Release Notes

From Whonix
Jump to navigation Jump to search

Whonix ™ 13 Changelog[edit]

Whonix ™ 13 was released on May 31, 2016. [1] Whonix ™ 13 contains many small security and usability improvements, features and bug fixes. [2] [3] [4]

All Platforms[edit]

AppArmor[edit]

  • Fixed the Tor Browser AppArmor profile to allow correct functionality. [5]
  • Resolved AppArmor conflicts affecting Pidgin, Chromium and Evince. [6]
  • Merged AppArmor profiles for sdwdate, timesync and whonix-check into their corresponding packages and now install them by default. [7]

Bug Fixes[edit]

  • Fixed broken whonix-setup-wizard functionality. [8]

Code[edit]

  • Updated Whonix ™ code for Tor Browser tb-updater. [9]
  • Refactored the Whonix ™ socks redirection firewall rules to reduce their size and use less script code. [10] [11]
  • Refactored Whonix ™ code so that scripts only use configuration files that end with the .conf extension. [12]

Improved Functionality and Usability[edit]

  • Modified whonixcheck to test for slow or fast system clocks which prevent Tor from properly connecting. [13]
  • Implemented an explicit check for timekeeping watchdog kernel messages in whonixcheck, so users are warned about clock jumps which prevent / time-out Tor connections. [14]
  • Enforced maximized terminal windows for xdg desktop users. [15] [16]
  • Enabled Transparent Proxy Ports for Whonix-Gateway ™ by default (except for Whonix ™-Firewall). [17] [18]
  • Configured Whonix ™ to use /etc/skel instead of writing to the home folder directly to maintain forward compatibility with Qubes. Further, this allows for proper error-handling where "user" is hardcoded in Whonix ™, and a newly created account with a different name has been used. [19]
  • Deprecated the timesync progress bar and replaced it with a tray icon using sdwdate-gui to improve usability and reduce confusion. [20]
  • Created a stable-proposed-updates repository for users who want to help in testing Whonix ™ fixes, without resorting to the testers repository which comes with many more changes. [21]
  • Moved the WhonixBackupScript to the usability-misc package to make it more accessible. [22]
  • Replaced XChat with HexChat, since the former is no longer actively maintained, and created a new AppArmor profile to contain it. [23]
  • Implemented a VPN_FIREWALL feature as part of whonix-ws-firewall. [24]

Security Enhancements[edit]

  • Created a security-misc package that turns off Nautilus and Dolphin file previews by default, since this poses security risks. [25]
  • A known, good version of Tor is now maintained and uploaded to the Whonix ™ repository from deb.torproject.org [26]
  • Uploaded the Tor 0.3.2.9 major (stable) release to the Whonix ™ repository to enable full v3 onion functionality for both hosting of onion services and access to v3 onion addresses in Tor Browser. [27]
  • Extended the lifetime of the Whonix ™ signing key. [28]
  • Sourced new onion services webservers for the sdwdate feature, which ensures the system's clock is correctly set for security, privacy and anonymity purposes. [29]

Qubes-Whonix ™[edit]

Bug Fixes[edit]

  • Fixed qubes-whonix-firewall systemd service start. [30] [31]
  • Resolved whonixcheck fixes for Qubes R4. [32]
  • Corrected false positive failure messages for the updates proxy test in Qubes R4. [33] [34]
  • Disabled qubes-SetDateTime / qubes.SyncNtpClock in Qubes-Whonix ™ VMs since it interfered with timesync. [35]
  • Resolved accumulation of old Tor Browser instances in /var/cache/tb-binary/.tb/ which caused users to run into full disk error messages. [36]
  • Resolved an occasional error message whereby Whonix ™ templates incorrectly reported they were not connected to the Whonix-Gateway ™ ProxyVM. [37]
  • Resolved the broken anon-ws-disable-stackedtor function in Qubes-Whonix ™. [38]
  • Enforced the opening of all links from sys-whonix, whonix-gw and whonix-ws in the anon-whonix AppVM to prevent error messages. [39]

Builds[edit]

  • Corrected the build failure of Whonix-Workstation ™ template in Qubes-Whonix ™ R3.2 and added the qubes-template-whonix to continuous integration service TravisCI. [40]
  • Resolved Whonix ™ template build failures in Qubes R4 related to Tor Browser downloads. [41]
  • Changed the Qubes-Whonix ™ build process to install Whonix ™ from the Whonix ™ binary APT repository. This simplifies code, results in faster builds, removes build dependencies inside the template, and reduces the overall template size. [42]
  • Allowed the Whonix ™ build script to run as root and reworked user_name. [43]

Code[edit]

  • Removed fetching of Whonix ™ source code in qubes-template-whonix. [44]
  • Removed the qubes-update-check system service from Qubes-Whonix ™ Templates, since it was unnecessary. [45] [46]
  • Reworked / removed a number of installed packages in Qubes-Whonix ™ which are only required for the Non-Qubes-Whonix ™ desktop. [47] [48]
  • Removed the default username and password in the Qubes-Whonix ™ terminal, because it is not required. [49]

Improved Functionality and Usability[edit]

  • Ported whonixcheck and tb-updater to Qubes' qrexec-based updates proxy, since Templates are non-networked by default in Qubes R4. [50]
  • Changed the tb-updater configuration to use Qubes updates proxy, since Qubes R4 sets the NetVM of Templates to none by default. [51]
  • Implemented the ability to install Whonix-Workstation ™ and Whonix-Gateway ™ from dom0 with a sudo apt install whonix-(workstation|gateway) feature. [52]
  • Ported the bind-directories functionality upstream to Qubes. [53]
  • Implemented the new bind-directories functionality in Qubes-Whonix ™. [54]
  • Implemented a check for whether the whonix-gw ProxyVM (sys-whonix) has a NetVM which is set to "none", with a warning shown if this is the case. [55]
  • Implemented a new feature so that following an update of the Whonix-Workstation ™ Template, newly created AppVMs based on the updated Template come with an up-to-date version of Tor Browser. [56]
  • Modified whonixcheck to check if: Whonix-Gateway ™ is running in a NetVM or ProxyVM; Whonix-Workstation ™ is running in an AppVM; and to skip the test if a Template is detected. [57]

Security Enhancements[edit]

  • Prevented /usr/lib/qubes/qubes-setup-dnat-to-ns from running in Qubes-Whonix ™ to stop it from modifying firewall rules. [58]

Whonix ™ 14 Changelog[edit]

Whonix ™ 14 was released on August 6, 2018. Significantly, Whonix ™ 14 is based on the Debian stretch (Debian 9) distribution which was released in mid-2017, instead of Debian jessie (Debian 8). [59] Users now have access to numerous updated and new software packages, a more modern branch of GnuPG, and more. [60] [61] [62]

All Platforms[edit]

AppArmor[edit]

  • Fixed the whonixcheck AppArmor profile to remove continuous denied messages relating to signal. [63]
  • Fixed the AppArmor profile for obfs4proxy to enable correct functioning of Tor Bridges in Whonix-Gateway ™. [64]
  • Fixed the Tor Browser AppArmor profile to allow correct functionality. [65]
  • Corrected the tor-controlport-filter AppArmor profile to ensure correct functioning. [66]
  • Removed the Pidgin AppArmor profile, since Pidgin is recommended against for security reasons. [67]
  • Hardened the Control Port Filter AppArmor profile. [68]
  • Disabled installation of apparmor-notify (AppArmor notifications) by default, thereby removing the reporting of mostly harmless denied messages. [69] [70]

Bug Fixes[edit]

  • Corrected the broken whonix-setup-wizard autostart on Whonix-Gateway ™. [71]
  • Fixed sdwdate-gui freezing when using right-click in the menu. [72]
  • Fixed dependency issues which prevented the whonix-setup-wizard gui from starting. [73]
  • Implemented the correct Tor --verify command for Whonix-Gateway ™ torrc configuration checks to prevent the reporting of false positives. [74]
  • Modified the uwt wrapper script to correctly handle symbolic links. [75]
  • Changed the Whonix-Gateway ™ firewall prerouting rules for socks ports so they do not interfere with trans port traffic. [76]
  • Modified whonixcheck to first test if network interfaces are up to prevent the test from failing unnecessarily. [77]
  • Fixed a whonixcheck whonix-firewall check race condition. [78]

Builds[edit]

  • Resolved genmkfile build dependencies for building Whonix-Workstation ™ and Whonix-Gateway ™. [79]
  • Confirmed the new and upgraded Whonix ™ 14 builds are identical. [80] [81]
  • Fixed debian/control parsing with respect to make_deb_build_dependencies / make_deb_runtime_dependencies. [82]

Code[edit]

  • Updated Whonix ™ code for Tor Browser tb-updater. [83]
  • Changed the bindp compile to postinstall to make it cross-platform (Qubes, 64-bit, 32-bit). [84]
  • Rewrote sclockadj in C and updated the sdwdate package to compile sclockadj. [85] [86]
  • Implemented symlinks for onion-grater profiles to maintain functionality following profile upgrades. [87]
  • Enhanced onion checking in sdwdate to improve the unit test. [88]
  • Ported msgcollector to python3 and python3-pyqt5. [89]
  • Ported whonix-setup-wizard to python3. [90]
  • Ported python-guimessages to python3. [91]
  • Rewrote sdwdate to ensure python exceptions are written to the journal. [92]
  • Rewrote control-port-filter-python to ensure exceptions are written to the journal. [93]
  • Re-added some non-essential packages to Whonix ™ that were removed from Debian stretch. [94] [95]
  • Ported anon-shared-helper-scripts so they instead use Tor authentication cookies. [96]
  • Ported whonixcheck check_tor_socks_port_reachability.bsh to use the Tor unix domain socket socks file. [97]
  • Ported anon-ws-disable-stacked-tor to systemd socket activation to remove unnecessary, idle socat listeners. [98] [99]
  • Removed auditd configuration folder parsing /etc/audit/rules.d/ by default, since the feature has been implemented upstream.
  • Implemented anonymous counting of Whonix ™ users via the whonixcheck Whonix ™ News function. [100] [101]
  • Implemented, but did not activate changes to the Whonix ™ firewall so: sdwdate is stopped before suspend; timesync-fail-closed mode is set before suspend; sdwdate is restarted after resume; and Whonix ™ firewall enters full mode after resume following successful sdwdate activation. [102]
  • Configured auditd to process the configuration folder /etc/audit/rules.d/ by default to aid debugging. [103] [104]
  • Implemented monitoring of changes to /var/lib/tor/lock access rights via auditd to aid debugging. [105]
  • Modified anon-ws-disable-stacked-tor to maintain Tor Browser functionality with Unix domain socket files redirection and prevent Tor over Tor scenarios. [106]
  • Configured whonixcheck to test for failed daemons. [107]
  • Implemented a sdwdate sd_notify systemd watchdog. [108]
  • Disabled systemd-resolved and instead implemented a /lib/systemd/system/systemd-resolved.service.d/ drop-in. [109]
  • Ported /usr/sbin/service to systemctl as the latter runs non-interactively. [110]
  • Disabled timedatectl network time synchronization in Debian stretch to prevent conflicts with sdwdate. [111]
  • Removed brltty, brltty-speechd and brltty-x11 since they create a local listener port which may conflict with onion-grater. [112]
  • Modified anon-ws-disable-stacked-tor systemd-unit-files-generator so it is configurable. [113]
  • Rewrote slockadj3 in C and determined how to prevent spamming of sclockadj3 time changes to logs. [114] [115] [116] [117]

Improved Functionality and Usability[edit]

