Users who find bugs are encouraged to report them to the Whonix issue tracker.
Once notified issues are reproduced and confirmed, developers discuss the problem in order to find a suitable workaround. All Whonix source code fixes and related matters are implemented as quickly as possible, and the finding is posted for the public benefit.
Users are kindly asked to privately report security bugs. Whonix developer Patrick Schleizer should be contacted via OpenPGP encrypted mail before the information is published. This allows the vulnerability to be patched without the Whonix user population being endangered, and the notifier can be credited with the finding(s) after the next Whonix release.
Impressum | Datenschutz | Haftungsausschluss
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.