Whonix
Updates broken. Error message:
following signatures were invalid: EXPKEYSIG CB8D50BB77BB3C48 Patrick Schleizer <adrelanos@kicksecure.com>
How to get and install a new one on the gateway ?
No internet access, no real useful instructions found.
Getting the key via gpg: "Operation not permitted" ?
Yes, using "sudo".
The fix I did yesterday on a diferent instance (virtualbox) does no longer work.
#whonix #kicksecure
Manual Debian hardening for serious security.
No automation. No assumptions. Full control.
.
.
#Kicksecure #DebianLinux #Hardening #SecurityFirst #Linux
Kicksecure enforces stricter umask settings and secure folder permissions to protect sensitive data from unauthorized access.
#Kicksecure #FilePermissionHardening #UmaskSecurity #LinuxSecurity #SecureByDefault
Kicksecure’s hardened architecture, limited attack surface, and secure defaults reduce exposure to viruses and common malware tactics.
#Kicksecure #VirusProtection #MalwareDefense #SecureLinux #CyberSecurity
Recently installed Kicksecure and Whonix on a 'persistent' USB stick.
Already have TAILS OS as a 'persistent' install on a USB stick and cloned to a MicrSD card.
I'm wondering if anyone is aware of any other viable 'live' or 'persistent' Linux OS's for portable use?
Kicksecure maintains a publicly accessible warrant canary to ensure transparency and reassure users of the project’s independence.
#Kicksecure #WarrantCanary #Transparency #PrivacyAdvocacy #OpenSourceTrust
Welcome 2026!
A year of resilience, protection, and trust.
.
.
#Hello2026 #Kicksecure #CyberResilience #PrivacyProtection
Kicksecure applies hardened kernel configurations that restrict unsafe operations and reduce attack vectors aligned with KSPP guidelines.
#Kicksecure #KernelHardening #KSPP #LinuxSecurity #SystemHardening
Kicksecure includes only essential, security-enhancing software while avoiding risky or unnecessary services, providing a clean and hardened base system.
#Kicksecure #MinimalSecureInstall #SecureDefaults #TrustedSoftware #OpenSource
Daily work and system maintenance are separated into different user roles, reducing exposure if any everyday application becomes compromised.
#Kicksecure #SysmaintSplit #SecureAdmin #LinuxHardening #LeastPrivilege
Kicksecure improves filesystem security by isolating temporary directories per user, preventing common tmp-based exploits and unsafe file access.
#Kicksecure #FilesystemSecurity #tmpHardening #SecureLinux #SystemProtection
Kicksecure enforces strict privilege separation so daily activities stay isolated from administrative control, reducing system-wide risk.
#Kicksecure #UserAccountSeparation #LeastPrivilege #LinuxSecurity #SecureOperations
Only strictly verified and digitally signed source code is allowed in Kicksecure, blocking execution of unauthorized or tampered software.
#Kicksecure #DigitalSignatures #SecureSupplyChain #SoftwareIntegrity #OpenSourceSecurity
Kicksecure mitigates time-based attacks through randomized boot clocks and secure, spoof-resistant time synchronization for stronger system integrity.
#Kicksecure #TimeAttackProtection #SystemHardening #SecureLinux #ThreatMitigation
Kicksecure routes APT updates through Tor, which is an anonymity network, to prevent targeted malicious code delivery, ensuring every update request stays unlinkable to the user.
#Kicksecure #SecureUpdates #PrivacyProtection #MalwareDefense #OpenSourceSecurity
Kicksecure delivers a deeply hardened Linux environment with security-focused configurations applied by default. It’s built for users who demand verified protection from the ground up.
#Kicksecure #SecurityHardened #LinuxSecurity #SecureByDesign #CyberProtection
With Whonix you’re secure and anonymous everywhere.
Whonix uses isolated VMs and forces all traffic through Tor, protecting your IP, identity and data wherever you browse.
#Whonix #CyberSecurity #PrivacyMatters #Anonymity #Kicksecure #TorNetwork
Secure by Design. Privacy by Default.
Whonix is built on Kicksecure-hardened Debian and runs inside VMs — so your IP, identity & data stay protected.
#Whonix #CyberSecurity #Kicksecure #PrivacyMatters #SecureByDesign #PrivacyByDefault #Anonymity #TorNetwork #VMsecurity #DataProtection #CyberDefense #SecurityHardened #OpenSourceSecurity #DigitalPrivacy
#BashCore is secure because it's based on #Debian, but don’t expect a fortress like #Kicksecure, #Whonix or #Tails...
It’s a Swiss knife: light, flexible, powerful.
For those who like to play hard: #Lynis is included, so you can test your setup and fix what you break. Have fun! 🤪
#Linux #CyberSecurity #Pentesting #InfoSec #Hardening #MinimalLinux
#Debian splash!
Fig 1. Neofetch can’t get past hypervisor to profile hardware in #Qubes
Fig 2. But even with permission hardener and and hide hw info from security misc in #Kicksecure,
admin can still get to #baremetal
How to block self-consciousness?
There are known unknowns, the unknown unknowns,
and the not to know in order to know unknowns . . .
Tips for latest Qubes: security-misc applied to #Whonix GW and WS, firejail dvm captive portal, onionize Dom0 sources and Whonix, remove xscreensaver
Fig 3. TB thinks https is a onionsite down ; )
