So slowly... this idea keeps popping into my mind, with more frequency over time. I don't know why, but I "feel" the idea isn't any good, but I seem to still think about it every now and than and so I want some criticism on it.


I'm curious about the idea of creating a project, which would be to make an Open Source, or something similar to open source forum that has a strong emphasis on security, simplicity, and not storing possibly sensitive data.

This forum would be designed for anonymity, security and that sort of stuff. Used to talk about taboo subjects, or some dissenting individual stuff...

 It would have features such as
1. No need for email address to create account
2. PM scrubbing (all read PMs get deleted, or only encrypted PMs remain, etc...)
3. IP scrubbing; or more ideally never store the IP address
4. Not allow for ANY images to be embeded (prevent capturing IP addresses)
5. No time stamps on posts, logins, PMs, etc
6. Automatically remove Exif Data from images, files, etc..
7.No referral information
8. Super small CSS, very light weight files, graphics, etc.. for Tor, etc
9. Allow for backing up of both attachments and HTML equivalent of the forum (Automatically zip files, and provide download link -- every so often, I.e one download per day, new member each day, or something to ensure info does not get lost, even if the forum does..)
--- Possibly even allow for partial database backup, (everything except certain things; PMs, etc)
10. Other stuff... or less stuff. Maybe certain username things, not display or show members post, or number of posts, etc etc....


Would this be a worth while idea, or just stupid? I know the "need" for this isn't real; as members of sites dealing with sensitive issues could just use Tor, not post certain info, disable scripts, etc... but considering people often don't do that... I think it could be useful. Maybe to this site, maybe to others as well...

I don't know. I don't think it would be hard to make if one could legally take say SMF forum software, or phpBB software and modify it accordingly.

 

Probably wouldn't be able to moderate it very easily; but oh guess what? its not easy to moderate any sort of forum.

Half of this stuff is already in e.g. Wakaba. This is the style of message board software used for 4chan. The extra features you want wouldn't be too hard to add. But like 4chan, if you get rid of registration and user tracking, expect it to be a pretty anarchic place. You wouldn't be able to maintain the same sort of atmosphere you have here.

You may want to look at:

https://secure.wikimedia.org/wikipedia/en/wiki/Beehive_Forum
http://sourceforge.net/projects/beehiveforum/
http://beehiveforum.net/

its good for a locked up setup.

Additional ideas,

Server layout:
Run from an encrypted server (aes-xts-plain64/benbi [x86/x64] with whirlpool or SHA512 for hash function, keysize 512

/boot partition on USB key kept with server owner to prevent boot partition keylogger attacks

/dev/random keyfile at boot (from GPG card) to open root partition via cryptsetup/luks

mount internal partition containing forum software in chroot jail or virtual machine

USB loading PGP/GPG cards are available online to store keyfiles and require password to unlock.  20-50 USD per card IIRC

So to boot the machine you need a credit card sized keycard and a memorised password. Never write down password. Never give it out.

Forum:
Force only acceptance of tor, block at iptables (kernel firewall) level for forum access

Redirect page to "recommend using vidalia bundle" to non tor users.

Force https with redirect to "recommending page"

You can even use an .onion address,  "secretwebsite.onion"

Backup solution:
Don't forget to encrypt secure backup DVDs using a /dev/random filled keyfile and AES-XTS-Plain64/Benbi and spread them around to trusted forums moderators.

You could even post them online others ways (avoid bittorrent not anonymous)

Only the person with that keyfile can unlock the backups but it can prevent downtime and prevent the whole hive/rhodium archives problem.

Make a copy of the keyfile from the site owner and split that copy of the keyfile into 3,5, or 7 pieces and give one piece to each senior moderator.

They can rebuild or even make a clone using the latest backup if they are all in agreement and join their pieces together to unlock the latest backup.

It is similar to the "Assange insurance file" and has been used many times before in major corporations for important backups.

Ask yourself this:

What happens if your Chief Admin/Site Owner gets killed by a bus and (later) the power cuts out to the server, how would you decrypt it if only he has the key?

The answer is to copy the key and split it into parts to give each senior moderator. If there are three parts A B and C and three moderators, you give each of them two parts: AC BC AB so that only 2/3 of moderators are needed to decrypt the backup to rebuild.

Google is littered with working "howto" documents on how to do exactly the setup I have just mentioned.

Don't forget the tinfoil hat to go along with the server hardening

How come nobody every wears a tinfoil three piece suit to go with their tinfoil hat?

So how about instead of a forum, we make it a server?

I figure it couldn't be that hard to get a well designed BSD server modified to have all of the needed things for security and anonymity  on it by default for use with Tor, or something else.

I am no where near well read up on this stuff, but I know some of you are and could probably do something pretty awesome with this idea. Some probably already have... it is not that hard to make a .ISO image available and keep everything open source, etc. AFAIK

I remember akcom was saying something in relation to silkroad about how the guy should have had the server jailed, with access to virtual IP interface, along with running the exit node in a virtual machine, and so on.. I'm sure he can along with others think of a ton of ways to improve it for people.

Do you think this would be useful for people? They could just pop in the disc, install it on a server and after setting up some login info and what not they would be good to go and able to run whatever website they wanted.  Preferably drug sales, forums like this, and all that jazz.

This would obviously have the goal of protecting the server admin and not the users - but if they are using tor or probably preferably TAILS 0.8.1 or better... they ought to be smart enough to keep it safe  and not giving away any revealing info.

I'd love to hear input on the server idea!

Yeah, I am not too concerned about this site.. I was more so thinking along the lines of lowering the barrier to entry for other people to make other websites like silkroad.
In making an Open source and easy to install secure/anonymous forum... they would be able to easily do something like that

Probably wouldn't be able to moderate it very easily; but oh guess what? its not easy to moderate any sort of forum.

LOL seriously! out loud!

 I personally feel no threat, although, different places have differing levels of concern, so its up to the individual

 IMO if you wish to maintain the "integrity" of this forum, allowing idiots to post their sycophantic hearts out, is probably not such a good idea...there is no need to 'involve' vendors here thats just my Opinion.....

F1

some type of toolkit that could be installed that would enable hardened silk rode esq sites to be set up on the fly, or maybe have two the main network with links and a an easy way for people to post auctions of goods and services anonymously.  I love the idea of lowering the barrier of entry and trying to bring more people in safely.