Page MenuHomePhabricator
Feed Advanced Search

Dec 7 2018

Patrick removed a project from T649: port curl-prgrs to pipeviewer pv: Whonix 15.
Dec 7 2018, 12:03 PM · Whonix, bash, curl-scripts

Oct 1 2018

Patrick placed T85: add parameter passing feature to su-to-root up for grabs.
Oct 1 2018, 1:17 PM · Whonix, bash

Jan 5 2018

Patrick updated the task description for T79: Internationalization Support.
Jan 5 2018, 4:50 AM · Whonix, python, bash, usability

May 31 2017

HulaHoop added a comment to T82: direct SSL certificate pinning for check.torproject.org and torproject.org (openssl s_client method).

Would probably also not a sensible IP leak test then.

May 31 2017, 2:40 PM · bash, Whonix, security, research

May 30 2017

Patrick added a comment to T82: direct SSL certificate pinning for check.torproject.org and torproject.org (openssl s_client method).

whonixcheck Whonix 14 optional connectivity / IP leak test:
There is no onion for check.torproject.org.
( https://trac.torproject.org/projects/tor/ticket/6098 )
Would probably also not a sensible IP leak test then.
Unfortunately for that SSL pinning would still be useful.

May 30 2017, 11:41 PM · bash, Whonix, security, research
HulaHoop added a comment to T82: direct SSL certificate pinning for check.torproject.org and torproject.org (openssl s_client method).

Since TPO infrastructure now moved to onions couldn't we just download use the onion domains for check.torproject.org, checking TBB version info and downloads?

May 30 2017, 7:06 PM · bash, Whonix, security, research

May 3 2017

HulaHoop added a comment to T644: replace tb-updater / curl-prgrs.

A python download progress bar class. Works with Python 3. Author has since moved to golang.

May 3 2017, 5:06 PM · bash, research, python, bug, Whonix, tb-updater

Mar 15 2017

Patrick updated the task description for T644: replace tb-updater / curl-prgrs.
Mar 15 2017, 2:42 PM · bash, research, python, bug, Whonix, tb-updater
Patrick created T649: port curl-prgrs to pipeviewer pv.
Mar 15 2017, 2:41 PM · Whonix, bash, curl-scripts

Mar 10 2017

Patrick created T644: replace tb-updater / curl-prgrs.
Mar 10 2017, 8:33 PM · bash, research, python, bug, Whonix, tb-updater

Dec 18 2016

Patrick added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Ok, added.

Dec 18 2016, 4:38 PM · python, bash, Whonix, security
HulaHoop added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Should only distributions be allowed to drop in news plugins or application packages also?

Dec 18 2016, 4:13 PM · python, bash, Whonix, security
Patrick added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Renamed from emergency news to project news. It does not have to be limited to emergencies if it's configureable. Users could subscribe to various channels, i.e. emergencies only, testers wanted etc.

Dec 18 2016, 2:38 PM · python, bash, Whonix, security
Patrick added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Perhaps it should be checked for revocation certificates on every run of apt-get update but not otherwise automated?

By "automating" it can run with apt-update even with an apt.cron setup maybe?

Dec 18 2016, 1:53 PM · python, bash, Whonix, security
HulaHoop added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Perhaps it should be checked for revocation certificates on every run of apt-get update but not otherwise automated?

Dec 18 2016, 1:37 AM · python, bash, Whonix, security

Dec 17 2016

Patrick updated subscribers of T140: apt-revoker - Check for Revocation Certificates before running apt-get.
Dec 17 2016, 2:03 AM · python, bash, Whonix, security
Patrick added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

HulaHoop (HulaHoop):

  • To avoid getting into a trust bootstrapping nightmare - its not

enough to revoke a key but also send a new one via the emergency
notification system to replace the revoked one.

Dec 17 2016, 2:02 AM · python, bash, Whonix, security
HulaHoop added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

Removed previous comment. The task is big enough no need to bite more than we can chew.

Dec 17 2016, 12:50 AM · python, bash, Whonix, security
HulaHoop updated the task description for T140: apt-revoker - Check for Revocation Certificates before running apt-get.
Dec 17 2016, 12:27 AM · python, bash, Whonix, security

Dec 16 2016

HulaHoop closed T577: Accelerating the Build Script as Resolved.
Dec 16 2016, 4:18 AM · build, bash, research, Whonix, refactoring
HulaHoop added a comment to T577: Accelerating the Build Script.

Still acceleration required?

