Long Wiki Edits Thread

Patrick · December 25, 2019, 10:05am

https://www.whonix.org/w/index.php?title=Warning&oldid=52679&diff=53808 :

That is far too much detail for the https://www.whonix.org/wiki/Warning page: that page should [1] dispel user misconceptions, too high exceptions, too risky reliance. Explaining that in terms which sound understandable, conceivable (not being discarded as “conspiracy theory”).

For example:

OCSP (from user point of view: whatever that is), Retroactive availability, medium effort.

That’s not something:

users can/should remember when reading that page
actionable
[1]

That is more interesting for researchers / developers.

My problem with that is that reviewing this would take away development time for more impactful things such as various security hardening recently. If I’d accept it on faith without review it would make the project look stupid if there were major discrepancies.

It would fit better in https://www.whonix.org/wiki/The_World_Wide_Web_And_Your_Privacy or https://www.whonix.org/wiki/Data_Collection_Techniques? That pages don’t have to be as thoroughly reviewed as maintained by torjunkie. What the https://www.whonix.org/wiki/Template:Maintainer is supposed to communicate is, that that page is the main responsibility of that maintainer. Therefore it does not have to be as thoroughly reviewed. It is more similar to a blog account on blogger.com such as somename.blogger.com. blogger.com isn’t the publisher. sommename is. blogger.com is just a platform.

https://www.whonix.org/wiki/Template:Based_on_Debian

Originally was:

To oversimplify it: Whonix is just a collection of configuration files and scripts.

Now over time changed to:

In simple terms, Whonix ™ is just a collection of configuration files and scripts.

Not sure that is very same meaning intended to community. Oversimplify is a valid word in dictionary.

“Whonix is just a collection of configuration files and scripts.” It’s not. There are too many configuration files and scripts. Realistically (almost) nobody will replicate all or most of what Whonix does one by one with configuration files and scripts. It would be silly to call Whonix "a collection of configuration files and scripts` and I have not seen that claim. Years ago Whonix became a Linux distribution. But for the sake of making that point it is useful to view it that way “Whonix is just a collection of configuration files and scripts.” The point I am trying to convene is that by adding more and more pre-configuration for anonymity/privacy/security and package selection it is still Debian based and while there are some bugs nothing major is breaking and nothing is deliberately freedom restricted.

Patrick · December 28, 2019, 9:39am

2 posts were merged into an existing topic: Kernel Hardening

Patrick · December 28, 2019, 9:40am

This page title is too complex and cannot be easily posted in forums. Could you please move this page to give it a better page name?

https://www.whonix.org/wiki/Hosting_a_(private)_(obfuscated)_bridge_or_(exit)_relay

torjunkie · December 29, 2019, 7:17am

Fixed the title for you.

Patrick · December 29, 2019, 7:50am

A post was merged into an existing topic: Tempests email guide -> Whonix wiki

Patrick · January 22, 2020, 10:51am

2 posts were split to a new topic: SMAP SMEP - VirtualBox / KVM

Patrick · January 12, 2020, 9:15am

new chapter:
https://www.whonix.org/wiki/Fingerprint#Website_Traffic_Fingerprinting

Patrick · January 12, 2020, 9:17am

updated chapter:
https://www.whonix.org/wiki/Tor_Entry_Guards#Increase_Protection_from_Malicious_Entry_Guards:_One_Guard_per_Application

Patrick · January 12, 2020, 10:20am

Do we document somewhere “if you don’t have physical security (untrusted visitors) for your computer (hardware backdoor), then you’re considered compromised, software cannot help you”? If not, could you add this please?

Patrick · January 12, 2020, 10:36am

new chapter:
https://www.whonix.org/wiki/Verifying_Software_Signatures#System_Security_Level

Patrick · January 12, 2020, 10:44am

Expanded this chapter:
https://www.whonix.org/wiki/Trust#Distrusting_Infrastructure

Patrick · January 17, 2020, 8:02am

fix extra white space on all PDF embedded links is now fixed.

Whonix website security rating - "B" (Mozilla Observatory) - Content Security Policy (CSP)

This is now fixed.

https://www.whonix.org/wiki/Widget:Link

https://www.whonix.org/wiki/Widget:Archive_link

https://www.whonix.org/wiki/Template:Link

https://www.whonix.org/wiki/Template:Archive_link

usage:
{{archive_link|link=https://cseweb.ucsd.edu/~hovav/dist/canvas.pdf|text=Studies}}
or:
{{link|link=https://cseweb.ucsd.edu/~hovav/dist/canvas.pdf|text=Studies}}

Patrick · January 18, 2020, 11:21am

Wiki has a new minor feature. (ticket)

old version: https://www.whonix.org/w/index.php?title=Template:Reload_Tor&oldid=47515

If you are using a terminal-only Whonix-Gateway ™, press on Expand on the right. [Expand]

new version: https://www.whonix.org/w/index.php?title=Template:Reload_Tor&oldid=54246

If you are using a terminal-only Whonix-Gateway ™, click HERE for instructions.

HERE is a clickable button.

Could you please check/adjust the wording/style? When this matured, I can create a wiki template so this can be more easily used throughout the whole wiki.

Patrick · October 9, 2020, 1:51pm

3 posts were split to a new topic: systemd-analyze security

tempest · February 13, 2020, 6:55am

updated the bitmessage page to inform readers that the bmg service at bitmessage.ch is terminated.

uuid · February 19, 2020, 3:12pm

Reading thru whonix. org/wiki/KVM, there’s the note:
„Read and apply the [Pre-Installation Security Advice](whonix. org/wiki/Pre_Install_Advice)“ which leads to an outdated page, which links to another page, but the Pre-Installation isn’t there either. As you’ve already covered here that some pages are outdated, a new guide from tempest would come in handy and/or update the wiki here.
Where I can imagine an own wiki page from tempest would be a good thing, as he walks thru all necessary steps from scratch to finish - maybe especially for new users.

tempest · February 20, 2020, 4:25am

this will be coming. i’m converting chapters into wiki text at the moment.

Patrick · February 29, 2020, 7:53am

3 posts were split to a new topic: Whonix Enterprise Software

Patrick · February 28, 2020, 4:20pm

https://www.whonix.org/w/index.php?title=E-Mail&oldid=53928&diff=cur what do you think? @HulaHoop

Also not sure we should go into privacy by policy based advice anyhow. Previous (existing point):

Are outside Fourteen Eyes [archive] jurisdictions – especially the US jurisdiction (see footnote). [18]

JonDonym [archive] notes:

Due to the US PATRIOT Act (especially p. 215ff) and the fourth amendment to the FISA Amendments Act it is possible for US authorities to eavesdrop on the communication of non US citizens without a warrant. According to the US authorities it is enough that the servers are located in the US.

Lots of countries have similar programs. It might be hard to find any that don’t have these. Seems pretty difficult to keep track and reason about since there are ~ 200 countries and hard to keep track about each of these.

madaidan · February 28, 2020, 5:17pm

The fourteen eyes are irrelevant. Just because those governments share data with each other, doesn’t mean they’re going to force the email provider to.