  • Implemented the major new Anon Connection Wizard feature to simplify connections to the Tor network via a Tor bridge and/or a proxy. [118]
  • Integrated the Tor Pluggable Transport meek_lite. [119]
  • Integrated anon-connection-wizard into whonix-setup-wizard, so that the latter can now start the former. [120]
  • Removed the Control Port Filter Proxy script from anon-ws-disable-stacked-tor since it is no longer required for proper Tor connections or Tor Browser functions (its functionality is now replaced by onion-graterarchive.org). This means Ricochet, Zeronet and OnionShare are now compatible with Whonix ™. [121] [122] [123]
  • Installed necessary dependencies for proper ZeroNet functionality. [124]
  • Installed onioncircuits by default in Whonix-Gateway ™. [125]
  • Added --list-interface to tor-controlport-filter, as it works better with dynamic IP addresses. [126]
  • Added a /etc/tor-controlport-filter.d configuration extension feature. [127]
  • Fixed the control-port-filer-python configuration to rewrite HS_DESC replies by Tor, so OnionShare is supported. [128]
  • Merged the tor-controlport-filter by Tails for various enhancements. [129]
  • Implemented more user-friendly error messages (instead of tb-starter error handlers) when non-Whonix ™ related Tor Browser issues cause start-tor-browser to fail and exit zero. [130]
  • Implemented sane built-in defaults for whonix-gw-firewall, whonix-ws-firewall, whonixcheck, sdwdate, uwt, onion-grater, rads, open-link-confirmation, tb-starter and tb-updater, even if configuration files do not exist. [131]
  • Changed uwt to set AllowOutboundLocalhost / AllowInbound which can help make servers utilizing Tor onion services work. [132]
  • Implemented a sd_notify watchdog feature for onion-grater so the service is restarted if it appears to be running, but has became unresponsive. [133]
  • Created a bindp Whonix ™ package to enable Whonix-Workstation ™ applications that use Tor ephemeral onion services to bind on all interfaces as necessary. [134]
  • Modified sdwdate to check if the clock is changed "behind the back" of the program and suggest a manual user fix. [135]
  • Improved default torsocks information / warning messages when wrapped commands are invoked to reduce user confusion. [136]
  • Both Non-Qubes-Whonix ™ and Qubes-Whonix ™ are now compatible with the Tor Project's sandboxed Tor Browser. [137]

Security Enhancements[edit]

  • Confirmed functionality of the kloak anti-keystroke deanonymization tool in Whonix ™. [138] [139]
  • Identified more reliable onion servers as appropriate time sources for sdwdate, which enables correct network time synchronization for anonymity-focused distributions. [140]
  • Implemented Tails' Control Port Filter Proxy in Whonix ™ and merged recent changes since it was forked. [141] [142]
  • Fixed security and hardening (stack canary) issues with the bindp libindp.so package (which were merged upstream). [143]
  • Uploaded Tor version 0.3.3.9 (stable) release to the Whonix ™ repository to enable full v3 onion functionality for both hosting of onion services and access to v3 onion addresses in Tor Browser. [144]
  • Onion sources are now preferred for Whonix ™ updates/upgrades for greater security. Note: this change has been reverted due to the unreliable nature of onion connections at present - see footnote. [145]
  • Disabled the apt-timer in Debian stretch to prevent auto updates, thereby preventing the attendant security risks associated with background updates without user input. [146]
  • Disabled nautilus previews by default due to the security risks. [147]
  • Implemented uwt to set TORSOCKS_ISOLATE_PID in Debian Stretch so all uwt wrapped applications are stream isolated. [148]
  • Implemented tor+http / apt-transport-tor rather than Acquire::BlockDotOnion "false" for better security and stream isolation. [149]
  • Disabled the systemd DNS resolver feature in order to reduce the attack surface and to remove the potential for adverse anonymity impacts. [150]
  • Established a dedicated Whonix ™.org repository, with appropriate redirects from Whonix ™ mirrors. [151]
  • Removed the DHCP client from Whonix-Gateway ™ and switched to a static network configuration so the dhclient is no longer present on all interfaces, including the internal network. [152]
  • Disabled VLC metadata collection by default. [153]
  • Disabled "Obey DRM limitations" in Okular, [154] since Digital Rights Management (DRM) can be used as a tracking vector. [155] [156]

Non-Qubes-Whonix[edit]

Info Desktop shortcuts are no longer available in Non-Qubes-Whonix ™. [157]

Bug Fixes[edit]

  • Increased the Whonix-Gateway ™ VRAM in VirtualBox from 8 to 16 MB to avoid error messages and possible video problems when using full screen mode. [158]
  • Corrected sdwdate-gui systray so it properly registers in kde systray and does not appear as a gap in the Entry column. [159]
  • Corrected the sdwdate-gui tray icon so it is visible in Debian stretch. [160]
  • Corrected the virtualization detection method to properly recognize KVM. [161]

Builds[edit]

  • Reduced the size of the default, binary Whonix ™ images by approximately 50 per cent using zerofree. [162] [163] [164] [165]

Code[edit]

  • Removed kmix-disable-autostart since it is no longer required to make sure the clipboard history icon is loaded into the system tray. [166]

Improved Functionality and Usability[edit]

  • Created the grub-live package which can run Whonix ™ as a live system. [167] [168]
  • Added Kscreen to Whonix ™ by default in order to allow DPI scaling and other basic desktop features of Plasma 5. [169]
  • Removed the VirtualBox shared folder and confirmed automounting of shares is enabled in Debian stretch. [170]

Security Enhancements[edit]

  • Removed okular from anon-shared-applications-kde to anon-workstation-default-applications so it is not installed on Whonix-Gateway ™. [171]
  • Hide the CPUID in VirtualBox 5 by setting generic values via HostCPUID. [172]

Qubes-Whonix ™[edit]

Bug Fixes[edit]

