Changes between Version 26 and Version 27 of doc/TorBOX/BareMetalHints


Ignore:
Timestamp:
Apr 17, 2012, 2:44:33 PM (8 years ago)
Author:
proper
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • doc/TorBOX/BareMetalHints

    v26 v27  
    1313 * For our Tor-Gateway: A computer with at least two network adapters, at least one of them ethernet^1^, capable of running Linux. It will run Ubuntu Server 11.10 Oneiric Ocelot.^2^
    1414   
    15  ,,^1^ The other one may be either an [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/BareMetalHints#anonymous3Gmodem anonymous 3G modem]; [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/BareMetalHints#anonymouswifiadapter anonymous wifi adapter], another ethernet or wifi connected to your modem/router. [[BR]]
    16  ,,^2^ Theoretically you could use any OS that supports iptables or pf. If you don't want to use Ubuntu Oneiric you will have to edit the shell script. This will be easy for Debian derivatives but much more difficult for *BSD for example. In any case, the choice of OS shouldn't really matter because this system isn't used for anything but running Tor. A cheap plug computer, something like Raspberry Pi or the hardware used by Torouter would be sufficient.
     15 ,, ^1^ The other one may be either an [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/BareMetalHints#anonymous3Gmodem anonymous 3G modem]; [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/BareMetalHints#anonymouswifiadapter anonymous wifi adapter], another ethernet or wifi connected to your modem/router. [[BR]]
     16 ,, ^2^ Theoretically you could use any OS that supports iptables or pf. If you don't want to use Ubuntu Oneiric you will have to edit the shell script. This will be easy for Debian derivatives but much more difficult for *BSD for example. In any case, the choice of OS shouldn't really matter because this system isn't used for anything but running Tor. A cheap plug computer, something like Raspberry Pi or the hardware used by Torouter would be sufficient.
    1717 
    18  * A client computer connected via ethernet to the gateway. It must only have this one NIC and no other network connectivity! This will be the torified client system or Tor-Workstation. [[BR]]
    19    Any OS can be used (but read warning, especially for Windows: [https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxyLeaks Transparent Proxy Leaks].) [[BR]]
     18 * A client computer connected via ethernet to the gateway. It must only have this one NIC and no other network connectivity! This will be the torified client system or Tor-Workstation. It must be capable of running Ubuntu Server 11.10 Oneiric Ocelot.^3^ [[BR]]
    2019   We recommend you use a VM as the client, preferably the same [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/Dev/BuildDocumentation#CreateTor-Workstation.ova VM build] as the non-bare metal TorBOX uses. Here's why:
    21     * a generic VM image can neither leak identifying hardware serial numbers nor unique software fingerprints (e.g. trough [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/ApplicationWarningsAndNotes#Softwareupdaters software updates])
     20    * A generic VM image can neither leak identifying hardware serial numbers nor unique software fingerprints. (e.g. trough [https://trac.torproject.org/projects/tor/wiki/doc/TorifyHOWTO#Softwareupdaters software updates])
    2221    * This ensures that you get the latest security features and most secure configurations (such as stream isolation that protects against [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/ApplicationWarningsAndNotes#Identitycorrelationthroughcircuitsharing Identity correlation through circuit sharing] or [https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/XChat IRC hardening])
    23   
     22 ,, ^3^ Any OS can be used (but read warning, especially for Windows: [https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxyLeaks Transparent Proxy Leaks].) [[BR]]
    2423
    2524= Time syncing =