Delivery-Date: Mon, 16 Mar 2015 18:55:28 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,T_DKIM_INVALID,T_RP_MATCHES_RCVD,UNPARSEABLE_RELAY,
	URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 46B1D1E0CFD
	for <archiver@seul.org>; Mon, 16 Mar 2015 18:55:26 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 5E3EA332D7;
	Mon, 16 Mar 2015 22:55:23 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id D94BA332CC
 for <tor-talk@lists.torproject.org>; Mon, 16 Mar 2015 22:55:20 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id qcqEtyAc_cgN for <tor-talk@lists.torproject.org>;
 Mon, 16 Mar 2015 22:55:20 +0000 (UTC)
Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "*.riseup.net",
 Issuer "COMODO RSA Domain Validation Secure Server CA" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id A8123332C5
 for <tor-talk@lists.torproject.org>; Mon, 16 Mar 2015 22:55:20 +0000 (UTC)
Received: from berryeater.riseup.net (berryeater-pn.riseup.net [10.0.1.120])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (Client CN "*.riseup.net",
 Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK))
 by mx1.riseup.net (Postfix) with ESMTPS id D2ACA411E7
 for <tor-talk@lists.torproject.org>; Mon, 16 Mar 2015 22:55:17 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak;
 t=1426546517; bh=tFS9WKSNKA8onaWv1AUv44NTkQjnOP8IZ1sSO7ek50E=;
 h=Date:From:To:Subject:From;
 b=VBmIeMA0AtgS0yADmZJYurHvc52BrGNSishP6UJqBjs1gN1kvcKxgriaIsGbhcdEk
 fxsL8bY6uvoprgK36d9ed/rjVZggB7ieVFkfBQmn5Od561g50QV+NHAfg/PXgvrciM
 R4xecyvJsuEGa0a5A8Na1UxnpwZ6VexfDHKclPcs=
Received: from [127.0.0.1] (localhost [127.0.0.1])
 (Authenticated sender: whonixqubes) with ESMTPSA id B3B2542798
MIME-Version: 1.0
Date: Mon, 16 Mar 2015 22:55:17 +0000
From: WhonixQubes <whonixqubes@riseup.net>
To: tor-talk@lists.torproject.org
Message-ID: <9805a0aa94ef61fd9f544c257857e521@riseup.net>
X-Sender: whonixqubes@riseup.net
User-Agent: Riseup mail
X-Virus-Scanned: clamav-milter 0.98.6 at mx1
X-Virus-Status: Clean
Subject: [tor-talk] New Announcement: Major Updates for Qubes + Whonix!
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

Hello everyone, WhonixQubes here. :)

I wanted to finally update you on some major updates with the Qubes + 
Whonix platform that have been accomplished over the past few months.



TLDR Summary:


Qubes + Whonix is the seamless combination of Qubes OS and Whonix OS for 
best-in-class Security + Anonymity.

The Qubes + Whonix port has been fundamentally upgraded to a native 
seamless architecture (ProxyVM + AppVM).

Qubes + Whonix is now easy to install (Install Guide available on the 
wiki) and most all of the past usability issues have been fixed.

We now have upstream integration into the Qubes codebase and templates 
repository.

We now have newly updated documentation guides on our wiki with more to 
come soon.

Based on Qubes OS R2 and Whonix OS 9.6, the current newly released 
versions of the new Qubes + Whonix RPM templates is 2.1.8 and DEB 
updates package is 9.6.2.


Qubes + Whonix Primary Sources:

- Wiki:    https://www.whonix.org/wiki/Qubes
- Forum:   https://www.whonix.org/forum/Qubes
- Blog:    https://www.whonix.org/blog/Qubes
- Tracker: https://www.whonix.org/tracker/Qubes




Full Version:


First: What is Qubes + Whonix all about?

Qubes OS (qubes-os.org) is one of the most secure OS architectures you 
will ever encounter that is able to withstand greater attack due to its 
advanced isolation properties.

Whonix OS (whonix.org) is a Tor-based virtual machine OS for anonymizing 
all of your traffic through Tor in a meaningfully more optimal and 
secure way than normal.

Qubes + Whonix is the seamless combination of Qubes OS and Whonix OS for 
best-in-class Security + Anonymity.


New Architecture:

Last year, I accomplished the first port of Whonix OS over to Qubes OS.

Now, with big thanks to nrgaway, we have a new -- much improved -- 
seamless combination of Qubes + Whonix.

The new Qubes + Whonix is a much more natively integrated, seamless and 
easy to use combination of Qubes + Whonix.

Instead of the old TwoHVM architecture, we now make use of a seamless 
ProxyVM + AppVM architecture.

The Whonix-Workstation is installed as an AppVM in Qubes, which is where 
your user applications reside, and all of their traffic gets forced 
through the separate Whonix-Gateway Tor ProxyVM.

The Whonix-Gateway is installed as a ProxyVM in Qubes, which is where 
your Tor connection proxy resides, and is securely isolated so that 
malware can't simply circumvent your Tor connection to easily find out 
your real identity, as it can with other Tor systems.

With the new architecture, we have seamless GUI desktop integration with 
Qubes OS.

And we have Qubes tools integration that allow for things like 
easy-and-secure copy/paste as well as easy-and-secure file moving 
between VMs.

 From the base TemplateVMs, you can dynamically generate as many Whonix 
VMs as you please, to use simultaneously, for more optimal anonymous 
workspace isolation.

The new native port architecture of Qubes + Whonix is much more useful.


Upsteam Integration and Install/Updates:

The Qubes team has enjoyed our work on Qubes + Whonix and we now have 
upstream integration in the Qubes codebase and templates repository.

This also means that installation is very easy to do via the RPM 
packages (Install Guide available on the wiki).

Also, much of the Qubes + Whonix code has been moved out of the Qubes 
template builder codebase to an independent Whonix package called 
"qubes-whonix".

This qubes-whonix package will now allow us to push more convenient 
updates to Qubes + Whonix without always needing to rebuild and 
reinstall the underlying TemplateVMs.

So install and update are much improved.


Qubes + Whonix Packages:

There are now three packages specific to the Qubes + Whonix platform 
now:

- Whonix-Gateway TemplateVM which comes as a RPM package in Qubes and is 
currently at version 2.1.8.

- Whonix-Workstation TemplateVM which comes as a RPM package in Qubes 
and is currently at version 2.1.8.

- qubes-whonix which comes as a DEB updates package in Whonix and is 
currently at version 9.6.2.

These current versions are based on Qubes OS R2 and Whonix OS 9.6.


New and Improved Documentation:

We have new documentation for Qubes + Whonix on our wiki 
(https://www.whonix.org/wiki/Qubes).

Here you can learn more about the platform and get some primary guides 
on how to work with Qubes + Whonix.

The new documentation was just recently launched and more is being added 
throughout the near-term future.

To learn more, go check it out the wiki documentation for yourself.

Also, the general Whonix wiki has extensive knowledge available about 
optimizing your Tor-based anonymity.


So, if you want to supercharge your Security + Anonymity, then feel free 
to try out Qubes + Whonix.

Also, if you've got skills, feel free to get in touch and join in on the 
development effort of the Qubes + Whonix platform.

More improvements coming soon.

Thanks everyone! :)

WhonixQubes



Qubes + Whonix Primary Sources:

- Wiki:    https://www.whonix.org/wiki/Qubes
- Forum:   https://www.whonix.org/forum/Qubes
- Blog:    https://www.whonix.org/blog/Qubes
- Tracker: https://www.whonix.org/tracker/Qubes



-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

