problems update or hacked whonix-qubes 4.0

whonixbest · April 10, 2018, 6:34pm

i was hacked? what to do?

0brand · April 10, 2018, 9:58pm

Hi whonixbest

This is something that happens from time to time. The good news is, this doesn’t look like you’ve been hacked. Quite often this is something that resolves itself in time.

Taken from wiki Security_Guide

It could be a temporary Tor exit relay or server failure that should resolve itself. Check if the network connection is functional by changing the Tor circuit and trying again. Running whonixcheck might also help to diagnose the problem.

https://whonix.org/wiki/Security_Guide#Updates

Other considerations:

Have you successfully updated your R4.0 Whonix templates prior to this?
Did you change any network settings recently?

Patrick · April 12, 2018, 2:13pm

Frequently Asked Questions - Whonix ™ FAQ

whonixbest · April 20, 2018, 7:57pm

thanks for the help! now a new problem. can not update fedora 26 screen

0brand · April 20, 2018, 9:53pm

Hi whonixbest

Since this issue in not Whonix specific you can use the Qubes mailing list to ask for help with updating Qubes (Fedora) templates.

If you do ask for help on the Qubes mailing list it may be helpful to:

translate the text in the Fedora terminal to english
mention if this is a new problem ( have you successfully updated this template previously?)
if you changed any network settings

Also, if you are updating over Tor? You may want to wait a while and try again.

torjunkie · April 21, 2018, 4:00am

Known issue:

Fedora templates do not update the Qubes' repos through Whonix update proxy (R4.0-RC5) : " Error: Failed to synchronize cache for repo 'qubes-vm-r4.0-current' " · Issue #3737 · QubesOS/qubes-issues · GitHub

Fix:

Modify /etc/yum.repos.d/qubes-r4.repo to use https instead of http.

whonixbest · April 21, 2018, 1:32pm

thanks for the tips! the problem decided. There is one more problem. on the picture, the arrow shows that it requires an update. how to update it? as well as the rest template or was peculiar?

Screenshot_2018-04-21_16-24-39

0brand · April 21, 2018, 9:55pm

Hi whonixbest

This following wiki page was written for Qubes 3.2 .

If you are using Qubes 4.0, you can disregard setting a NetVM for your template VMs. (Github Qubes issue 1854)

There is also an issue with qubes-manager showing the pending updates available icon (green arrow) when no updates are available. If you have already updated Whonix templates, its most likely due to this bug.

https://github.com/QubesOS/qubes-issues/issues/3743

https://github.com/QubesOS/qubes-issues/issues/2009

whonixbest · May 10, 2018, 5:15pm

I do not understand how to update the tor browser in whonix-vm-dvm?

0brand · May 10, 2018, 10:00pm

Hi whonixbest

Updating Tor Browser should be fairly simple

Edited as per Patrick’s followup post

~~1. In dom0, run Tor Browser in whonix-vm-dvm~~

2. In the upper left hand corner of Tor Browser, right-click the green onion.

3. Right-click on Check for Tor Browser updates

~~4. When updates are complete, restart Tor Browser when prompted~~

~~5. In dom0, shutdown whonix-vm-dvm~~

In dom0, run whonix-vm-dvm konsole

qvm-run whonix-vm-dvm konsole
In whonix-vm-dvm konsole, update Tor Browser

update-torbrowser

Patrick · May 10, 2018, 10:06pm

Don’t start Tor Browser in TemplateVM. This is at least what we write here:

Tor Browser Advanced Topics

Open to reconsider.

Use Tor Browser Essentials

This is not yet well thought through / let alone documented. TODO: development

whonixbest · May 11, 2018, 7:12am

Thank you very much, you helped me. I corrected everything!

awokd · May 11, 2018, 10:12am

Eventually, the (Anondist) Tor Browser package will be updated within the
template with regular updates, right?

whonixbest · May 12, 2018, 6:30pm

I update Fedor 26 and that’s what’s on the screen, what does it mean? all OK? 111111

Patrick · May 13, 2018, 6:07pm

Note:
Frequently Asked Questions - Whonix ™ FAQ

Otherwise, this is up to Qubes support as per:
Free Support for Whonix ™

whonixbest · May 23, 2018, 8:20am

OMG!!! whot this?

torjunkie · May 23, 2018, 9:06am

1st and 3rd pics are not unusual. You often see similar output with Qubes package updates.

2nd pic is a known issue that is fixed in Whonix 14. See:

sys-whonix launch error · Issue #3469 · QubesOS/qubes-issues · GitHub

It is not fatal to anonymity. If you run:

systemctl status systemd-timesyncd.service

You will see the process is dead →

user@host:~$ systemctl status systemd-timesyncd.service
● systemd-timesyncd.service - Network Time Synchronization
Loaded: loaded (/lib/systemd/system/systemd-timesyncd.service; enabled)
Drop-In: /lib/systemd/system/systemd-timesyncd.service.d
└─30_qubes.conf, 40_sdwdate.conf
Active: inactive (dead)
Docs: man:systemd-timesyncd.service(8)

@Patrick that error message link above to “Whonix ™ Networking Implementation Documentation” is broken because it doesn’t exist on that wiki page.

PS Jessie is EOL as of 17 June, so I guess we don’t have long to wait for Whonix 14 →

Debian -- Security Information -- DSA-4205-1

Your earlier pics re: Fedora 26 updates and checksums not matching is also not uncommon. As to why - I’m guessing it relates to issues Qubes have had recently re: changing Fedora repos to https, or possibly network attackers at large screwing with downloads over Tor (although I don’t see how it can succeed as an attack vector, if gpgcheck=1 is applied, which it is by default).

whonixbest · June 26, 2018, 1:25pm

I read everything, but did not understand how to solve the problem. Help!

Patrick · June 26, 2018, 2:37pm

Please use the search function of the forums or search engines to search for error messages. Very likely you’re not the only one affected and very likely has been discuses beforehand. Like in this case. Example search term:

unexpected result by timedatectl

torjunkie · June 27, 2018, 9:17am

Summary: harmless and fixed in Whonix 14