Actions

Security Guide

(Redirected from SecurityGuide)

Contents

Introduction[edit]

Basics[edit]

Motivation[edit]

Onionizing Repositories[edit]

Qubes Packages[edit]

Whonix and Debian Packages[edit]

Operating System[edit]

End-of-life Software[edit]

Installing Additional Software[edit]

Updates[edit]

Updating with Extra Care[edit]

Passwords[edit]

Generating Unbreakable Passwords[edit]

Principles for Stronger Passwords[edit]

Platform Security[edit]

Host Security[edit]

Basics[edit]

Anonymous Mobile Modems[edit]

Anonymous WiFi Adapters[edit]

Hardening[edit]

Hardware Component Risks[edit]

Hostnames[edit]

Power Saving Considerations[edit]

Qubes-Whonix Security[edit]

Whonix-Gateway Security[edit]

AppArmor[edit]

General[edit]

Seccomp[edit]

Tor Connection Padding[edit]

Warning: Bridged Networking[edit]

Whonix-Workstation Security[edit]

Introduction[edit]

Adding a NAT Adapter to Whonix-Workstation / Updates without Tor[edit]

AppArmor[edit]

Firejail[edit]

Introduction[edit]

Installing Firejail[edit]

Running Firefox-ESR in a Firejail Sandbox (Qubes Debian Template)[edit]

Sandboxing Tor Browser[edit]

VM Snapshots[edit]

System Hardening Checklist[edit]

Time Attacks[edit]

Tor Versioning[edit]

Transporting UDP Tunnels over Tor[edit]

Verifying Software Signatures[edit]

What Digital Signatures Prove[edit]

Checking Digital Fingerprints of Signing Keys[edit]

Checking Digital Fingerprints of Signed Software[edit]

Virtualization Platform[edit]

Type 1 vs Type 2 Hypervisors[edit]

Qubes-Whonix vs Physically-Isolated Non-Qubes-Whonix[edit]

Qubes-Whonix Hardware Requirements[edit]

VirtualBox Hardening[edit]

Stay Tuned[edit]

Footnotes[edit]


Random News:

Want to make Whonix safer and more usable? We're looking for helping hands. Check out the Open Issues and development forum.


https | (forcing) onion

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.

Whonix is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself. (Why?)