Page MenuHomePhabricator

Open Tasks

Normal (15)

Active Repositories

  • No repositories found for this query.

Recent Activity

Aug 14 2023

Patrick updated the task description for T910: anti-forensics / amnesia testing of Whonix-Host in Live mode.
Aug 14 2023, 1:52 PM · Whonix 15, Whonix, Whonix-Host
Patrick added a comment to T910: anti-forensics / amnesia testing of Whonix-Host in Live mode.

Have the dev team tested the anti-forensic capability of Whonix-live mode and grub live?

Aug 14 2023, 1:32 PM · Whonix 15, Whonix, Whonix-Host
Patrick updated the task description for T910: anti-forensics / amnesia testing of Whonix-Host in Live mode.
Aug 14 2023, 1:30 PM · Whonix 15, Whonix, Whonix-Host

May 16 2023

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

https://wiki.nftables.org/wiki-nftables/index.php/Atomic_rule_replacement

May 16 2023, 10:32 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

May 15 2023

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

https://wiki.nftables.org/wiki-nftables/index.php/Scripting

May 15 2023, 6:21 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research
Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Some progress.

May 15 2023, 5:23 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

May 9 2023

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

In other words, iptabels is already symlinked to iptabels-nft anyhow. Therefore Whonix is already using iptabels-nft.

May 9 2023, 10:34 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research
Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.
May 9 2023, 10:23 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research
Patrick added a comment to T28: RELATED,ESTABLISHED -> ESTABLISHED.

related:
https://forums.whonix.org/t/tails-features-ideas/2611

May 9 2023, 9:24 AM · security, Whonix 10, Whonix, whonix-gw-firewall
Patrick added a comment to T28: RELATED,ESTABLISHED -> ESTABLISHED.

Fixed link:
https://github.com/Whonix/whonix-firewall/commit/414c2105149e02dcff82303e4c5b2dcd60ebbd29

May 9 2023, 9:00 AM · security, Whonix 10, Whonix, whonix-gw-firewall

Feb 17 2023

Patrick added a comment to T673: document https downgrade sslstrip defenses - wget vs curl vs scurl.

https://forums.whonix.org/t/whonix-linux-installer-development-discussion/15917/20

Feb 17 2023, 10:52 AM · Whonix, user documentation, research, Whonix 14, scurl

Jan 19 2023

Patrick archived qubes-whonix 12.
Jan 19 2023, 11:26 AM
Patrick archived qubes-whonix 11.
Jan 19 2023, 11:25 AM
Patrick updated the task description for T526: systemd introduces memory protection.
Jan 19 2023, 11:12 AM · sdwdate, Whonix, research
Patrick updated the task description for T526: systemd introduces memory protection.
Jan 19 2023, 11:10 AM · sdwdate, Whonix, research
Patrick updated the task description for T526: systemd introduces memory protection.
Jan 19 2023, 11:02 AM · sdwdate, Whonix, research
Patrick closed T375: Include Debian ReportBug GUI? as Wontfix.

Due to phabricator being deprecated upstream, all tickets need to me migrated. Therefore closing here.

Jan 19 2023, 11:01 AM · enhancement, anon-meta-packages, Whonix, Debian version 8 codename Jessie
Patrick updated the task description for T135: find packages without security support / consider installation of debian-security-support by default.
Jan 19 2023, 10:58 AM · bash, Whonix, research, user documentation, security, usability
Patrick removed a project from T135: find packages without security support / consider installation of debian-security-support by default: Debian version 8 codename Jessie.
Jan 19 2023, 10:57 AM · bash, Whonix, research, user documentation, security, usability
Patrick closed T652: test Thunderbird with Torbirdy / anon-gpg-tweaks changes required? as Resolved.

https://forums.whonix.org/t/torbirdy-replacement/8782

Jan 19 2023, 10:57 AM · Debian version 9 codename Stretch, anon-gpg-tweaks, Whonix
Patrick archived Debian version 9 codename Stretch.
Jan 19 2023, 10:56 AM
Patrick archived Debian version 8 codename Jessie.
Jan 19 2023, 10:55 AM
Patrick closed T46: whonixcheck should check for dpkg problems as Resolved.

