Git-Mirrors/anonymousland
1
0
Fork 0
mirror of https://git.anonymousland.org/anonymousland/anonymousland.git synced 2024-06-29 02:52:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added 'Links & Resoources' along with additional kernel instructions for kicksecure

Browse Source
This commit is contained in:
deathrow 2022-08-31 19:50:40 -04:00
parent 4aea107130
commit 22170eb527
No known key found for this signature in database
GPG Key ID: FF39D67A22069F73
1 changed files with 66 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

72
_information/QubesOS.md
View File

@ -18,6 +18,11 @@ A collection of QubesOS-related information.
- -\> *[Security](#debian-security)* <br>
- -\> *[Fedora](#fedora)* <br>
- -\> *[Upgrading Fedora](#upgrading-fedora)* <br>
-\>> [Links & Resources](#links--resources) <br>
- -\> *[Guides](#guides)* <br>
- -\> *[Wiki](#wiki)* <br>
<br>
### Template Setup
@ -47,7 +52,7 @@ sudo apt update
Installing packages
```
sudo apt install qubes-core-agent-dom0-updates qubes-usb-proxy qubes-gpg-split qubes-core-agent-networking git apt-transport-tor curl -y
sudo apt install qubes-core-agent-dom0-updates qubes-usb-proxy qubes-gpg-split qubes-core-agent-networking git apt-transport-tor curl
```
Configuring git proxy
@ -60,6 +65,19 @@ git config --global http.proxy http://127.0.0.1:8082/
#### Debian Security
```
sudo apt-get install grub2 qubes-kernel-vm-support
```
```
sudo apt-get -t bullseye-backports --no-install-recommends install linux-image-amd64 linux-headers-amd64
```
```
grub-install /dev/xvda
```
Adding the Kicksecure repository:
```
@ -84,7 +102,7 @@ sudo apt install --no-install-recommends kicksecure-qubes-cli
Installing LKRG:
```
sudo apt install --no-install-recommends lkrg-dkms linux-headers-amd64
sudo apt install --no-install-recommends lkrg-dkms
```
@ -117,7 +135,7 @@ sudo dnf update
Installing packages
```
sudo dnf install qubes-core-agent-passwordless-root qubes-core-agent-dom0-updates qubes-usb-proxy qubes-gpg-split qubes-core-agent-networking git -y
sudo dnf install qubes-core-agent-passwordless-root qubes-core-agent-dom0-updates qubes-usb-proxy qubes-gpg-split qubes-core-agent-networking git
```
Configuring git proxy
@ -134,13 +152,21 @@ Running in Dom0:
```
qvm-clone fedora-35 fedora-36
```
```
truncate -s 5GB /var/tmp/template-upgrade-cache.img
```
```
qvm-run -a fedora-36 gnome-terminal
```
```
dev=$(sudo losetup -f --show /var/tmp/template-upgrade-cache.img)
```
```
qvm-block attach fedora-36 dom0:${dev##*/}
```
@ -148,21 +174,55 @@ Running inside Fedora-36:
```
sudo mkfs.ext4 /dev/xvdi
```
```
sudo mount /dev/xvdi /mnt/removable
```
```
sudo dnf clean all
```
```
sudo dnf --releasever=36--setopt=cachedir=/mnt/removable --best --allowerasing distro-sync
```
Running inside Dom0:
```
qvm-shutdown fedora-36
```
```
sudo losetup -d $dev
```
```
rm /var/tmp/template-upgrade-cache.img
```
```
<br>
### Links & Resources
- [Qubes for security auditing](https://forum.qubes-os.org/t/qubes-for-organizational-security-auditing-talk-notes/199)
<br>
#### Guides
- [Fully ephemeral dispvms](https://forum.qubes-os.org/t/fully-ephemeral-dispvms/12030)
- [Opening all files in disposable qube](https://forum.qubes-os.org/t/opening-all-files-in-disposable-qube/4674)
- [Kicksecure Guide](https://forum.qubes-os.org/t/guide-kicksecure-for-disp-sys/13324)
<br>
#### Wiki
- [Hardened-Kernel](https://www.kicksecure.com/wiki/Hardened-kernel) <button type="button" class="btn btn-xs btn-xs"><a href="http://www.w5j6stm77zs6652pgsij4awcjeel3eco7kvipheu6mtr623eyyehj4yd.onion/wiki/Hardened-kernel">Tor</a></button>
- [VM Fingerprinting](https://www.whonix.org/wiki/VM_Fingerprinting) <button type="button" class="btn btn-xs btn-xs"><a href="http://www.w5j6stm77zs6652pgsij4awcjeel3eco7kvipheu6mtr623eyyehj4yd.onion/wiki/VM_Fingerprinting">Tor</a></button>
-