Linux Distro: Tails - You Can Never Be Too Paranoid
Tails is a live media Linux distro designed boot into a highly secure desktop environment. You may remember that we looked at a US government distro with similar aims a few months ago, but Tails is different because it is aimed at the privacy conscious “normal user” rather than government workers.
Tails takes the form of a bootable live image that can be used from a CD ROM, a USB stick or via a network boot. Once booted, it executes from RAM, taking care not to make use of a swap partition. The desktop is Gnome 2.0 and the applications are a fairly standard selection. The web browser is an old, but usable, version of Iceweasel 3.5 (Debian Firefox). There are other applications to handle graphics work, audio editing, media playback, text editing, instant messaging and a email client - basically, everything you need when you’re on the run from enemy agents. Extra software can be added via the Synaptic package manager which pulls directly from the Debian repositories. So far, so similar to most other live desktop distros. Security and limited footprint on the the host machine are the areas in which the distro differs from the run of the mill.
All interactions with the Internet are passed through Tor an anonymization system. Using Tor, Tails pipes all Internet traffic emanating from your computer through a constantly shifting set of relays that are operated by a network of volunteers. Consequently, it’s then difficult for anyone to monitor your activity on the web or for web hosts to pinpoint your location. In short, your web activities are anonymous. It’s hardly an exhaustive test, but sure enough, when I visited Google News, it presumed that was located in a different country after each reboot.
The desktop itself is pretty standard fare.
The supplied version of Iceweasel comes with an extension to enable end to end encryption (HTTPS) whenever possible in order to further increase security and another one to switch Tor on and off. Many of the applications that are supplied have been tweaked in this way, to improve security. Tails also wipes the contents of RAM on shutdown, and it has a little onscreen keyboard to bypass hardware key loggers. Note that it isn't loaded down with security tools, such as those for penetration testing, although such tools can be added via the package manager. The aim of the distribution is clearly to provide a secure client and tools rather than to provide a ready-made platform for hacking.
There’s nothing to stop you using Tor to give you a secure general purpose desktop whenever you are forced to use a machine that you are not 100% sure about, security wise. Handy, if you want to check financial or other sensitive information. Beyond that, it comes into its own for denizens of oppressive regimes in which governments actively monitor Internet use and persecute free expression.
From the walkthough document:
So, what should you do when you hear them knocking? You should calmly make a clean shut-down [...] Then you wait, possibly trying to buy valuable time by barricading your door.
The Tails website.
UK based freelance writer Michael Reed writes about technology, retro computing, geek culture and gender politics.
Practical Task Scheduling Deployment
July 20, 2016 12:00 pm CDT
One of the best things about the UNIX environment (aside from being stable and efficient) is the vast array of software tools available to help you do your job. Traditionally, a UNIX tool does only one thing, but does that one thing very well. For example, grep is very easy to use and can search vast amounts of data quickly. The find tool can find a particular file or files based on all kinds of criteria. It's pretty easy to string these tools together to build even more powerful tools, such as a tool that finds all of the .log files in the /home directory and searches each one for a particular entry. This erector-set mentality allows UNIX system administrators to seem to always have the right tool for the job.
Cron traditionally has been considered another such a tool for job scheduling, but is it enough? This webinar considers that very question. The first part builds on a previous Geek Guide, Beyond Cron, and briefly describes how to know when it might be time to consider upgrading your job scheduling infrastructure. The second part presents an actual planning and implementation framework.
Join Linux Journal's Mike Diehl and Pat Cameron of Help Systems.
Free to Linux Journal readers.Register Now!
- SUSE LLC's SUSE Manager
- My +1 Sword of Productivity
- Murat Yener and Onur Dundar's Expert Android Studio (Wrox)
- Non-Linux FOSS: Caffeine!
- Managing Linux Using Puppet
- Doing for User Space What We Did for Kernel Space
- Tech Tip: Really Simple HTTP Server with Python
- SuperTuxKart 0.9.2 Released
- Parsing an RSS News Feed with a Bash Script
- Rogue Wave Software's Zend Server