Long Wiki Edits Thread


possible. there’s been a number of issues with various email providers recently. also, per @TNT_BOM_BOM’s post, have experimented with danwin1210 in past and it worked for basic purposes much like vfemail.



would it be preferable to add a backports repo to whonix for
this purpose?

Yes. We have a wiki template Install_Backports.


Thanks for doing all this. Tunnel pages are the most in need of edits and updating & cause constant forum requests (for years).


I am unable to upload image files in any of the three different areas I found. I get an error about not having permission to create new pages but I am not trying to create a new page. I have made macOS VirtualBox 6 instructions for Whonix (six PNG files ~80 KB each) and would like to put them in the macOS wiki and replace the Windows 7 graphics.


Account required. Account name?

License of images?

https://github.com/Whonix/Whonix/blob/master/CONTRIBUTING.md read and accepted?



|description=Use Tor Browser without Tor for enhanced security and privacy (tracking protections) compared with other browsers.

This could be understood as “without Tor leads to enhanced security and privacy” which would be BS.


|description=Security Hardened Browser - Use Tor Browser for Enhanced Security, over Clearnet (Non-Anonymously).

Shouldn’t mention “better privacy” perhaps since we have to disable private browsing to make use of some comfortability features such as selectively storing some login cookie or at least password?

Any better wording suggestions?

I don’t like the hyperlink numerous enhancements. Do you know a (more or less / updated) list of security enhancements by Tor Browser? @HulaHoop



Unfortunately nothing this detailed. The best option is to do a git diff between the TBB patch and upstream to see enhancements:




Onionizing repositories will need to be updated when these patches hit stable. Mostly minor edits.


VPN before Tor (Separate VPN-Gateway) has been updated.



Wasn’t very clear on this. Fixed?



Without a failed closed configuration when VPN connection breaks down all traffic originating from the Whonix-Workstation AppVM (commonly called <code>anon-whonix</code>) would <u>only</u> be forced through Tor.

When a failed closed configuration is used and the VPN connection breaks down, all traffic originating from the Whonix-Workstation AppVM (commonly called <code>anon-whonix</code>) would <u>only</u> be forced through Tor.

Seems inverted logic.
Fact: with fail closed mechanism -> no leaks | without fail closed mechanism -> leaks

Currently it’s saying the opposite after the edit.

Am I right or misreading this?




90% sure this is no longer required since Whonix 14.


Updates onionizing repositories (Whonix clearnet repos by default). Also updates to Qubes onionizing instructions.


Qubes references.


For legal reasons, it’s now being made clear that Whonix is free in price. Hence to all pages that matter a green link saying FREE was added.

Using this template:

The placing of the notice and wording can be adjusted if someone wants to add enhancements.

New users learning about Whonix don’t really obviously/easily that Whonix is free in price and/or Libre Software / Open Source anyhow at the moment?



“Note that the extended output of pwgen (pre-installed from Whonix 14 onward) can be used for secure passwords.” -> This directly contradicts the advice on the Surfing, Posting, Blogging page. So one of these pages is incorrect.



there should be a wiki on whonix news and version check as right now the wiki for hardening the whonixcheck program simply links to a download page for the whole os additionally, there should be wikis explaining the advantages and drawbacks of hardening certain whonix operations because as it stands right now it’s unclear what those are



Absolutely not. The output of pwgen is not as random as something like diceware.

EDIT: Now corrected


For people on Windows, yeah they will not be familiar with free software even is so it’s good to emphasize that their wallet will stay untouched.

What does this even mean?


In https://www.whonix.org/wiki/Chat, the following

flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo

should be changed to

flatpak remote-add --if-not-exists flathub https://dl.flathub.org/repo/flathub.flatpakrepo

Or the following error appears when trying to install qTox:

GPG signatures found, but none are in trusted keyring

per https://github.com/flatpak/flatpak/issues/1450