Page MenuHomePhabricator
Feed All Stories

Mar 16 2020

onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

I think that is only here:
https://github.com/Whonix/Whonix/blob/master/build-steps.d/1800_copy_vms_into_raw#L35

Mar 16 2020, 4:47 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
Patrick assigned T969: instructions how to burn Whonix-Host ISO image to DVD or USB to onion_knight2.
Mar 16 2020, 8:27 AM · Whonix 15, Whonix-Host, Whonix
Patrick added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

I agree that a solution would probably to run some kind of script at the end of the Calamares installtion to revert ro to rw.

Mar 16 2020, 8:22 AM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

There are two read-only parameters:

Mar 16 2020, 12:20 AM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode

Mar 15 2020

onion_knight2 added a comment to T969: instructions how to burn Whonix-Host ISO image to DVD or USB.

I could help with this task once it's ready (soon hopefully).

Mar 15 2020, 10:07 PM · Whonix 15, Whonix-Host, Whonix
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

I guess images will be set to kvm images read-only when booted in live iso mode (and probably live mode too). But once installed, images are still set to live mode. That would be probably kvm images read-only is set when run in iso live mode, cached in RAM and then installed to local disk?

Mar 15 2020, 9:45 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
Patrick added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

Good catch! Merged.

Mar 15 2020, 9:13 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

Fixed by adding

Mar 15 2020, 5:22 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

I added whoami in the script and it confirmed it runs as root.

Mar 15 2020, 4:44 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

Yes, it should be run by root. Maybe it is run by root but somehow the changes don't take place as they should. More debugging could help.

Mar 15 2020, 3:09 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
Patrick added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

Pretty sure it is run by root.

Mar 15 2020, 2:37 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode
onion_knight2 added a comment to T914: Whonix Host Live - enable KVM readonly mode - virt-xml vm-name --edit --disk readonly=on.

It seems that https://github.com/Whonix/whonix-libvirt/blob/master/usr/lib/whonix-libvirt/live-mode-to-read-only is not ran by root. Thus it cannot get the virsh list --all (returns void) nor change the VM xml configuration file.

Mar 15 2020, 1:51 PM · Whonix 15, Whonix-Host, whonix-libvirt, Whonix, live-mode

Mar 13 2020

Patrick added a comment to T909: installing Whonix-Host without installer (calamares).

It is possible to automatize grml-debootstrap with full-disk encryption. Nothing too hard. I could hack together a semi-working bash script after a couple of hours of online documentation.

Mar 13 2020, 7:49 AM · user documentation, Whonix, Whonix-Host

Mar 12 2020

onion_knight2 added a comment to T909: installing Whonix-Host without installer (calamares).

It is possible to automatize grml-debootstrap with full-disk encryption. Nothing too hard. I could hack together a semi-working bash script after a couple of hours of online documentation.

Mar 12 2020, 11:26 PM · user documentation, Whonix, Whonix-Host
Patrick added a project to T929: Whonix XFCE Wallpaper / Background Image: Whonix-Host.
Mar 12 2020, 3:14 PM · Whonix 15, Whonix-Host, Whonix, whonix-xfce-desktop-config
Patrick updated the task description for T909: installing Whonix-Host without installer (calamares).
Mar 12 2020, 2:52 PM · user documentation, Whonix, Whonix-Host
Patrick triaged T969: instructions how to burn Whonix-Host ISO image to DVD or USB as Normal priority.
Mar 12 2020, 2:51 PM · Whonix 15, Whonix-Host, Whonix
Patrick updated the task description for T909: installing Whonix-Host without installer (calamares).
Mar 12 2020, 2:47 PM · user documentation, Whonix, Whonix-Host
Patrick renamed T909: installing Whonix-Host without installer (calamares) from instructions how to copy Whonix Host image to disk to installing Whonix-Host without installer (calamares).
Mar 12 2020, 2:46 PM · user documentation, Whonix, Whonix-Host
Patrick added a comment to T909: installing Whonix-Host without installer (calamares).

No disk encryption?

Mar 12 2020, 2:45 PM · user documentation, Whonix, Whonix-Host
onion_knight2 added a comment to T909: installing Whonix-Host without installer (calamares).

No disk encryption?

