Tor integration in Whonix

Patrick · May 25, 2022, 2:12pm

tor_0.4.7.7-1~d11.bullseye+1_amd64.deb

Is now in the testers repository.

Patrick · June 5, 2022, 11:27am

Now in stable repository.

Patrick · June 18, 2022, 8:53am

Patrick · June 18, 2022, 8:56am

Today, we release 0.4.7.8 fixing several issues including a High severity security issue only affecting the 0.4.7.x series. You can track this issue with TROVE-2022-001 and CVE-2021-38385.

Please note that at the moment, the full details of the security issue are not yet public as we are waiting on the OS distribution packages to be updated and the network to be on its upgrade path.

This security issue is not affecting the safety of the tor host system itself and is categorized as a Denial of Service thus affecting performance and possibly anonymity.

We STRONGLY recommend anyone on an earlier version to upgrade as soon as possible to tor 0.4.7.8 (this release). OS packages are on the way!

Patrick · June 18, 2022, 8:58am

tor 0.4.7.8 not yet available from deb.torproject.org - refer to Tor integration in Whonix - #19 by Patrick on how to check that has changed. Once available, I upload to deb.whonix.org.

Patrick · June 20, 2022, 11:41am

tor 0.4.7.8 is now in all repositories.

Patrick · August 16, 2022, 11:23am

Patrick · August 16, 2022, 11:26am

Prerequisite knowledge: Reading above linked announcements. Therefore skipping 0.4.7.9 (introduced new urgency bug) and waiting for 0.4.7.10.

(Tor integration in Whonix - #19 by Patrick)

Patrick · August 27, 2022, 11:27am

tor 0.4.7.10 is now in the testers repository.

Patrick · October 15, 2022, 9:51am

Patrick · November 23, 2022, 5:53am

This is in all repositories for a while now. (Since Whonix 16.0.8.2 - for VirtualBox - Point Release!)

Patrick · November 23, 2022, 5:56am

[tor-announce] Tor stable release 0.4.7.11

This is in the testers repository since a few days.

Patrick · November 28, 2022, 2:22pm

This is now in the stable repository.

godofwar · December 26, 2022, 12:42pm

do i need to reinstall whonix images or can i just run apt update ?

Patrick · December 27, 2022, 9:12am

See updating documentation:

(Whonix is based on Kicksecure.)

Patrick · January 15, 2023, 9:55am

[tor-announce] Tor stable release 0.4.5.16 and 0.4.7.13

Patrick · January 15, 2023, 9:56am

Above is now in the stable-proposed-updates and testers repository.

Patrick · January 15, 2023, 10:02am

In Debian 12 bookworm, Whonix can switch

from: the currently used “Versions are downloaded from deb.torproject.org, verified to work, and then migrated to deb.whonix.org”
to: “Use the Tor LTS version from the official Debian package repository: packages.debian.org.”

This is because while The Tor Project is working on Arti, no major new releases for the old C programming language based Tor package are to be expected.

Patrick · January 24, 2023, 11:23am

This is now in the stable repository.

Patrick · January 24, 2023, 1:08pm

[FAILED] to start Anonymizing overlay network for TCP - Tor fails to start a few times before succeeding to start