Many packages developed under the Whonix umbrella are independent
packages in their own right and should be available to users whether
they use Whonix directly or not.
Another long term goal is bringing some of Whonix's major software
packages with their security and privacy enhancements to Debian host
systems via our repository.
The ability to install Whonix meta-packages packages from a repository
is currently under heavy development and almost finished. With this
announcement we ask that you consider donating to sustain and accelerate
How it Works:
In two steps a user is able to convert plain Debian VMs into Whonix:
1. First by adding the Whonix repo URLs to the apt sources list
(optionally: check instructions for anonymous repo downloads)... read more
Ticket updated, shortened discussion here:
On bountysource.com showing the $ 3000 USD bounty (with old lengthy discussion):
The old discussion got too lengthy. Since no one was working on the ticket… I restarted the discussion. Meaning, I created a backup of the old discussion using webcitation, went through all the existing discussion, summarized it, and answered all questions and confusion in the initial ticket description before they come up again, and deleted all comments. That should help everyone interested working on the ticket understand what it's about and save time by skipping reading and parsing the lengthy previous discussion.... read more
Get paid to work on programming tasks! Up to $ 3.000 USD per task.
List of bounties and details:
Build Debian Packages from Source Code - $ 3.000 USD - https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code
make grsecurity kernel, grsecurity-installer work inside Whonix - $ 400 USD - https://www.bountysource.com/issues/14471558-make-grsecurity-kernel-grsecurity-installer-work-inside-whonix... read more
Tracking techniques have become more sophisticated with time. They advanced from simple cookies to browser/device fingerprinting (which Tor Browser focuses on defeating) to user behavior fingerprinting. The latter is about profiling how a user types on a keyboard or uses a mouse.
Keystroke dynamics have been around for a while but the massive scale of deployment is new and comes with serious implications for anonymous users. This technology is already used by PRISM partners, banks and massive online courses.... read more
The Free Software Foundation endorses hardware that is Libre software friendly and respects your freedom and privacy. Take a look and consider supporting the OEMs behind these great projects:
[or call it an issue of the gnupg interface and its difficulty using it inside scripts, unfinished python gpg libraries etc.]
Now hosted on whonix.org rather than volunteer mirror network. Should be more reliable.
This is what we will be using in Whonix 13.
sudo whonix_repository --baseuri http://whonix.org/download/whonixdevelopermetafiles/internal/ --repository stable --enable
Feel free to experiment with TLS.
sudo whonix_repository --baseuri https://whonix.org/download/whonixdevelopermetafiles/internal/ --repository stable --enable... read more
firejail is a sandbox to restrict the application environment.
Please contribute. Task:
Get paid to work on programming tasks!
List of bounties and details:
Build Debian Packages from Source Code - $ 3.000 - https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code
make grsecurity kernel, grsecurity-installer work inside Whonix - $ 400 - https://www.bountysource.com/issues/14471558-make-grsecurity-kernel-grsecurity-installer-work-inside-whonix
bountysource/frontend - Add support for Phabricator - $ 200 - https://www.bountysource.com/issues/1384856-add-support-for-phabricator-100... read more
(Ignore the highly specific title.)
The post General information on various clock sources such as tsc etc. by intel appeared first on Whonix.
A browser is no safe environment to write stuff such as for example forum posts or e-mails, webmail or IMAP.
The post good read on the linux security wrt to entropy / randomness appeared first on Whonix.
Whonix website, especially downloading and getting started is so super secure that mortal users give up on it. Even friends of mine, who graduated from university and working as engineers are incapable of getting Whonix installed.
My mission to make everyone happy with implementing geeky feature requests like "optional torrent downloads" has failed. Stuff like this really gets small groups of geeks happy, but overall it over complicates the download process.... read more
The post Persistent Tor Entry Guard Relays can make you trackable Across Different Physical Locations appeared first on Whonix.
I am wondering, if something like that would be useful for Qubes OS to ease download and installation.
Something similar has been discussed for Whonix some time ago, although with a different outcome.... read more
The post Selected Papers in Anonymity - Anonymity Bibliography - Selected Papers in Anonymity appeared first on Whonix.
There have been some complaints, that there are too many Whonix packages. Specifically by people auditing or trying to understand Whonix better. I think here is some valid and some invalid criticism. Nowadays seemlingly almost everyone is overworked. Attention spawns are small. However, it should not be expected to be capable to get an overview about a linux distribution in 5 minutes. All I can do is ask to take 30 or 60 minutes to go through the list of Whonix packages one by one. Perhaps just read the quick github description. And if you want to learn more, see their readme files. That should give you a good first overview.... read more
916B 8D99 C38E AF5E 8ADC 7A2A 8D66 066A 2EEA CCDA
It's been suggested to post Whonix signing key on twitter. Yes. Why not. Good idea. Let's post it to facebook and twitter. Just for additional verification. Needless to say, that relying on key signatures is more secure.
pub 4096R/2EEACCDA 2014-01-16 [expires: 2016-10-05]
Key fingerprint = 916B 8D99 C38E AF5E 8ADC 7A2A 8D66 066A 2EEA CCDA
uid [ultimate] Patrick Schleizer <firstname.lastname@example.org>
sub 4096R/CE998547 2014-01-16 [expires: 2016-10-05]
sub 4096R/119B3FD6 2014-01-16 [expires: 2016-10-05]
sub 4096R/77BB3C48 2014-01-16 [expires: 2016-10-05]... read more
Public for a long time, yet seemingly not found by anyone.
it. Fork it on github. Ideally keep it current.
Test our instructions for replicating whonix.org.
Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP.
Whonix consists of two parts: One solely runs Tor and acts as a gateway, which we call Whonix-Gateway. The other, which we call Whonix-Workstation, is on a completely isolated network. Only connections through Tor are possible.... read more
The new Qubes website is looking great. Check it out!
It's a great inspiration. Whonix's home page also urgently needs a redesign.
The Tor Project is running its first donation campaign ever. I urge our dear users to support them. They are the guardians of the last free space on the web, working tirelessly and passionately to preserve people's rights and even lives around the planet. Without them Whonix wouldn't exist.