Just wanted to report things that i struggle with now, system is totally up to date, and i really regret doing updates almost immediately i’m doing them. Few of things here could be taken as a security risk but this is only my preference to install this packages and yes, i know the implications of it.
Most of these things ran smoothly in whonix 0.5.6 and with some minor glitches in early resales of Whonix 7, now it’s UNBEARABLE.
- Manually update TBB
It’s fine, it’s pretty simple and it worked fine until my last update. Now TBB throws that it’s not connected to TOR, but checking ip on ip-check.org or any other site like this will give TOR node ip. And it’s not caused by not indexed node.
On separate machine i install additional firefox (not iceweasel) from mozilla, i used it only for browsing certain websites and with conjunctions with proxies. I tend to throw it in to /opt/firefox/firefox directory and run with -no-remote option. It also worked fine until today … now FF opens but, guess what! It doesn’t work anymore, it doesn’t load any page. And, oh, iceweasel also doesn’t want to install now.
For few things i’ve needed another VM with wine. So i ran simple sudo apt-get wine to get latest version, it’s pretty minor bug, but now wine changes working directory, it’s different than in previous versions of whonix. Which cause some of the .exe’s to fail.
I don’t know what is causing this, but tor is Just-So-Unbearable-Slow, it goes to the point where you actually want to throw the pc out of the window because startpage.com is loading 3-4 minutes when two Whonix Workstations are opened. With one you may have a little luck and browse internet for few minutes like on normal bandwidth. I’ve assigned different octet number in /etc/network/interfaces … it did not helped.
Arm is freakin’ crazy with his messages, half of them is written like you’ve just been #$@!@# in the ass by NSA and FBI. I honestly wonder when it will start to throw “Please, Tomas*, power off your Whonix Workstation, we see everything - and - yes, your Tor connection is out for 4 days so you just emailed this threats to B.O from your personal ip”
My favorite is about traffic manipulation - this only means poor network connectivity
But there are also ones about unencrypted protocol, there is one with Creating non-loopback interface and allowing to act as a proxy, which is caused by … by excluding node by country code.
There’s also problems with apt-get which is documented. There’s kgpg which is pretty useless and mostly throw errors at You.
All of this is written out of my head.
There’s a lot more, the fact is that every update is usually messing up whole system config. How can it be reliable? I know things i’ve mentioned here are mostly user-specific, but, god … all of them used to work just fine in previous versions now it’s mostly a nightmare and 2 days after every bigger update are spent on trying to repair the damage. Honestly, 0.5.6 had my full trust, it ran like a charm, i’ve felt secure in that environment. Now i don’t, everything seems like it’s glued together with some office tape, i know that 7 introduced a lot of new things and few upgrades in security area, but it seems like system i cannot trust anymore. And because we talk about anonymity trust is pretty much important.
*Tomas is not my real name : )