This is implemented in /usr/libexec/systemcheck/check_dpkg.bsh for a long time already.

Jan 19 2023, 10:55 AM · usability, Whonix, whonixcheck
Patrick closed T931: Testing tpm2-pkcs11with KVM vTPM 2.0 as Invalid.

Due to https://www.whonix.org/wiki/Reporting_Bugs#Transition_to_Discourse_Forums all tickets need to be migrated to forums. Please re-open in forums if this still still relevant.

Jan 19 2023, 10:53 AM · Whonix, Debian version 11 codename Bullseye
Patrick renamed T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye from port to /etc/apparmor.d/abstractions.d in Debian 11 bullseye to port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye.
Jan 19 2023, 10:51 AM · Debian version 11 codename Bullseye, Whonix
Patrick closed T606: merge /etc/apparmor.d/abstractions/base.anondist from Debian bullseye as Resolved.

This will be done when doing T927.

Jan 19 2023, 10:49 AM · Debian version 11 codename Bullseye, AppArmor, Whonix
Patrick changed Impact from Whonix:triage to Whonix:low on T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye.
Jan 19 2023, 10:49 AM · Debian version 11 codename Bullseye, Whonix
Patrick closed T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline as Invalid.

And we also port to dracut which also does early sysctl loading.
Adding tons of sysctl to an already very long kernel command line (do we got the world record already :) seems excessive.
Since nobody is making the argument anymore, rejecting this ticket.

Jan 19 2023, 10:48 AM · Debian version 11 codename Bullseye, Whonix
Patrick closed T968: Bullseye: live-boot needs GRUB_DISABLE_LINUX_UUID="true" parameter in /etc/grub.d/11_linux_live as Resolved.
Jan 19 2023, 10:43 AM · Debian version 11 codename Bullseye, Whonix, live-mode
Patrick closed T803: coyIM as Invalid.

Now tracked here:
https://forums.whonix.org/t/coyim-in-whonix-development-discussion/5901

Jan 19 2023, 10:41 AM · Debian version 11 codename Bullseye, Whonix 16, anon-meta-packages, Whonix
Patrick closed T924: rename to bullseye-security as Resolved.
Jan 19 2023, 10:40 AM · anon-apt-sources-list, Debian version 11 codename Bullseye, Whonix
Patrick closed T682: Check curl for latests tls support (--tlsv1.3) as Resolved.
Jan 19 2023, 10:40 AM · Debian version 10 codename Buster, Whonix

Dec 13 2022

Patrick updated the task description for T973: merge duplicate wiki pages?.
Dec 13 2022, 3:20 PM · Whonix, user documentation

Dec 9 2022

Patrick updated the task description for T139: device auto mounter broken.
Dec 9 2022, 3:32 PM · bug, Whonix, usability

Dec 8 2022

Patrick renamed T802: whonixcheck should check if torsocks IsolatePID stream isolation is functional from whonixcheck should check if torsocks IsolatePID stream isolation is functinoal to whonixcheck should check if torsocks IsolatePID stream isolation is functional.
Dec 8 2022, 4:46 PM · enhancement, easy, whonixcheck, Whonix 16, Whonix
Patrick updated the task description for T591: whonixcheck --clearnet connectivity test.
Dec 8 2022, 4:46 PM · whonixcheck, Whonix
Patrick closed T921: Installing git-all will delete some Whonix packages as Resolved.

No longer an issue in Whonix 16.

Dec 8 2022, 4:42 PM · Whonix
Patrick closed T912: qubes integration tools missing as Resolved.

Still works for me, still not reproducible. Old ticket. Therefore closing. Please re-report in the new issue tracker (and link to this old ticket) should this still be an issue.

Dec 8 2022, 4:40 PM · Qubes, Whonix
Patrick closed T827: make whonixcheck work outside of Whonix as Resolved.

whonixcheck was renamed to systemcheck and is now functional in Kicksecure.

Dec 8 2022, 4:38 PM · Whonix 16, whonixcheck, Whonix
Patrick closed T812: use onion sources list exclusively for apt-get updating by default as Wontfix.

Not a good idea nowadays due to prolonged DDoS attack on the Tor network. References:

Dec 8 2022, 4:37 PM · anon-apt-sources-list, Whonix