  • Implemented whonixcheck fixes for Qubes R4. [173]
  • Corrected false positive failure messages for the updates proxy test in Qubes R4. [174] [175]
  • Resolved non-functionality of Tor Browser due to jemalloc corruption. [176]
  • Resolved segfaults in Tor Browser caused by excessive string length in the XDG_CONFIG_DIRS environment variable. [177]
  • Resolved accumulation of old Tor Browser instances in /var/cache/tb-binary/.tb/ which caused users to run into full disk error messages. [178]
  • Corrected dependencies in the qubes-whonix package to resolve issues when upgrading to Debian stretch. [179]
  • Fixed a corridor lintian warning on Debian related to systemd documentation. [180]
  • Resolved error messages associated with tput using an empty TERM environment variable. [181]
  • Resolved the failure of tb-updater to copy Tor Browser into the user's home directory on first VM startup in Qubes R4. [182] [183] [184]
  • Implemented the correct appmenus for Qubes-Whonix ™ 14 Templates and fixed missing appmenu entries. [185] [186]
  • Resolved the false positive timedatectl error message when using whonixcheck. [187]
  • Corrected the absent 'Connected to Tor.' message, which arose due to a missing notification daemon. [188]
  • Resolved non-persistence of files in /usr/local, such as the Tor configuration file. [189] [190]
  • Implemented a qvm-features-request whonix-ws=1, so that newly created Whonix-Workstation ™ AppVMs inherit the anon-vm tag. [191] [192] [193]
  • Created qubes-core-admin-addon-whonix to enforce the anon-vm tag for newly created Whonix-Workstation ™ AppVMs. [194]
  • Removed redundant warning messages affecting Whonix-Workstation ™ DisposableVMs that related to the first invocation of an open-link-confirmation. [195]
  • Fixed an APT package issue whereby some users were downgraded to a known vulnerable version. [196] [197]
  • Corrected an aptitude update failure which affected all Qubes-Whonix ™ VMs. [198]
  • Installed Tor Browser by default in Whonix-Workstation ™-DisposableVMs, as it was previously missing upon VM launch. [199]
  • Fixed the periodic failure of Whonix-Workstation ™ AppVMs to start correctly, which prevented the launch of any user applications. [200]
  • Fixed an error which caused /etc in Qubes-Whonix ™ templates to be owned by user:user [201]

Builds[edit]

  • Corrected the build failure of the Whonix-Workstation ™ template in Qubes-Whonix ™ R3.2 and added qubes-template-whonix to the continuous integration service TravisCI. [202]
  • Removed older unstable Whonix ™ 14 builds from Qubes' unstable repository. [203]
  • Resolved unexpected build failures. [204]
  • Removed Whonix ™ 14 templates from Qubes' unstable repository, since testing versions now reside in qubes-templates-community-testing. [205]
  • Backported versioning of Whonix ™ template names from Qubes R4 to Qubes R3.2 to simplify the installation procedure for users on the earlier platform. [206]

Code[edit]

  • Removed cups and system-config-printer from Whonix-Workstation ™, since printing capabilities are better suited to alternate VMs and this also removes a local TCP listener that is otherwise created. [207]
  • Corrected anon-meta-packages compatibility for Qubes R3.2 and R4. [208]
  • Installed pulseaudio-qubes for audio support and removed pulseaudio and VLC from sys-whonix. [209]
  • Created a qvm-features-request whonix-gw=1 as a prerequisite for sdwdate-gui-qubes. [210]

Improved Functionality and Usability[edit]

  • Confirmed full Qubes-Whonix ™ compatibility with Qubes R4. [211]
  • Created a tb-updater storage path for Qubes R4 so new AppVMs and DisposableVMs have a copy of the latest Tor Browser version. [212] [213]
  • Created Qubes-Whonix ™ 14 SaltStack state files with flexible versioning for future releases. [214] [215]
  • Modified Qubes-Whonix ™ Salt code so the repository is not hard-coded, allowing users to choose either the qubes-templates-community or qubes-templates-community-testing repository. [216]

Licensing[edit]

  • Added a COPYING file to the Qubes-Whonix ™ template repository to assure users they are covered by a free software license. [217] [218]

Security Enhancements[edit]

  • Added Qubes-Whonix ™ tags on domain-load rather than upon VM creation to avoid missing tags for users that upgrade. [219]

Whonix ™ 14 Updates[edit]

As Whonix ™ is now a rolling distribution, users will benefit from regular small security and usability improvements, features and bug fixes as they enter the Whonix ™ stable repository.

Due to the lengthy list of updates released in Whonix ™ 14 to address outstanding issues, please refer to this entry.

Whonix ™ 15 Changelog[edit]

Whonix ™ 15 was released on July 1, 2019. Significantly, Whonix ™ 15 is based on the Debian buster (Debian 10) distribution which is due for release on July 7, instead of Debian stretch (Debian 9). Users now have access to numerous updated and new software packages, and more. Some fixes/changes were implemented in both Whonix ™ 14 and 15.

All Platforms[edit]

Bug Fixes[edit]

  • Fixed file saving issues in scurl wrappers. [220] [221] [222]
  • Fixed the partial truncation of text in Whonix ™ Connection Wizard. [223]
  • Installed cryptsetup by default so errors do not appear when using a GUI and interacting with encrypted containers. [224] [225] [226]

Builds[edit]

  • Ported the build script to cowbuilder; build packages in chroot and use mmdebstrap for better security. [227]

Code[edit]

  • Modified whonixcheck so it suggests to start networking / onion-grater if it is not running. [228]
  • Improved the /usr/share/sdwdate/unit_test [229] [230]
  • Improved the sdwdate message Tor consensus message. [231]
  • Confirmed the sanity of systemd DNS after porting to Debian Buster. [232]
  • Established sane built-in defaults even if configuration files are non-existing. [233] [234]
  • Updated the onion list time sources for sdwdate so that offline and unwanted onions were removed. [235]

Improved Functionality and Usability[edit]

Security Enhancements[edit]

Non-Qubes-Whonix[edit]

