Open Tasks
View All

Needs Triage (1)

T1001 Updates proxy check fails in whonix-ws-15
Whonix 15
Whonix
bug
Sat, Jan 9, 7:43 AM

Normal (14)

T997 All pluggable transports stopped working after 11-06-2020
Whonix
Jun 25 2020, 11:29 AM
T993 improve Windows Hosts / macOS wiki mentions
user documentation
Whonix 15
Whonix
May 29 2020, 3:34 PM
T990 whonixcheck tirdad module load
whonixcheck
Whonix
Whonix 15
May 11 2020, 3:33 PM
T989 whonixcheck check systemd journal unit
whonixcheck
Whonix
Whonix 15
May 11 2020, 3:27 PM
T988 use linux-perf /perf (performance analysis tools for Linux) and other tools in wats test suite
Whonix
WATS
May 2 2020, 1:54 PM
T987 offer rsync over SSH or TLS for download.whonix.org
server-ssh-access-required
Whonix
Apr 23 2020, 2:42 PM
T985 consider post Whonix News that recommends VirtualBox users reducing number of virtual CPUs to 3
Whonix
VirtualBox
Whonix 15
Apr 16 2020, 3:24 PM
T984 convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline
Whonix
Debian version 11 codename Bullseye
Apr 16 2020, 10:47 PM
T983 connect to public Tor network by default
Whonix
anon-connection-wizard
Whonix 15
Whonix-Host
Apr 15 2020, 7:27 PM
T981 Whonix-Host Tor configuration and anon-connection-wizard (ACW); ipv6 disable; ipv4 forward disable
anon-connection-wizard
Whonix
Whonix-Host
Whonix 15
Apr 16 2020, 11:34 AM
T980 Kicksecure handing of /etc/hosts /etc/hostname /etc/machine-id
Kicksecure
Apr 8 2020, 1:45 PM
T979 co-install grub-efi-amd64 and grub-pc by default on Whonix-Host ISO
Whonix
Whonix-Host
Whonix 15
Mar 30 2020, 4:29 PM
T978 add Whonix-Host EFI booting support
Whonix-Host
Whonix
Whonix 15
Apr 14 2020, 8:47 PM
T977 hardened-kernel outreach
Whonix
hardened-kernel
outreach
Apr 16 2020, 3:31 PM

View All Results

Active Repositories
View All

No repositories found for this query.

Recent Activity
View All

Tue, Jan 12

Patrick added a comment to T533: iptables block network access until sdwdate succeeded.

I am not sure sdwdate-gui would be a strong enough notification if networking was actually blocked if sdwdate did not succeed yet.

Tue, Jan 12, 8:51 AM · Whonix, usability, whonix-ws-firewall, whonix-gw-firewall, iptables, python, security, enhancement, sdwdate-gui, sdwdate

Patrick updated the task description for T533: iptables block network access until sdwdate succeeded.

Tue, Jan 12, 4:53 AM · Whonix, usability, whonix-ws-firewall, whonix-gw-firewall, iptables, python, security, enhancement, sdwdate-gui, sdwdate

Sat, Jan 9

Patrick closed T133: url_to_unxtime https support, a subtask of T132: port sdwdate to url_to_unixtime, as Resolved.

Sat, Jan 9, 3:48 PM · Whonix 10, Whonix, sdwdate

Patrick closed T133: url_to_unxtime https support as Resolved.

Sat, Jan 9, 3:48 PM · python, sdwdate, Whonix

Patrick added a comment to T133: url_to_unxtime https support.

This was implemented. Now using python3 requests.

Sat, Jan 9, 3:47 PM · python, sdwdate, Whonix

Patrick closed T916: improve sdwdate connectivity check as Resolved.

No longer required. Was implemented through te_pe_tb_check enhancements.

