Whonix should bundle less pre-installed programs (minimal images)

Patrick · August 16, 2025, 4:39pm

Just work for technical users only.

The problem is, that this is based on assumptions, philosophical arguments. Please let me know if I am presumptions, but I think this not based on usability design or operating system maintenance / support experience.

Minimal images increase support requests even more. Examples…

Monero GUI used to be installed by default. Removal caused complaints, see: Monero Integration in Whonix - #72 by Patrick

Here are more complaints about this and feature requests to re-install it: Search results for 'monero in:title' - Whonix Forum

See also

this post by unman: Remove non-essential packages from debian-12-minimal template · Issue #8980 · QubesOS/qubes-issues · GitHub
- Given the support questions that MINIMAL templates
  throw up, despite the prominent health warning in the docs, providing
  such micro templates would just create yet more support issues.
Minimal templates | Qubes OS
this post by adw: Why Use Minimal Templates? - #15 by adw - General Discussion - Qubes OS Forum

One already gets flagged for lesser “offenses” such as this:
NSA: Linux Journal is an "extremist forum" and its readers get flagged for extra surveillance | Linux Journal

No matter how small the images are. The traffic volume for initial download and updates would always be a give away.

If someone can “look inside” (fingerprint) Tor traffic and guess what’s going on, then that’s a Tor issue and needs to be fixed in Tor.

Related: cover traffic

How does a clearnet user learn about Tor, Tor Browser, Whonix (or Tails) without already getting flagged for looking up the forbidden fruit? It’s possible to construct a hypothetical case where one evades all of this but not a realistic one to base a distribution on.

It’s difficult to hide that one is trying to hide. See also: Hide Tor use from the Internet Service Provider

Also Non-Existing Network Fingerprint Research and Implementation.

Connecting to whonix.org doesn’t allow for other conclusions no matter the size of any downloads.

Not happening. And would complicate reproducible builds.

Reducing without having certainty of having accomplished anything makes me think this is not worth prioritizing it as a development goal.

It’s arguing against this:
Security versus Usability

For VirtualBox, KVM, there’s 2 flavors. GUI and CLI. Each has a target audience. CLI is more minimalist. GUI comes with more usability by default. There’s nothing in the middle.

We cannot expand to maintain more and more flavors. We don’t have plans for a flavor minimalist GUI only.

How would you know that?