Whonix https://www.whonix.org/blog Privacy and Anonymity OS Mon, 02 Mar 2015 18:05:57 +0000 en-US hourly 1 http://wordpress.org/?v=4.1.1 First Bounty! 3.000 $ – Build Debian Packages from Source Code https://www.whonix.org/blog/bounty-debian-source-code https://www.whonix.org/blog/bounty-debian-source-code#comments Mon, 02 Mar 2015 18:05:57 +0000 https://www.whonix.org/blog/?p=1445 For Task Details see: https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code Bounty too low? How to apply? 1) Go to https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code 2) Click on “Developers” 3) Click on “Get Started” 4) Select Status “Bounty too low” 5) Enter your offer and press “Save”. The bounty may

The post First Bounty! 3.000 $ – Build Debian Packages from Source Code appeared first on Whonix.

]]>
For Task Details see:
https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code

Bounty too low? How to apply?

1) Go to https://www.bountysource.com/issues/9115540-build-debian-packages-from-source-code
2) Click on “Developers”
3) Click on “Get Started”
4) Select Status “Bounty too low”
5) Enter your offer and press “Save”.

The bounty may then be increased by if realistic and sustainable.

If you have any questions, please get in contact.

The post First Bounty! 3.000 $ – Build Debian Packages from Source Code appeared first on Whonix.

]]>
https://www.whonix.org/blog/bounty-debian-source-code/feed 0
Unmaintained Notice! – Whonix inside KVM – Looking for contributor! https://www.whonix.org/blog/unmaintained-notice-whonix-inside-kvm-looking-for-contributor https://www.whonix.org/blog/unmaintained-notice-whonix-inside-kvm-looking-for-contributor#comments Fri, 27 Feb 2015 20:52:04 +0000 http://www.whonix.org/blog/unmaintained-notice-whonix-inside-kvm-looking-for-contributor Since previous Whonix in KVM maintainer HulaHoop was last active on January 04, 2015, it’s safe to assume this person got lost. No idea why HulaHoop went inactive. There was no notice of departure, argument or whatsoever. I would like

The post Unmaintained Notice! – Whonix inside KVM – Looking for contributor! appeared first on Whonix.

]]>
Since previous Whonix in KVM maintainer HulaHoop was last active on January 04, 2015, it’s safe to assume this person got lost. No idea why HulaHoop went inactive. There was no notice of departure, argument or whatsoever. I would like to thank HulaHoop for its work on support for running Whonix inside KVM. As of Whonix 9, the status was “testers-only” and would likely have changed to “stable” in Whonix 10. So most integration work is already done. A new contributor would be welcome to take over from there.

What does this mean for you as a user? No one from the Whonix team will keep KVM in mind. Any eventually upcoming security issues with KVM with respect to Whonix would go unnoticed. Questions in Whonix KVM sub forum will likely not be answered by anyone from the Whonix team. You are encouraged to move on to still supported platforms. The KVM wiki page has been updated accordingly to reflect this information.

Unfortunately, due to work generated by blessing a platform as supported, the current Whonix team cannot takeover HulaHoop’s task. A dedicated maintainer is required for that platform. This is partly because KVM is too support intensive. There are too many KVM’s installation issues from various distribution package sources. KVM’s non-helpful, cryptic error messages if the xml files are using a feature, that is is not available by the platform and because one ought to look over KVM changelogs and to think though if/how those affect Whonix.

The post Unmaintained Notice! – Whonix inside KVM – Looking for contributor! appeared first on Whonix.

]]>
https://www.whonix.org/blog/unmaintained-notice-whonix-inside-kvm-looking-for-contributor/feed 0
Whonix Setup Wizard Feedback Required! https://www.whonix.org/blog/whonix-setup-wizard-feedback-required https://www.whonix.org/blog/whonix-setup-wizard-feedback-required#comments Mon, 23 Feb 2015 18:03:35 +0000 http://www.whonix.org/blog/whonix-setup-wizard-feedback-required troubadour has created Whonix Setup Wizard, that will replace the terminal whonixsetup when running a graphical Whonix-Gateway or Whonix-Workstation. We need your feedback on whether our approach seems usable. Please leave feedback in the forums. Link to forum discussion: https://www.whonix.org/forum/index.php/topic,974

The post Whonix Setup Wizard Feedback Required! appeared first on Whonix.

]]>
troubadour has created Whonix Setup Wizard, that will replace the terminal whonixsetup when running a graphical Whonix-Gateway or Whonix-Workstation. We need your feedback on whether our approach seems usable. Please leave feedback in the forums. Link to forum discussion:
https://www.whonix.org/forum/index.php/topic,974

Please keep discussion limited to usability and move technical discussion to the technical thread.

Have a look at the following screenshots.
Click to enlarge the screenshots.

At first boot, before starting KDE (if using KDE), “whonix-setup-wizard locale_settings” will be started. You will only see this little window and the rest will be black, because at this time no desktop is load yet. Mouse and keyboard will be available.

Language Selection 1
whonix-setup-wizard xinit 1
You can imagine a bit better how it would look like in the following screenshots.

Language selection. (Same menu as in KDE system settings.)
whonix-setup-wizard xinit 2

Keyboard layout selection. (Same menu as in KDE system settings.)

whonix-setup-wizard xinit 3
Language Selection End
whonix-setup-wizard xinit 4
After a desktop environment has been start, “whonix-setup-wizard setup” will be automatically started. It begins with the disclaimer.

Disclaimer Page 1/2

Disclaimer 2/2

Then goes on the the connection wizard.

Connection Wizard Page 1

Connection Wizard Page 1 Tooltip

Connection Wizard page 2
whonix-setup-wizard connection wizard 2
Connection Wizard End
whonix-setup-wizard connection wizard 3
On first boot, it will also additionally start “whonix-setup-wizard repository”.
whonix-setup-wizard connection wizard first boot
Whonix Repository Wizard Page 1
whonix-setup-wizard repository wizard 1
Whonix Repository Wizard Page 2
whonix-setup-wizard repository wizard 2

Whonix Repository Wizard Page End

whonix-setup-wizard repository wizard 3

Please leave feedback! Link to forum discussion:
https://www.whonix.org/forum/index.php/topic,974

Please keep discussion limited to usability and move technical discussion to the technical thread.

Other links:
whonix-setup-wizard open tasks
whonix-setup-wizard technical development discussion

The post Whonix Setup Wizard Feedback Required! appeared first on Whonix.

]]>
https://www.whonix.org/blog/whonix-setup-wizard-feedback-required/feed 0
Contribute! Whonix Development Help Wanted! Check out the open Tasks on our new Issue Tracker! https://www.whonix.org/blog/contribute-whonix-development-help-wanted-check-out-the-open-tasks-on-our-new-issue-tracker https://www.whonix.org/blog/contribute-whonix-development-help-wanted-check-out-the-open-tasks-on-our-new-issue-tracker#comments Mon, 09 Feb 2015 17:04:19 +0000 http://www.whonix.org/blog/contribute-whonix-development-help-wanted-check-out-the-open-tasks-on-our-new-issue-tracker Migration to our new phabricator bug tracker finished. Thanks to Jason Ayala who did most of the migration work! Whonix Development Help Wanted! Check out the list of all open issues (feature requests and bugs) that we would like seeing

The post Contribute! Whonix Development Help Wanted! Check out the open Tasks on our new Issue Tracker! appeared first on Whonix.

]]>
Migration to our new phabricator bug tracker finished. Thanks to Jason Ayala who did most of the migration work!

Whonix Development Help Wanted!

Check out the list of all open issues (feature requests and bugs) that we would like seeing implemented:
https://phabricator.whonix.org/maniphest/query/all/

Or if you want to help working towards the release of Whonix 10, check out the issues we want to solve before Whonix 10:
https://phabricator.whonix.org/tag/whonix_10/

Do you speak python? Check out our tasks with the python label:
https://phabricator.whonix.org/tag/python/

Do you speak bash? Whonix’s build script is written in bash and so are most scripts developed by Whonix. Check out our tasks with the bash label:
https://phabricator.whonix.org/tag/bash/

Do you speak C? Mostly missing features in other upstream projects. Check out our tasks with the C code label:
https://phabricator.whonix.org/tag/c_code/

Can you write AppArmor profiles? Check out our AppArmor tasks:
https://phabricator.whonix.org/tag/apparmor/

Interested in Whonix Qubes? Check out the Qubes tag:
https://phabricator.whonix.org/tag/qubes/

Interested in Whonix KVM? Check out the KVM tag:
https://phabricator.whonix.org/tag/kvm/

Interested in Legal Issues? Check out the legal issues tag:
https://phabricator.whonix.org/tag/legal_issue/

Want to see systemd support? Check out the systemd tag:
https://phabricator.whonix.org/tag/systemd/

Interested in security hardening? Check out the security tag:
https://phabricator.whonix.org/project/view/23/

Want to improve user documentation? Check out the user documentation tag:
https://phabricator.whonix.org/tag/user_documentation/

Want to backdoor resistance? Check out Verifiable Builds:
https://phabricator.whonix.org/tag/verifiable_builds/

The full list of tags can be found here:
https://phabricator.whonix.org/project/

Too technical? Still not busy? Check out our Contribute wiki page:
https://www.whonix.org/wiki/Contribute

Please contribute!

Why did we move to our self-hosted phabricator web app? Our Github issue tracker didn’t scale for Whonix since it’s a project at the size of a GNU/Linux distribution. Github doesn’t support roadmaps referencing tickets that are in different repositories/projects. Neither adding tickets to more than one roadmap is supported. And adding all tickets to one bug tracker rendered that tracker too crowded and therefore unusable. We’ve discussed this and agreed to move to use phabricator.

Old Github Issue Tracker:
https://github.com/Whonix/Whonix/issues

New Phabricator Issue Tracker:
https://phabricator.whonix.org/maniphest/query/all/

If you are interested to get e-mail notification about any new issue that is created so you can jump into the discussion, see this wiki link:
https://www.whonix.org/wiki/Dev/Bug_Tracker#Get_E-Mail_Notification_for_all_New_Maniphest_Tasks

For any questions about the new bug tracker, please ask in the forums:
https://www.whonix.org/forum/index.php/topic,867

The post Contribute! Whonix Development Help Wanted! Check out the open Tasks on our new Issue Tracker! appeared first on Whonix.

]]>
https://www.whonix.org/blog/contribute-whonix-development-help-wanted-check-out-the-open-tasks-on-our-new-issue-tracker/feed 0
Suggest Trustworthy Tor Hidden Services as Time Sources for sdwdate https://www.whonix.org/blog/suggest-trustworthy-tor-hidden-services-as-time-sources-for-sdwdate https://www.whonix.org/blog/suggest-trustworthy-tor-hidden-services-as-time-sources-for-sdwdate#comments Fri, 06 Feb 2015 19:26:51 +0000 http://www.whonix.org/blog/suggest-trustworthy-tor-hidden-services-as-time-sources-for-sdwdate TLDR: What web servers do you consider trustworthy, to take great care of their visitors’ privacy, that are stable and that get great amounts of traffic, and most important, are reachable over .onion as a Tor Hidden Service? Ideally, we

The post Suggest Trustworthy Tor Hidden Services as Time Sources for sdwdate appeared first on Whonix.

]]>
TLDR:

What web servers do you consider trustworthy, to take great care of their visitors’ privacy, that are stable and that get great amounts of traffic, and most important, are reachable over .onion as a Tor Hidden Service?

Ideally, we need to have around ~50 servers.

Post in the comments below or in the forums:
https://www.whonix.org/forum/index.php/topic,943

Long:

In Whonix 10, we want to avoid SSL by using Tor Hidden Services as a time source for sdwdate.

The purpose of this blog post is to ask Whonix users, to suggest suitable web servers.

What web servers do you consider trustworthy, to take great care of their visitors’ privacy, that are stable and that get great amounts of traffic, and most important, are reachable over .onion as a Tor Hidden Service?

(The whole discussion about network time synchronization in anonymity centric distributions is off topic in this thread, but can be found here [link] and you could open separate threads to discuss other aspects.) (Déjà vu?)

Post in the comments below or in the forums:
https://www.whonix.org/forum/index.php/topic,943

The post Suggest Trustworthy Tor Hidden Services as Time Sources for sdwdate appeared first on Whonix.

