Whonix / _: Recent posts

whonix.org apt repository – testers wanted!

Now hosted on whonix.org rather than volunteer mirror network. Should be more reliable.

This is what we will be using in Whonix 13.

sudo whonix_repository --baseuri http://whonix.org/download/whonixdevelopermetafiles/internal/ --repository stable --enable
Feel free to experiment with TLS.

sudo whonix_repository --baseuri https://whonix.org/download/whonixdevelopermetafiles/internal/ --repository stable --enable... read more

Posted by SourceForge Robot 2016-03-14

Looking for firejail / seccomp maintainer for better security!

firejail is a sandbox to restrict the application environment.

Please contribute. Task:

  • play around with firejail in Whoinx
  • see how it goes
  • report (and possibly fix) issues upstream in firejail
  • test the Tor Browser firejail profile, consider packaging it
  • maintain firejail profiles in Whonix... read more
Posted by SourceForge Robot 2016-03-11

bounty overview – March 2016

Get paid to work on programming tasks!

List of bounties and details:

Posted by SourceForge Robot 2016-03-10

General information on various clock sources such as tsc etc. by intel

Posted by SourceForge Robot 2016-02-25

a browser is not a safe environment to type

A browser is no safe environment to write stuff such as for example forum posts or e-mails, webmail or IMAP.

  • You could accidentally paste things you don't want to paste for example into the search or url bar, which could trigger a search for text that you did not intend to sent into the public internet.
  • With JavaScript enabled, while you type, the server already knows what you type as you type..
    • It reveals, how fast you type, how long your breaks are, which mistakes you make and how you correct them while writing the draft, also which type of local keyboard you are using.
    • It should be assumed, that such data is already being collected and analyzed.
  • Since there is stylometry which works with less data (final text only), it is save to assume, that data is more than unique enough to pose a serious risk for de-anonymization or at least anonymity set reduction. An adversary having this data from a user having typed over clearnet, then comparing with a user having typed over Tor, may be able compare those. Even if it was not a 100% hit, reaching higher probabilities this is already fatal.
  • Write the text in an offline text editor such as KWrite and copy and paste the text into the web interface once you are done.... read more
Posted by SourceForge Robot 2016-02-16

good read on the linux security wrt to entropy / randomness

Posted by SourceForge Robot 2016-02-15

upcoming usability improvements that will hurt, TLS downloads, abolishing torrent downloads

Whonix website, especially downloading and getting started is so super secure that mortal users give up on it. Even friends of mine, who graduated from university and working as engineers are incapable of getting Whonix installed.

My mission to make everyone happy with implementing geeky feature requests like "optional torrent downloads" has failed. Stuff like this really gets small groups of geeks happy, but overall it over complicates the download process.... read more

Posted by SourceForge Robot 2016-02-14

Whonix FAQ was updated

Posted by SourceForge Robot 2016-02-10

Persistent Tor Entry Guard Relays can make you trackable Across Different Physical Locations

Posted by SourceForge Robot 2016-02-10

Tails Installation Assistant – What do you think about it?

Tails (The Amnesic Incognito Live System) has now a Tails Installation Assistant. What do you think about it? Does it improve or worsen usability?

I am wondering, if something like that would be useful for Qubes OS to ease download and installation.

Something similar has been discussed for Whonix some time ago, although with a different outcome.... read more

Posted by SourceForge Robot 2016-02-01

Selected Papers in Anonymity – Anonymity Bibliography – Selected Papers in Anonymity

Posted by SourceForge Robot 2016-01-28

consolidating Whonix packages

There have been some complaints, that there are too many Whonix packages. Specifically by people auditing or trying to understand Whonix better. I think here is some valid and some invalid criticism. Nowadays seemlingly almost everyone is overworked. Attention spawns are small. However, it should not be expected to be capable to get an overview about a linux distribution in 5 minutes. All I can do is ask to take 30 or 60 minutes to go through the list of Whonix packages one by one. Perhaps just read the quick github description. And if you want to learn more, see their readme files. That should give you a good first overview.... read more

Posted by SourceForge Robot 2016-01-17

Whonix Signing Key Fingerprint mirrored on Social Media

916B 8D99 C38E AF5E 8ADC 7A2A 8D66 066A 2EEA CCDA

It's been suggested to post Whonix signing key on twitter. Yes. Why not. Good idea. Let's post it to facebook and twitter. Just for additional verification. Needless to say, that relying on key signatures is more secure.
pub 4096R/2EEACCDA 2014-01-16 [expires: 2016-10-05] Key fingerprint = 916B 8D99 C38E AF5E 8ADC 7A2A 8D66 066A 2EEA CCDA uid [ultimate] Patrick Schleizer <adrelanos@riseup.net> sub 4096R/CE998547 2014-01-16 [expires: 2016-10-05] sub 4096R/119B3FD6 2014-01-16 [expires: 2016-10-05] sub 4096R/77BB3C48 2014-01-16 [expires: 2016-10-05]... read more

Posted by SourceForge Robot 2016-01-06

Want a local backup of Whonix wiki contents?

Public for a long time, yet seemingly not found by anyone.

mediawiki markup:
https://github.com/Whonix/whonix-wiki-backup

mediawiki xml:
https://github.com/WhonixBOT/WhonixWikiBackups

git clone
it. Fork it on github. Ideally keep it current.

