Whonix KVM - A Secure OS for the Dark Web

Поделиться
HTML-код
  • Опубликовано: 22 дек 2024

Комментарии • 453

  • @L9TurboBoost
    @L9TurboBoost 2 года назад +1856

    finally a secure way to use facebook

  • @rraygen
    @rraygen 2 года назад +1048

    Whonix vs QubesOS vs Tail for security and privacy? Would make for an interesting video, since all three aim for a different use case

    • @nefty1004
      @nefty1004 2 года назад +62

      Yes please do this

    • @RedPlayer_1
      @RedPlayer_1 2 года назад +18

      Oh yes please!

    • @ItsHowardPlayzOfAdmin
      @ItsHowardPlayzOfAdmin 2 года назад +37

      Qubes gang

    • @trollerjakthetrollinggod-e7761
      @trollerjakthetrollinggod-e7761 2 года назад +137

      Whonix actually works better as a VM on Qubes, and Whonix devs actually recommend it as a second level of protection. Unless your QubesOS is compromised, you're practically invisible.

    • @11Cent
      @11Cent 2 года назад +16

      id say they are all have very different uses but id still like to see a comparison

  • @Keniisu
    @Keniisu 2 года назад +190

    Been dabbling with Whonix for quite some time with VirtualBox, though it's not always the most secure option. Definitely an optimal choice for privacy and security when it comes to operating systems regardless of whether you use KVM or VirtualBox

    • @Joseph-ws5de
      @Joseph-ws5de 2 года назад +1

      In your opinion what’s most secure?

    • @moth5799
      @moth5799 2 года назад +27

      @@Joseph-ws5de I know I'm not OP but KVM is definitely more secure.

    • @NotACutie
      @NotACutie 2 года назад +1

      Good for gaming on the side?~

    • @diego032912
      @diego032912 2 года назад +3

      @@moth5799 If you're USB mounting KVM's then yes, but otherwise VirtualBox is good for use by public computers or laptops that you'll only use when on public networks.

    • @doggo_woo
      @doggo_woo 2 года назад +7

      @@NotACutie Gaming on the Tor network is asking for 1 second lag. Unless you are talking about offline.

  • @supercharged1046
    @supercharged1046 2 года назад +29

    Been using this setup for a while now, thanks for providing some more detailed information especially swap file vulnerabilities and other things to consider.

  • @OcteractSG
    @OcteractSG 2 года назад +159

    Sleep keeps RAM powered, while hibernation writes RAM to swap. Setting up encrypted swap is actually really easy to do on most graphical installers for Linux.

    • @MickeyMishra
      @MickeyMishra 2 года назад +5

      Links and easy how to guide? 😅

    • @xmvziron
      @xmvziron 2 года назад +3

      Encrypted swap? That sounds like black magic to me

    • @your-mom-irl
      @your-mom-irl 2 года назад +2

      @@xmvziron why? its just swap but encrypted. probably slow as hell

    • @ThirtytwoJ
      @ThirtytwoJ 2 года назад

      Huh didn't know that. Thx for that

    • @meekdook4236
      @meekdook4236 2 года назад

      Do you have a link to a tutorial?

  • @FritzyFreak
    @FritzyFreak 2 года назад +31

    I dont really know anything about all this but I always come back to channels like this just because of how interesting all these topics are. I've learned a good bit just dont really ever plan to go on the darkweb. Still really cool tho!

    • @pacifico4999
      @pacifico4999 2 года назад +3

      Same. I love seeing how these things work, though I don't have an use case for it.

    • @penofinspiration
      @penofinspiration 2 года назад +5

      Don't worry, some day you will see your search history popping up somewhere & you will realise data security is important.

    • @HülyeLó
      @HülyeLó 2 года назад +1

      I don't think anyone has a use case for it here.

  • @bvbianca
    @bvbianca 2 года назад +24

    Whonix is brilliant. Thanks for finally making a video about it.

  • @rolodexter
    @rolodexter 2 года назад +7

    Your coverage is super actionable
    Thanks for covering this OS

  • @xadxtya
    @xadxtya 2 года назад +93

    Whonix is amazing, I've been using it on my burner laptop for a while and it's kept me safe from the Dark Web's malicious activity.
    I use Arch BTW

    • @ColdSteel-dz3pf
      @ColdSteel-dz3pf 2 года назад +13

      Of course you run Arch… the Elitist has spoken LuL! When I better understand our craft I’ll dive down the Arch hole. All Arch users I’ve met swear by it! 🍻.

