Qubes-Whonix 14.0.0.6.9 TemplateVMs for R3.2 and R4--Testers Wanted!

Development
3

Hi torjunkie

Thanks for the feedback and polishing up the page! It looks great! I wasn’t really sure how to format a blog post and what syntax to use. Now I know. :wink: - I’ll make the edits to the doc a little later on today.

BTW I really appreciate all the help and guidance you’ve given!!! One of the things that sets the Whonix project apart from others is the willingness of the core community members to always find time to educate less experienced members like myself. Not sure how you find the time but I have to say YOU ALL ROCK!!

One other thing. I saw R-4 specific instructions to install Whonix VMs and configure sys-whonix and anon-whonix using salt. I was wondering if this could/should be use in the upgrade to Whonix 14 in the blog post . I haven’t tried using this salt syntax and was thinking it might make the instructions more complicated if it was added?

https://whonix.org/wiki/Dev/Qubes#salt

3 Likes
4

I was writing the draft in markdown syntax and then converting it to html by using some random online convertors, like this one: Markdown to HTML Converter - Markdown Editor - Online - Browserling Web Developer Tools

And then I would do some adjustment using the preview feature on the blog before posting it.

This probably will not be the best way, but hope it is kind of helpful. :slight_smile:

Thank you for spending time preparing the draft, @0brand ! Great job!

3 Likes
5

The original draft was edited to mirror your suggestions. Thanks again!

1 Like
6

Blog entry suggestions removed to shorten thread.

1 Like
7

Done.

3 Likes
8

There r some numerous issues from first look up:- (the test done inside Qubes 3.2)

  • Cant connect to Tor due to this issue:

whonixbug1
whonixbug1.png1190×512 121 KB

  • Graphical issue inside Dolphine (maybe xfce nautilus interruption?)

whonixbug2
whonixbug2.png1196×1057 62.3 KB

whonixbug4
whonixbug4.png1321×345 13.1 KB

  • Move/Copy to other VMs is not there

whonixbug3
whonixbug3.png1488×341 53.9 KB

1 Like
9

Thank you for testing, @nurmagoz !

Could you please copy and past the output of the following two commands executed in the Whonix-gateway:

sudo --non-interactive /usr/bin/tor --defaults-torrc /usr/share/tor/tor-service-defaults-torrc -f /etc/tor/torrc --RunAsDaemon 0 --verify-config

cat /etc/tor/torrc

1 Like
10

I have the same issue in Dolphin. I then installed nautilus and the options are available in nautilus.

1 Like
11

whonixbug1
whonixbug11476×524 108 KB

i c , well thats a bug by itself. we cant use xfce stuff mixed with kde because that will expand the surface of attack + its not tested before.

1 Like
12
  • Remove the Dead project Ricochet = 2 years no voice

The latest version is 1.1.4 (November 5, 2016)

  • Remove KDE-Help inside GW and WS as it might request suspicious requests which could leak potential data
1 Like
13

mirrors of onion whonix v2 or v3 no hope to connect to them, they r down or so missed.

1 Like
14

Are we supposed to add reports in this thread?
On Qubes 4.0 rc5, updated from current-testing, after removing sys-whonix, and installing the new templates, sudo qubesctl state.highstate completes, but does not create sys-whonix etc , as is (I assume) the intention.
At least, not for me.

3 Likes
15

Step 1: Either rename sys-whonix and anon-whonix or remove both VMs.

Two points:

  1. If you use sys-whonix as default netvm, you will first have to change that for all downstream qubes. (In 4.0, changing the default netvm does not seem to change this for all dependent qubes.)
  2. If you use sys-whonix as your updateVM and rely on it for anonymity, then deleting it first and then downloading the new templates will download on clearnet, which is probably not what you want.

I realise this is a draft: how about downloading the templates, then deleting sys-whonix and recreating it? (I haven’t tried this.) I suspect there will be a conflict on template names, so the answer would be:
Clone existing whonix-gw to whonix-gw-13
Shutdown sys-whonix and change template to whonix-gw-13.
Restart sys-whonix
Reinstall Qubes-Whonix templates
etc etc

4 Likes
16

Damn - good points unman. Normally I test instructions first to make sure they make sense and work properly. @0brand - happy to fix?

3 Likes
17

I see, the permission on Tor data directory seems to be the problem.

Could you please check if there is any different between the following permissions and yours:

user@host:~$ sudo ls -ld /var/lib/tor
drwx--S--- 2 debian-tor debian-tor 4096 Mar 23 15:33 /var/lib/tor

If there is any different, try fixing it with:

user@host:~$ sudo /usr/bin/install -Z -m 02700 -o debian-tor -g debian-tor -d /var/lib/tor

And then restart the Tor.

If there is still any problem, could you please report the output of this again:

sudo --non-interactive /usr/bin/tor --defaults-torrc /usr/share/tor/tor-service-defaults-torrc -f /etc/tor/torrc --RunAsDaemon 0 --verify-config

Thank you!

2 Likes
18

whonixbug
whonixbug.png1847×448 175 KB

done everything = still the same

1 Like
19

The owner and group was pulse and sdwate which have been corrected to debian-tor and debian-tor . Tor says: Configuration was valid.

I think Tor should run well now.

For restarting the Tor, you can try either using the desktop shortcut or:
user@host:~$ systemctl restart tor@default.service

To verify tor really works:

user@host:~$ systemctl status tor@default.service 
● tor@default.service - Anonymizing overlay network for TCP
   Loaded: loaded (/lib/systemd/system/tor@default.service; static; vendor preset: 
  Drop-In: /lib/systemd/system/tor@default.service.d
           └─30_qubes.conf, 40_obfs4proxy-workaround.conf, 40_qubes.conf, 50_contro
   Active: active (running) since Fri 2018-03-23 16:51:17 UTC; 5s ago              
  Process: 5675 ExecStartPost=/bin/kill -HUP ${MAINPID} (code=exited, status=0/SUCC
  Process: 5670 ExecStartPre=/usr/bin/tor --defaults-torrc /usr/share/tor/tor-servi
  Process: 5665 ExecStartPre=/usr/bin/install -Z -m 02755 -o debian-tor -g debian-t
 Main PID: 5672 (tor)
    Tasks: 1 (limit: 4915)
   CGroup: /system.slice/system-tor.slice/tor@default.service
           └─5672 /usr/bin/tor --defaults-torrc /usr/share/tor/tor-service-defaults

I usually also use arm to see the established circuits for verification, too.

1 Like
20

I am curious what could be the cause of this. Did you anyone else encounter the same issue?

1 Like
21

BTW, I personally sometimes prefer posting text than posting pictures because:

  1. easy for searching so that the error discussion may be helpful for people in the future
  2. easy to quote, so that we can have a better context in discussion
  3. reveal less info: info like time or metadata in the picture can be obscured or avoided.
1 Like
22

still not working

whonixbug
whonixbug869×319 46.8 KB

whonixbug1
whonixbug11281×603 122 KB

do think i have a choice ? maybe u forgot that there is no way to shift text or anything from whonix to any other place. so im taking screenshots for the problems and then move them from Qubes to other VM. sorry if thats bothers u but no way to solve for now unless this going to be fixed in the next release or doing a working it.

2 Likes