System Requirements
From Whonix
(Redirected from Requirements)
Contents
Supported Host Operating Systems[edit]
Any operating system that can run a supported virtualizer can run Whonix ™, including Windows, macOS, BSD, and Linux. Most users get started by installing VirtualBox on their current operating system and importing the Whonix ™ images. Advanced users may wish to boot a host operating system (usually a Unix variant) dedicated solely to running the Whonix ™ virtual machines.
For the best possible security, users can choose to run Whonix ™ virtual machines on the Qubes platform (Qubes-Whonix ™). Qubes is a Xen-based hypervisor (virtualizer) that runs on the bare metal of the hardware instead of within a host operating system. [1]
Supported Platforms[edit]
Qubes (Download)
KVM (Download)
VirtualBox (Download)
| 
| 
- PC x86 compatible
- [2] [3] [4]
Non-Qubes-Whonix System Requirements[edit]
Table: Non-Qubes-Whonix System Requirements
| Category | Description |
|---|---|
| Minimum |
|
| Recommended | |
| For Best Performance |
|
| Additional Notes |
|
Qubes-Whonix ™ System Requirements[edit]
"Qubes can be installed on systems which do not meet the recommended requirements. Such systems will still offer significant security improvements over traditional operating systems, since things like GUI isolation and kernel protection do not require special hardware." [6]
Minimum (Qubes 4.X)[edit]
- 4 GB RAM.
- 32 GB disk space.
- A 64-bit Intel or AMD processor -
x86_64akax64akaAMD64. [7]
Recommended[edit]
- A fast SSD - strongly recommended.
- Intel IGP - strongly preferred.
- Nvidia GPUs may require significant troubleshooting.
- ATI GPUs have not been formally tested, but see the Hardware Compatibility List [archive].
- TPM with proper BIOS support - required for Anti Evil Maid [archive].
- 16 GB+ RAM minimum. 32 GB+ for power users. [9]
- A non-USB keyboard or multiple USB controllers to enable creation of a USB VM [archive]. [10]
- Interrupt remapping - this helps resist potential (hypothetical) attacks coming from compromised driver domains like
sys-netorsys-usb. [11]
Hardware Purchases[edit]
Before purchasing any hardware specifically for Qubes, consider Qubes Certified Hardware [archive], Qubes Hardware Testing [archive] or at least the hardware compatibility list (HCL) [archive] for suitable models. Without referring to any of these, there is a chance that a computer without the above specifications will be incompatible with Qubes.
Also note the fairly priced Insurgo PrivacyBeast X230 [archive] is the first custom, refurbished laptop to exceed all Qubes hardware certification requirements. [12] For detailed specifications and pricing, see: Insurgo PrivacyBeast X230 Laptop - QubesOS Certified & preinstalled - Single Order [archive].
Footnotes[edit]
- ↑ This is more secure because an attacker must subvert the hypervisor, which is far more difficult than exploiting a host operating system.
- ↑ Custom-Workstation: Self-made builds can be run on any real or virtual hardware, so long as they are behind a Whonix-Gateway ™. Tor Browser binaries are only available for a limited number of platforms (Windows, Linux, BSD and MacOS).
- ↑ Unsupported: QEMU
- ↑ Unsupported: VMware
- ↑ 5.0 5.1 The virtual machine can work with as low as 256 MB RAM, but resource intensive operations like kernel package upgrades that rebuild the initrd might leave the virtual machine in a frozen state. It might run with 196 MB RAM or even less. Experimentation with RAM lower than 256 MB is up to the user; please share your results.
- ↑ https://www.qubes-os.org/doc/system-requirements/ [archive]
- ↑ Qubes system requirements are directly sourced from https://www.qubes-os.org/doc/system-requirements/ [archive]
- ↑ This is required for running HVM domains [archive], such as Windows-based AppVMs.
- ↑ Users report problems in creating DisposableVMs and running multiple VMs in parallel with only 4 GB RAM. 8 GB RAM is nearly exhausted with Qubes-Whonix ™ VMs running in parallel with the
sys-net,sys-firewallandsys-usbAppVMs. - ↑ To prevent malicious compromise of dom0 via USB mice, keyboards or other USB devices.
- ↑ https://github.com/QubesOS/qubes-issues/issues/3208 [archive]
- ↑
This includes:
- Binary-blob-free Coreboot initialization, including native graphic initialization.
- Heads provides an Anti-evil Maid (AEM) firmware solution and protects against malicious interdiction.
- Intel ME is neutered and unnecessary modules involved in main CPU initialization have been deleted.
- Ships with Qubes OS pre-installed (with full-disk encryption), with the final disk encryption key being regenerated when first powered on by the buyer.
Whonix ™ is Supported by Evolution Host DDoS Protected VPS. Stay private and get your VPS with Bitcoin or Monero.
Search engines: YaCy | Qwant | ecosia | MetaGer | peekier
There are five different options [archive] for subscribing to Whonix source code changes.
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation. Policy of Whonix Website and Whonix Chat applies.
Copyright (C) 2012 - 2020 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee [archive] of the Open Invention Network [archive]. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)
Whonix ™ is a derivative of and not affiliated with Debian [archive]. Debian is a registered trademark [archive] owned by Software in the Public Interest, Inc [archive].
Whonix ™ is produced independently from the Tor® [archive] anonymity software and carries no guarantee from The Tor Project [archive] about quality, suitability or anything else.
By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix ™ is provided by ENCRYPTED SUPPORT LP. See Imprint, Contact.