    • @NeverTrust298
      @NeverTrust298 2 года назад +2

      WHO CARES?!!!

    • @0007-i2l
      @0007-i2l 2 года назад +39

      ​@@NeverTrust298 it's a meme, welcome to the internet!

    • @𪛗
      @𪛗 2 года назад +11

      @@NeverTrust298 welcome to the internet my friend

    • @Secondarian
      @Secondarian 2 года назад +3

      @@ColdSteel-dz3pf Just go straight to Artix/Parabola, depending on your hardware.

  • @Dave-kq7gv
    @Dave-kq7gv 2 года назад +18

    Thrilled to see some Whonix love...all the edgy "youtuber hackers" only talk about Tails. Do Qubes next!

  • @alexwolfeboy
    @alexwolfeboy 2 года назад +52

    Yah, when I saw that, upward security (ie protection against your enviroment) was what bothered me. It doesn't matter how secure WHONIX is, if the host it is running on is less secure. Weakest link and all. Especially if for some insane reason your host OS is Windows, I can't imagine the upward security will be very good.

    • @omarb2653
      @omarb2653 2 года назад +1

      Agreed

    • @skinwalker69420
      @skinwalker69420 2 года назад +26

      So the solution is to run Whonix, on Whonix.

    • @reflectit5547
      @reflectit5547 2 года назад +2

      @@skinwalker69420 engineer pfp checks out

    • @Secondarian
      @Secondarian 2 года назад +2

      @@skinwalker69420 No, on Cubes.

    • @fishmongerama
      @fishmongerama Год назад

      I bought a laptop on 1 November,2023 pre-installed with windows 11 home. How do i completely wipe windows off my laptop and install whonix KVM?. 😊

  • @stage6fan475
    @stage6fan475 2 года назад +3

    Thanks for all your hard work thinking about all the details like swap files, etc.

  • @Olivia0690
    @Olivia0690 2 года назад +29

    I daily drive Qubes and love it. It has a large learning curve though, but if you know the basics and are comfortable enough to do a walkthrough video I'm sure people would love it!

    • @RashidSEC
      @RashidSEC 2 года назад +1

      I think the reason he hasn't is becuase a screen recorder is difficult to set up in Dom0. You could probably use an external capture card as that's how I'm planning on recording my QubesOS setup.

    • @Olivia0690
      @Olivia0690 2 года назад +3

      @@RashidSEC Yeah that is a good point 😁. Along with the security risk of installing any sort of software in Dom0 to begin with. But I suppose for an example video wouldn't make Joanna too angry 😂

    • @veronicamarino7527
      @veronicamarino7527 2 года назад +2

      Yeah that would be awesome, qubes user here too!

    • @trik9464
      @trik9464 2 года назад +1

      @@RashidSEC usb capture card to loop the hdmi and send the output to a vm with obs LOL it does actually work

    • @RashidSEC
      @RashidSEC 2 года назад +1

      @@trik9464 We will find out. My thinkpad has 64 gb of ram wish me luck.

  • @tailsprower9542
    @tailsprower9542 2 года назад +7

    11:26 Why is the User Firewall settings using the Nero Burner 6 icon?

  • @goldie6961
    @goldie6961 2 года назад +9

    I noticed you don’t have any videos on openSUSE, a lot of people seem to love it and a review would be pretty great from you, love the content as always

  • @miguelr246
    @miguelr246 2 года назад +4

    0:30 About this: Is it possible to do something like this on a host machine/VM running windows 10/7? I just saw Adrien Crenshaw's old Defcon presentation where @ the end he demonstrates getting people's IP addresses because other computer apps (like Office Word) don't respect Tor's proxy settings. Is there a method of doing something like what whonix did but on other OS's?

  • @CaptZenPetabyte
    @CaptZenPetabyte 2 года назад +3

    This really helps, thanks. Im going to run tails inside of whonix inside of a kvm/vert inside of an arch linux desktop inside of proxmox running inside a docker container inside a pod on truenas scale. 💥😎

  • @ecanus-3605
    @ecanus-3605 2 года назад +6

    Honestly I'm not sure if this is safer than TailsOS(from USB boot)+TOR+Tunel.

  • @charleshines1553
    @charleshines1553 2 года назад +10

    A router with this running on it can be very useful. That or something that works similarly. Maybe run it on an old PC with two NICs as a firewall of sorts.

    • @ThirtytwoJ
      @ThirtytwoJ 2 года назад

      Funny I was just wondering if would work with rasp pi as a VPN/tor router. Been looking at making one for a travel system.