]]>
https://www.whonix.org/blog/suggest-trustworthy-tor-hidden-services-as-time-sources-for-sdwdate/feed 0
Bug: Tor Browser Alpha rather than Tor Browser Stable being installed by Tor Browser Updater (AnonDist) https://www.whonix.org/blog/bug-tor-browser-alpha-rather-than-tor-browser-stable-being-installed-by-tor-browser-updater-anondist https://www.whonix.org/blog/bug-tor-browser-alpha-rather-than-tor-browser-stable-being-installed-by-tor-browser-updater-anondist#comments Thu, 05 Feb 2015 11:55:10 +0000 http://www.whonix.org/blog/bug-tor-browser-alpha-rather-than-tor-browser-stable-being-installed-by-tor-browser-updater-anondist The version file format was changed, and there is no stable version version format. If you want to use the stable version of Tor Browser, you have to use these instructions in meanwhile: https://www.whonix.org/wiki/Manually_Updating_Tor_Browser Forum Discussion: https://www.whonix.org/forum/index.php?topic=939 Whonix Issue Tracker:

The post Bug: Tor Browser Alpha rather than Tor Browser Stable being installed by Tor Browser Updater (AnonDist) appeared first on Whonix.

]]>
The version file format was changed, and there is no stable version version format.

If you want to use the stable version of Tor Browser, you have to use these instructions in meanwhile:
https://www.whonix.org/wiki/Manually_Updating_Tor_Browser

Forum Discussion:
https://www.whonix.org/forum/index.php?topic=939

Whonix Issue Tracker:
https://phabricator.whonix.org/T130

The post Bug: Tor Browser Alpha rather than Tor Browser Stable being installed by Tor Browser Updater (AnonDist) appeared first on Whonix.

]]>
https://www.whonix.org/blog/bug-tor-browser-alpha-rather-than-tor-browser-stable-being-installed-by-tor-browser-updater-anondist/feed 0
Whonix 10 Development News https://www.whonix.org/blog/whonix-10-development-news https://www.whonix.org/blog/whonix-10-development-news#comments Wed, 04 Feb 2015 16:13:24 +0000 http://www.whonix.org/blog/whonix-10-development-news Just to keep those of you interested in development posted… Whonix APT Repository: Updated developers and testers repository using Whonix git tag 10.0.0.3.1-developers-only. Now contains the work in progress packages, that will be used in Whonix 10. In other words,

The post Whonix 10 Development News appeared first on Whonix.

]]>
Just to keep those of you interested in development posted…

Whonix APT Repository:
Updated developers and testers repository using Whonix git tag 10.0.0.3.1-developers-only. Now contains the work in progress packages, that will be used in Whonix 10. In other words, users of the testers or developers repository will already use packages for Whonix 10. Therefore now also contains the updated Whonix repository key as well as a fixed version of tb-updater.

Build:
Successfully created a builds using Whonix git tag 10.0.0.3.0-developers-only using –testing-frozen-sources, i.e. jessie based. However, although untested, Whonix git tag 10.0.0.3.1-developers-only should also work for full builds. There is still some issues to be sorted out (such as whonix-setup-wizard not installed by default yet; Tor startup not working yet upon first boot; and more… – we’ll sort them out in the existing threads).

Packaging related changes have been made to all packages:
– found a maintainable way to maintain an upstream changelog (by having a combined make command that updates the upstream changelog as well as bumping debian/changelog)
– added upstream changelog to packages
– lintian is now auto run again, so every developer will notice eventual newly introduced lintian warnings faster
– now using lintian with –pedantic
– thanks to the added upstream changelog, now down to zero lintian warnings now, even though now using –pedantic

Updated Whonix 10 Work in Progress Changelog, see:
https://www.whonix.org/blog/whonix-10-work-progress

The post Whonix 10 Development News appeared first on Whonix.

]]>
https://www.whonix.org/blog/whonix-10-development-news/feed 0
Whonix Project Looking for Web Server Sponsor! https://www.whonix.org/blog/whonix-project-looking-for-web-server-sponsor https://www.whonix.org/blog/whonix-project-looking-for-web-server-sponsor#comments Fri, 30 Jan 2015 15:07:28 +0000 http://www.whonix.org/blog/whonix-project-looking-for-web-server-sponsor Whonix is an operating system focused on anonymity, privacy and security. It’s based on the Tor anonymity network, Debian GNU/Linux and security by isolation. The project exists since 2012. Learn more: https://www.whonix.org We are currently looking for a sponsor who

The post Whonix Project Looking for Web Server Sponsor! appeared first on Whonix.

]]>
Whonix is an operating system focused on anonymity, privacy and security. It’s based on the Tor anonymity network, Debian GNU/Linux and security by isolation.

The project exists since 2012.

Learn more:
https://www.whonix.org

We are currently looking for a sponsor who is willing to donate a suitable sized virtual or root server.

