- -> All done/fixed.
I’ll keep looking at the Advanced Security Guide (finish edits), so we can finally shift all the stuff around as per phabricator item.
- Also, re: this phabricator item:
Tor 0.3+ does not work on QubesOS (but Tor 0.2.9.10 works)
That is false.
3.1.7 and 3.1.8 from Debian work. Including with connection padding.
However, they tend to time out on the first connection attempt i.e. getting stuck at the 90% mark “Establishing a Tor circuit”. However, after whonixcheck --debug --verbose (one or two times), they eventually connect.
It usually resolves itself (bootstraps 100%) after this line stops shitting itself in Tor logs:
[NOTICE] New control connection opened from 127.0.0.1. [X duplicates hidden]
I think it probably relates to slow connections at this time. There seem to be a number of Tor Trac bugs around similar issues, ‘descs’ failing to download properly etc.
I don’t think this is Whonix-specific, but relates to latest Tor releases. So, maybe close it.
- According to this:
These lines in the bridges tor config file:
ClientTransportPlugin obfs2,obfs3 exec /usr/bin/obfsproxy managed
ClientTransportPlugin obfs4 exec /usr/bin/obfs4proxy
Can be combined into one line like this:
ClientTransportPlugin obfs3,obfs4 /usr/bin/obfs4proxy
Haven’t tested it, but canonizing ironize seems very knowledgeable.