https://wiki.nftables.org/wiki-nftables/index.php/Atomic_rule_replacement
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
All Stories
Tue, May 16
Mon, May 15
Some progress.
Tue, May 9
In other words, iptabels is already symlinked to iptabels-nft anyhow. Therefore Whonix is already using iptabels-nft.
Feb 17 2023
Jan 19 2023
Due to phabricator being deprecated upstream, all tickets need to me migrated. Therefore closing here.
This is implemented in /usr/libexec/systemcheck/check_dpkg.bsh for a long time already.
Due to https://www.whonix.org/wiki/Reporting_Bugs#Transition_to_Discourse_Forums all tickets need to be migrated to forums. Please re-open in forums if this still still relevant.
This will be done when doing T927.
And we also port to dracut which also does early sysctl loading.
Adding tons of sysctl to an already very long kernel command line (do we got the world record already :) seems excessive.
Since nobody is making the argument anymore, rejecting this ticket.
Now tracked here:
https://forums.whonix.org/t/coyim-in-whonix-development-discussion/5901
Dec 13 2022
Dec 9 2022
Dec 8 2022
No longer an issue in Whonix 16.
Still works for me, still not reproducible. Old ticket. Therefore closing. Please re-report in the new issue tracker (and link to this old ticket) should this still be an issue.
whonixcheck was renamed to systemcheck and is now functional in Kicksecure.
Not a good idea nowadays due to prolonged DDoS attack on the Tor network. References:
Tracked in https://forums.whonix.org/t/cwtch-messaging/5353/ but could use some new forum tag for things which aren't actionable (not in packages.debian.org) that we want to monitor every now and then over the various releases maybe.
This is for whonix.org server security?
Done for a long time.
Oct 5 2022
Jul 29 2022
Jun 29 2022
Jun 5 2022
Feb 10 2022
Jan 1 2022
Dec 31 2021
Dec 15 2021
Is this still reuqired since we also have early sysctl loading during initramfs?
Dec 11 2021
Funding available. Anyone up to implement this?
Dec 9 2021
No longer using this extension. Alternatives here:
https://www.whonix.org/wiki/Offline_Documentation
No mailing list at the moment. Deprecating this issue tracker. Can be re-considered in the future.
rsync over TLS or even onion is implemented for a long time already and documented here:
https://www.whonix.org/wiki/Hosting_a_Mirror
This was done a long time ago.
Nov 7 2021
Oct 15 2021
Not possible because of above issue.
Sep 8 2021
Cannot reproduce anymore in Whonix for VirtualBox.
Aug 9 2021
In T509#20232, @ak88 wrote:Any updates on this?
Any updates on this?
Jun 24 2021
May 7 2021
Mar 21 2021
In T993#20220, @Patrick wrote:I don't see what else can be done here. This statement is limited to only what was said in this ticket.
I don't see what else can be done here. This statement is limited to only what was said in this ticket.
Mar 20 2021
Jan 24 2021
Btw this issue tracker is being phased out:
https://www.whonix.org/wiki/Reporting_Bugs#Issue_Tracker
Jan 12 2021
I am not sure sdwdate-gui would be a strong enough notification if networking was actually blocked if sdwdate did not succeed yet.
Jan 9 2021
This was implemented. Now using python3 requests.
No longer required. Was implemented through te_pe_tb_check enhancements.
Jan 8 2021
I've found why sudo asked for password, it wasn't related to security-misc script mentioned earlier. And should be fixed in newer qubes-core-agent package.
Jan 5 2021
In T1001#20201, @Patrick wrote:/usr/lib/qubes-whonix/init/torified-updates-proxy-check is currently only started by /lib/systemd/system/qubes-whonix-torified-updates-proxy-check.service.
Wondering why this is happening. When root uses sudo, pam shouldn't even be involved.
/usr/lib/qubes-whonix/init/torified-updates-proxy-check is currently only started by /lib/systemd/system/qubes-whonix-torified-updates-proxy-check.service.