Dec 16 2016, 4:17 AM · build, bash, research, Whonix, refactoring
HulaHoop added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.
Dec 16 2016, 4:08 AM · python, bash, Whonix, security
HulaHoop added a comment to T140: apt-revoker - Check for Revocation Certificates before running apt-get.

I want to help with the brainstorming for this. It will get more attention especially with the recent CVEs. This particular utility is a good candidate for Core Infrastructure funding IMO.

Dec 16 2016, 3:55 AM · python, bash, Whonix, security

Dec 15 2016

Patrick updated subscribers of T140: apt-revoker - Check for Revocation Certificates before running apt-get.
Dec 15 2016, 5:53 PM · python, bash, Whonix, security
Patrick added a comment to T577: Accelerating the Build Script.

Still acceleration required?

Dec 15 2016, 1:22 AM · build, bash, research, Whonix, refactoring

Dec 14 2016

HulaHoop added a comment to T577: Accelerating the Build Script.

Thanks. The outdated section linked to confused me but I got it now.

Dec 14 2016, 10:14 PM · build, bash, research, Whonix, refactoring
Patrick added a comment to T577: Accelerating the Build Script.

--install-to-root is deprecated. That's --target root for a few releases now. For physical isolation.

Dec 14 2016, 6:23 PM · build, bash, research, Whonix, refactoring
HulaHoop added a comment to T577: Accelerating the Build Script.

Looked it up: --install-to-root only relevant if building on the host

Dec 14 2016, 11:00 AM · build, bash, research, Whonix, refactoring
HulaHoop added a comment to T577: Accelerating the Build Script.

Did you try using an apt-cache yet as per build documentation, chapter apt cache?

Dec 14 2016, 10:47 AM · build, bash, research, Whonix, refactoring

Dec 13 2016

Patrick added a comment to T577: Accelerating the Build Script.

avoid downloading the same things twice

Dec 13 2016, 11:44 AM · build, bash, research, Whonix, refactoring
HulaHoop updated the task description for T577: Accelerating the Build Script.
Dec 13 2016, 12:58 AM · build, bash, research, Whonix, refactoring
HulaHoop updated the task description for T577: Accelerating the Build Script.
Dec 13 2016, 12:54 AM · build, bash, research, Whonix, refactoring
HulaHoop created T577: Accelerating the Build Script.
Dec 13 2016, 12:51 AM · build, bash, research, Whonix, refactoring

Apr 26 2016

Patrick closed T159: WhonixBackupScript as Resolved.
Apr 26 2016, 11:20 PM · usability-misc, Whonix 13, Whonix, easy, bash

Apr 2 2016

Patrick changed the status of T159: WhonixBackupScript from Open to Review.
implemented Whonix website and source code backup utility
Apr 2 2016, 8:25 PM · usability-misc, Whonix 13, Whonix, easy, bash

Feb 9 2016

Patrick updated subscribers of T135: find packages without security support / consider installation of debian-security-support by default.
Feb 9 2016, 9:56 PM · bash, Whonix, research, user documentation, Debian version 8 codename Jessie, security, usability

Jan 6 2016

Patrick updated the task description for T159: WhonixBackupScript.
Jan 6 2016, 1:04 AM · usability-misc, Whonix 13, Whonix, easy, bash

Nov 4 2015

Patrick lowered the priority of T138: Internationalization Support for tb-updater from Normal to Wishlist.

Lowering priority, because Tor Browser now has it's own internal updater and because tb-updater has been degraded to being a downloader only.

Nov 4 2015, 7:11 PM · tb-updater, usability, bash, python, Whonix
Patrick lowered the priority of T75: add download speed indicator to the download window of Tor Browser download GUI (tb-updater) from Normal to Wishlist.

Lowering priority, because Tor Browser now has it's own internal updater and because tb-updater has been degraded to being a downloader only.

Nov 4 2015, 7:06 PM · python, bash, tb-updater, usability, desktop, Whonix

Aug 20 2015

Patrick updated subscribers of T159: WhonixBackupScript.
Aug 20 2015, 12:05 AM · usability-misc, Whonix 13, Whonix, easy, bash
Patrick edited projects for T159: WhonixBackupScript, added: Whonix 13; removed Whonix 12.
Aug 20 2015, 12:05 AM · usability-misc, Whonix 13, Whonix, easy, bash

Jul 22 2015

Patrick updated the task description for T85: add parameter passing feature to su-to-root .
Jul 22 2015, 4:01 PM · Whonix, bash
Patrick added a comment to T85: add parameter passing feature to su-to-root .