Mar 12 2020, 10:13 AM · user documentation, Whonix, Whonix-Host
Patrick updated the task description for T909: installing Whonix-Host without installer (calamares).
Mar 12 2020, 9:40 AM · user documentation, Whonix, Whonix-Host
Patrick updated subscribers of T909: installing Whonix-Host without installer (calamares).
Mar 12 2020, 9:40 AM · user documentation, Whonix, Whonix-Host
Patrick updated the task description for T909: installing Whonix-Host without installer (calamares).
Mar 12 2020, 9:39 AM · user documentation, Whonix, Whonix-Host
Patrick changed the status of T928: install xfce4-power-manager on Whonix Host and Kicksecure Host from Open to testing-in-next-build-required.

https://github.com/Whonix/anon-meta-packages/commit/9550d47959e37cb8cca508e169c121dc65cde342

Mar 12 2020, 9:34 AM · Whonix 15, whonix-libvirt, live-mode, Whonix, Whonix-Host
Patrick updated the task description for T928: install xfce4-power-manager on Whonix Host and Kicksecure Host.
Mar 12 2020, 9:30 AM · Whonix 15, whonix-libvirt, live-mode, Whonix, Whonix-Host
Patrick changed the status of T919: Whonix Live Branding from Open to testing-in-next-build-required.

https://forums.whonix.org/t/whonix-host-calamares-branding-suggestion/7772/8

Mar 12 2020, 9:29 AM · live-mode, Whonix
Patrick closed T819: persistent / live mode indicator systray - graphical indication on the desktop that system is running in live mode vs persistent mode as Resolved.
Mar 12 2020, 9:29 AM · live-mode, Whonix
Patrick lowered the priority of T907: resize Whonix-Host disk at first boot of Whonix-Host from Normal to Wishlist.
Mar 12 2020, 9:12 AM · Whonix-Host, Whonix

Mar 11 2020

Patrick triaged T968: Bullseye: live-boot needs GRUB_DISABLE_LINUX_UUID="true" parameter in /etc/grub.d/11_linux_live as Normal priority.
Mar 11 2020, 2:14 PM · Debian version 11 codename Bullseye, Whonix, live-mode

Mar 7 2020

Patrick changed the status of T965: install gvfs by default / fix access LUKS encrypted USB drive with Thunar from Open to Review.

Will come in Whonix 15.0.0.9.4 and above.

Mar 7 2020, 1:17 PM · Whonix 15, Whonix, bug
Patrick updated the task description for T958: Write VirtualBox Screen Resolution Bug Report.
Mar 7 2020, 1:46 AM · C Code, upstream, bug, Whonix 15, VirtualBox, Whonix

Mar 6 2020

Patrick updated subscribers of T965: install gvfs by default / fix access LUKS encrypted USB drive with Thunar.
Mar 6 2020, 5:36 PM · Whonix 15, Whonix, bug
Patrick renamed T965: install gvfs by default / fix access LUKS encrypted USB drive with Thunar from fix access LUKS encrypted USB drive with Thunar to install gvfs by default / fix access LUKS encrypted USB drive with Thunar.
Mar 6 2020, 5:35 PM · Whonix 15, Whonix, bug

Mar 5 2020

Patrick updated the task description for T964: mediawiki fixes #3.
Mar 5 2020, 3:45 PM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Mar 5 2020, 3:40 PM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Mar 5 2020, 3:40 PM · website, Whonix

Mar 4 2020

Patrick updated the task description for T960: hardened kernel Debian packaging and APT integration - hkapt.
Mar 4 2020, 12:25 PM · hardened-kernel, Whonix

Mar 3 2020

Patrick updated the task description for T964: mediawiki fixes #3.
Mar 3 2020, 9:15 AM · website, Whonix
Patrick updated the task description for T964: mediawiki fixes #3.
Mar 3 2020, 9:13 AM · website, Whonix

Mar 2 2020

madaidan triaged T967: Test disabling EFI_VARS in hardened-host-kernel as Normal priority.
Mar 2 2020, 6:19 PM · hardened-kernel, Whonix

Feb 29 2020

Patrick added a comment to T634: write draft for stackable wrappers on debian-devel.
Feb 29 2020, 12:08 PM · Whonix, upstream
Patrick closed T913: bug: not all files form /etc/skel are copied to /home/user / create user "user" at boot time as Resolved.

Works well in Non-Qubes-Whonix. Solution was this one:

Feb 29 2020, 8:26 AM · whonix-base-files, live-mode, Whonix 15, Whonix
Patrick triaged T966: fix pkexec as Normal priority.
Feb 29 2020, 8:06 AM · bug, Whonix 15, Whonix

Feb 24 2020

Patrick triaged T965: install gvfs by default / fix access LUKS encrypted USB drive with Thunar as Normal priority.
Feb 24 2020, 7:19 AM · Whonix 15, Whonix, bug

Feb 23 2020

Patrick triaged T964: mediawiki fixes #3 as Normal priority.
Feb 23 2020, 5:11 PM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Feb 23 2020, 5:01 PM · website, Whonix

Feb 16 2020

ninavizz added a comment to T963: Make Whonix GUI usable for high-risk non-technical Qubes users.

