How can I create multiples of Tor Browser (AnonDist)? The Tor Browser Downloader (AnonDist) only offers an upgrade.
I assume using the Tor Browser (AnonDist) that gets installed by Tor Browser Downloader (AnonDist) is better than using a manually downloaded Tor Browser from https://torproject.org. Please correct me if I’m wrong.
BTW: what is AnonDist supposed to mean, why not just replace it with Whonix?
Does not using multiple Tor Browsers at the same time simplify things so the following steps from the link above can be omitted:
Use a different SocksPort
Change/Remove Proxy Settings
I would then only want to use different directories for the different browers.
Advanced Security Guide - Whonix says to look at Tor Browser Essentials which is in a section called unsafe tor browsers habits. If I ignore that I find in a single line titled ‘Proxy Settings’ one broken link, which I assume should point to Tor Browser Advanced Topics. This page isn’t a guide for configuring socks ports, but it says that stream isolation will break when removing or changing proxy settings. Not what I’m looking for I guess?
Back to the firstmost link which says that Tor Browser must be extracted into a different directory and a different SocksPort must be used. Then mentioned are SocksPorts ‘without IsolateDestAddr’ and ‘without IsolateDestPort’. SocksPorts aren’t numbers? Given next are some numbers: 9153 to 9159. Lastly noted is Stream Isolation where I can see that Tor Browser is configured to use port 9150. Below at ‘How to mitigate identity correlation’ are again mentioned ‘without IsolateDestAddr’ and ‘without IsolateDestPort’. It says unless you know better, you’re usually better off not using them. Whonix-Gateway is also named, so now I’m not even sure in which VM I should be making changes anymore. It also says to look at the Tor manual where I learn IsolateDestAddr and IsolateDestPort are options for not sharing circuits. Further below on this page are notes on how to deactivate stream isolation. From this point on I don’t know where to look, much less how to proceed.
If Tor Browser must be downloaded manually for using more than one browser then is there a purpose to Tor Browser Downloader (AnonDist) beyond downloading Tor Browser the first time and updating that same one browser?
Not sure that’s still working now that Tor Browser is using SocksSocket.
In future Tor Browser will no longer have TCP, meaning SocksSocket only.
So multiple Tor Browser within the same VM… Doing it right (keeping SocksSocket) is currently undocumented. Would require creating another SocksSocket redirection (anon-gw-disable-stacked-tor) and changing the environment variable using a small Tor Browser startup script.
Undocumented for Whonix 13 or 14 or both? Is this SocksSocket a longterm Tor Browser thing, so whatever platform Tor Browser is run on, a safe multiple Tor browser setup isn’t currently viable and won’t be in the future?
Please confirm, because if that’s the case then the only safe option now is using multiple workstations or using separately maintained VM snapshots in one workstation. Which of the two would be recommended for greater simplicity of use?
If you were planning on running more than one Tor Browser at the same time to seperate your conceptual identities. Otherwise, running at least 2 Whonix-Workstations simultaneously would be needed ( to seperate identities). No?
Based on the information you’ve given, using multiple Workstations is recommended for simplicity
I think the problem more broadly is insisting on using multiple Tor Browsers at the same time, which mainly seems like a gimmick and risking confusion about what activity should be done in which browser.
How often is this really necessary?
The wiki also talks about preferably doing one single instance of anonymous (hopefully) activity, shutting down the Workstation (anon-whonix AppVM), rotating circuits and engaging in the next bout of anonymous activity from the Workstation after a random period of time has elapsed (or even rebooting the gateway entirely beforehand). Even better if one is not running multiple tabs within a single Tor Browser session.
The wiki also talks about having clean snapshots (or AppVMs) for activities & creating special snapshots (or AppVMs) that are only used for special activities e.g. onionshare etc.
What comes out in the docs consistently is that simplicity is next to godliness for maintaining security/anonymity in general and it is user practices/preferences outside of that paradigm that lead to disasters.
That said, users should not be artificially constrained in their choices. Also, those instructions are confusing as it stands in the Tor Browser entry and there are broken/circular links there.
If entropy’s stuff is working nicely, then it would be ideal to use his snapshot in the docs, and fix the steps, because the wiki is currently inadequate in describing this. Nudge, nudge, wink wink @0brand (although over-worked, underpaid, and underappreciated already)