Programs we plan to install:
– debian
– varnish cache
– ngnix
– apache2

Web apps we plan to use:
– mediawiki
– wordpress
– smfforum
– phabricator
– (same as current whonix.org)

Requirements general:
– ssh access
– DDOS protection: We’re nice people and we didn’t have any issues with
DDOS yet. Should that even happen, we hope you could circumvent the DDOS
and would not end the the sponsorship because of this.

Requirements minimal:
– 40 GB HDD
– traffic ~ 300 GB / month
– ~ 1 MB / s
– probably growing as project grows

Requirements ideal:
– As an optional bonus – no requirement – we would also like to use the server as an rsync
master mirror.
– 100 GB HDD
– traffic ~ 2 TB / month
– ~ 50 MB / s

Setup:
If you have technicians who would like to help with (initial) setup (ssl…) and performance tuning (varnish…), that would be appreciated as an optional bonus, but is not an requirement.

Attribution:
If you wish you can be attributed in our main homepage wiki footer and/or in other appropriate places. Let’s talk.

Reputation:
It needs to be a reputable company or individual.

Contact:
Please start a conversation by contacting us by E-Mail.

Patrick Schleizer (project leader)
adrelanos at riseup dot net

fortasse (webmaster)
fortasse at riseup dot net

Sponsorship contract possible with Patrick Schleizer if desired.

The post Whonix Project Looking for Web Server Sponsor! appeared first on Whonix.

]]>
https://www.whonix.org/blog/whonix-project-looking-for-web-server-sponsor/feed 1
Whonix 9.6 Maintenance Release https://www.whonix.org/blog/whonix-9-6-maintenance-release https://www.whonix.org/blog/whonix-9-6-maintenance-release#comments Fri, 30 Jan 2015 14:56:33 +0000 http://www.whonix.org/blog/whonix-9-6-maintenance-release Download: https://www.whonix.org/wiki/Download Upgrading: Existing users can upgrade the usual way using apt-get, see also: https://www.whonix.org/wiki/Security_Guide#Updates Changelog between 9.4 and 9.6: – tb-updater: added new TBB tbb-team.asc signing key – https://phabricator.whonix.org/T41 – whonix-repository: updated repository signing key – https://phabricator.whonix.org/T100 – whonixcheck:

The post Whonix 9.6 Maintenance Release appeared first on Whonix.

]]>
Download:
https://www.whonix.org/wiki/Download

Upgrading:
Existing users can upgrade the usual way using apt-get, see also: https://www.whonix.org/wiki/Security_Guide#Updates

Changelog between 9.4 and 9.6:
– tb-updater: added new TBB tbb-team.asc signing key – https://phabricator.whonix.org/T41
– whonix-repository: updated repository signing key – https://phabricator.whonix.org/T100
– whonixcheck: updated Whonix news signing key – https://phabricator.whonix.org/T100
– updated frozen repository

The post Whonix 9.6 Maintenance Release appeared first on Whonix.

]]>
https://www.whonix.org/blog/whonix-9-6-maintenance-release/feed 0
Abstain from using Stream Isolation SocksPort 9152 https://www.whonix.org/blog/abstain-from-using-stream-isolation-socksport-9152 https://www.whonix.org/blog/abstain-from-using-stream-isolation-socksport-9152#comments Mon, 26 Jan 2015 20:33:41 +0000 http://www.whonix.org/blog/abstain-from-using-stream-isolation-socksport-9152 Easy / TLDR: Using stream isolation (https://www.whonix.org/wiki/Stream_Isolation) with custom ports? With port 9152? Don’t do this anymore in Whonix 10 and above! Use any higher port numbers as per stream isolation documentation! Long: Reasons: Tor Messenger will use that port

The post Abstain from using Stream Isolation SocksPort 9152 appeared first on Whonix.

]]>
Easy / TLDR:
Using stream isolation (https://www.whonix.org/wiki/Stream_Isolation) with custom ports? With port 9152?
Don’t do this anymore in Whonix 10 and above! Use any higher port numbers as per stream isolation documentation!

Long:

Reasons:
Tor Messenger will use that port in future. (https://phabricator.whonix.org/T107)
Enabling IsolateDestAddr and IsolateDestPort for it (https://trac.torproject.org/projects/tor/ticket/14382) might be recommended.

 

The post Abstain from using Stream Isolation SocksPort 9152 appeared first on Whonix.

]]>
https://www.whonix.org/blog/abstain-from-using-stream-isolation-socksport-9152/feed 0