So... keeping an eye on user-needs as the priority driving this story: the list of "What needs doing" is ordered, below, as I see it:

Feb 16 2020, 8:49 PM · usability, sdwdate, sdwdate-gui, Whonix
Patrick added a comment to T963: Make Whonix GUI usable for high-risk non-technical Qubes users.

Excellent proposal!

Feb 16 2020, 11:05 AM · usability, sdwdate, sdwdate-gui, Whonix
Patrick updated the task description for T504: anon-connection-wizard development.
Feb 16 2020, 10:13 AM · Whonix, anon-connection-wizard, python, usability, enhancement
Patrick updated the task description for T504: anon-connection-wizard development.
Feb 16 2020, 10:12 AM · Whonix, anon-connection-wizard, python, usability, enhancement
Patrick updated the task description for T504: anon-connection-wizard development.
Feb 16 2020, 10:12 AM · Whonix, anon-connection-wizard, python, usability, enhancement
Patrick updated the task description for T504: anon-connection-wizard development.
Feb 16 2020, 10:11 AM · Whonix, anon-connection-wizard, python, usability, enhancement
Patrick closed T925: whonixcheck false positive in check_journal as Resolved.
Feb 16 2020, 10:08 AM · Whonix 15, whonixcheck, Whonix
Patrick triaged T925: whonixcheck false positive in check_journal as Normal priority.
Feb 16 2020, 10:07 AM · Whonix 15, whonixcheck, Whonix
Patrick triaged T930: whonix.SdwdateStatus service starts VMs that were killed as Wishlist priority.
Feb 16 2020, 10:07 AM · sdwdate-gui, Whonix
Patrick placed T900: Installation and setup of Kicksecure tutorials up for grabs.
Feb 16 2020, 10:04 AM · Whonix, user documentation
Patrick updated the task description for T963: Make Whonix GUI usable for high-risk non-technical Qubes users.
Feb 16 2020, 10:03 AM · usability, sdwdate, sdwdate-gui, Whonix
Patrick triaged T963: Make Whonix GUI usable for high-risk non-technical Qubes users as Normal priority.
Feb 16 2020, 7:04 AM · usability, sdwdate, sdwdate-gui, Whonix
ninavizz created T963: Make Whonix GUI usable for high-risk non-technical Qubes users.
Feb 16 2020, 3:35 AM · usability, sdwdate, sdwdate-gui, Whonix

Feb 14 2020

Patrick updated the task description for T547: add user documentation for Remote Administration, Keystroke Fingerprinting, Stylometry.
Feb 14 2020, 12:49 PM · research, user documentation, Whonix
Patrick added a project to T547: add user documentation for Remote Administration, Keystroke Fingerprinting, Stylometry: research.
Feb 14 2020, 12:49 PM · research, user documentation, Whonix
Patrick triaged T962: create new release of Whonix Windows Installer as Normal priority.
Feb 14 2020, 9:00 AM · VirtualBox, Whonix 15, Whonix
Patrick updated subscribers of T959: investigate QEMU with HAXM acceleration on the Windows platform as VirtualBox replacement.
Feb 14 2020, 8:22 AM · Whonix
Patrick updated the task description for T959: investigate QEMU with HAXM acceleration on the Windows platform as VirtualBox replacement.
Feb 14 2020, 8:21 AM · Whonix
Patrick triaged T961: fix USB auto mounting bug / document as Normal priority.
Feb 14 2020, 7:12 AM · research, bug, Whonix, Whonix 15

Feb 13 2020

Patrick renamed T960: hardened kernel Debian packaging and APT integration - hkapt from hardened kernel Debian packaging and APT integration to hardened kernel Debian packaging and APT integration - hkapt.
Feb 13 2020, 8:30 PM · hardened-kernel, Whonix
Patrick triaged T960: hardened kernel Debian packaging and APT integration - hkapt as Normal priority.
Feb 13 2020, 8:19 PM · hardened-kernel, Whonix
Patrick triaged T959: investigate QEMU with HAXM acceleration on the Windows platform as VirtualBox replacement as Normal priority.
Feb 13 2020, 5:00 PM · Whonix
Patrick closed T636: enable sdwdate-gui systray by default as Resolved.

We're not using KDE anymore and sdwdate-gui is enabled by default.

Feb 13 2020, 12:49 PM · sdwdate-gui, bug, Debian version 9 codename Stretch, kde, Whonix

Feb 12 2020

Patrick triaged T958: Write VirtualBox Screen Resolution Bug Report as Normal priority.
Feb 12 2020, 3:54 PM · C Code, upstream, bug, Whonix 15, VirtualBox, Whonix
Patrick updated the task description for T837: create Whonix project accounts.
Feb 12 2020, 3:22 PM · outreach, Whonix
Patrick updated the task description for T837: create Whonix project accounts.
Feb 12 2020, 3:21 PM · outreach, Whonix
Patrick placed T837: create Whonix project accounts up for grabs.

