Daniil Travnikov:
On Tuesday, October 16, 2018 at 4:58:31 PM UTC+3, qube...@tutanota.com wrote:
Hi, I would like to ask you about experiences with the i2p in Qubes 4. What setup would you consider as
"best" in case I would like to use i2p without routing it through Tor first? I read the >Use
I2P client inside Whonix-Workstation (Preferred)< guide on Whonix website and consider it to be the
"best option" to for i2p over Tor. I am looking for the secure and reliable i2p setup without
routing it through Tor.
If you would like to use i2p to its full potential on Qubes, without going to
clearnet with the i2p VMs, for anonymity with I2Pbotte, chat, eepsite
browsing...what setup (template used, firewall setting, net VM setting, VMs
structure used) would you advice for such a usage model?
Thank you
I suppose nobody uses i2p network for example instead of Tor in some cases?
I've used it before, but not for a long time.
It think should work fine just being installed in a whonix-ws connected
to sys-firewall. But it's not very safe that way.
I would highly recommend setting up a "sys-i2p" in which to run i2p
itself. You could probably use the whonix template, or Fedora, or
Debian, or whatever you can get i2p to run on. You'll probably have to
configure i2p to listen on all interfaces. Then, create an "anon-i2p"
AppVM with Tor Browser installed to use as your workstation, and connect
it to sys-i2p. In anon-i2p, you should be able to directly access the
i2p tunnels by using the address of sys-i2p. In firefox put in that
address instead of localhost to access the i2p console.
Basically you're mirroring how sys-whonix works with Tor, but with i2p.
This way, if firefox or something else in anon-i2p gets compromised, it
still can't make direct connections to the internet, or leak DNS, and so
on. However, it could still probably discover your IP address from the
i2p console, so better yet you'll want to make sure anon-i2p can't reach
the console address, and use the i2p console from sys-i2p directly instead.
This is all just off the top of my head, so it might not work exactly
like that, but hopefully you get the idea. Let us know how you make out
or if you need more help.
-
This free account was provided by VFEmail.net - report spam to ab...@vfemail.net
ONLY AT VFEmail! - Use our Metadata Mitigator to keep your email out of the
NSA's hands!
$24.95 ONETIME Lifetime accounts with Privacy Features!
15GB disk! No bandwidth quotas!
Commercial and Bulk Mail Options!
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-users/701d5b36-674c-835d-66e4-4fff6ca22ffd%40vfemail.net.
For more options, visit https://groups.google.com/d/optout.