Bug Fixes[edit]

  • Corrected a VirtualBox error related to guest utils not starting. [256] [257]

Builds[edit]

  • Significantly reduced the size of Non-Qubes-Whonix images using zerofree. [258]

Improved Functionality and Usability[edit]

Security Enhancements[edit]

Qubes-Whonix ™[edit]

Bug Fixes[edit]

  • Correctly configured Qubes-Whonix ™ XFCE default start menu entries (whitelisted appmenus). [275]

Builds[edit]

  • Created Qubes-Whonix 15 template configuration files. [276] [277]
  • Confirmed the Whonix-15-gateway template builds. [278]

Improved Functionality and Usability[edit]

  • Simplified instructions for VM kernelarchive.org in Qubes-Whonix ™ by installing the same recommended Qubes packages as Qubes Debian packages. [279] [280]
  • In DisposableVMs, tb-updater / tb-starter was modified to no longer copy Tor Browser to the user home directory at first boot -- /var/cache/tb-binary is now directly used to improve startup performance. [281] [282]

Security Enhancements[edit]

  • Confirmed Qubes-Whonix ™ TemplateMVs cannot upgrade in timesync-fail-closed mode. [283] [284]

Footnotes[edit]

  1. https://www.whonix.org/blog/whonix-13-releasedarchive.org
  2. https://phabricator.whonix.org/maniphest/query/TfpGK0Sq8w1j/#Rarchive.org
  3. Descriptions of changes in Whonix ™ 12archive.org and earlier versionsarchive.org can be found on sourceforge.net
  4. A handful of issues have been fixed in both Whonix ™ 13 and Whonix ™ 14 and backported to both versions.
  5. https://phabricator.whonix.org/T672archive.org
  6. https://phabricator.whonix.org/T314archive.org
  7. https://phabricator.whonix.org/T201archive.org
  8. https://phabricator.whonix.org/T499archive.org
  9. https://phabricator.whonix.org/T666archive.org
  10. https://phabricator.whonix.org/T465archive.org
  11. The same firewall rules are still applied.
  12. https://phabricator.whonix.org/T286archive.org
  13. https://phabricator.whonix.org/T482archive.org
  14. https://phabricator.whonix.org/T480archive.org
  15. https://phabricator.whonix.org/T451archive.org
  16. For instance, tor-arm, restart Tor and other terminal programs.
  17. https://phabricator.whonix.org/T435archive.org
  18. This does not enable transparent proxying by default, but is required in Qubes so tinyproxy traffic can be redirectedarchive.org to 127.0.01 instead of to qubes-netvm-gateway.
  19. https://phabricator.whonix.org/T419archive.org
  20. https://phabricator.whonix.org/T300archive.org
  21. https://phabricator.whonix.org/T200archive.org
  22. https://phabricator.whonix.org/T159archive.org
  23. https://phabricator.whonix.org/T40archive.org
  24. https://phabricator.whonix.org/T158archive.org
  25. https://phabricator.whonix.org/T418archive.org
  26. https://phabricator.whonix.org/T472archive.org
  27. https://phabricator.whonix.org/T764archive.org
  28. https://phabricator.whonix.org/T497archive.org
  29. https://phabricator.whonix.org/T266archive.org
  30. https://phabricator.whonix.org/T528archive.org
  31. This fixes various bugs relating to Tor starting / failing multiple times and qubes-whonix-torified-updates-proxy sometimes failing.
  32. https://phabricator.whonix.org/T724archive.org
  33. https://phabricator.whonix.org/T723archive.org
  34. Qubes R4 RC1.
  35. https://phabricator.whonix.org/T384archive.org
  36. https://phabricator.whonix.org/T671archive.org
  37. https://phabricator.whonix.org/T496archive.org
  38. https://phabricator.whonix.org/T454archive.org
  39. https://phabricator.whonix.org/T452archive.org
  40. https://phabricator.whonix.org/T527archive.org
  41. https://phabricator.whonix.org/T710archive.org
  42. https://phabricator.whonix.org/T498archive.org
  43. https://phabricator.whonix.org/T416archive.org
  44. https://phabricator.whonix.org/T507archive.org
  45. https://phabricator.whonix.org/T433archive.org
  46. The qubes-update-check.service already has improved upgrade notifications.
  47. https://phabricator.whonix.org/T429archive.org
  48. For instance, plasma-widget-folderview, kde-kdm-autologin, split the anon-shared-desktop-kde package and so on.
  49. https://phabricator.whonix.org/T428archive.org
  50. https://phabricator.whonix.org/T491archive.org
  51. https://phabricator.whonix.org/T477archive.org
  52. https://phabricator.whonix.org/T461archive.org
  53. https://phabricator.whonix.org/T414archive.org
  54. https://phabricator.whonix.org/T501archive.org
  55. https://phabricator.whonix.org/T421archive.org
  56. https://phabricator.whonix.org/T417archive.org
  57. https://phabricator.whonix.org/T406archive.org
  58. https://phabricator.whonix.org/T502archive.org
  59. https://www.debian.org/releases/stretch/archive.org
  60. https://www.debian.org/News/2017/20170617archive.org
  61. https://www.debian.org/releases/stable/amd64/release-notes/archive.org
  62. https://www.debian.org/releases/stable/i386/release-notes/archive.org
  63. https://forums.whonix.org/t/apparmor-and-kernel-4-14-18-1-creates-tons-of-kern-log-pop-ups/4811archive.org?
  64. https://phabricator.whonix.org/T676archive.org
  65. https://phabricator.whonix.org/T672archive.org
  66. https://phabricator.whonix.org/T587archive.org
  67. https://phabricator.whonix.org/T568archive.org
  68. https://phabricator.whonix.org/T532archive.org
  69. https://phabricator.whonix.org/T557archive.org
  70. The Whonix ™ documentation recommends that advanced users install apparmor-notify to investigate relevant warnings.
  71. https://phabricator.whonix.org/T640archive.org
  72. https://phabricator.whonix.org/T626archive.org
  73. https://phabricator.whonix.org/T592archive.org
  74. https://phabricator.whonix.org/T787archive.org
  75. https://phabricator.whonix.org/T797archive.org
  76. https://phabricator.whonix.org/T462archive.org
  77. https://phabricator.whonix.org/T490archive.org
  78. https://phabricator.whonix.org/T675archive.org
  79. https://phabricator.whonix.org/T700archive.org
  80. https://phabricator.whonix.org/T760archive.org
  81. https://phabricator.whonix.org/T761archive.org
  82. https://phabricator.whonix.org/T643archive.org
  83. https://phabricator.whonix.org/T666archive.org
  84. https://phabricator.whonix.org/T688archive.org
  85. https://phabricator.whonix.org/T686archive.org
  86. https://phabricator.whonix.org/T650archive.org
  87. https://phabricator.whonix.org/T768archive.org
  88. https://phabricator.whonix.org/T648archive.org
  89. https://phabricator.whonix.org/T632archive.org
  90. https://phabricator.whonix.org/T628archive.org
  91. https://phabricator.whonix.org/T627archive.org
  92. https://phabricator.whonix.org/T608archive.org
  93. https://phabricator.whonix.org/T603archive.org
  94. https://phabricator.whonix.org/T601archive.org
  95. gtk3-engines-oxygen.
  96. https://phabricator.whonix.org/T578archive.org
  97. https://phabricator.whonix.org/T548archive.org
  98. https://phabricator.whonix.org/T623archive.org
  99. This also reduces the RAM load caused by too many socat instances.
  100. https://phabricator.whonix.org/T689archive.org
  101. This measure takes place over Tor using a v3 onion. It does not include collection of IP addresses or unique identifiers of any kind, and can be easily disabledarchive.org.
  102. https://phabricator.whonix.org/T551archive.org
  103. https://phabricator.whonix.org/T535archive.org
  104. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833474archive.org
  105. https://phabricator.whonix.org/T537archive.org
  106. https://phabricator.whonix.org/T192archive.org
  107. https://phabricator.whonix.org/T488archive.org
  108. https://phabricator.whonix.org/T639archive.org
  109. https://phabricator.whonix.org/T762archive.org
  110. https://phabricator.whonix.org/T637archive.org
  111. https://phabricator.whonix.org/T589archive.org
  112. https://phabricator.whonix.org/T563archive.org
  113. https://phabricator.whonix.org/T796archive.org
  114. https://phabricator.whonix.org/T691archive.org
  115. https://github.com/systemd/systemd/issues/5207archive.org
  116. https://phabricator.whonix.org/T686archive.org
  117. https://phabricator.whonix.org/T50archive.org
  118. https://phabricator.whonix.org/T699archive.org
  119. https://forums.whonix.org/t/censorship-circumvention-tor-pluggable-transports/2601archive.org
  120. https://phabricator.whonix.org/T716archive.org
  121. OnionShare is not installed by default in Whonix ™ 14 because it is not in the stretch repository, however it may be manually installed using the available wiki instructions.
  122. https://phabricator.whonix.org/T657archive.org
  123. onion-graterarchive.org:

    Filters out Tor control protocol commands that are dangerous for anonymity such as GETINFO ADDRESS using a whitelist. Acts as a proxy between the client application and Tor.

    For example it allows using Tor Browser's New Identity feature on Anonymity Distribution Workstations, fixes Tor Browser's about:tor default homepage and Tor Button status indicator without exposing commands that are dangerous for anonymity.

  124. https://phabricator.whonix.org/T701archive.org
  125. https://forums.whonix.org/t/onioncircuits-viewing-the-status-and-circuits-of-tor/2539archive.org
  126. https://phabricator.whonix.org/T579archive.org
  127. https://phabricator.whonix.org/T576archive.org
  128. https://phabricator.whonix.org/T574archive.org
  129. https://phabricator.whonix.org/T573archive.org
  130. https://phabricator.whonix.org/T510archive.org
  131. https://phabricator.whonix.org/T503archive.org
  132. https://phabricator.whonix.org/T357archive.org
  133. https://phabricator.whonix.org/T274archive.org
  134. https://phabricator.whonix.org/T561archive.org
  135. https://phabricator.whonix.org/T481archive.org
  136. https://phabricator.whonix.org/T73archive.org
  137. This is no longer recommended, since the The Tor Project has ceased development and stopped building and distributing sandboxed-tor-browser binariesarchive.org.
  138. https://phabricator.whonix.org/T583archive.org
  139. By default, kloak is packaged in Whonix ™ 15 for the Non-Qubes-Whonix platform. Unfortunately Qubes is unsupported (dysfunctional) due to the following Qubes issues:
  140. https://phabricator.whonix.org/T647archive.org
  141. https://phabricator.whonix.org/T617archive.org
  142. https://phabricator.whonix.org/T612archive.org
  143. https://phabricator.whonix.org/T599archive.org
  144. https://phabricator.whonix.org/T764archive.org
  145. Previously both clearnet and onion sources were in use and priority was given to the latter, with v3 onion connections being preferred (clearnet provided a fallback). Onions will not be set by default until OnionBalancearchive.org is available for v3 onions, and the repositories can be reached reliably.
  146. https://phabricator.whonix.org/T590archive.org
  147. https://phabricator.whonix.org/T500archive.org
  148. https://phabricator.whonix.org/T356archive.org
  149. https://phabricator.whonix.org/T610archive.org
  150. https://phabricator.whonix.org/T471archive.org
  151. https://phabricator.whonix.org/T475archive.org
  152. https://phabricator.whonix.org/T559archive.org
  153. https://phabricator.whonix.org/T736archive.org
  154. The default Whonix ™ PDF reader.
  155. https://www.locklizard.com/track-pdf-monitoring/archive.org
  156. https://phabricator.whonix.org/T776archive.org
  157. Until it is determined how to enable kde-folderview in Debian stretch.
  158. https://phabricator.whonix.org/T680archive.org
  159. https://phabricator.whonix.org/T638archive.org
  160. https://phabricator.whonix.org/T598archive.org
  161. https://github.com/Whonix/shared-folder-help/commit/2130d872d4e346bc490e70fca79e572d1d1f86dfarchive.org
  162. https://phabricator.whonix.org/T790archive.org
  163. https://forums.whonix.org/t/reducing-size-of-ova-imagesarchive.org
  164. VirtualBox .ova and libvirt qcow2 raw images.
  165. The Whonix-Gateway ™ is reduced from 1.7 GB to 850 MB, while the Whonix-Workstation ™ is reduced from 2 GB to 1.1 GB.
  166. https://phabricator.whonix.org/T722archive.org
  167. https://phabricator.whonix.org/T714archive.org
  168. grub-live is not installed by default in Whonix ™ 14 and is an optional package only.
  169. https://phabricator.whonix.org/T703archive.org
  170. https://phabricator.whonix.org/T702archive.org
  171. https://github.com/Whonix/anon-meta-packages/commit/a22b1807c79cb1d21447c83ed251c331cf6222f1archive.org
  172. https://phabricator.whonix.org/T408archive.org
  173. https://phabricator.whonix.org/T724archive.org
  174. https://phabricator.whonix.org/T723archive.org
  175. Qubes R4 RC1.
  176. https://phabricator.whonix.org/T651archive.org
  177. https://phabricator.whonix.org/T767archive.org
  178. https://phabricator.whonix.org/T671archive.org
  179. https://phabricator.whonix.org/T620archive.org
  180. https://phabricator.whonix.org/T607archive.org
  181. https://phabricator.whonix.org/T505archive.org
  182. https://phabricator.whonix.org/T781archive.org
  183. https://github.com/Kicksecure/tb-updater/issues/2archive.org
