Migrated remaining task to T868.

This was done. If not, please create specific tickets where it isn't done.

https://www.whonix.org/wiki/Chat#Ricochet_IM

Installed. See screenshot on how to use:

Sitemap was broken. May be unrelated to https://github.com/WhonixBOT/whonix-wiki-html/blob/master/scrape-whonix-wiki.sh. Just a follow up issue. Not cause. In progress of fixing this.

NonaSuomy:

Added requested NFTables example from duclicsic #netfilter freenode.

Starting with Bullseye nftables will be the default:

https://redmine.tails.boum.org/code/issues/17156

Analysis by Cyrus cited here for completion:

Already packaged in Debian but is currently orphaned and needs a maintainer accoridng to its ex-maintainer:

An alternative proposal for editing ISNs without involving the kernel:

Implemented for some time now.

Reported build failures:

When an implementation is decided, let's decide if we can include this in security-misc for use on Linux hosts and Kicksecure. We would need some way in detecting the active NIC since on wireless systems wlan0 is the interface of choice and not eth0

tc-netem is a utility that is part of the iproute2 package in Debian. It leverages functionality already built into Linux and userspace utilities to simulate networks including packet delays and loss.

TPM hw not working. Troubleshooting thread:

It turns out, what I said only applies to the Debian package. The kernel patch and the package are actually two different things.

This forum thread will be used for community documentation discussions (currently under Organizational sub forum).

Season of Docs starts on Sep 02 2019.

Should work on manual invocation.

For the record, this is the diff being generated.

https://forums.whonix.org/t/hardened-debian-security-focused-linux-distribution-based-on-debian-in-development-feedback-wanted/5943/30?u=patrick

By default, the VMs do not start because the virtual disks are not set to readonly. This is only needed when using the ISO though. Might stay this way as long as the user is correctly advised to change to set the disk to readonly mode.

install electrum appimage by default:
https://github.com/Whonix/anon-meta-packages/commit/71d40f5316ee7eb38eb04142d80d23c56a48407b

Looks like mine.

remove qubes-core-agent dependency on initscripts
https://github.com/QubesOS/qubes-issues/issues/5133

but it doesnt happen on plain debian-qubes template , any idea why?

Yes Zulucrypt included and functional on KVM 15. However fixes for both zulucrypt and tomb haven't made it into Buster from what I've tested. Zulucrypt has a tomb plugin to open Tomb files too.

Whonix 15 has since come out. Has this been resolved? Not reproducible on Debian Buster either.

Problem has since been reported and fixed upstream. Let's look into re-including by Bullseye.

This bug does not exist on Debian stable after I upgraded. I have it documented for Arch and a work around for it. Nothing more to be done on my end.

Sounds good, thanks.

Done in git master.

Sounds good?

Does lowering "severity could be lowered to "info" and not causing
non-zero exit codes" + `journalctl -p err -b` sound like a good solution?

journal keeps metadata about each message, so it's possible to avoid it with `journalctl -p err -b` (I've added `-b` to avoid listing messages from previous boot).

https://forums.whonix.org/t/focus-on-whonix-core-development/5036

In T913#18744, @Patrick wrote:

Do you see any issues with "create home directory on first login" in Qubes?

In T913#18743, @marmarek wrote:

Can you give some more context here?

Can you give some more context here? Is it the problem that user is created too early (before /etc/skel is fully populated)? Or is it a problem that it's created at all? Should there be a difference between Qubes and non-Qubes case?