Bill just explained something to me. My conclusion from it... What currently works in jessie as is without any patch required:

Jul 22 2015, 3:57 PM · Whonix, bash

Jun 8 2015

Patrick added a comment to T85: add parameter passing feature to su-to-root .

upstream:

git clone  https://anonscm.debian.org/git/menu/menu.git
Jun 8 2015, 6:35 PM · Whonix, bash

May 24 2015

Patrick updated the task description for T135: find packages without security support / consider installation of debian-security-support by default.
May 24 2015, 6:56 AM · bash, Whonix, research, user documentation, Debian version 8 codename Jessie, security, usability

May 23 2015

Patrick updated subscribers of T135: find packages without security support / consider installation of debian-security-support by default.
May 23 2015, 3:14 PM · bash, Whonix, research, user documentation, Debian version 8 codename Jessie, security, usability

Apr 21 2015

Patrick closed T269: use exit trap to reduce code duplication as Resolved.

Done:

Apr 21 2015, 7:41 PM · Whonix, bash, Whonix 11, refactoring
Patrick closed T48: use errtrace would lead to fewer traps required as Resolved.

Done:

Apr 21 2015, 7:41 PM · Whonix 11, build, Whonix, bash, refactoring
Patrick created T269: use exit trap to reduce code duplication.
Apr 21 2015, 6:52 PM · Whonix, bash, Whonix 11, refactoring
Patrick updated subscribers of T48: use errtrace would lead to fewer traps required.
Apr 21 2015, 6:51 PM · Whonix 11, build, Whonix, bash, refactoring
Patrick claimed T48: use errtrace would lead to fewer traps required.
Apr 21 2015, 6:51 PM · Whonix 11, build, Whonix, bash, refactoring

Apr 12 2015

Patrick added a comment to T83: Internationalization Support - bash scripts.

On a second thought, I am wondering about performance. Currently for all messages added to msgcollector, two blocking process forks are done (for cli and gui). By running bash_message before, two more blocking process forks are added. It might very well be negligible. Probably doesn't matter if whonixcheck ~3 more seconds.

Apr 12 2015, 5:11 PM · usability, bash, Whonix
Patrick added a comment to T83: Internationalization Support - bash scripts.

Sounds good.

Apr 12 2015, 5:05 PM · usability, bash, Whonix

Apr 10 2015

troubadour added a comment to T83: Internationalization Support - bash scripts.
In T83#3580, @Patrick wrote:

We should ask translatewiki if they like our way at all. Perhaps just start small and simple with whonix-setup-wizard. I want to prevent the possible (although not likely) desaster, that we finish this just to learn at the end that we need to start again, because translatewiki doesn't like our approach.

Yes, that's the first think to do before contuining. I am trying to contact translatewiki. The best - and perhaps only - mean seems to be IRC. The problem is that they are on freenode (#mediawiki-i18n), which bans Tor. They have a hidden service (difficult to know which one is current) but it's disabled at the moment. http://en.irc2go.com/?q=tor.

Apr 10 2015, 8:15 PM · usability, bash, Whonix
Patrick added a comment to T83: Internationalization Support - bash scripts.

For scalability, I think putting whonixcheck's messages into whonix-setup-wizard package is confusing and wrong. whonixcheck should ship that messages itself and have a dependency on python-guimessages.

Apr 10 2015, 4:59 PM · usability, bash, Whonix
Patrick added a comment to T83: Internationalization Support - bash scripts.

Looks very good overall.

Apr 10 2015, 4:40 PM · usability, bash, Whonix
Patrick added a comment to T83: Internationalization Support - bash scripts.

If we agree on this method, I could start porting all the bash scripts outputting user messages. Then, once a couple of them are done, contact translatewiki to start a Whonix translation project.

Apr 10 2015, 4:28 PM · usability, bash, Whonix

Apr 7 2015

Patrick added a comment to T83: Internationalization Support - bash scripts.

I'll look more throughly soon.

Apr 7 2015, 2:06 PM · usability, bash, Whonix

Apr 6 2015

troubadour added a comment to T83: Internationalization Support - bash scripts.

Started with three whonixcheck files.

Apr 6 2015, 10:26 PM · usability, bash, Whonix

Apr 5 2015

troubadour added a comment to T83: Internationalization Support - bash scripts.

The issue is fixed: access to bash_message was denied by AppArmor...

