Jump to: navigation, search

Post Install Advice

On Whonix-Gateway and Whonix-Workstation[edit]

Change Passwords[edit]

If you are a Non-Qubes-Whonix user, please press on expand on the right.

As soon as Whonix is installed, change the passwords for both of the following accounts: user user and user root.

Open a terminal (such as Konsole):

Start menu -> Applications -> System -> Terminal

Login as root:

sudo su

Change the root and user passwords:

passwd
passwd user

And follow the instructions.

Security Updates[edit]

Regularly check for security updates and apply them in a timely fashion. See Operating System Updates.

Network Time Syncing[edit]

To prevent against time zone leaks, the system clock inside Whonix is set to UTC. This means it may be a few hours before or ahead of your host system clock. Do not change this setting!

While Whonix-Workstation is running, if you use the pause / suspend / save / resume feature of your virtualizer or the hibernate feature on your host operating system, then manually run TimeSync afterwards! [1]

Start Menu -> Applications -> System -> Time Synchronization Monitor (sdwdate-gui)

Or in a terminal:

TODO document

It is not recommended to pause / suspend / save / hibernate the Whonix-Gateway, because it is difficult to restore the clock after resume.

If your host clock (in UTC! [2] [3]) is more than 1 hour in the past or more than 3 hours in the future, Tor can't connect. In this case, manually fix your host clock by right clicking on it. Also check for an empty battery. Then, power off and power on the Whonix-Gateway and Tor should be able to reconnect. If your host clock is grossly inaccurate, you might experience problems when updating the host operating system, so periodically check it is (roughly) correct.

This chapter is intended to be a short and simple overview to provide basic protection. You can achieve greater security if you understand the Network Time Synchronization chapter from the Advanced Security Guide.

Security Guide[edit]

To further improve the security of your platform and increase the chances of successful anonymous activity, see the Security Guide.

Footnotes[edit]

  1. This is because the clock will be incorrect after system resume. A correct clock is important for anonymity (see Dev/TimeSync if you want to know why).
  2. On Linux, you can view your system time in UTC by using:
    date --utc
  3. TODO: Show desktop clock in local time; keep system in UTC

Random News:

Want to help create awesome, up-to-date screenshots for the Whonix wiki? Help is most welcome!


Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation. Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself.