Test at https://www.doileak.com/ not all green for Whonix

The results at https://ipleak.net/ aren’t all green for Whonix. Notably the OS fingerprint is Linux’s. Isn’t this a problem, how can it be fixed? The torrent test (http) doesn’t work, but it does at https://torguard.net/checkmytorrentipaddress.php

EDIT: I made a mistake, the results I wanted to report are from https://www.doileak.com/ and what I’ve written applies to this site.

See:

See my edit of first post.
I understand that support isn’t possible for everything and I’m just putting this info out there.

Hi andwhatnot

Related post:

https://forums.whonix.org/t/how-to-hide-qubes-kernel-name-from-browser/

Some testing reveals that sites which don’t just check the user agent, but do more sophisticated fingerprinting all recognize the OS as GNU/Linux. See [1] [2] [3]. Fingerprinting is also successful in Tor Browser on other platforms. I’m not sure how they do it, but it may have something to do with TCP/IP stack fingerprinting. At least [1] fails to find the real OS only with javascript.
So Tor Browser actually fails to hide the OS! Now I’m not sure anymore if that’s a design goal. Does Whonix aim or do anything to protect itself against being recognized as GNU/Linux? Tor Browser is responsible for these test results, so could Whonix even change anything?

As for torrent testing I’ve found some perfectly healthy torrents that don’t even start in Whonix. Is this result to be expected, or is just me who doesn’t know what to configure? I’m just trying to test, I only want to know what results I should expect. At best will some (maybe less popular) torrents just not work in Whonix, is this normal?

andwhatnot:

Does Whonix aim or do anything to protect itself against being recognized as GNU/Linux?> Tor Browser is responsible for these test results, so could Whonix
even change anything?

In theory lots of things are possible. In practice we are far from
having the resources for that.

As for torrent testing I’ve found some perfectly healthy torrents that don’t even start in Whonix. Is this result to be expected, or is just me who doesn’t know what to configure? I’m just trying to test, I only want to know what results I should expect.

If these depend on UDP, then failing is expected, see:

Tor Documentation for Whonix Users

I did a test with a Windows (VM) machine, using latest version of Tor Browser, I was also detected as Linux. Could it be related to the fact that the exit node is probably a Linux machine? To be honest, the Windows VM machine is run on a Linux host… I don’t have a real Windows machine to test with at the moment.

1 Like

[tor-talk] Fingerprinting issue in Tor Browser for macOS :

The three supported platforms for
Tor Browser are distinguishable by looking at a user’s available fonts.
This is current a compromise between fingerprintability and usability.
Please see the Tor Browser Design document for additional details [0].
However, note this isn’t the only method for identifying the underlying
platform.

[0]
Section 4.6, Subsection “Specific Fingerprinting Defenses in the Tor
Browser”, Item 6. Fonts
The Design and Implementation of the Tor Browser [DRAFT]

1 Like