Actions

Project-APT-Repository

From Whonix

(Redirected from Whonix-APT-Repository)


Whonix ™ Repository Tool

Whonix ™ APT Repository Overview[edit]

Whonix ™ currently provides four repository choices:

  • Whonix ™ stable APT repository: Recommended for most users. The production level packages focus on providing the most reliable Whonix ™ experience. [1]
  • Whonix ™ stable-proposed-updates APT repository: After testing by a wider audience, these packages migrate to the stable repository. [2]
  • Whonix ™ testers APT repository: Recommended for testers, since it is only briefly tested by Whonix ™ developers. It could break apt-get during an upgrade, requiring terminal commands to rectify the problem. [2]
  • Whonix ™ developers APT repository: As above, except it includes untested changes. These changes may eventually migrate to the testers repository if the Whonix ™ team is confident these changes will not break the update system. It is not recommended, unless the user is in touch with the development team.

Due to the Whonix ™ design, a user's security is unlikely to be materially affected by preferring the "beta" (stable-proposed-updates) or "alpha" (testers) repositories over the default stable one. [3]

Change Whonix ™ APT Repository[edit]

It is easy for users to switch between Whonix ™ repositories.

Qubes-Whonix ™[edit]

If you are using Qubes-Whonix ™, please press Expand on the right.

Qubes App Launcher (blue/grey "Q")Template: whonix-gw-15 or whonix-ws-15Whonix ™-Repository

Figure: Wizard Repository Selection

Whonix Repository Wizard select repo.png

Figure: Wizard Auto-update Configuration

Whonix Repository Wizard install updates.png

Non-Qubes-Whonix[edit]

If you are using Non-Qubes-Whonix ™, please press Expand on the right.

Start MenuSystemWhonix ™ Repositorychoose either "stable", "stable-proposed-updates" , "Testers" or "Developers" repository

Figure: Start Menu

Whonixrepoxfce1.png

Figure: super user password

Whonixrepoxfce2.png

Afterwards, the following window will appear.

Figure: Auto-update Configuration

Whonixrepoxfce3.png

Figure: Repository Selection

Whonixrepoxfce4.png

Command Line Interface[edit]

If you are a terminal user, please press Expand on the right.

In Terminal, run.

sudo whonix_repository

Figure: Launch Terminal

Whonixrepocli.png

Figure: Run whonix_repository

Whonixrepocli2.png

Choose one of the following repositories based on personal preferences.

sudo whonix_repository --enable --repository stable
sudo whonix_repository --enable --repository stable-proposed-updates
sudo whonix_repository --enable --repository testers
sudo whonix_repository --enable --repository developers

To use the repository, follow the usual update instructions.

Disable Whonix ™ APT Repository[edit]

For Trust reasons some users may prefer not to use Whonix ™ APT Repository. In that case, it is necessary to update Debian packages in Whonix ™ from source code, which is inconvenient.

All Default-Download-Version Whonix ™ variants have the Whonix ™ APT repository enabled. It can be disabled via the GUI or in a terminal with the Whonix ™ repository tool.

Table: Whonix ™ APT Repository Disabling

Platform / Method Instructions
Whonix ™ Built from Source Code If Whonix ™ is built from source code, Whonix ™ APT Repository is not added by default. The only exception is if users opt in using a build configuration. It is also possible to verify that it is already disabled.
Whonix ™ Default-Download-Version: GUI
  • Qubes-Whonix ™: Qubes App Launcher (blue/grey "Q")Template: whonix-gw-15 or whonix-ws-15Whonix ™-Repository"No, I will manually update from source code."
  • Non-Qubes-Whonix: Start MenuApplicationsSystemWhonix ™ Repository"No, I will manually update from source code."
Whonix ™ Default-Download-Version: Terminal To disable it in a terminal, run.

sudo whonix_repository --disable

Users can optionally verify Whonix ™ APT repository is disabled after this procedure.

Verify Whonix ™ APT Repository is Disabled[edit]

To check the Whonix ™ APT repository was successfully disabled, run the following tests.

1. Use apt-key.

sudo apt-key finger

This test should not show any Whonix ™-specific keys, such as Patrick Schleizer's OpenPGP key.

2. Check if /etc/apt/sources.list.d/whonix.list exists.

If it does not exist, the procedure was successful.

3. Optional: conduct additional tests as a precaution.

The following is not strictly necessary, since the whonix_repository tool has never written another sources.list file other than /etc/apt/sources.list.d/whonix.list.

Examine the /etc/apt/sources.list file. It should not include the Whonix ™ APT Repository.

cat /etc/apt/sources.list

Next examine the /etc/apt/sources.list.d/ folder as well.

cat /etc/apt/sources.list.d/*

Further Reading[edit]

Footnotes / References[edit]

  1. If possible, users are requested to run a separate testers-only Whonix-Gateway ™ (sys-whonix) and Whonix-Workstation ™ (anon-whonix) that has the testers repository enabled. If too few people test Whonix ™, undiscovered issues might migrate to the stable repository.
  2. 2.0 2.1 Users are recommended to make a VM clone for this repository just in case it breaks. That way changes can be rolled back if necessary.
  3. The terms alpha and beta are avoided because they have generally lost their meaning in the software field; many applications remain in alpha or beta status for years, even though they work perfectly well.


Are you proficient with iptables? Want to contribute? Check out possible improvements to iptables [archive]. Please come and introduce yourself in the development forum [archive].

https [archive] | (forcing) onion [archive]
Follow: Twitter.png Facebook.png 1280px-Gab text logo.svg.png Rss.png 1024px-Telegram 2019 Logo.svg.png Discourse logo.svg

Donate: Donate Bank Wire Paypal Bitcoin accepted here Monero accepted here Contriute

Whonix donate bitcoin.png

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation.

Copyright (C) 2012 - 2019 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee [archive] of the Open Invention Network [archive]. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)

Whonix ™ is a derivative of and not affiliated with Debian [archive]. Debian is a registered trademark [archive] owned by Software in the Public Interest, Inc [archive].

Whonix ™ is produced independently from the Tor® [archive] anonymity software and carries no guarantee from The Tor Project [archive] about quality, suitability or anything else.

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix ™ is provided by ENCRYPTED SUPPORT LP. See Imprint.

Monero donate whonix.png