It would perhaps be a good idea to have an aditional field in Whonixcheck which informs users of imminent issues or events,
There is an insufficient one. Called Whonix News as part of whonixcheck. (old screenshot) Insufficient, because it gets hardly noticed by anyone ever. [At least the news files gpg verification stuff is done and hopefully solid, see source code.]
This is related to Whonix Upgrade Notification. The mockup by @entr0py in thread Whonix Upgrade Notification looks good.
Do not show again [ OK ]
Very true. Very much needed.
related:
- apt-revoker - Check for Revocation Certificates before running apt-get - where a generic package that can enter packages.debian.org is proposed, where Debian and its derivatives such as Qubes and Whonix can drop
.dstyle configuration snippets. - Permanent Takedown Attack Defender - Ticket | Permanent Takedown Attack Defender - Design
Similarly a ticket for Emergency News Notification is does not yet exist. Ideally also a generic package that can enter packages.debian.org, where Debian and its derivatives such as Qubes and Whonix can drop .d style configuration snippets.
A generic package is better. Then Debian would have informed us about this CVE-2016-1252 earlier.
Ideally the Emergency News Notification tool would also have a Permanent Takedown Attack Defender feature. The initial version wouldn’t require that, but I would be good to plan ahead so it can be added in a later iteration.
Since this is a rather involved project, I suggest to start with a great description of the problems we are seeing, as well as with the solution we are proposing. And then post this on the debian-devel mailing list in the hope that people agree and $someone will implement it. [And even if there is no $someone, there will be hopefully a ton of feedback on how to get this right.] Anyone wanting to take the lead on that? 