Today’s Tor Browser 11 stable release bundles tor v0.4.6.8 (which finally disables v2 onions).
But Whonix Gateway 16 is still at tor v0.4.5.x (which supports v2 onions). So it’s currently trivial to fingerprint that Tor Browser 11 is running on Whonix Workstation.
November 9, 2021, 8:01pm
Thanks for the report. Seems unfortunately required. Will work on that.
Tor Version, Package source (Debian, backports, Tor Project package repository), Config Files, Miscellaneous
November 9, 2021, 9:23pm
tor package version
uploaded to Whonix
testers repository just now.
 Other architectures such as
ppc64el are unfortunately unavailable from
Existing Ports of and Porting Whonix ™ to other Architectures.
That’s a very good point.
The vast majority of TB users just rely on the TB bundle, which pretty well always has the latest Tor stable version.
Considering Whonix, Tails etc. probably constitute less than 1% of the population, this will remain an ongoing fingerprinting risk if not addressed i.e. the platform should revert to the previous arrangement and forget Debian’s snail pace releases.
I can’t pretend I’m disappointed
Tor 0.4.6.8 running smoothly in Whonix 16.
November 13, 2021, 10:13pm
Now in stable repository.