WEBVTT

00:00.570 --> 00:05.790
We've seen so far how great Cuba's is at improving our security.

00:06.060 --> 00:13.080
It improves our security through the different security domains by isolating them inside individual

00:13.080 --> 00:16.210
virtual machines that use their own resources.

00:16.230 --> 00:21.360
We saw how cool the disposable and the vault virtual machines are and more.

00:21.450 --> 00:28.410
All of these features make a really secure operating system and they also improve our user experience

00:28.410 --> 00:33.450
and force the users to use their operating system in a more secure manner.

00:33.960 --> 00:40.320
So that's the security part covered, but we still haven't covered how to become anonymous and how to

00:40.320 --> 00:44.400
improve our privacy while surfing the Internet using cubes.

00:44.400 --> 00:50.610
Because all of the virtual machines that we see in so far access the Internet directly and therefore

00:50.610 --> 00:53.190
are vulnerable to trackers and so on.

00:53.940 --> 01:01.200
Now all of these operating systems use the same networking virtual machine, which is the sixth net

01:01.200 --> 01:02.010
right here.

01:02.040 --> 01:07.980
Like I said, this routes the traffic directly to the Internet and therefore they're not anonymous or

01:07.980 --> 01:08.760
private.

01:09.540 --> 01:15.240
However, Cubes also offer another networking service, which is the Cisco Unix.

01:15.480 --> 01:21.990
This is a networking service that forces the traffic to go through the Tor network.

01:22.440 --> 01:29.460
Therefore, when a machine is configured to use this Unix as the gateway, this machine is traffic will

01:29.460 --> 01:35.550
be forced to go through the Tor network, therefore improving our privacy and anonymity.

01:36.120 --> 01:40.200
Now, by default, we have a domain called anon Unix.

01:40.230 --> 01:42.810
This is something that I haven't covered so far.

01:42.840 --> 01:48.540
And as usual, because this is a domain, this means that this is a virtual machine designed for us

01:48.540 --> 01:52.650
to use to carry out day to day tasks, to carry out normal tasks.

01:52.770 --> 02:01.140
And this virtual machine is a template of the UNIX workstation right here, and it's configured to use

02:01.140 --> 02:03.870
the CIS Unix as its gateway.

02:03.900 --> 02:11.400
Therefore, all of the traffic going out of the anon who next virtual machine will be forced to go through

02:11.400 --> 02:12.480
the Tor network?

02:13.140 --> 02:15.540
Let me show you real quick before we run this machine.

02:15.540 --> 02:23.010
So I'm going to go to my cubes manager and in here you'll notice that we have the EIN on UNIX right

02:23.010 --> 02:23.530
here.

02:23.550 --> 02:29.210
This is the virtual machine that we can use for our day to day use because it is a domain.

02:29.220 --> 02:37.350
And if you look under the net VM right here, you'll see that it is configured to use this UNIX as its

02:37.350 --> 02:43.380
network virtual machine, which means that all of the traffic in this virtual machine will be forced

02:43.380 --> 02:48.360
to go to this Unix, which will force that traffic to go through the Tor network.

02:48.870 --> 02:54.170
Now, if you look at all of the other virtual machines, you'll see that they're configured to use this

02:54.180 --> 02:57.060
firewall, for example, the work right here.

02:57.090 --> 03:03.870
You'll see that it is configured to use the CIS firewall as its networking virtual machine.

03:03.870 --> 03:09.780
And if we follow this, we have this firewall right here, you'll see this will redirect the traffic

03:09.780 --> 03:10.920
to the Internet.

03:10.920 --> 03:17.400
So any traffic in my work domain and all of the other virtual machines will go to the CIS firewall and

03:17.400 --> 03:19.860
then to this net and to the Internet.

03:19.860 --> 03:23.850
Therefore, it is not anonymous and it's not private.

03:24.810 --> 03:27.960
So let's go ahead and use this virtual machine.

