I am making some updates to my system configuration and it is not clear to me if there are benefits to using Whonix Workstation in QubesOS if the browser is the only application in use. As I understand it, based on the wiki page about the workstation (wiki page title: “What is Whonix-Workstation?”), there are 2 main benefits to the workstation:
- All traffic will be routed through TOR
- Some applications are hardened with stream isolation (wiki page title: “Stream Isolation”)
Benefit 1 should be realized by using whonix-gateway as a NetVM, because this forces all traffic to go through TOR. Benefit 2 is not relevant if TOR Browser is the only application that accesses the network.
Are there any other benefits to using whonix-workstation? Particularly for a multi-workstation environment? There is a section about dangers with a multi-workstation setup (wiki page title: “Multiple Whonix-Workstation”, section: “Cross-VM Attack Vectors”), and there are some notes about the differences between a Qubes and non-Qubes setup, but it’s not clear if there are differences between a Fedora and Whonix Workstation setup when both are running in QubesOS (for example, I wouldn’t expect that the unique artifacts referred to in the section on “VM Fingerprinting” are unique to Whonix).