How-to: Use Electrum in Whonix
Electrum is a popular Bitcoin wallet. The non-official thin client Electrum appears to be well-designed. It does not need to download/verify the blockchain and users store their private keys locally, which eliminates the need to trust third-party severs. 
electrum version in Debian
stretch does not work (Whonix 14 is based on Debian
stretch). Therefore, the next best option is installing
electrum from Debian
1. Boot Whonix-Workstation (
2. Add the current Debian stable backports codename
stretch-backports to Debian apt sources.
Note: this applies to Whonix 220.127.116.11.6. Later Whonix versions may use a codename different to
In Whonix-Workstation (
whonix-ws-14) TemplateVM, run.
sudo su -c "echo -e 'deb http://http.debian.net/debian stretch-backports main contrib non-free' > /etc/apt/sources.list.d/backports.list"
Alternatively, users who like Onionizing Repositories can set the .onion mirror.
sudo su -c "echo -e 'deb tor+http://vwakviie2ienjx6t.onion/debian stretch-backports main contrib non-free' > /etc/apt/sources.list.d/backports.list"
3. Update the package lists.
sudo apt-get update
4. Install the select software.
sudo apt-get -t stretch-backports install electrum
The procedure is now complete.
On occasion it is necessary to undo this configuration, for example when upgrading from Debian
buster.  To proceed, run.
sudo rm /etc/apt/sources.list.d/backports.list
Please refer to the official Documentation at docs.electrum.org for comprehensive instructions, as well as more advanced topics like Cold Storage of private keys.
Users should create a wallet with a Strong Password!
To start Electrum:
KDE Applications Menu->
Qubes applications menu->
Qubes-Whonix users are recommended to configure a Split Bitcoin Wallet to better protect their private keys. To protect against identity correlation through Tor circuit sharing, follow the instructions below (see: Stream Isolation for more information).
Electrum: First Run
1. Manual server selection.
When Electrum is started for the first time, users are met with the prompt: "How do you want to connect to a server". Choose "Select server manually" and press <Next>.
Figure: Connect to Server
2. Re-enable "Select server automatically".
Figure: Select Server
3. Change the Proxy settings.
The necessary settings are
SOCKS5 with host
10.152.152.10 and port:
9111. Press <Next> and the application should be fully functional.
Figure: SOCKS5 Proxy Configuration
Note: If Electrum is already set up but stream isolation was not enabled, then navigate to
Network in Electrum to bring up the server and proxy settings.
- Some Bitcoin wallets other than Electrum are affected by this: if the third-party sever was ever compromised, all of the users' bitcoins could be stolen. There is also the possibility that the third-party could lose a user's private keys or walk away with them.
- Users should Prefer Packages from Debian Stable Repository, but using backports is better than manual software installation or using third party package managers since this prefers APT. To contain the risk, Non-Qubes-Whonix users might want to consider using Multiple Whonix-Workstations and Qubes-Whonix users might want to consider using Multiple Qubes-Whonix TemplateVMs or Software Installation in a TemplateBasedVM.
- Most often this step applies before attempting major Whonix upgrades; upgrade instructions are also made available at that time (see Stay Tuned).
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.
Whonix is provided by ENCRYPTED SUPPORT LP. See Imprint.