Page MenuHomePhabricator

Open Tasks

Normal (15)

Active Repositories

  • No repositories found for this query.

Recent Activity

Oct 26 2020

Patrick updated the task description for T689: use whonixcheck Whonix News to count Whonix users.
Oct 26 2020, 9:54 PM · Whonix 14, Whonix, whonixcheck
Patrick added a comment to T689: use whonixcheck Whonix News to count Whonix users.

documented here:
https://www.whonix.org/wiki/Whonixcheck_Hardening#Prevent_Downloading_Whonix_.E2.84.A2_News_and_Whonix_.E2.84.A2_User_Census_Counting

Oct 26 2020, 9:53 PM · Whonix 14, Whonix, whonixcheck

Sep 28 2020

Patrick closed T950: set kernel.printk sysctl to prevent kernel info leaks as Resolved.

Looks all good and quite in Whonix 15.0.1.5.1.

Sep 28 2020, 4:32 PM · Debian version 11 codename Bullseye, Whonix 15, security-misc, Whonix

Aug 31 2020

Patrick closed T1000: Add Wasabi Bitcoin wallet as Invalid.

We don't use this tracker for new feature requests anymore either as per:
https://www.whonix.org/wiki/Reporting_Bugs

Aug 31 2020, 12:38 PM · Whonix

Aug 30 2020

ratpoison4 created T1000: Add Wasabi Bitcoin wallet.
Aug 30 2020, 4:33 PM · Whonix

Aug 23 2020

sanyo added a comment to T998: Whonix without systemD.

It is important to understand, that systemD is actually much more than simply an init system:

Aug 23 2020, 2:56 PM · Whonix

Aug 13 2020

Patrick updated the task description for T540: Advanced Attacks Meta Ticket.
Aug 13 2020, 10:33 AM · VirtualBox, KVM, Qubes, security, Whonix, research
Patrick closed T542: Keyboard/Mouse Fingerprinting Defense as Resolved.

Shipping kloak in Whonix stable for a few releases already.

Aug 13 2020, 10:32 AM · security, Whonix
Patrick closed T542: Keyboard/Mouse Fingerprinting Defense, a subtask of T540: Advanced Attacks Meta Ticket, as Resolved.
Aug 13 2020, 10:32 AM · VirtualBox, KVM, Qubes, security, Whonix, research

Aug 12 2020

HulaHoop closed T530: CPU-induced latency Covert Channel Countermeasures as Invalid.

After running a bunch of tcp ping tests, the conclusion is this attack
is not really effective against TCP like ICMP. The latency is much lower
for TCP pings and though it slightly decreases with cpu stress it is not
consistent. Reloading pages in TBB with cpu stress
on/off does not impact latency readings while doing so with tc
attached has massive latency foot prints - implying it will ironically make such attacks much easier in addition to degrading performance.

Aug 12 2020, 6:30 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, research, Whonix
HulaHoop closed T530: CPU-induced latency Covert Channel Countermeasures, a subtask of T540: Advanced Attacks Meta Ticket, as Invalid.
Aug 12 2020, 6:30 PM · VirtualBox, KVM, Qubes, security, Whonix, research

Aug 7 2020

HulaHoop added a comment to T530: CPU-induced latency Covert Channel Countermeasures.

Cyrus recommends adding delays per packet to disrupt inter-packet patterns that remain. The command can be fine tuned as such:

Aug 7 2020, 6:54 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, research, Whonix

Aug 1 2020

HulaHoop added a comment to T530: CPU-induced latency Covert Channel Countermeasures.

The good news is I think I've figured out the equivalent tc-netem command looking the slot parameter in the manual:

Aug 1 2020, 5:42 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, research, Whonix

Jul 23 2020

Patrick closed T999: Can't build Whonix from source as Invalid.

Building on anything other than Debian buster is unsupported.

Jul 23 2020, 7:08 PM · Whonix
el-cpu created T999: Can't build Whonix from source.
Jul 23 2020, 6:56 PM · Whonix
Patrick added a comment to T996: Readying for Tor Browser 9.5 (June 2).

553 Unable to store creds for

Did you set ClientOnionAuthDir in torrc (to a directory with "private
enough" permissions)?

Rusty

Jul 23 2020, 1:27 PM · Whonix 15, Whonix, anon-gw-anonymizer-config

Jul 7 2020

sanyo added a comment to T998: Whonix without systemD.

A few more questions:

Jul 7 2020, 10:23 PM · Whonix
sanyo added a comment to T998: Whonix without systemD.

Btw, Devuan is almost the same Debian with systemD removed from it.
Devuan even uses the same Debian binary repository with a few substitutions/replacements by its own Devuan packages just to eliminate nasty systemD.