  184. https://phabricator.whonix.org/T789archive.org
  185. https://github.com/QubesOS/qubes-issues/issues/4033archive.org
  186. https://github.com/QubesOS/qubes-issues/issues/4093archive.org
  187. https://github.com/QubesOS/qubes-issues/issues/3469archive.org
  188. https://github.com/QubesOS/qubes-issues/issues/4098archive.org
  189. A persistent configuration now applies upon reboot.
  190. https://github.com/QubesOS/qubes-issues/issues/4095archive.org
  191. https://github.com/QubesOS/qubes-issues/issues/3595archive.org
  192. https://phabricator.whonix.org/T791archive.org
  193. The anon-vm tagarchive.org enforces selected settings from Templates to TemplateBasedVMs which are necessary for anonymity.
  194. https://phabricator.whonix.org/T792archive.org
  195. https://github.com/QubesOS/qubes-issues/issues/4113archive.org
  196. https://github.com/QubesOS/qubes-issues/issues/4055archive.org
  197. The bug caused a version downgrade to APT 1.0.9.8.4
  198. https://github.com/QubesOS/qubes-issues/issues/3882archive.org
  199. https://github.com/QubesOS/qubes-issues/issues/3740archive.org
  200. https://github.com/QubesOS/qubes-issues/issues/2334archive.org
  201. https://github.com/QubesOS/qubes-issues/issues/1156archive.org
  202. https://phabricator.whonix.org/T527archive.org
  203. https://github.com/QubesOS/qubes-issues/issues/3766archive.org
  204. https://github.com/QubesOS/qubes-issues/issues/4063archive.org
  205. https://github.com/QubesOS/qubes-issues/issues/4086archive.org
  206. https://github.com/QubesOS/qubes-issues/issues/4130archive.org
  207. https://phabricator.whonix.org/T619archive.org
  208. https://phabricator.whonix.org/T697archive.org
  209. https://phabricator.whonix.org/T641archive.org
  210. https://github.com/QubesOS/qubes-issues/issues/4080archive.org
  211. https://phabricator.whonix.org/T698archive.org
  212. https://phabricator.whonix.org/T726archive.org
  213. https://forums.whonix.org/t/qubes-dispvm-technical-discussion/3232/58archive.org
  214. https://github.com/QubesOS/qubes-issues/issues/3765archive.org
  215. https://phabricator.whonix.org/T788archive.org
  216. https://github.com/QubesOS/qubes-issues/issues/4087archive.org
  217. https://phabricator.whonix.org/T810archive.org
  218. Whonix ™ is licensed under GPLv3. The repository in question can be found herearchive.org.
  219. https://github.com/QubesOS/qubes-issues/issues/4094archive.org
  220. https://phabricator.whonix.org/T899archive.org
  221. https://github.com/Kicksecure/usability-misc/blob/master/usr/bin/scurl/pull/1archive.org
  222. A few fixes were needed, such as:
    • Remove --remote-name and replace it with --remote-name-all.
    • Improve download wrappers and add --remote-header-name.
  223. https://phabricator.whonix.org/T923archive.org
  224. https://phabricator.whonix.org/T890archive.org
  225. For instance, an error would otherwise appear when using XFCE file manager with encrypted USBs.
  226. https://forums.whonix.org/t/have-cryptsetup-installed-by-default-in-whonix/6684/5archive.org
  227. https://forums.whonix.org/t/fixed-apt-rce-announced-new-whonix-images-needed-whonix-build-not-safe-at-the-moment/6715archive.org
  228. https://phabricator.whonix.org/T853archive.org
  229. https://phabricator.whonix.org/T712archive.org
  230. Specifically:
    • Make it simpler (to split urls into chunks of 3).
    • Generate average, total etc. for each pool.
    • Add curl command for the failures (timeouts).
  231. https://phabricator.whonix.org/T850archive.org
  232. https://phabricator.whonix.org/T866archive.org
  233. https://phabricator.whonix.org/T503archive.org
  234. This was completed for whonix-gw-firewall, whonix-ws-firewall, whonixcheck, sdwdate, uwt, onion-grater (Control Port Filter Proxy), rads, open-link-confirmation, tb-starter, tb-updater and anon-ws-disable-stacked-tor.
  235. https://github.com/TNTBOMBOM/sdwdate/commit/2985fc70625ae13aed45225b8c83592575c21a78archive.org
  236. https://forums.whonix.org/t/port-whonix-from-debian-stretch-to-debian-buster/7101archive.org
  237. https://phabricator.whonix.org/T889archive.org
  238. https://phabricator.whonix.org/T869archive.org
  239. https://forums.whonix.org/t/install-firejail-firetools-by-default/5363/3archive.org
  240. MAT2 only removes metadata from your files, it does not anonymise their content, nor can it handle watermarking, steganography, or any too custom metadata field/system.