Sat, Jan 9, 3:34 PM · whonixcheck, sdwdate-gui, sdwdate, Whonix

Patrick added a comment to T1001: Updates proxy check fails in whonix-ws-15.

https://gitlab.com/whonix/qubes-whonix/-/commit/53ff72ab6ce59cb2c98401fd701ae782ca100e37

Sat, Jan 9, 7:43 AM · bug, Whonix, Whonix 15

Fri, Jan 8

marmarek added a comment to T1001: Updates proxy check fails in whonix-ws-15.

I've found why sudo asked for password, it wasn't related to security-misc script mentioned earlier. And should be fixed in newer qubes-core-agent package.

Fri, Jan 8, 3:28 PM · bug, Whonix, Whonix 15

Tue, Jan 5

marmarek added a comment to T1001: Updates proxy check fails in whonix-ws-15.

In T1001#20201, @Patrick wrote:

/usr/lib/qubes-whonix/init/torified-updates-proxy-check is currently only started by /lib/systemd/system/qubes-whonix-torified-updates-proxy-check.service.

Wondering why this is happening. When root uses sudo, pam shouldn't even be involved.

Tue, Jan 5, 6:54 PM · bug, Whonix, Whonix 15

Patrick added a comment to T1001: Updates proxy check fails in whonix-ws-15.

/usr/lib/qubes-whonix/init/torified-updates-proxy-check is currently only started by /lib/systemd/system/qubes-whonix-torified-updates-proxy-check.service.

Tue, Jan 5, 7:07 AM · bug, Whonix, Whonix 15

marmarek added a project to T1001: Updates proxy check fails in whonix-ws-15: bug.

Tue, Jan 5, 6:03 AM · bug, Whonix, Whonix 15

marmarek created T1001: Updates proxy check fails in whonix-ws-15.

Tue, Jan 5, 6:03 AM · bug, Whonix, Whonix 15

Dec 9 2020

SimonSelg updated SimonSelg.

Dec 9 2020, 5:06 PM

Oct 26 2020

Patrick updated the task description for T689: use whonixcheck Whonix News to count Whonix users.

Oct 26 2020, 9:54 PM · Whonix 14, Whonix, whonixcheck

Patrick added a comment to T689: use whonixcheck Whonix News to count Whonix users.

documented here:
https://www.whonix.org/wiki/Whonixcheck_Hardening#Prevent_Downloading_Whonix_.E2.84.A2_News_and_Whonix_.E2.84.A2_User_Census_Counting

Oct 26 2020, 9:53 PM · Whonix 14, Whonix, whonixcheck

Sep 28 2020

Patrick closed T950: set kernel.printk sysctl to prevent kernel info leaks as Resolved.

Looks all good and quite in Whonix 15.0.1.5.1.

Sep 28 2020, 4:32 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc

Aug 31 2020

Patrick closed T1000: Add Wasabi Bitcoin wallet as Invalid.

We don't use this tracker for new feature requests anymore either as per:
https://www.whonix.org/wiki/Reporting_Bugs

Aug 31 2020, 12:38 PM · Whonix

Aug 30 2020

ratpoison4 created T1000: Add Wasabi Bitcoin wallet.

Aug 30 2020, 4:33 PM · Whonix

Aug 23 2020

sanyo added a comment to T998: Whonix without systemD.

It is important to understand, that systemD is actually much more than simply an init system:

Aug 23 2020, 2:56 PM · Whonix

Aug 13 2020

Patrick updated the task description for T540: Advanced Attacks Meta Ticket.

Aug 13 2020, 10:33 AM · VirtualBox, KVM, Qubes, security, Whonix, research

Patrick closed T542: Keyboard/Mouse Fingerprinting Defense as Resolved.

Shipping kloak in Whonix stable for a few releases already.

Aug 13 2020, 10:32 AM · security, Whonix

Patrick closed T542: Keyboard/Mouse Fingerprinting Defense, a subtask of T540: Advanced Attacks Meta Ticket, as Resolved.

