Reduced usability is also a security problem. On the other hand, educated users don't need many usability features.
We can extend whonixsetup with "whonixadvsetup"
Do you wish to configure further settings related to security vs usability?
No, just go ahead, use recommended most usable settings. Yes, I am willing to learn more, sacrifice usability for better security.
If user choses no, just keep current defaults
If user chooses, yes, start explaining more stuff in sub menus. Such as:
- Explain whonixcheck's Whonix News, and that it may be substituted by regularly reading Whonix Important Blog. User can disable it.
- Explain whonixcheck's Tor Browser update check and that it can be substituted by watching for the small red blinking Tor Browser and how to update in that case.
- Explain whonixcheck's SocksPort / TransPort Test's.
- Explain sdwdate, explain that it can be omitted by manually keeping care of the clock.
- Explain CPFP, what breaks when disabling it, how to substitute it.
- Explain Check for Revocation Certificates before running apt-get (as soon as implemented).
- User will be able to enable/disable all one by one and/or enable/disable all at once. (The disable all at once might be interesting for users who already know all that stuff and configure multiple workstations and such who wish to click fast through it.)