[quote=“adrelanos, post:13, topic:65”][quote author=donothackme link=topic=46.msg465#msg465 date=1392596870]
But if I would like to use my whonix by a friend on his pc?
[/quote]
You shouldn’t use her operating system. Not because of distrust, but because having a malware free operating system is a science and an art. If you trust the hardware, bring an USB bootable disk and boot that. I would advise against using remote desktop (ssh), since malware on her computer could still monitor everything you do.[/quote]
Thanks to Adrelanos and Cerberus, this workaround is easy and solve the problem.
[quote=“adrelanos, post:13, topic:65”][quote author=donothackme link=topic=46.msg465#msg465 date=1392596870]
If I would like to use my whonix on work?
[/quote]
Best is, same as above. I would advise against installing Whonix on your employers operating system without permission, but that is up to you. Whonix can be useful for businesses as well. See: Who uses Tor?
Thanks to Adrelanos and Cerberus, this workaround is easy and solve the problem.
[quote=“adrelanos, post:13, topic:65”][quote author=donothackme link=topic=46.msg465#msg465 date=1392596870]
Or if I need a whonix on a server?
[/quote]
Well, my answer is still the same. I don’t have great answers to this. Any online shop may ask “how can I protect my customer database from data center admins?” After all, stealing the whole customer database has value. A competitor could try to poach the shop owners customers. Without the shop owner even noticing what happened. Looks like IT industry doesn’t have great answers for that.[/quote]
So for sure a full encrypted dedicated root server is needed, for minimal security.
But also this will not bring the owner of the server in a good protected situation.
I think this is totaly crazy, a server can hold thousands of customers addresses, phone-numbers, e-mails, credit-cards, bank-accounts and all this together with passwords. Also a free-speech forum post can bring you, in some countries, in jail if it comes to a deanonymization of your person.
And there is no fuc… security and privacy for all this critical data in a well payed Datacenter?
Is anybody out there in the IT Industry that wonders about 70million stolen playstation Data?
Or about 16 million stolen e-mail/password Data?
If I read all this thinks, I think the door is wide open for any kind of hacking and Industry spy.
Also another question, do the traffic of a Tor/Whonix connection will alert a ISP or a Datacenter?
(I know that if an ISP or a Datacenter observed the traffic, than they can see that it is Tor traffic).
But is there a kind of automatic “alarm” in ISP/Datacenters, that marks (blacklisted) you as “unnormal” customer if you start to use a Tor connection from your account?