LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 06-29-2015, 12:27 PM   #1
m00tykins
LQ Newbie
 
Registered: Jun 2015
Posts: 9

Rep: Reputation: Disabled
Lightbulb Hello! And some security questions...


Hi everyone,

I recently got a macbook 2,1 (same chipset as thinkpad x/t60) and am working on installing mint/libreboot on it. I found a great guide @ https://github.com/bibanon/Coreboot-...ki/Macbook-2-1 that I'm following atm. I'm just using the mint installer to make sure I don't erase the OSX partition, then I'll replace it with... something.... I'm basically trying to create a paranoidally secure system just for fun. I have some newb questions first though...

I'd like to have a whonix-like setup (gateway and workstation running in separate vms on a hypervisor). However, instead of the whonix debian/debian system, I'm wanting to use openBSD as the gateway and hardened gentoo as the workstation, running on BitVisor. I'm wondering if anyone has any suggestions on how to do this? I'm not new to unix (I've used both linux and freebsd for years), but right now I'm not sure if this is out of my league or not. What do you think the biggest problems will be? How would you do it? Any other thoughts?

Thanks a bunch!
 
Old 06-30-2015, 12:35 AM   #2
veerain
Senior Member
 
Registered: Mar 2005
Location: Earth bound to Helios
Distribution: Custom
Posts: 2,524

Rep: Reputation: 319Reputation: 319Reputation: 319Reputation: 319
Welcome to Linux Questions!

There is no security available for paranoid model of perceptions/threats.
 
Old 06-30-2015, 02:38 PM   #3
jefro
Moderator
 
Registered: Mar 2008
Posts: 16,676

Rep: Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454
There are more than a few BSD distro's out there and some config examples to get it working assuming you can easily use it on a Mac. What I think you want is to run a BSD gateway/security appliance as a virtual machine as a client. Then let your Gentoo access internet via the vm.
 
Old 07-01-2015, 02:27 PM   #4
m00tykins
LQ Newbie
 
Registered: Jun 2015
Posts: 9

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by jefro View Post
There are more than a few BSD distro's out there and some config examples to get it working assuming you can easily use it on a Mac. What I think you want is to run a BSD gateway/security appliance as a virtual machine as a client. Then let your Gentoo access internet via the vm.
That actually sounds much more attainable for now.

Although, is there any way to run the BSD in a hypervisor alongside the linux install, or must I use a VM -on top of- linux?
 
Old 07-01-2015, 08:16 PM   #5
jefro
Moderator
 
Registered: Mar 2008
Posts: 16,676

Rep: Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454Reputation: 2454
Not sure I get the question. There are many ways to run two OS's at the same time. From fully emulated to near fully hardware enabled. Just depends on how good your hardware is and what virtual machine or hypervisor you wish to use. When I use the term VM or virtual machine I mean any of the ways to create a software PC computer. Xen, KVM/QEMU, Virtualbox, Vmware tools or go with a bare metal install of some system like Proxmox and ESXI. Plenty of choices but all do basically the same thing. They let you run two or more OS's at the same time.

Your issue is more the odd things apple has I'd think.
 
Old 07-01-2015, 08:22 PM   #6
JockVSJock
Senior Member
 
Registered: Jan 2004
Location: SATX
Distribution: RHEL/CentOS
Posts: 1,218
Blog Entries: 4

Rep: Reputation: 132Reputation: 132
Quote:
Originally Posted by m00tykins View Post
Hi everyone,

I recently got a macbook 2,1 (same chipset as thinkpad x/t60) and am working on installing mint/libreboot on it. I found a great guide @ https://github.com/bibanon/Coreboot-...ki/Macbook-2-1 that I'm following atm. I'm just using the mint installer to make sure I don't erase the OSX partition, then I'll replace it with... something.... I'm basically trying to create a paranoidally secure system just for fun. I have some newb questions first though...

I'd like to have a whonix-like setup (gateway and workstation running in separate vms on a hypervisor). However, instead of the whonix debian/debian system, I'm wanting to use openBSD as the gateway and hardened gentoo as the workstation, running on BitVisor. I'm wondering if anyone has any suggestions on how to do this? I'm not new to unix (I've used both linux and freebsd for years), but right now I'm not sure if this is out of my league or not. What do you think the biggest problems will be? How would you do it? Any other thoughts?

Thanks a bunch!

You could try Bastille-Linux, it was designed with Mac OS X in mind...and can harden a system, however there are risks involved.
 
Old 07-02-2015, 08:16 AM   #7
m00tykins
LQ Newbie
 
Registered: Jun 2015
Posts: 9

Original Poster
Rep: Reputation: Disabled
I guess I don't really have a question at the moment haha, I'm just throwing ideas out there. If there's an IRC channel that might be better for random discussion, but anyway...

Do you guys have any good links that explain different VMs/hypervisors in-depth? Wikipedia just gives a high level overview, I'm looking more for a comparison. I'm hoping I can find something that separates two OSes completely, while still allowing communication. For example, an OBSD VM that has access to networking hardware, and a hardened gentoo VM that only has access to a virtualized ethernet interface to communicate with the OBSD VM, with neither one running on the other. Is that possible?
 
Old 07-02-2015, 10:16 AM   #8
veerain
Senior Member
 
Registered: Mar 2005
Location: Earth bound to Helios
Distribution: Custom
Posts: 2,524

Rep: Reputation: 319Reputation: 319Reputation: 319Reputation: 319
Look at openVZ.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Various security questions exceed1 Linux - Security 14 11-08-2008 05:13 PM
questions about security Artex Linux - Newbie 3 09-01-2006 11:00 AM
[Security Questions] Last Login, how good is this feature for security breach info? t3gah Linux - Security 2 06-14-2005 01:02 AM
several security questions Levitate Linux - Security 11 08-19-2004 12:02 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 03:07 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration