Category: Whonix Wiki Updates

When significant changes to the Whonix wiki are made with knew knowledge you should be aware off, we will blog about it.

Qubes-Whonix DisposableVM documentation created

Before we had just a stub. Now Qubes-Whonix DisposableVMs are fully documented thanks to contributions by the community. (wiki history) What are DisposableVMs? Under the Qubes TemplateVM model, any changes made to a TemplateBasedVM’s root filesystem are lost upon reboot.

Using corridor, a Tor traffic whitelisting gateway with Qubes-Whonix

corridor is a Tor traffic whitelisting gateway. It is a filtering gateway. Not a proxying gateway. It can also be used as a BridgeFirewall. This is not necessarily more anonymous. It is an additional fail-save Tor traffic whitelisting firewall that

combining Tor with a VPN or proxy can make you less anonymous

Using a VPN, proxy or SSH can can negatively affect anonymity under some circumstances. [1] [2] To explain why that is, some background information is required so you can draw conclusions and take actions to avoid this risk. See below.

Your MAC Address Randomization attempts are futile!

The following paper explains why. Why MAC Address Randomization is not Enough: An Analysis of Wi-Fi Network Discovery Mechanisms The above interesting paper has been found by HulaHoop and added to Whonix MAC address documentation.

Qubes separate VPN-Gateway between anon-whonix and sys-whonix – Connecting to Tor before a VPN (User -> Tor -> VPN -> Internet)

This is now documented here: https://www.whonix.org/wiki/Tunnels/Connecting_to_Tor_before_a_VPN#Separate_VPN-Gateway Recommended order of reading: * 1) https://www.whonix.org/wiki/Tunnels/Introduction * 2) https://www.whonix.org/wiki/Tunnels/Connecting_to_Tor_before_a_VPN * 3) https://www.whonix.org/wiki/Tunnels/Connecting_to_Tor_before_a_VPN#Separate_VPN-Gateway

Connecting to Lantern before Tor (User -> Lantern -> Tor -> Internet)

Lantern is a censorship circumvention tool, an alternative to Tor bridges. Testers only! As an exercise and proof of concept, I quickly put together a documentation chapter for Connecting to Lantern before Tor (User -> Lantern -> Tor -> Internet).

Connecting to JonDonym before Tor (User -> JonDonym -> Tor -> Internet)

Testers only! As an exercise and proof of concept, I quickly put together a documentation chapter for Connecting to JonDonym before Tor (User -> JonDonym -> Tor -> Internet). Qubes-Whonix only! Non-Qubes-Whonix is unsupported. https://www.whonix.org/wiki/JonDonym#Connecting_to_JonDo_before_Tor At the moment these instructions

most encryption will be broken

In ~10 years Quantum Computers will break todays common asymmetric public-key cryptography algorithms used for web encryption (https), e-mail encryption (gnupg…), ssh and others. See Post-Quantum Cryptography (PQCrypto).

a browser is not a safe environment to type

A browser is no safe environment to write stuff such as for example forum posts or e-mails, webmail or IMAP. You could accidentally paste things you don’t want to paste for example into the search or url bar, which could

Persistent Tor Entry Guard Relays can make you trackable Across Different Physical Locations

https://www.whonix.org/wiki/Warning#Persistent_Tor_Entry_Guard_Relays_can_make_you_trackable_Across_Different_Physical_Locations

Top