  241. https://phabricator.whonix.org/T885archive.org
  242. https://forums.whonix.org/t/add-mat2-to-whonix-15/6489archive.org
  243. zulumount-guiarchive.org is also installed.
  244. https://phabricator.whonix.org/T769archive.org
  245. https://forums.whonix.org/t/zulucrypt-in-whonix-14/4876archive.org
  246. https://phabricator.whonix.org/T595archive.org
  247. https://forums.whonix.org/t/feature-request-onionshare-support/300/7archive.org
  248. https://github.com/Whonix/anon-meta-packages/commit/8d5e892d3b603bb1390d3c152f70f8b8e8bfefefarchive.org
  249. Primarily due to incompatibility with v3 onions.
  250. https://forums.whonix.org/t/remove-ricochet-from-whonix/5009archive.org
  251. https://forums.whonix.org/t/what-about-nyx/6380archive.org
  252. nyx is actually the same project; just the name has changed and the presentation is very similar.
  253. https://phabricator.whonix.org/T798archive.org
  254. https://phabricator.whonix.org/T817archive.org
  255. Using the Jitter RNG core, the rngd provides an entropy source that feeds into the Linux /dev/random device if its entropy runs low. ... Especially during boot time, when the entropy of Linux is low, the Jitter RNGd provides a source of sufficient entropy.

  256. https://phabricator.whonix.org/T848archive.org
  257. https://forums.whonix.org/t/failed-failed-to-start-virtualbox-guest-utils/5975/4archive.org
  258. https://forums.whonix.org/t/reducing-size-of-ova-images/5095archive.org
  259. https://phabricator.whonix.org/T886archive.org
  260. https://github.com/Kicksecure/grub-livearchive.org
  261. https://github.com/Whonix/anon-meta-packages/pull/18archive.org
  262. https://forums.whonix.org/t/installing-whonix-live-mode-in-all-distributed-images/6467archive.org
  263. This means Non-Qubes-Whonix users can boot into live-mode out of the box, without needing to install it.
  264. https://phabricator.whonix.org/T825archive.org
  265. Such as the root password, Whonix ™ home page and so on.
  266. https://forums.whonix.org/t/add-description-to-whonix-vbox-images/5828/1archive.org
  267. https://forums.whonix.org/t/how-do-i-enter-the-whonix-shell-from-cli/7271archive.org
  268. https://phabricator.whonix.org/T782archive.org
  269. The floppy and optical settings were disabled in both the Gateway and Workstation, while the Gateway audio was also disabled.
  270. kloak is a privacy tool that makes keystroke biometrics less effective. This is accomplished by obfuscating the time intervals between key press and release events, which are typically used for identification. This project is experimental.

  271. https://forums.whonix.org/t/kloak-keystroke-anonymization-tool/7089archive.org
  272. See recent pull requests herearchive.org.
  273. https://forums.whonix.org/t/kernel-hardening/7296/9archive.org
  274. The specific changes include:

    Kernel symbols in /proc/kallsyms are hidden to prevent malware from reading them and using them to learn more about what to attack on your system.

    Kexec is disabled as it can be used for live patching of the running kernel.

    The BPF JIT compiler is restricted to the root user and is hardened.

    ASLR effectiveness for mmap is increased.

    The ptrace system call is restricted to the root user only.

    The TCP/IP stack is hardened.

    This package makes some data spoofing attacks harder.

    SACK is disabled as it is commonly exploited and is rarely used.

    This package disables the merging of slabs of similar sizes to prevent an attacker from exploiting them.

    Sanity checks, redzoning, and memory poisoning are enabled.

    The kernel now panics on uncorrectable errors in ECC memory which could be exploited.

    Kernel Page Table Isolation is enabled to mitigate Meltdown and increase KASLR effectiveness.

    SMT is disabled as it can be used to exploit the MDS vulnerability.

    All mitigations for the MDS vulnerability are enabled.

    DCCP, SCTP, TIPC and RDS are blacklisted as they are rarely used and may have unknown vulnerabilities.

  275. https://phabricator.whonix.org/T883archive.org
  276. https://github.com/QubesOS/qubes-template-configs/pull/6/commits/d4f429669b849fc73973e2e557a24cceab47c45earchive.org
  277. https://github.com/QubesOS/qubes-builder/pull/82/commits/64a661241430c6a22ca98bb11370b2a3e3cf0e12archive.org
  278. https://github.com/QubesOS/qubes-issues/issues/4957archive.org
  279. https://github.com/Whonix/qubes-whonix/commit/8d8ab41bbf9c7fa63f3e79b8511d439efe33caebarchive.org
  280. https://github.com/Whonix/qubes-whonix/commit/c08dfed97cfba369ff753b4d96755b47240fffb2archive.org
  281. https://github.com/QubesOS/qubes-issues/issues/4918archive.org
  282. Neither are backups of Tor Browser maintained anymore; previously three backups were stored.
  283. https://phabricator.whonix.org/T858archive.org
  284. timesync-fail-closed means sdwdate did not succeed yet. Networking for all but Tor and sdwdate should still be locked in this scenario.