Amazing Privacy Ideas with KVM Virtual Machines

Показать описание

KVM virtual machines are standard fare in shared Linux servers. But here we will talk about using KVM in a desktop environment and strategize how to use it for privacy. KVM is an incredibly practical tool for coming up with private and secure approaches to a desktop experience.

This video introduces some practical application of KVM and variants in use. This is not just an installation video.

In this video we will demonstrate how to install KVM, which is very easy on Linux. Later in the video we will strategize the use of VM's in a way that is actually practical for daily driver use on a desktop.

This includes demonstrating how to set up KVM on an external drive and thinking about linking it with cloud options.

This video was done using Ubuntu 20.04 on a Starlabs Systems laptop.

If you're interested in setting up a NextCloud server or your own KVM servers in the cloud, look into:
Linode ($100 60 day credit offer)

COMMAND LINE

Check for Virtualization Support

egrep -c '(vmx|svm)' /proc/cpuinfo

sudo apt-get install cpu-checker

kvm-ok

KVM Install
sudo apt install -y qemu qemu-kvm libvirt-daemon libvirt-clients bridge-utils virt-manager

Install a VM by Command Line

sudo virt-install --name=ubuntu20.04-vm
--os-variant=Ubuntu20.04
--vcpu=2 --ram=4096
--graphics spice
--network bridge:vibr0

Find VM Locations

virsh list --all
virsh vol-list default
cd /var/lib/libvirt/images

Edit VM Locations on KVM

virsh pool-destroy
virsh pool-edit default
virsh pool-start

Edit Location in VM Config

virsh edit ubuntu20.04
or
virsh edit [domain]

-----------------

I'm the Internet Privacy Guy. I'm a public interest technologist. I'm here to educate. You are losing your Internet privacy and Internet security every day if you don't fight for it. Your data is collected with endless permanent data mining. Learn about a TOR router, a VPN , antivirus, spyware, firewalls, IP address, wifi triangulation, data privacy regulation, backups and tech tools, and evading mass surveillance from NSA, CIA, FBI. Learn how to be anonymous on the Internet so you are not profiled. Learn to speak freely with pseudo anonymity. Learn more about the dangers of the inernet and the dangers of social media, dangers of email.

I like alternative communication technology like Amateur Radio and data communications using Analog. I'm a licensed HAM operator.

Please follow me on Odysee! (Previously LBRY.tv)

Рекомендации по теме

Комментарии

The moment you started speaking i subscribed.

thebzz

OMG I feel so free now, amazing how just 1 strip of velcro changes everything in this external HD + Laptop set-up!

MadCowMusic

This was a great video, Rob. Thanks for all that you do for the privacy-minded community.

techhoppy

Bravo! Very well done. I've been running VirtualBox for years, but never felt motivated to tinker with anything else, until now. Thanks for sharing!

AndYourISM

Freaking fantastic video. I never stopped to think I could run multiple VMs for various 'online tasks' to isolate myself in terms of privacy.

brianfabrizio

Further tip:

Instead of installing the VPN code in the host, install it in the VM. That way you can select different IP addresses for different VMs to use, making it one step harder for the bad guys to link your VMs together.

Most VPN providers give you a choice of different IP addresses, located in different cities and even different countries.

Make sure your banking IP is plausible -- definitely your own country and close to home. I kept on getting extra security checks from my bank, and I found out that these were triggered by doing internet banking from a VPN IP some 200miles from home which is apparently one of the risk factors they use for spotting when a fraudster has got your login credentials.

