Security Reviews and Feedback

From Whonix


This is a list of notable reviews and feedback about the security of Whonix ™.

See also Whonix ™ Protection against Real World Attacks.


Happy to report no leaks observed, ever.


There are a few older threads [archive] on the Tor Talk Mailing List about the security of Whonix ™ / transparent proxy.


None, but that doesn't mean anything. There is no audit of Tails, Liberté Linux, etc. either. At the time of writing there were no public published audits for Debian, Ubuntu, Qubes OS, etc. either.

We are not aware of any serious research about any of such distributions in anonbib [archive]. No expert such as Bruce Schneier [archive] for cryptography exists for security-focused operating system review.

Audit is a word. But what does audit actually mean? Every audit that is being made has a previously defined, limited scope. There are no all-encompassing audits.

More food for thought on audits. As an example, has GNU wget been audited? What is an audit? Is it an professional company, providing software security audits as a service? Some kind of certification? There is no such entity in the Freedom Software Open Source ecosystem at time of writing. There are no quality seals for Linux distributions.

If you know examples, please get in contact or edit this section. Would it be reasonable to expect a reputable organization or individual making statements such as "GNU wget has been audited and no security vulnerabilities were found"? It usually happens the other way around. When someone reviews the source code and finds nothing wrong, nothing will be reported. On the other hand, if a vulnerability has been found, that's worth some fame. However, anyone who claimed beforehand to have found no security issues wouldn't get better reputation. On the contrary, look bad for previously making statements about not having found security issues.

If you make an audit, please edit this section or get in contact so it will be linked here.

See Also[edit]

Search engines: YaCy | Qwant | ecosia | MetaGer | peekier

Follow: Twitter.png Facebook.png 1280px-Gab text logo.svg.png Iconfinder news 18421.png Rss.png Matrix logo.svg.png 1024px-Telegram 2019 Logo.svg.png Discourse logo.svg Reddit.jpg Diaspora.png Gnusocial.png Mewe.png 500px-Tumblr Wordmark.svg.png Iconfinder youtube 317714.png 200px-Minds logo.svg.png 200px-Mastodon Logotype (Simple).svg.png 200px-LinkedIn Logo 2013.svg.png

Donate: Donate Bank Wire Paypal Bitcoin accepted here Monero accepted here Contriute

Whonix donate bitcoin.png Monero donate whonix.png United Federation of Planets 1000px.png

Share: Twitter | Facebook

https link onion link

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation. Policy of Whonix Website and Whonix Chat applies.

Copyright (C) 2012 - 2020 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee [archive] of the Open Invention Network [archive]. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)

Whonix ™ is a derivative of and not affiliated with Debian [archive]. Debian is a registered trademark [archive] owned by Software in the Public Interest, Inc [archive].

Whonix ™ is produced independently from the Tor® [archive] anonymity software and carries no guarantee from The Tor Project [archive] about quality, suitability or anything else.

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix ™ is provided by ENCRYPTED SUPPORT LP. See Imprint, Contact.