Last update: March 17, 2019. This website uses cookies. By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. More information

 Actions

Security Guide

Contents

Introduction[edit]

Basics[edit]

Motivation[edit]

Onionizing Repositories[edit]

Qubes Packages[edit]

Whonix and Debian Packages[edit]

Operating System[edit]

End-of-life Software[edit]

Installing Additional Software[edit]

Updates[edit]

Updating with Extra Care[edit]

Passwords[edit]

Generating Unbreakable Passwords[edit]

Principles for Stronger Passwords[edit]

Platform Security[edit]

Host Security[edit]

Basics[edit]

Anonymous Mobile Modems[edit]

Anonymous WiFi Adapters[edit]

Hardening[edit]

Hardware Component Risks[edit]

Hostnames[edit]

Power Saving Considerations[edit]

Qubes-Whonix Security[edit]

Whonix-Gateway Security[edit]

AppArmor[edit]

General[edit]

Seccomp[edit]

Tor Connection Padding[edit]

Warning: Bridged Networking[edit]

Whonix-Workstation Security[edit]

Introduction[edit]

Adding a NAT Adapter to Whonix-Workstation / Updates without Tor[edit]

AppArmor[edit]

Firejail[edit]

Introduction[edit]

Installing Firejail[edit]

Running Firefox-ESR in a Firejail Sandbox (Qubes Debian Template)[edit]

Sandboxing Tor Browser[edit]

VM Snapshots[edit]

System Hardening Checklist[edit]

Time Attacks[edit]

Tor Versioning[edit]

Transporting UDP Tunnels over Tor[edit]

Verifying Software Signatures[edit]

What Digital Signatures Prove[edit]

Checking Digital Fingerprints of Signing Keys[edit]

Checking Digital Fingerprints of Signed Software[edit]

Virtualization Platform[edit]

Type 1 vs Type 2 Hypervisors[edit]

Qubes-Whonix vs Physically-Isolated Non-Qubes-Whonix[edit]

Qubes-Whonix Hardware Requirements[edit]

VirtualBox Hardening[edit]

Stay Tuned[edit]

Footnotes[edit]


No user support in comments. See Support.

Comments will be deleted after some time. Specifically after comments have been addressed in form of wiki enhancements. See Wiki Comments Policy.


Add your comment
Whonix welcomes all comments. If you do not want to be anonymous, register or log in. It is free.


Random News:

We are looking for video production specialists to help create demonstration, promotional and conceptual videos or tutorials.


https | (forcing) onion

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix, then Edit! Edits are held for moderation.

Copyright (C) 2012 - 2019 ENCRYPTED SUPPORT LP. Whonix is a trademark. Whonix is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix itself. (Why?)

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix is provided by ENCRYPTED SUPPORT LP. See Imprint.