Jul 7 2020, 8:05 PM · Whonix
sanyo updated sanyo.
Jul 7 2020, 7:50 PM
sanyo updated sanyo.
Jul 7 2020, 7:49 PM
Patrick added a comment to T998: Whonix without systemD.
In T998#20144, @sanyo wrote:

May I know, what do you think about Whonix vs OpenBSD in terms of security for a headless server without any GUI?

Jul 7 2020, 11:53 AM · Whonix

Jul 6 2020

sanyo added a comment to T998: Whonix without systemD.

May I know, what do you think about Whonix vs OpenBSD in terms of security for a headless server without any GUI?

Jul 6 2020, 8:29 PM · Whonix
sanyo added a comment to T998: Whonix without systemD.

I guess it shall not be any harder to port Whonix to Devuan than porting it to original Debian.

Jul 6 2020, 8:26 PM · Whonix
Patrick closed T998: Whonix without systemD as Wontfix.

There's no manual.

Jul 6 2020, 12:01 PM · Whonix

Jul 5 2020

sanyo updated the task description for T998: Whonix without systemD.
Jul 5 2020, 8:36 PM · Whonix
sanyo updated the task description for T998: Whonix without systemD.
Jul 5 2020, 8:34 PM · Whonix
sanyo triaged T998: Whonix without systemD as Wishlist priority.
Jul 5 2020, 8:33 PM · Whonix

Jun 25 2020

Patrick added a comment to T997: All pluggable transports stopped working after 11-06-2020 .

Thanks for the report.

Jun 25 2020, 11:29 AM · Whonix
Patrick triaged T997: All pluggable transports stopped working after 11-06-2020 as Normal priority.
Jun 25 2020, 11:29 AM · Whonix

Jun 24 2020

leh6r0 added a comment to T997: All pluggable transports stopped working after 11-06-2020 .

More useful information from my tests: When I setup obfs4 using the Anon-Connection-Wizard the previous obfs4 that I used worked fine. Unfortunately I can't setup snowflake from it.

Jun 24 2020, 1:51 PM · Whonix

Jun 23 2020

leh6r0 renamed T997: All pluggable transports stopped working after 11-06-2020 from Snowflake stopped working after 11-06-2020 to All pluggable transports stopped working after 11-06-2020 .
Jun 23 2020, 10:55 AM · Whonix

Jun 21 2020

leh6r0 added a comment to T997: All pluggable transports stopped working after 11-06-2020 .

Don't know if this is indicative of anything but after I add -log snowflake-client.log -log-to-state-dir at the end of the ClientTransportPlugin snowflake line in /usr/local/etc/torrc.d/50_user.conf I obtain the following error:

Jun 21 2020, 10:34 AM · Whonix
leh6r0 created T997: All pluggable transports stopped working after 11-06-2020 .
Jun 21 2020, 10:21 AM · Whonix

Jun 19 2020

Patrick added a comment to T996: Readying for Tor Browser 9.5 (June 2).

Tor Browser onion authentication prompt:
https://blog.torproject.org/sites/default/files/inline-images/onion-auth%402x.png

Jun 19 2020, 10:48 AM · Whonix 15, Whonix, anon-gw-anonymizer-config

Jun 18 2020

HulaHoop added a comment to T996: Readying for Tor Browser 9.5 (June 2).

What Tor related apps are broken without support for this?

Jun 18 2020, 8:03 PM · Whonix 15, Whonix, anon-gw-anonymizer-config
Patrick raised the priority of T800: Migrating from Github from Wishlist to High.

Alternative to github.com now needed.

Jun 18 2020, 4:38 PM · Whonix
Patrick added a comment to T996: Readying for Tor Browser 9.5 (June 2).

Maybe this is bound per connection similar to ephemeral Tor onion services? In that case, other VMs couldn't re-use it.

Jun 18 2020, 4:38 PM · Whonix 15, Whonix, anon-gw-anonymizer-config
rustybird added a comment to T996: Readying for Tor Browser 9.5 (June 2).

https://github.com/adrelanos/anon-gw-anonymizer-config/commit/97ff68a6c49ecef3e79ab10e1a930a4f5e13198d#commitcomment-39671373

Jun 18 2020, 4:38 PM · Whonix 15, Whonix, anon-gw-anonymizer-config
Patrick closed T996: Readying for Tor Browser 9.5 (June 2) as Resolved.

onion_client_auth_add Flags=Permanent fails with 553 Unable to store creds for

Jun 18 2020, 4:38 PM · Whonix 15, Whonix, anon-gw-anonymizer-config
Patrick updated subscribers of T996: Readying for Tor Browser 9.5 (June 2).
Jun 18 2020, 4:38 PM · Whonix 15, Whonix, anon-gw-anonymizer-config