instantib.lynxchan version 2.4.10 has been made available for public use.
InstantIB.LynxChan is at https://gitgud.io/Skyline/instantib.lynxchan
InstantIB.Onion is at https://gitgud.io/Skyline/instantib.onion
We'll probably move away from CentOS in the next major update, given the changes in its project. We only chose it for its long-term support and similarity to StephenLynx's environment anyway.
>Future tutorials will include the Paranoid Admin's Imageboard Hosting Primer, in which I will briefly explain the different privacy and security trade-offs you can make as an imageboard admin for yourself and your users, making payments and taking donations without compromising your identity, understanding how to maintain OPSEC+COMSEC+FINSEC in such a way that a single breach will not be your undoing, how all this might be done in practice, and more.
This never happened, but briefly:
>Use domain, DNS, and hosting companies that accept Monero (XMR) or Zcash. Bitcoin is traceable given sufficient interest and resources, and exchange KYC laws mean that your money's point of entry into the system is painted on you. One way to do this might be to buy BTC, send it to a more-anonymous exchange that doesn't require KYC, swap it for Zcash, send the Zcash through an independent wallet running on Tails/Whonix, then send it on for the payments.
>Do your homework with regard to what your different providers will and will not accept. For example, NiceVPS will host almost anything, but they are very expensive. Note that some "free speech" hosts specifically exclude certain types of speech in their fine print.
>Understand operational trade-offs for different protection. For example, European hosts often don't need to know anything about your identity, but they have much weaker protections for content. American hosts ostensibly receive First Amendment protection, but they are required to know your identity. (A good example is Nearly Free Speech, who have an extremely robust policy protecting speech of the kind they themselves find deeply objectionable, but who insist upon knowing the identity of the single natural person whom the account belongs to.)
>Interact with your providers and systems only through anonymised systems like Whonix or Tails.
>If you can afford it, split domain registration between different companies in different jurisdictions. Anon.cafe's domains are registered in Romania and a few other nations.
>Don't use domains whose authorities have a history of takedowns and other such actions. Anon.cafe uses .co and .org as backup domains, .cafe being a TLD of unknown risk.
>Don't build an identity for yourself. Some imageboard admins establish small cults of personality, but we recommend against it unless you have watertight OPSEC and COMSEC. Identity tends to grow until it affects your actions in ways that won't be immediately obvious to you. Imageboard culture values anonymity for a reason.
Our own methods are only intended to protect us from Internet crazies with a grudge and de-platforming methods available to the average agitator, keeping in mind that various providers may one day be breached and their information sold to the highest bidder and/or released publicly. At the end of the day, these guidelines will only help if you don't do deeply illegal or immoral shit like hosting child pornography (and if you do host CP you deserve to be caught). All anonymization can be penetrated given enough time, effort, money, expertise, and mistakes on the part of the target.
Edited last time by root_admin on 02/19/2021 (Fri) 04:34:42.