Aug 13 2020, 10:32 AM · VirtualBox, KVM, Qubes, security, Whonix, research

Aug 12 2020

HulaHoop closed T530: CPU-induced latency Covert Channel Countermeasures as Invalid.

After running a bunch of tcp ping tests, the conclusion is this attack
is not really effective against TCP like ICMP. The latency is much lower
for TCP pings and though it slightly decreases with cpu stress it is not
consistent. Reloading pages in TBB with cpu stress
on/off does not impact latency readings while doing so with tc
attached has massive latency foot prints - implying it will ironically make such attacks much easier in addition to degrading performance.

Aug 12 2020, 6:30 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, Whonix, research

HulaHoop closed T530: CPU-induced latency Covert Channel Countermeasures, a subtask of T540: Advanced Attacks Meta Ticket, as Invalid.

Aug 12 2020, 6:30 PM · VirtualBox, KVM, Qubes, security, Whonix, research

Aug 7 2020

HulaHoop added a comment to T530: CPU-induced latency Covert Channel Countermeasures.

Cyrus recommends adding delays per packet to disrupt inter-packet patterns that remain. The command can be fine tuned as such:

Aug 7 2020, 6:54 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, Whonix, research

Aug 1 2020

HulaHoop added a comment to T530: CPU-induced latency Covert Channel Countermeasures.

The good news is I think I've figured out the equivalent tc-netem command looking the slot parameter in the manual:

Aug 1 2020, 5:42 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, Whonix, research

Jul 23 2020

Patrick closed T999: Can't build Whonix from source as Invalid.

Building on anything other than Debian buster is unsupported.

Jul 23 2020, 7:08 PM · Whonix

el-cpu created T999: Can't build Whonix from source.

Jul 23 2020, 6:56 PM · Whonix

Patrick added a comment to T996: Readying for Tor Browser 9.5 (June 2).

553 Unable to store creds for

Did you set ClientOnionAuthDir in torrc (to a directory with "private
enough" permissions)?

Rusty

Jul 23 2020, 1:27 PM · Whonix 15, Whonix, anon-gw-anonymizer-config

Jul 7 2020

sanyo added a comment to T998: Whonix without systemD.

A few more questions:

Jul 7 2020, 10:23 PM · Whonix

sanyo added a comment to T998: Whonix without systemD.

Btw, Devuan is almost the same Debian with systemD removed from it.
Devuan even uses the same Debian binary repository with a few substitutions/replacements by its own Devuan packages just to eliminate nasty systemD.

Jul 7 2020, 8:05 PM · Whonix

sanyo updated sanyo.

Jul 7 2020, 7:50 PM

sanyo updated sanyo.

Jul 7 2020, 7:49 PM

Patrick added a comment to T998: Whonix without systemD.

In T998#20144, @sanyo wrote:

May I know, what do you think about Whonix vs OpenBSD in terms of security for a headless server without any GUI?

Jul 7 2020, 11:53 AM · Whonix

Jul 6 2020

sanyo added a comment to T998: Whonix without systemD.

May I know, what do you think about Whonix vs OpenBSD in terms of security for a headless server without any GUI?

Jul 6 2020, 8:29 PM · Whonix

sanyo added a comment to T998: Whonix without systemD.

I guess it shall not be any harder to port Whonix to Devuan than porting it to original Debian.

Jul 6 2020, 8:26 PM · Whonix

Patrick closed T998: Whonix without systemD as Wontfix.

There's no manual.

Jul 6 2020, 12:01 PM · Whonix

Jul 5 2020

sanyo updated the task description for T998: Whonix without systemD.

Jul 5 2020, 8:36 PM · Whonix

sanyo updated the task description for T998: Whonix without systemD.

Jul 5 2020, 8:34 PM · Whonix

sanyo triaged T998: Whonix without systemD as Wishlist priority.

Jul 5 2020, 8:33 PM · Whonix

View All Results