- Host firewall - still unfinished - still untested - https://github.com/Whonix/whonix-host-firewall
tcp timestamps: install tcp-timestamps-disable(done: anon-host-additions depends on anon-shared-packages-dependencies which depends on tcp-timestamps-disable) icmp timestamps(done: blocked by https://github.com/Whonix/whonix-host-firewall) sdwdate / timesync(done: anon-host-additions depends on anon-shared-packages-dependencies which depends on sdwdate, timesync,etc.)
- corridor firewall feature, see this post
AppArmor for VBox(whonix-host-virtualbox suggests apparmor-profile-virtualbox) AppArmor for KVM(Not required. libvirt comes with svirt.) ksm
- Shared Folder Settings
- Backup of hidden service keys.
Apply instructions from https://whonix.org/wiki/Advanced_Security_Guide#Network_Time_Synchronization(no longer needed thanks to https://github.com/Whonix/bootclockrandomization)
- create original snapshots of Virtual Machines (not for VirtualBox due to bug in VirtualBox)
If needed, we can split this ticket into separate ones.
Removed defunct ./whonix_host folder in meanwhile.