Seccomp not working

Support
1

When I use this Security Guide - Whonix
At booting of Whonix Gateway it says TCP connection failed and when is finally booted it and I start arm it’s not connected to Tor.
Using Whonix 13
anon- info

INFO: /etc/apt/sources.list.d/torproject.list uncommented lines:
deb http://sdscoq7snqtznauu.onion/torproject.org jessie main
INFO: version of the ‘tor’ package: 0.3.2.9-1~d80.jessie+1

2

Hi Burun1

If you’re not using seccomp can Whonix connect to Tor?

Can you please run the following command in Whonix-Gateway with both with seccomp configured in your torrc and without.

whonixcheck

Could you also run this command in Whonix-Gateway with seccomp configured in your torrc.

sudo -u debian-tor tor --verify-config

Please post the output from the commands

1 Like
3

If I’m not using seccomp Whonix can connect to Tor.
without seccomp

[INFO] [whonixcheck] SocksPort Test: Testing Tor's SocksPort...
[INFO] [whonixcheck] SocksPort Test Result: Connected to Tor. IP: ***.***.***.***
[INFO] [whonixcheck] Whonix News Download: Checking for Whonix news and updates...
[INFO] [whonixcheck] Debian Package Update Check: Checking for software updates via apt-get... ( Documentation: https://www.whonix.org/wiki/Update )

With seccomp I get same error for whonixcheck and verify-config
Tor reports:
[notice] Tor 0.3.2.9 (git-64a719dd25a21acb) running on Linux with Libevent 2.0.21-stable, OpenSSL 1.0.1t, Zlib 1.2.8, Liblzma 5.1.0alpha, and Libzstd N/A.
[notice] Tor can’t help you if you use it wrong! Learn how to be safe at Tor Project | Download
[notice] Read configuration file “/etc/tor/torrc”.
[warn] Managed proxies are not compatible with Sandbox mode.(ClientTransportPlugin line was “obfs4 exec /usr/bin/obfs4proxy”)
[warn] Failed to parse/validate config: Invalid client transport line. See logs for details.
[err] Reading config failed–see warnings above.

seccomp is not compatible with obfs4proxy ? Is there any bridges that are compatible with Sandbox Mode ?

4

seccomp is not compatible with Pluggable Transports (obfs4, meek, Snowflake etc.)

You can check out the list and do a little research if you’d like.

https://trac.torproject.org/projects/tor/wiki/doc/PluggableTransports/list