Thanks for being so prompt in checking out the guides and replying, adds much more dimension to the perspectives present.
Could you elaborate on user error in managing critical identities? Initially coming to mind is logging into non-pseudonymous accounts and acquiring a VPN non-pseudonymously.
You make a very good point about the strength of advesary given Tor being compromised. At this point I felt inclined to suggest that JonDonym could provide a little more security. I had the same thought with having VPN1 in a non-cooperative region. However if I am a part of a small handful in my country using VPN1 IP address I am easier to detect, however a local VPN will not oppose government and could it not indicate I am connecting to VPN2 if queried? There is always the option of VPN3 (before Tor), but I believe this hinges on the policy and defense capabilities of the VPN to protect against general attack and my ability to connect to latter VPNs anonymously to avoid being targeted.
Apologies, you mean to say that the IVPN Guides + Whonix documentation will contain all necessary info for my goal?
If you have anything to share in regard to firewalls I’d very much appreciate that too. The IVPN Guides used pfSense to force all traffic through the VPN. I’m about to read more into firewall abilities packaged with qubes-whonix and proxy gateway VMs.
Edit: Seeing this post has aroused some doubt in the hardware I described and the security I want to achieve: [Discussion]Down the Qubes/Whonix rabbit hole. - #4 by Ego.
Also, sorry for another question; is SSD any more secure in qubes-whonix? I have read that there is a lot of room for plaintext to somehow gather and be left out in the open.