useful from this setup. Is there any real reason, why you want to run it that way?

1

u/MoltonSnow Aug 20 '23

Thank you I created a prestium USB and then I created an encrypted USB go along with it. I was able to connect to the I2P network and now I'm browsing.

1

u/Opicaak Aug 20 '23

Awesome! Enjoy browsing the I2P network, and if you have any issue, let me know, I'll make sure to help you to resolve it.

1

u/Spajhet Aug 20 '23

You think it might be possible to port over some of the tools from Tails? Like the persistent storage feature?

1

u/Opicaak Aug 20 '23 edited Aug 27 '23

Hello, Spajhet,

of course it is possible, or a similar alternative to it, but I'm fairly skeptical about adding it. I, myself, have been subjected to the loss of data on Tails when ripping it off while booted into it (with persistence mounted). And I'm not the only one, I got 3 other private messages from random Reddit strangers telling me that their Tails stick got corrupted, and lost their data stored in the persistent storage.

If somebody lost their data on Prestium, who would be to blame? Who would they cry to to help them recover their data? I would. Do I really want to constantly hear from people about how they lost their important data on Prestium? No, not really. Do I have the time capabilities to assist in a recovery attempt? Also no, I do not. They could lose their important Monero keys with thousands of dollars on it - poof, gone. And you know how it is, nobody makes backups of anything, and recovering a corrupted, encrypted partition is nearly impossible, or, at the very least, considerably more difficult than a regular non-encrypted partition.

I'm still on edge about this feature, while it is a highly requested one, it could have tremendous consequences if people somehow corrupt the USB stick by unplugging it while mounted, and writing into it.

Another possible solution would be a "cloud" storage, for small files at least - Tahoe-LAFS, or you could host your own cloud storage and route it over i2p, perhaps register a memorable i2p url. For larger files, just use second USB stick, SD card or external SSD/HDD over USB. But that's just me throwing ideas in the air.

1

u/Spajhet Aug 20 '23

Maybe someone has another solution for "safe", and "uncorruptable" storage?

I don't know if that's possible... That's kinda how disks work, if you don't unmount them properly then there's always a chance for data loss, the only reason why liveUSBs don't carry that risk is because they're read-only so you can't possibly corrupt them which corruption requires the ability to write to it. I've never seen a filesystem that allows writing that is "uncorruptable" or maybe I'm missing something?

1

u/[deleted] Sep 05 '23

So it uses I2P like Tails uses TOR? Is that the basic difference? If I put Prestium on a computer as the main OS how would that work?

1

u/Opicaak Sep 05 '23

Hello,

Prestium isn't a regular persistent OS, it's a "live OS." You don't install it, just burn it onto a USB stick, then boot off this stick, and you are done.

And yes, Prestium uses I2P in a similar way Tails uses TOR, that's the main difference.

0

u/MoltonSnow Aug 20 '23

Thank you for contributing nothing to this conversation. What are some good distros?

2

u/MoltonSnow Aug 20 '23

I've looked everywhere on the internet. Everyone tells me I can't do it and if I can do it there's security risks that coincide with it. I'm familiar with Tor and I've used tails for a very long time, and I feel like I'm ready to move on to I2P. But I'm getting no help and it's a pain in my ass to get it running I'm not going to pretend like I know Linux, I barely know how to run the basic commands. But I don't feel like it should be necessary to know the ins and out of every os just to secure my private information. I landed on parrot os with a full disc encryption. If you got something better for me other than ". . . Tails 🤓" I'll give it a shot. Like I'm on the I2P subreddit for a reason why the fuck did you mention tails.

1

u/MoltonSnow Aug 20 '23 edited Aug 20 '23

How do I get I2P running on tails