"Document Installation and Setup of the New Security-focused Hardened Debian Linux Distribution" selected by Whonix for Season of Docs 2019

• use DSNCrypt by default

Moved up to already implemented stuff already just now.

Edit: Will spectre / meltdown resistant be enabled by default? Or is this a TODO?

VirtualBox: unclear, that mess causes by upstream is documented here: Spectre Meltdown - Whonix

Other platforms: Not vulnerable. Documented here, same as here: Spectre Meltdown - Whonix