Supported Host Operating Systems[edit]

Any operating system that can run a supported virtualizer can run Whonix ™, including Windows, macOS, BSD, and Linux. Most users get started by installing VirtualBox on their current operating system and importing the Whonix ™ images. Advanced users may wish to boot a host operating system (usually a Unix variant) dedicated solely to running the Whonix ™ virtual machines.

For the best possible security, users can choose to run Whonix ™ virtual machines on the Qubes platform (Qubes-Whonix ™). Qubes is a Xen-based hypervisor (virtualizer) that runs on the bare metal of the hardware instead of within a host operating system. ^[1]

Supported Platforms[edit]

Non-Qubes-Whonix System Requirements[edit]

Table: Non-Qubes-Whonix System Requirements

Category	Description
Minimum	1 GB free RAM - with Whonix-Gateway ™ lowered to 256 MB. ^[5] (Advice for Systems with Low RAM) 10 GB free hard drive space. A CPU with AMD-V ^[archive] or Intel VT-x ^[archive].
Recommended	Additional hard drive space when installing applications into the Whonix-Workstation ™.
For Best Performance	A solid state drive (SSD). Additional RAM to dedicate to the Whonix-Workstation ™ when multitasking. ^[6]
Additional Notes	Whonix-Workstation ™ can be run with 256 MB RAM when not using a desktop environment. ^[5] For low memory and console-only configurations, see Advice for Systems with Low RAM, Troubleshooting, Low RAM Issues and Ram Adjusted Desktop Starter. Users that experience the PAE or "VERR_SSM_FIELD_NOT_CONSECUTIVE" error or other problems should refer to the VirtualBox Troubleshooting chapter.

Qubes-Whonix ™ System Requirements[edit]

The system requirements on this page are necessary, but not sufficient, for Qubes compatibility at a minimal or recommended level. In other words, just because a computer satisfies these requirements doesn't mean that Qubes will successfully install and run on it. We strongly recommend consulting the Hardware Compatibility List ^[archive] to verify that Qubes can install and run on your specific model in the ways you need it to. ...

Qubes can be installed on systems which do not meet the recommended requirements. Such systems will still offer significant security improvements over traditional operating systems, since things like GUI isolation and kernel protection do not require special hardware.^[7]

Minimum (Qubes 4.X)[edit]

4 GB RAM.
32 GB disk space.
A 64-bit Intel or AMD processor - x86_64 aka x64 aka AMD64. ^[8]
- Intel VT-x with EPT ^[archive] or AMD-V with RVI ^[archive]. ^[9]
- Intel VT-d ^[archive] or AMD-Vi ^[archive] (aka AMD IOMMU) - required for effective isolation of network VMs and PCI passthrough ^[archive].

Recommended[edit]

A fast SSD - strongly recommended.
Intel IGP - strongly preferred.
- Nvidia GPUs may require significant troubleshooting.
- ATI GPUs have not been formally tested, but see the Hardware Compatibility List ^[archive].
TPM with proper BIOS support - required for Anti Evil Maid ^[archive].
16 GB+ RAM minimum. 32 GB+ for power users. ^[10]
A non-USB keyboard or multiple USB controllers to enable creation of a USB VM ^[archive]. ^[11]
Interrupt remapping - this helps resist potential (hypothetical) attacks coming from compromised driver domains like sys-net or sys-usb. ^[12]

Hardware Purchases[edit]

Before purchasing any hardware specifically for Qubes, consider Qubes Certified Hardware ^[archive], Qubes Hardware Testing ^[archive] or at least the hardware compatibility list (HCL) ^[archive] for suitable models. Without referring to any of these, there is a chance that a computer without the above specifications will be incompatible with Qubes.

Also note the fairly priced Insurgo PrivacyBeast X230 ^[archive] is the first custom, refurbished laptop to exceed all Qubes hardware certification requirements. ^[13] For detailed specifications and pricing, see: Insurgo PrivacyBeast X230 Laptop - QubesOS Certified & preinstalled - Single Order ^[archive].

