[Lancaster] Super-Secure Computer

Adam Stirland ratbert at f2s.com
Sun Sep 4 21:32:42 BST 2005 

Hi everyone,

I'm starting a project and I would like people's opinions, advice, ideas 
etc. on the software and OS aspects (i.e. nothing 'physical').
I want to make an extremely secure computing environment using Linux. 
The computer will be a laptop running an undecided flavour of Linux.  I 
want to use encrypted email, secure internet access, anonymous proxy 
internet connections, encrypted hard drives, etc.
The computer will be configured to use dial-up for internet when 
out-and-about and Wi-Fi for connecting to the internet/my work and home 
networks.
It would also be good if it had some *extra* security features to help 
anonymity/security (i.e. MAC spoofing, IP masking, etc.) so if you have 
any ideas on stuff like that then that'd be greatly appreciated.
I want the whole thing to be *extremely* secure and to be as anonymous 
on the internet (and network if possible) as possible.  Protected from 
crackers, viruses, snoopers, sniffers, wardrivers, etc.

I want to develop this to see how secure and anonymous you can make a 
machine (maye for deployment on a network as a security station or for 
auditing purposes).  It is something I have been interested in doing for 
a while but have only just got around to have the time and resources to do.

The machine I will be using for this is a Compaq Prosignia laptop with a 
600mhz P3 and 128mb of Ram.  It has 2 pcmcia slots (one is taken up by 
an Enterasys-branded Orinoco card that has a 5dBi antenna attached) and 
an onboard 56k Modem.  It also has an infrared port and occasionally has 
a 10m USB Bluetooth dongle plugged into the USB port (there are 3 extra 
ones available).  It has a pretty fast CD-Drive and a Floppy drive.  The 
battery doesn't work (I hope to get a new battery in a few months) so it 
currently runs on AC.

Like I said I haven't made any firm decisions on software yet (except 
that the OS will be Linux) so fire away.

Any ideas you have on software, scripts, etc or just thoughts or 
opinions on implementation, do-and-dont's etc. then these are all welcome.
Sorry for being so long-winded and detailed but I find that helps when 
you want to give people enough info to help you (or enough rope to hang 
you with ;) ).

Many thanks,

Adam.

More information about the Lancaster mailing list