Whonix Project looking for Translations Coordinator

Whonix is an anonymous general purpose operating system based on Virtual Box, Debian GNU/Linux and Tor. It has its focus on anonymity, privacy, security and usability.

The Whonix project is looking for a volunteer Translations Coordinator.

Your task:

If you are interested, please sign up for the Whonix Development Forum [2] and say hello.

[1] https://www.mediawiki.org/wiki/MediaWiki_Language_Extension_Bundle
[2] https://www.whonix.org/forum/index.php/board,5.0.html

Posted in Contribute

AppArmor and Whonix

AppArmor (“Application Armor”) for better security.

Current status of AppArmor and Whonix:

– We do enable apparmor by default for a while now. (https://github.com/Whonix/grub-enable-apparmor)
– Therefore The Tor Project’s apparmor profile for Tor is in use on Whonix-Gateway.
– We tweak that one a bit to make it work with Whonix and obfsproxy. (https://github.com/Whonix/anon-gw-anonymizer-config/blob/master/etc/apparmor.d/local/system_tor.anondist)
– We don’t install any apparmor profiles by default as of Whonix 10.
– We do not install any longer the profiles from Debian (packages apparmor-profiles, apparmor-profiles-extra) since Whonix 10 because of the noise they generate in the forums.
– We do not plan on installing apparmor profiles by default for packages that are not developed under the Whonix umbrella such as for Tor Browser, pidgin, xchat, etc. (list: https://github.com/Whonix?utf8=%E2%9C%93&query=apparmor) – Package upgrades that we don’t control by upstream could make it impossible to start the application, lead to eventual fingerprinting issues, therefore installation of such apparmor profiles is manual for testers and advanced users.
– Upstreaming such profiles is a very time consuming process, also a slow process (requires a new stable debian release). Help welcome.
– For apparmor profiles developed under the Whonix such as sdwdate, whonixcheck, we plan in future for Whonix 12 or so on deprecating the separate apparmor profiles and installing those profiles by default, that is doable, because we control package upgrades.

The Whonix profiles can be installed with:

sudo apt-get install apparmor-profiles-whonix

AppArmor Whonix Wiki Page:

AppArmor Whonix Forum:

Apparmor Whonix Phabricator TODO List:

Comments / Forum Discussion:

Posted in Development


My friends, I had not intended to discuss this controversial subject at this particular time. However, I want you to know that I do not shun controversy. On the contrary, I will take a stand on any issue at any time, regardless of how fraught with controversy it might be. You have asked me how I feel about surveillance. All right, here is how I feel about surveillance:

If when you say surveillance you mean enabling the privileged to commit unchecked nepotism and corruption, choking out dissent, the overriding of Constitutional checks and balances, manufacturing threats to control the populace with fear, the five-eyed monster, that attacks innocents, aiding destruction of homes, creation of misery and poverty, yea, literally taking the bread from the mouths of little children; if you mean the agencies that topple third world nations and drive their peoples into the bottomless pit of degradation, and despair, and shame and helplessness, and hopelessness, then certainly I am against it.

But, if when you say surveillance you mean the sabotage of global internet infrastructure, subversion of crypto standards, spying on human rights groups lawyers and journalists, attacks on freedom of speech, manipulation of public opinion and media polls, political blackmail, interference with domestic criminal court procedures and evidence gathering, sitting on 0days while leaving national infrasructure wide open to attack, magnification of totalitarianism, destruction of happiness and our right to be forgotten if only for a little while; if you mean the agencies whose bills rob our treasuries of untold billions of dollars, which could otherwise by used to provide tender care for our little crippled children, our blind, our deaf, our dumb, our pitiful aged and infirm; to build highways and hospitals and schools, then certainly I am still very much against it.

This is my stand. I will not retreat from it. I will not compromise.

The above was a parody of a political speech by a lawmaker from Mississippi about prohibition, originally called if-by-whiskey. But unlike the original there’s no double-speak. When I saw it I thought its a good opportunity to take a 10000 foot bird’s eye view of what has been making headlines.

With that said, I’m not sure that every IC employee was aware of the total scope of surveillance and abuses before the Snowden cache was published. The majority of NSA employees probably don’t agree with what’s happening. This sad direction is the result of the leaders who direct the efforts of well-meaning people into self-serving ways. People who are smart enough to figure out that they are being used to build the surveillance systems that are intended for their children and grandchildren, their families and friends, their neighbors and fellow citizens. All whom they wanted to serve and protect by joining the agency in the first place.

In reality, corporate surveillance poses a bigger danger than state surveillance for the average internet user. Its the former that enables the latter in large part. The fact that they are willing to dish out information about your life to anyone willing to pay their advertising networks should worry you even more than a government employee with top-secret clearance taking a peak. That’s not to say anyone is entitled to your data, thoughts or information about who you talk with. Its a choice that comes down to you choosing to change your perception about the value of yourself and refusing to use systems that betray you.

Posted in Uncategorized

bounty overview – May 2015

List of bounties and details:

– Build Debian Packages from Source Code – $ 3.000 – https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code

– implement rads (ram adjusted desktop starter) systemd unit – $ 50 – https://www.bountysource.com/issues/14466761-implement-rads-ram-adjusted-desktop-starter-systemd-unit

– make grsecurity kernel, grsecurity-installer work inside Whonix  – $ 400 – https://www.bountysource.com/issues/14471558-make-grsecurity-kernel-grsecurity-installer-work-inside-whonix

– bountysource/frontend – Add support for Phabricator – $ 100 – https://www.bountysource.com/issues/1384856-add-support-for-phabricator-100

Bounty too low? How to apply?

1) Go to specific bountysource tickets.
2) Click on “Developers”
3) Click on “Get Started”
4) Select Status “Bounty too low”
5) Enter your offer and press “Save”.

The bounty may then be increased by if realistic and sustainable.

If you have any questions, please get in contact.

Posted in Contribute, Development

qubes-whonix – Whonix on top of Qubes – Looking for Maintainer!

WhonixQubes, the previous maintainer of qubes-whonix unfortunately resigned.

qubes-whonix is the combination of Qubes and Whonix.

What are the tasks of a maintainer?

– answering questions in the forums
– keeping the wiki up to date
– testing of installation, build, upgrade instructions
– having a look at the issue tracker, implementing bug fixes and perhaps new features in team with nrgaway and other contributors
– otherwise self-initiated (guess)work and care keeping- example current task: Qubes Whonix 10 – Testing Instructions and Issues

This is a volunteer position.

Forum discussion:

Posted in Contribute, Development, Qubes





Would you like to contribute to the Whonix project?

Contributing can be as easy as sharing the blog over social media, volunteering, or making a monetary donation.

For more ideas on how to get involved see the "Contribute" and "Testers-Wanted" categories.


- Whonix Staff