Footnotes[edit]

↑ This is more secure because an attacker must subvert the hypervisor, which is far more difficult than exploiting a host operating system.
↑ Custom-Workstation: Self-made builds can be run on any real or virtual hardware, so long as they are behind a Whonix-Gateway ™. Tor Browser binaries are only available for a limited number of platforms (Windows, Linux, BSD and MacOS).
↑ Unsupported: QEMU
↑ Unsupported: VMware
↑ ^5.0 ^5.1 The virtual machine can work with as low as 256 MB RAM, but resource intensive operations like kernel package upgrades that rebuild the initrd might leave the virtual machine in a frozen state. It might run with 196 MB RAM or even less. Experimentation with RAM lower than 256 MB is up to the user; please share your results.
↑ Increase Virtual Machine RAM
↑ https://www.qubes-os.org/doc/system-requirements/ ^[archive]
↑ Qubes system requirements are directly sourced from https://www.qubes-os.org/doc/system-requirements/ ^[archive]
↑ This is required for running HVM domains ^[archive], such as Windows-based AppVMs.
↑ Users report problems in creating DisposableVMs and running multiple VMs in parallel with only 4 GB RAM. 8 GB RAM is nearly exhausted with Qubes-Whonix ™ VMs running in parallel with the sys-net, sys-firewall and sys-usb AppVMs.
↑ To prevent malicious compromise of dom0 via USB mice, keyboards or other USB devices.
↑ https://github.com/QubesOS/qubes-issues/issues/3208 ^[archive]
↑
This includes:
- Binary-blob-free Coreboot initialization, including native graphic initialization.
- Heads provides an Anti-evil Maid (AEM) firmware solution and protects against malicious interdiction.
- Intel ME is neutered and unnecessary modules involved in main CPU initialization have been deleted.
- Ships with Qubes OS pre-installed (with full-disk encryption), with the final disk encryption key being regenerated when first powered on by the buyer.

Whonix ™ is Supported by Evolution Host DDoS Protected VPS. Stay private and get your VPS with Bitcoin or Monero.

Jobs in USA

Follow:

Support:

Donate:

Share: Twitter | Facebook

There are five different options for subscribing to Whonix ™ source code changes.

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation. Policy of Whonix Website and Whonix Chat and Policy On Nonfreedom Software applies.

Copyright (C) 2012 - 2020 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee ^[archive] of the Open Invention Network ^[archive]. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)

Whonix ™ is a derivative of and not affiliated with Debian ^[archive]. Debian is a registered trademark ^[archive] owned by Software in the Public Interest, Inc ^[archive].

Whonix ™ is produced independently from the Tor® ^[archive] anonymity software and carries no guarantee from The Tor Project ^[archive] about quality, suitability or anything else.

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix ™ is provided by ENCRYPTED SUPPORT LP. See Imprint, Contact.

[1] This is more secure because an attacker must subvert the hypervisor, which is far more difficult than exploiting a host operating system.

[2] Custom-Workstation: Self-made builds can be run on any real or virtual hardware, so long as they are behind a Whonix-Gateway ™. Tor Browser binaries are only available for a limited number of platforms (Windows, Linux, BSD and MacOS).

[3] Unsupported: QEMU

[4] Unsupported: VMware

[minimum_ram-5] 5.0 ^5.1 The virtual machine can work with as low as 256 MB RAM, but resource intensive operations like kernel package upgrades that rebuild the initrd might leave the virtual machine in a frozen state. It might run with 196 MB RAM or even less. Experimentation with RAM lower than 256 MB is up to the user; please share your results.

[6] Increase Virtual Machine RAM

[7] ttps://www.qubes-os.org/doc/system-requirements/ ^[archive]

[8] Qubes system requirements are directly sourced from https://www.qubes-os.org/doc/system-requirements/ ^[archive]

[9] This is required for running HVM domains ^[archive], such as Windows-based AppVMs.

[10] Users report problems in creating DisposableVMs and running multiple VMs in parallel with only 4 GB RAM. 8 GB RAM is nearly exhausted with Qubes-Whonix ™ VMs running in parallel with the sys-net, sys-firewall and sys-usb AppVMs.

[11] To prevent malicious compromise of dom0 via USB mice, keyboards or other USB devices.

[12] ttps://github.com/QubesOS/qubes-issues/issues/3208 ^[archive]

[13] This includes:
Binary-blob-free Coreboot initialization, including native graphic initialization.

Heads provides an Anti-evil Maid (AEM) firmware solution and protects against malicious interdiction.

Intel ME is neutered and unnecessary modules involved in main CPU initialization have been deleted.

Ships with Qubes OS pre-installed (with full-disk encryption), with the final disk encryption key being regenerated when first powered on by the buyer.

[14] Binary-blob-free Coreboot initialization, including native graphic initialization.

[15] Heads provides an Anti-evil Maid (AEM) firmware solution and protects against malicious interdiction.

[16] Intel ME is neutered and unnecessary modules involved in main CPU initialization have been deleted.

[17] Ships with Qubes OS pre-installed (with full-disk encryption), with the final disk encryption key being regenerated when first powered on by the buyer.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

System Requirements

From Whonix

(Redirected from Requirements)

Contents