Test our instructions for replicating whonix.org.
https://www.whonix.org/wiki/Dev/Replicating_whonix.org

Help creating a Whonix backup script:
https://phabricator.whonix.org/T159... read more

Posted by SourceForge Robot 2016-01-06

Whonix 12 released!

Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP.

Whonix consists of two parts: One solely runs Tor and acts as a gateway, which we call Whonix-Gateway. The other, which we call Whonix-Workstation, is on a completely isolated network. Only connections through Tor are possible.... read more

Posted by SourceForge Robot 2015-12-14

New Qubes website! New Whonix homepage?

The new Qubes website is looking great. Check it out!

https://www.qubes-os.org

It's a great inspiration. Whonix's home page also urgently needs a redesign.

The post New Qubes website! New Whonix homepage? appeared first on Whonix.
link

Posted by SourceForge Robot 2015-12-08

Tor Donation Campaign

The Tor Project is running its first donation campaign ever. I urge our dear users to support them. They are the guardians of the last free space on the web, working tirelessly and passionately to preserve people's rights and even lives around the planet. Without them Whonix wouldn't exist.

https://www.torproject.org/donate/donate.html.en

The post Tor Donation Campaign appeared first on Whonix.
link

Posted by SourceForge Robot 2015-12-05

automatically sharing blog posts everywhere

Blogging at Whonix blog now got a lot more convenient. It is really fun now.

  • twitterfeed, a online service, is being used to automatically share blog posts to Whonix's facebook page.
  • The wordpress plugin wp-to-twitter is being used to simplify tweeting. On the right side in the wordpress editor, there is now a field that allows automatically creating a tweet from a template. It would also be possible to totally automate it, i.e. to post #title# - #url#, but sometimes it's better to tailor the tweet a bit more. No more need to manually copy and paste the blog url and blog title for adding new blog posts to Whonix's twitter account. Twitterfeed could also be used to automate it, but last time I checked it didn't allow to customize the tweets.
  • The wordpress plugin wp-discourse is being used for multiple purposes.
    • To automate mirroring blog posts to the Whonix forums. Unfortunately, it can only be configured to use the same forum category. It does not (yet?) support mapping specific wordpress blog categories to specific discourse sub forums. So the newly posted discourse thread has to be manually moved into the right category.
    • To spare users from creating multiple accounts. No wordpress accounts necessary anymore. Comments can be made in the forum thread that has been mirrored from the wordpress blog.
    • To sync back comments in forum threads to blog posts.
  • The wordpress plugin post-to-email is being used to mirror wordpress blog posts to the Whonix development mailing list.... read more
Posted by SourceForge Robot 2015-12-03

Anon Connection Wizard / Bridge Wizard / Tor Launcher Clone

troubadour is working on a graphical Anon Connection Wizard. It will be a tor-launcher clone. Written in python. It can be used to express if you like to connect to the public Tor network or using Tor bridges.

Here are some early screenshots.... read more

Posted by SourceForge Robot 2015-12-03

Whonix Connection Wizard / Bridge Wizard / Tor Launcher Clone

troubadour is working on a graphical Whonix Connection Wizard. It will be a tor-launcher clone. It can be used to express if you like to connect to the public Tor network or using Tor bridges.

Here are some early screenshots.

... read more

Posted by SourceForge Robot 2015-12-03

Whonix VirtualBox Paravirtualization – Which Acceleration Mode is Optimal? Help Wanted!

What will be the optimal paravirtualization setting for Whonix?

  • none explicitly turns off exposing any paravirtualization interface sounds good security wise but could be really slow. Please test and leave feedback.
  • minimal sounds like a worthwhile alternative if `none` is too slow. But what technology is `minimal` actually using? VirtualBox legacy or kvm? However, documentation says, it lets the VM read the APIC frequency. To be researched how bad this would be.
  • legacy is good enough for now. That's like VirtualBox 4.x. But since they now call it legacy, that code will rot, and probably should be avoided in long run.
  • kvm (VirtualBox) is problematic, since it provides unwanted pvclock kvm-clock. (Which allows a clock correlation attacks once VM is compromised.
  • default is problematic, since in some cases, it does autodetection, then used VirtualBox KVM.
  • hyperv The microsoft thingy. No idea about that one. May or may not be great for Linux guests (Whonix).... read more
Posted by SourceForge Robot 2015-12-01

discourse-integration-test-2

Ignore this.

The post discourse-integration-test-2 appeared first on Whonix.
link

Posted by SourceForge Robot 2015-11-26

discourse integration test

Testing integration with discourse.

The post discourse integration test appeared first on Whonix.
link

Posted by SourceForge Robot 2015-11-25

Whonix 12.0.0.3.2 RC – Testers Wanted!

Posted by SourceForge Robot 2015-11-19

Qubes-Whonix 12.0.0.3.2 RC – Testers Wanted!

Qubes-Whonix only!

Either start with fresh templates. I.e. uninstall qubes-template-whonix-gw and qubes-template-whonix-ws. Then, to install, run in dom0:

sudo qubes-dom0-update --enablerepo=qubes-dom0-unstable qubes-template-whonix-gw qubes-template-whonix-ws

Or you can also upgrade from Whonix testers repository.... read more

Posted by SourceForge Robot 2015-11-15

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks