Kicksecure ™ for KVM with XFCE
Kicksecure ™: A Security-hardened, Non-anonymous Linux Distribution.
|About this Kicksecure/KVM Page|
This is the KVM flavor of the Kicksecure ™ project - a hardened and security centric version of Debian optimized for virtualized environments and clearnet usage. Much of the warnings and use case instructions from the Whonix ™ edition, such as running the OS headlessly or using shared folders, are applicable.
Build from Scratch
Advanced users are encouraged to build Kicksecure ™ images for high security assurance.
Download Kicksecure ™
|Verify images using this Signing Key|
Verify the Kicksecure ™ Image
1. Ensure the tarball is in the user home folder before applying these steps.
2. Do not use
unxz! Extract the images using gnu
3. Use gnu
tar to decompress the archive.
tar -xvf Kicksecure*.libvirt.xz
Importing Kicksecure ™ VM Template
The supplied XML files serve as a description for libvirt and define the properties of a Kicksecure ™ VM and the networking it should have.
Moving the Kicksecure ™ Image File
The XML files are configured to point to the default storage location of
/var/lib/libvirt/images. The following steps move the images there so the machines can boot.
Note: Changing the default location may cause conflicts with SELinux, which will prevent the machines from booting.
It is recommended to move the image file instead of copying it.
sudo mv Kicksecure*.qcow2 /var/lib/libvirt/images/Kicksecure.qcow2
- It does not matter if the bulk download is done over an insecure channel if software signature verification is used at the end.
- https://forums.whonix.org/t/gpg-show-key-warning-gpg-warning-no-command-supplied-trying-to-guess-what-you-mean/7859 [archive]