Dev/setup-dist

From Whonix
< Dev
Jump to navigation Jump to search

Development Notes about setup-dist

Where to show which page - Non-Qubes-Whonix vs Qubes-Whonix[edit]

page Non-Qubes-Whonix Qubes-Whonix comments
disclaimer_(1|2) deprecated [1] deprecated [2]
connection_page (connection / bridge wizard) show on auto run as long as Tor has been set up (until done file was created) (or skip if skip file exists) same
tor_status_page TBD same
whonix_repo_page, repository_wizard_page_(1|2|finish) show on auto run until a decision has been made (i.e. until done file was created) (or skip if skip file exists) [skip file will have been created by the qubes-whonix package] only show when manually run the Whonix Repository Tool
finish_page deprecate deprecate
first_use_notice show skip [skip file will have been created by the qubes-whonix package]

skip files[edit]

What's the supposed functionality of a done file?[edit]

Reliably indicate that the related whonix-setup-wizard page (such as connection_page) _really_ succeeded once.

(Therefore the qubes-whonix package deleting such a file would be considered a bug.)

What's the supposed functionality of a skip file?[edit]

To be created by a derivative or advanced user.

Reliably _never_ show a certain page? [when run in "kdesudo whonix-setup-wizard setup" mode]

What, if a user was explicitly running "kdesudo whonix-setup-wizard connection_page" while the connection_page.skip file existed, don't show the connection_page then, do nothing? Or show it? I think the latter.

How can whonix-setup-wizard be run[edit]

  • by the user (.desktop files or by command line)
    • kdesudo whonix-setup-wizard repository
    • kdesudo whonix-setup-wizard setup
    • kdesudo whonix-setup-wizard connection_page?
  • by scripts
  • by autorun? Whonix only? Not in Qubes-Whonix?

Pages[edit]

Whonix Setup Wizard showing Torrc[edit]

whonix-setup-wizard-connection-wizard-2.png

Has been criticized for being a superfluous page.

Reasons why it was added:

  • a) Debugging, verbosity, "paranoia", I think.
  • b) Users having connection troubles [censorship] tend to go multiple times through the wizard not really understanding what it does. Expecting more magic.
  • c) Imagine there was only the first page ([https://www.whonix.org/blog/wp-content/uploads/2015/02/whonix-setup-wizard-connection-wizard-12.png screenshot]), users clicked next, and then nothing would happen [case censored users]?
  • d) The second option's tooltip on the first Whonix setup wizard page is the following:


The bridges option is not available yet. You must configure Tor manually.

Less sophisticated censors prevent users from accessing the Tor network by blocking connections to known relays.

"Bridge relays" help these users access Tor by not being in the same public lists as normal relays.

Sophisticated censors can only be circumvented with private obfuscated bridges.

Because there is NOT a 100% way to hide Tor, Whonix does NOT recommend using Tor if you fear detection.

Configure Whonix to Use a Bridge.

You must manually find and add the bridges to /usr/local/etc/torrc.d/50_user.conf.

Start Menu → Applications → Torrc

After you have finished, run setup-dist again.

[...]

In essence we tell users to modify torrc. Then to come back using Whonix Setup Wizard. Because that would do the rest. Enable Tor in torrc, restart Tor so it actually connects, followed by starting timesync and whonixcheck.

That window shows the contents of /usr/local/etc/torrc.d/50_user.conf. This is mostly useful for users who modified /usr/local/etc/torrc.d/50_user.conf because they changed some settings beforehand (bridges...). They can check if that file still looks sane after the edit by a program (whonix-setup-wizard).

See Also[edit]

We believe security software like Whonix needs to remain open source and independent. Would you help sustain and grow the project? Learn more about our 12 year success story and maybe DONATE!

  1. show on auto run as long as confirmed, afterwards skip
  2. never show [skip file will have been created by the qubes-whonix package]