Opsec advice for vendors requested : OpSec | Torhoo darknet markets

Alright, these are all the most basic questions anyone could ask. You should genuinely sort these out before you actually deal, I'd be very concerned otherwise. (considering you even have your own subdread)

1. TAILS vs Whonix vs QubesOS
- TAILS is usually for short term things, like a quick in and out. Best for casual buyers. Simple to set up and use.
- Whonix is a bit more complicated to set up, but offers more flexibility and security.
- QubesOS is for the ultra paranoid. Maximum available security but also really steep learning curve.

2. Bridge or no bridge?
- Definitely use a bridge. In case you didn't know, bridges basically hide the fact you're using Tor. (But it isn't foolproof as analysis can still figure out if you're using Tor)
- Obsf4 is the latest one, makes Tor data look like random data.
- NO BRIDGE IS FOOLPROOF.

3. XMR?
- ONLY XMR. You will get caught if you used only Bitcoin due to chainanalysis (BTC's blockchain is public, XMR's is private.)
- Beware of using XMR nodes. LE is known to be running lots of nodes with chainanalysis built in. Carefully choose your nodes.

4. PGP. How often should this change?
- This shit shouldn't change. That's the point. You should almost never change your keys.

5. Don't use Session or Signal. Use SimpleX Chat through Tor or just use Jabber/XMPP.

6. Always disable javascript. Most Tor zerodays are based on javascript.
- No JS = better.

7. There isn't any "superior" email platform. (Like bruh email is fucking email. What unnecessary bloat do you want?)

8. Tor Vs I2P
- Both are good. Depends on use-case.

9. Yes, people do use Jabber.

I hope this fucking helped. You should consider reading the wiki and dnmbible for fucking once.
Have a good fucking day.
bleak.

One question. Can session just be used for simple communication where you dont send any crucial msg?