Is this safe multiple workstations unique hidden services 1 gateway

dannyboy23 · November 5, 2018, 8:46pm

For the sake of this example.

1 gateway
2 workstations

Each workstation runs unique forum software. Workstation 1 ip is the normal 10.152.152.11 and workstation 2 uses 10.152.152.12. The gateway torrc file is for this example is configured like this.

HiddenServiceDir /var/lib/tor/web1
HiddenServicePort 80 10.152.152.11:80

HiddenServiceDir /var/lib/tor/web2
HiddenServicePort 80 10.152.152.12:80

My questions is this secure using whonix14? Other than a potential attacker using DDOS to assume both hidden services are on the same server, does this bring up any other potential dangers?

Main concerns any kind of ip leak etc.

torjunkie · November 5, 2018, 9:31pm

All of this is already covered in uber-detail here:

http://dds6qkxpwdeubwucdiaord2xgbbeyds25rbsgr73tbfpqpt4a6vjwsyd.onion/wiki/Multiple_Whonix-Workstations

HulaHoop · November 5, 2018, 10:02pm

An attacker that routs WS 1 will be able to launch attacks and sniff traffic coming to WS 2 since they are both on the same LAN.

The safest way is to keep HSs completely separate by cloning a separate GW and setting up a different internal network.