03:27.960 --> 03:33.300
So we're just going to go again, as usual, to the virtual machine we want to start, which is a non

03:33.330 --> 03:39.660
Unix and you can see a list of all of the programs that you can run inside this virtual machine.

03:39.900 --> 03:46.230
First one is an IRC chat client that you can use to communicate over I.R.S. if you want.

03:46.260 --> 03:51.540
You got your settings, you get your file manager, you have the Tor browser, which we've been using

03:51.540 --> 03:53.460
inside different operating systems.

03:53.460 --> 03:55.860
So using it in here is identical.

03:56.310 --> 04:01.650
You have a wizard that will allow you to download an update tor using.

04:01.650 --> 04:02.610
This is very simple.

04:02.610 --> 04:04.360
You can just click it to run it.

04:04.380 --> 04:09.390
It will check what's the latest version and if there is a new version, you can install it from here.

04:09.810 --> 04:16.530
You can run the index check right here to check the whole Unix operating system, the whole Unix virtual

04:16.530 --> 04:21.870
machine, make sure that it's up to date, make sure that it is configured and it's running as expected.

04:21.870 --> 04:24.840
This actually runs the first time you run tails.

04:24.840 --> 04:29.910
If you remember when we got the Unix wizard, then we went through it in the first basic lecture of

04:29.910 --> 04:30.630
the section.

04:30.630 --> 04:32.640
So there is no need to run this again.

04:32.700 --> 04:38.310
And you also have your terminal where you can execute commands inside this virtual machine.

04:39.000 --> 04:42.150
So right now, let's just go ahead and run the Tor browser.

04:42.990 --> 04:48.570
Obviously, as usual, this will start the next virtual machine first and then as soon as it starts,

04:48.570 --> 04:51.540
it will launch an instance of the Tor browser.

04:52.710 --> 04:53.400
And perfect.

04:53.400 --> 04:58.770
As you can see, we have the Tor browser running inside the anon next domain.

04:58.800 --> 04:59.790
Notice the color.

04:59.790 --> 05:01.710
It's different than all of the other domains.

05:01.710 --> 05:06.780
Again, this will help you to easily know which domain you're working in or which virtual machine.

05:07.020 --> 05:14.640
And you can navigate to check dotcom or just click on the IP check in here and you'll see that that

05:14.640 --> 05:18.660
this machine is configured to use the Tor browser properly.

05:18.660 --> 05:21.870
So we are accessing the Internet through Tor.

05:21.900 --> 05:26.640
So right now you can go ahead and access Tor hidden services from this browser.

05:27.000 --> 05:31.140
It can also change its settings in here from the same places that you're used to.

05:31.170 --> 05:34.320
So this is the exact same browser that we're using.

05:34.350 --> 05:40.020
The only difference is right now it's running through its own isolated virtual machine.

05:40.350 --> 05:46.830
And as usual, if this virtual machine gets compromised or hacked in any way, it is completely isolated.

05:46.830 --> 05:53.670
So it is very difficult and highly unlikely that the hacker will be able to exit this and compromise

05:53.670 --> 05:55.290
other virtual machines.

05:55.800 --> 06:02.070
Now, just to confirm, I already have a web browser here running in my work domain, and let's just

06:02.070 --> 06:05.970
go to Google and check what's my IP.

06:06.390 --> 06:13.530
You'll see that my IP, my actual real IP in here is completely different than the IP that we see in

06:13.530 --> 06:15.300
here inside the Tor browser.

06:15.300 --> 06:20.520
Because inside the Unix virtual machine, like I said, everything is being forced to go through the

06:20.520 --> 06:27.060
Tor network, whereas my work virtual machine, if we look at the Cube's VM in here, the work virtual

06:27.060 --> 06:33.840
machine is using the CIS firewall as its virtual machine, which forwards data directly to this net

06:33.840 --> 06:36.780
and therefore goes directly to the internet.

06:38.210 --> 06:44.700
Now another really cool virtual machine that we have in here is the disposable who next workstation.

06:44.720 --> 06:50.540
So we already covered the normal disposable virtual machine and we saw how this can be very useful to

06:50.540 --> 06:55.460
run untrusted applications, untrusted files or open untrusted websites.

