I know that javascript is bad, but so much of the Internet has it. I want to know if using Tor Browser in Whonix KVM protects against font fingerprinting.
I have used Tor Browser inside whonix kvm and outside and browserleaks dot com gives different glyph hashes for inside versus outside (with the same level of secuirty, medium).
Has anyone tested this? Do the KVM settings out of the box standardize things enough to avoid this unique hash of unique users?
To my awareness, Whonix doesn’t do any special hardening of font glyphs in Tor Browser beyond what Tor Browser already does. In theory, everyone using the same version of Whonix should have the same fonts installed unless they have explicitly chosen to install new fonts, but beyond that, it’s entirely up to Tor Browser to defend from font fingerprinting. You might try asking on Tor’s forums about the fingerprint difference.