We now have all of these for a while now:

Feb 12 2020, 3:20 PM · outreach, Whonix
Patrick triaged T957: slow shutdown bug as Normal priority.
Feb 12 2020, 2:51 PM · bug, Whonix, Whonix 15
Patrick triaged T956: hardened-kernel automated testing as Normal priority.
Feb 12 2020, 9:17 AM · Whonix, hardened-kernel
Patrick triaged T955: review hardened kernel config as Normal priority.
Feb 12 2020, 9:15 AM · Whonix, hardened-kernel
Patrick triaged T954: Consider reintroducing checking of alloca() calls in STACKLEAK as Normal priority.
Feb 12 2020, 9:13 AM · hardened-kernel, Whonix
Patrick added a member for hardened-kernel: madaidan.
Feb 12 2020, 9:12 AM
Patrick created hardened-kernel.
Feb 12 2020, 9:12 AM

Feb 11 2020

madaidan created T954: Consider reintroducing checking of alloca() calls in STACKLEAK.
Feb 11 2020, 7:06 PM · hardened-kernel, Whonix

Jan 20 2020

Patrick added a comment to T868: mediawiki fixes #2.

JasonJAyalaP (Jason J. Ayala P.):

JasonJAyalaP added a comment.

**too  much whitespace**
This is unnecessary whitespace from the html line:

  <h5 id="siteSub" class="subtitle"></h5>

which shows nothing + padding all h5's get.

The proper way, I presume, is to tell mediawiki to not display "subtitle", whatever that is. It seems to be similar to "tagline" which is set to "From Whonix" and outputted in html but set to hidden via css (dumb but whatever).
Jan 20 2020, 1:08 PM · website, Whonix

Jan 18 2020

Patrick closed T470: Whonix home page redesign as Resolved.
Jan 18 2020, 1:22 PM · html, Whonix, user documentation
Patrick updated the task description for T868: mediawiki fixes #2.
Jan 18 2020, 12:42 PM · website, Whonix
Patrick added a comment to T868: mediawiki fixes #2.

JasonJAyalaP (Jason J. Ayala P.):

JasonJAyalaP added a comment.

**clickable expand button inside text**

Done. Check: https://www.whonix.org/wiki/Template:Reload_Tor
Jan 18 2020, 12:39 PM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Jan 18 2020, 12:14 PM · website, Whonix
Patrick added a comment to T868: mediawiki fixes #2.

replace Menu bar with hardcoded links
Isn't this a mediawiki configuration option? It should have basic nav choices.

Jan 18 2020, 12:14 PM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Jan 18 2020, 12:12 PM · website, Whonix
Patrick added a comment to T868: mediawiki fixes #2.

two separate pre tags get intermingled and shown as one box
Can you link me to an example (or create a page with one)?

Jan 18 2020, 12:12 PM · website, Whonix
JasonJAyalaP added a comment to T868: mediawiki fixes #2.

clickable expand button inside text

Jan 18 2020, 5:32 AM · website, Whonix
JasonJAyalaP added a comment to T868: mediawiki fixes #2.

replace Menu bar with hardcoded links
Isn't this a mediawiki configuration option? It should have basic nav choices.

Jan 18 2020, 5:01 AM · website, Whonix
JasonJAyalaP added a comment to T868: mediawiki fixes #2.

two separate pre tags get intermingled and shown as one box
Can you link me to an example (or create a page with one)?

Jan 18 2020, 5:00 AM · website, Whonix
JasonJAyalaP added a comment to T868: mediawiki fixes #2.

too much whitespace
There is unnecessary whitespace from the html line:

Jan 18 2020, 4:53 AM · website, Whonix

Jan 17 2020

Patrick updated the task description for T868: mediawiki fixes #2.
Jan 17 2020, 9:03 AM · website, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Jan 17 2020, 8:40 AM · website, Whonix

Jan 15 2020

Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.
In T950#19249, @Patrick wrote:

The loader of tirdad is currently using dmesg.

Jan 15 2020, 12:11 PM · Debian version 11 codename Bullseye, Whonix 15, security-misc, Whonix

Jan 7 2020

HulaHoop added a comment to T552: Packaging USBKill.

An interesting product that triggers a system wipe if the cable is pulled:

Jan 7 2020, 5:51 PM · Whonix-Host, security, Whonix
Patrick updated the task description for T868: mediawiki fixes #2.
Jan 7 2020, 6:39 AM · website, Whonix

Jan 1 2020

Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.

The loader of tirdad is currently using dmesg.

Jan 1 2020, 12:31 PM · Debian version 11 codename Bullseye, Whonix 15, security-misc, Whonix
Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.

quiet

Jan 1 2020, 12:05 PM · Debian version 11 codename Bullseye, Whonix 15, security-misc, Whonix