trueriver

Great vid!
Another thing you can do with KVM is run your Nextcloud from it. To ensure that you have the maximum space available for your Nextcloud take a large external drive and encrypt it with cryptsetup. Then point the VM to use the device-mapped unencrypted device to use it as a storage device (e.g. /dev/mapper/nameofcrypt). This can't be a pool and must be done by editing the domain xml file.
What this means is you can restore the Nextcloud VM easily by taking a dump of the domain file and just import the dump on another box with the drive plugged into it and unlocked. Since the VM is pointing at a device mapper device its really hard for a potential attacker to attack via device renaming.
It also means it can be much faster than qcow on a 5400/7200 rpm drive (assuming USB3 and UAS for the external). qcow on SSD is fast, but having large sizes can get costly.
Sure you could present extra storage via NFS, or Nextcloud's external storage function, but this keeps everything on a single encrypted storage device (minus backups).

lizjohnson

Enjoy your videos sir. Thank you for sharing your knowledge with us. I just tried Virtual Machine Manager, which i think is the same as KVM (?), as opposed to my normal virtualbox and I'm impressed. It works great right out of the box with my new Garauda install. Came with the distro. Much faster than Vbox and no guest modules to install either. Linux ROCKS! Thanks again Rob

richardwillis

I find it worrying that this channel has “only” 45k subs... we’d all be in a better world if these were 100x more!

gozzilla

Thank you so much, Form Sunshine here.Fianily getting some where, paid my dewes. Thank you so much for sharing with me. I will be seeing you. And see that we alll stay safe. (:

lorettasunshine

I HAVE TO GIVE YOU CREDITS. I have been working for years on my privacy on the net, but man you are good. I still can learn somethings from you!

arnold

Thank you Rob.
Very generous of you to share the steps.

wagoshbrownlongtree

Great video Rob, very informative! I use virtualization to look at new distros or versions, but this is a great practical application for using it.

drummerboyj

You are really helping us making our life simple ans ... private ! Thanks for making these videos

alainbosse

Very very informative. I'll have to revisit this topic again in the future.Thank you immensely.

Tru-dpyt

Legendary stuff Mr Braxman. Thank you!

josmith

Thank you for this absolutely awseome video. Keep it up!

benutza

Man two videos and I already subscribed ! Very informative, thanks, keep up the good work and stay safe :)

darkghost

Awesome video! Also useful for more than just privacy - a stateless VM can protect you from a lot (tho there are exploits that can jump out to host, you're protected from a lot)
Rob is by far the best privacy guru!

diceblue

Great Content ... i refer to this video every time i need to install KVM ... Thanks Man

fpfsxlt

Amazing Privacy Ideas with KVM Virtual Machines

Amazing Privacy Ideas with KVM Virtual Machines

NEVER TOO SMALL 24sqm/258sqft Micro Apartment - Boneca

Why Use Virtual Machines for Privacy and Security? Not Obvious! Top 6 List!

Top 14 features in Android 14

It’s Been a Good Run, Phone Providers.

Introducing the Lindy KVM over IP Extender System, Part No's: 38264 & 38265

Balcony Privacy Screen Protection Design Ideas

How to using HDMI USB kvm Extender

Whonix KVM - A Secure OS for the Dark Web

ACS Introduction - KVM

KVM-Console via USB 2.0 Draagbare Laptop Adapter - NOTECONS01 | StarTech.com

Live Replacing Xen with KVM (and vice versa) in 10 seconds - Tu Dinh Ngoc, IRIT

Docks vs Hubs - Whats the Difference?

DIGITUS® KVM solutions for the server administration

ARCHITECT REDESIGNS - A Tiny NYC Studio Apartment For a Family of 3 - 30.7sqm/330sqft

10 Smart Gadgets That Are On Another Level

🍿 Relax dans le fauteuil ☕ ▶ KVM powered by GNU Linux 🦾😮

Belkin Secure KVM – What is Air Gap

🔴 KVM - la virtualizzazione più usata al mondo. Ne parliamo al corso GRATUITO #RH018

The TOP 3 uses for a Raspberry Pi!!

Will Tesla window break my hand?

Manage ANY PC or Server Remotely! - TinyPilot KVM over IP

XCP-NG vs Xen vs XenServer vs KVM vs Proxmox

Privacy. That's LinuxPhone. True? False?