06:55.460 --> 07:01.610
Because like we said, every time you start a disposable virtual machine, cubes create a completely

07:01.610 --> 07:02.840
new virtual machine.

07:02.840 --> 07:07.460
And then when you stop it, this virtual machine is completely destroyed.

07:07.460 --> 07:12.920
Therefore, even if it contained any malware, this malware will be destroyed along with the actual

07:12.920 --> 07:13.880
virtual machine.

07:13.880 --> 07:20.030
And because this is a completely isolated virtual machine, it is very difficult to compromise the other

07:20.030 --> 07:20.810
machines.

07:21.350 --> 07:25.070
So right here we have another disposable virtual machine.

07:25.070 --> 07:31.040
The only difference between the Unix and the fedora one, the Unix one, as the name suggests, will

07:31.040 --> 07:36.530
force all of the traffic to go through the gateway, which forces all the traffic to go through the

07:36.530 --> 07:37.370
Tor network.

07:37.370 --> 07:44.000
So you can think of this like a disposable virtual machine that will force all the traffic through the

07:44.000 --> 07:44.870
Tor network.

07:44.870 --> 07:49.790
So you can use this virtual machine to run any untrusted darknet links.

07:49.790 --> 07:52.430
And there are a lot of untrusted darknet links.

07:52.430 --> 07:54.380
So this is very, very useful.

07:54.380 --> 08:00.350
And you can also use it to run any untrusted files that you get through the darknet.

08:00.380 --> 08:05.300
Now, usually you shouldn't trust any files you get even on the clear net, but if you are receiving

08:05.300 --> 08:10.340
files or if you want to open files that you download from the darknet, then you should definitely run

08:10.340 --> 08:13.040
it inside a disposable virtual machine.

08:13.700 --> 08:16.430
Now using this is similar to any other virtual machine.

08:16.430 --> 08:18.800
You can run the application that you want from here.

08:18.800 --> 08:24.290
And because it is disposable, like I said, when you click on an application, a virtual machine will

08:24.290 --> 08:27.860
be created specifically to run this application only.

08:27.860 --> 08:32.150
And when you close the application, the whole virtual machine will be destroyed.

08:33.380 --> 08:39.460
Now with these two virtual machines and with the way cubes is structured, you can do so much more.

08:39.470 --> 08:46.770
You can actually create a different virtual machine for every identity that you want to use on the darknet.

08:46.790 --> 08:52.160
So for example, you can have a number of domains similar to the way we have work and personal and untrusted

08:52.160 --> 08:54.440
here that all go through the clear net.

08:54.470 --> 08:59.510
You can have a number of virtual machines that force their traffic through the index gateway through

08:59.510 --> 09:05.060
Tor and use each one of them for every identity you use on the darknet.

09:05.060 --> 09:07.450
Or, for example, use one of them for chat.

09:07.460 --> 09:13.280
Use one of them to only include your crypto wallets and use the other for surfing the Internet or for

09:13.280 --> 09:14.500
surfing the darknet.

09:14.510 --> 09:17.660
So you can really structure this any way you want.

09:17.660 --> 09:20.270
And doing that is very, very simple.

09:20.810 --> 09:21.600
Let me show you.

09:21.620 --> 09:27.710
So, again, you need to go back to your cubes manager and all you have to do is right click the machine

09:27.710 --> 09:30.770
that you want to clone or create a copy of.

09:30.770 --> 09:36.980
And in this case, let's say you want to make a copy of our and on UNIX because this is the virtual

09:36.980 --> 09:40.910
machine that forces traffic through the Tor network.

09:40.910 --> 09:45.200
And all you have to do is right click it and click on Clone Cube.

09:45.590 --> 09:52.520
This will create a new virtual machine that is identical to an on Unix and then you can use this for

09:52.520 --> 09:54.350
any other reason you want.

09:54.560 --> 10:00.710
So this is really, really cool and can be tailored to fit so many scenarios and so many uses.