Apr 5 2015, 7:12 AM · usability, bash, Whonix
troubadour added a comment to T83: Internationalization Support - bash scripts.

Or, using the same translation mechanism as whonix-setup-wizard.

Apr 5 2015, 12:01 AM · usability, bash, Whonix

Apr 4 2015

Patrick removed a project from T159: WhonixBackupScript: Whonix 11.
Apr 4 2015, 2:05 PM · usability-misc, Whonix 13, Whonix, easy, bash
Patrick added a project to T159: WhonixBackupScript: Whonix 12.
Apr 4 2015, 2:05 PM · usability-misc, Whonix 13, Whonix, easy, bash

Mar 24 2015

Patrick closed T10: build script should provide better optical separation of build steps as Resolved.

I needed to get rid of run-parts anyhow due to some unrelated issue (https://lists.gnu.org/archive/html/help-bash/2015-03/msg00066.html) that messed up the error handler. From there it was little effort to implement this one. Done:
https://github.com/Whonix/Whonix/commit/d2347212a5f404a36a1d652839b2ce5ed9d9aa21

Mar 24 2015, 6:00 PM · Whonix 10, Whonix, refactoring, bash, build
Patrick renamed T10: build script should provide better optical separation of build steps from build script should provide better optional separation of build steps to build script should provide better optical separation of build steps.
Mar 24 2015, 5:52 PM · Whonix 10, Whonix, refactoring, bash, build

Mar 23 2015

Patrick closed T234: --verify --status-fd separator for multiple signatures as Resolved.

It should be fine. Checking for all the "something not okay" keywords:
https://github.com/Whonix/gpg-bash-lib/blob/368e4106832a8bf34934696ee932ee746a1a5e1e/usr/lib/gpg-bash-lib/modules.d/50_common#L340

Mar 23 2015, 8:35 PM · bash, security, Whonix 10, gpg-bash-lib, Whonix

Mar 19 2015

Patrick updated the task description for T234: --verify --status-fd separator for multiple signatures.
Mar 19 2015, 8:05 PM · bash, security, Whonix 10, gpg-bash-lib, Whonix
Patrick added a parent task for T234: --verify --status-fd separator for multiple signatures: T235: initial gpg-bash-lib release and announcement.
Mar 19 2015, 6:48 PM · bash, security, Whonix 10, gpg-bash-lib, Whonix
Patrick updated the task description for T234: --verify --status-fd separator for multiple signatures.
Mar 19 2015, 6:36 PM · bash, security, Whonix 10, gpg-bash-lib, Whonix
Patrick created T234: --verify --status-fd separator for multiple signatures.
Mar 19 2015, 6:32 PM · bash, security, Whonix 10, gpg-bash-lib, Whonix

Mar 5 2015

Patrick renamed T140: apt-revoker - Check for Revocation Certificates before running apt-get from Check for Revocation Certificates before running apt-get to apt-revoker - Check for Revocation Certificates before running apt-get.
Mar 5 2015, 1:18 PM · python, bash, Whonix, security

Feb 23 2015

Patrick closed T4: sdwdate --cache-dir command line parameter as Resolved.

Done:
https://github.com/Whonix/sdwdate/commit/099757a1d4a77d056371f5edf319b2bc0bcf02bc

Feb 23 2015, 7:38 PM · Whonix, Whonix 10, sdwdate, easy, bash
Patrick closed T3: sdwdate --temp-dir command line parameter as Resolved.

Done:
https://github.com/Whonix/sdwdate/commit/099757a1d4a77d056371f5edf319b2bc0bcf02bc

Feb 23 2015, 7:38 PM · Whonix, bash, easy, sdwdate, Whonix 10

Feb 11 2015

Patrick created T159: WhonixBackupScript.
Feb 11 2015, 7:21 AM · usability-misc, Whonix 13, Whonix, easy, bash

Feb 7 2015

Patrick updated the task description for T135: find packages without security support / consider installation of debian-security-support by default.
Feb 7 2015, 4:51 PM · bash, Whonix, research, user documentation, Debian version 8 codename Jessie, security, usability
Patrick updated the task description for T135: find packages without security support / consider installation of debian-security-support by default.
Feb 7 2015, 4:50 PM · bash, Whonix, research, user documentation, Debian version 8 codename Jessie, security, usability
Patrick triaged T140: apt-revoker - Check for Revocation Certificates before running apt-get as Normal priority.
Feb 7 2015, 4:32 PM · python, bash, Whonix, security
Patrick created T140: apt-revoker - Check for Revocation Certificates before running apt-get.
Feb 7 2015, 3:24 AM · python, bash, Whonix, security
Patrick created T138: Internationalization Support for tb-updater.
Feb 7 2015, 3:03 AM · tb-updater, usability, bash, python, Whonix

Jan 26 2015

Patrick renamed T115: add bash completion to Whonix apps from Scripts need bash completion. to add bash completion to Whonix apps.
Jan 26 2015, 11:45 PM · bash, usability, Whonix, enhancement

Jan 16 2015

Patrick closed T88: port tb-updater to gpg-bash-lib as Resolved.

Done:
https://github.com/Whonix/tb-updater/commit/88a8556eb9fa292dd78d5d6b0cb334ad9a293bee

Jan 16 2015, 8:32 PM · tb-updater, Whonix 10, bash, Whonix
Patrick closed T87: port whonixcheck to gpg-bash-lib as Resolved.
Jan 16 2015, 5:33 AM · Whonix, bash, whonixcheck, Whonix 10
Patrick added a comment to T87: port whonixcheck to gpg-bash-lib.

Needs more testing.

Jan 16 2015, 4:47 AM · Whonix, bash, whonixcheck, Whonix 10
Patrick added a comment to T88: port tb-updater to gpg-bash-lib.
Jan 16 2015, 4:47 AM · tb-updater, Whonix 10, bash, Whonix
Patrick created T88: port tb-updater to gpg-bash-lib.
Jan 16 2015, 3:49 AM · tb-updater, Whonix 10, bash, Whonix
Patrick created T87: port whonixcheck to gpg-bash-lib.
Jan 16 2015, 3:48 AM · Whonix, bash, whonixcheck, Whonix 10
Patrick added a project to T86: create a gpg bash lib: Whonix 10.
Jan 16 2015, 3:48 AM · Whonix 10, Whonix, bash
Patrick closed T86: create a gpg bash lib as Resolved.

Done:
https://github.com/Whonix/gpg-bash-lib

Jan 16 2015, 3:47 AM · Whonix 10, Whonix, bash
Patrick created T86: create a gpg bash lib.
Jan 16 2015, 3:43 AM · Whonix 10, Whonix, bash

Jan 15 2015

Patrick added a comment to T85: add parameter passing feature to su-to-root .

Tested and working.

SU_TO_ROOT_SU=sux su-to-root -p root -c date +%s
SU_TO_ROOT_SU=sudo su-to-root -p root -c date +%s
SU_TO_ROOT_SU=su su-to-root -p root -c date +%s
SU_TO_ROOT_X=gksu su-to-root -X -p root -c dolphin /usr
SU_TO_ROOT_X=gksudo su-to-root -X -p root -c dolphin /usr
SU_TO_ROOT_X=kdesudo su-to-root -X -p root -c dolphin /usr
SU_TO_ROOT_X=sux su-to-root -X -p root -c dolphin /usr
Jan 15 2015, 3:57 AM · Whonix, bash
Patrick updated the task description for T85: add parameter passing feature to su-to-root .
Jan 15 2015, 3:26 AM · Whonix, bash
Patrick claimed T85: add parameter passing feature to su-to-root .
Jan 15 2015, 3:22 AM · Whonix, bash
Patrick created T85: add parameter passing feature to su-to-root .
Jan 15 2015, 3:21 AM · Whonix, bash

Jan 14 2015

Patrick updated the task description for T79: Internationalization Support.
Jan 14 2015, 8:19 PM · Whonix, python, bash, usability
Patrick removed a subtask for T79: Internationalization Support: T83: Internationalization Support - bash scripts.
Jan 14 2015, 8:18 PM · Whonix, python, bash, usability
Patrick created T83: Internationalization Support - bash scripts.
Jan 14 2015, 8:17 PM · usability, bash, Whonix
Patrick created T82: direct SSL certificate pinning for check.torproject.org and torproject.org (openssl s_client method).
Jan 14 2015, 6:27 PM · bash, Whonix, security, research
Patrick added a subtask for T79: Internationalization Support: T72: Whonix Greeter.
Jan 14 2015, 3:00 AM · Whonix, python, bash, usability
Patrick created T79: Internationalization Support.
Jan 14 2015, 3:00 AM · Whonix, python, bash, usability
Patrick updated the task description for T75: add download speed indicator to the download window of Tor Browser download GUI (tb-updater).
Jan 14 2015, 2:06 AM · python, bash, tb-updater, usability, desktop, Whonix