[vmception]

okay, can't argue that, a 'zero day' is always a threat, especially given how much trust is required in the Tails updates which are like every month

odd and unlikely attack vector, but always a target

[FDSGSG]

>odd and unlikely attack vector, but always a target

??

The FBI has publicly burned firefox 0days to deanonymize Tor users at scale.

We're having this conversation under a post titled "So, you want to be a darknet drug lord".

If you want to be even a small time DNM vendor, you should not use Tails but Whonix.

[vmception]

yes we know its always a target like I already said, I know the FBI and others are actively researching and attacking

But a browser escape is different than obtaining root on an OS that doesnt even enable root by default

like I said, different harder attack vector, likely under research

save the argument for someone more in denial about that?

[boring_twenties]

> an OS that doesnt even enable root by default

This is a meaningless statement. Just because there is no way to log into the root account doesn't mean there isn't a kernel that treats uid 0 specially.

[FDSGSG]

>But a browser escape is different than obtaining root on an OS that doesnt even enable root by default

A linux LPE is worth a small fraction of the money a Firefox escape is. Far easier to come by, far weaker defences.

At least tails seems to use network namespaces now, so deanonymization without root might not be as trivial as it was before.

[vmception]

where is a good place to discuss current and proposed Tails OPSEC

most of the stuff I find on Tor is very outdated, still enough relevant to piecemeal some decent OPSEC, but being able to bounce ideas of people objectively seems to be lacking - or I don't know the communities

there is the tor reddit page, but reddit is periodically hostile to tor connections. dread on tor is often down, so thats annoying, but I found onion services within tor often had the best information on using tor

[FGDSD]

I'd stick to the tor IRC channels on OFTC for informed conversations.

/d/OPSEC and dread in general is a cesspit with few quality conversations.