  • @TropicDaKid
    @TropicDaKid 2 года назад +1

    The only thing that those "Finally, it's here" comments should be about

  • @user-ry4ip9ps9x
    @user-ry4ip9ps9x 2 года назад +3

    whonix is great and not a hastle to set up 10/10 👍

  • @idtyu
    @idtyu 2 года назад +10

    I think if you use this too much, NSA or FBI might tag the network packages thru your isp (which they always know where internet usage is from) just because you are shady

    • @BOSS_1417
      @BOSS_1417 2 года назад +1

      How to be safe from that
      Public wifi?

    • @mocanuadr90
      @mocanuadr90 2 года назад +2

      @@BOSS_1417 You may use a VPN to hide tor usage from your isp

  • @The-OGRE
    @The-OGRE 2 года назад +3

    Instead of TOR, would the new Beacon browser be a more secure option?

  • @nostradamus1165
    @nostradamus1165 2 года назад

    was waiting for this video for ages
    Whonix is really an interesting distro

  • @salihmsa7530
    @salihmsa7530 Год назад +1

    i like Qubes, but using an old thinkpad (air gapping my kit, i have the hardware so why not) really doesn’t permit having even more than 2 VMs running concurrently.
    Having a minimal and pruned Linux OS whilst running whonix is more ideal

  • @psielemental
    @psielemental 2 года назад

    I hopefully never have to use this, but its nice to know that it exists.

  • @xmvziron
    @xmvziron 2 года назад

    Literally as I was attempting to use Whonix!

  • @tarnish3613
    @tarnish3613 Год назад

    I have questions...
    So the order of everything is PC > Storage Devices (SSD/HDD) > Hypervisor > VMs > Operating System > Web Browser, right?
    Qubes and Whonix are both operating systems. So why is Whonix ran INSIDE of Qubes, so Qubes > Whonix?
    KVM acts as a Hypervisor, thought the type, 1 or 2, is debated. Qubes uses a hypervisor called Xen. What's better, Xen or KVM? Why? And if KVM is considered better for whatever reason, then could you run Qubes inside of KVM, without security/performance disadvantages compared to Xen?
    So then the order of everything would be PC > Storage Devices > KVM OR Xen > Qubes > Whonix > Tor, correct?
    Another thing, I run Windows 10 with my SSD. I recently wanted to access the dark web, but I don't fuck around with security, so here I am asking every question thinkable after getting confused by my extensive research. I have an old 2TB HDD that hasn't been used in a long time with nothing important on it, as I backed up all the folders onto Google Drive and wiped my HDD.
    If I keep my SSD for my standard stuff on Windows, could I then install all my dark web stuff (Hypervisors, VMs, OSs, etc.) onto the HDD, set my HDD as my boot drive in my motherboard's BIOS, and then when I want to access the dark web do that and be safe? Would my SSD/Windows be safe if that's done?
    Oh, and before getting all the secure stuff, do you install standard Linux first?
    Thank you anyone in advance!

  • @ifodaniell
    @ifodaniell 2 года назад +5

    Bah! You can select KVM from within VirtualBox to be your virtualization hypervisor.

  • @georgerockwell-z3c
    @georgerockwell-z3c 2 года назад +3

    Now I know how to do things without the FBI seeing. Thanks, FBI!

  • @elsombero1747
    @elsombero1747 2 года назад +7

    That's really interesting. I never heard of Whonix KVM before. I usually have a SD Card with Tails for that in my old ThinkPad since it's really easy to setup.
    Well, My T60 isn't really that secure but recently I bought and repaired an old IdeaPad with 6gb RAM (4gb Soldered/ 2gb user replaceable) , some Ryzen 5 CPU and Windows 7 Starter on it.
    I'm actually curious to try it out on that Ideapad after I transfer my SSD to it. After all, this week I'll be getting a package from Lenovo with a brand new battery and display. The 4c 8t CPU should have enough of a punch to run a Linux KVM.

  • @athens1005
    @athens1005 2 года назад +1

    10/10 tech tips, great video

  • @cybersechs1368
    @cybersechs1368 2 года назад

    11:05 encrypt the volume?? You mean like a luksFormat?? If so, could you make an episode of that?
    Or do you mean put the *.qcow2 files in an encrypted Truecrypt/Veracrypt container before you use it?
    I used to do that with my old VBOX files, but I think an encypted os volume would be more secure

  • @kushalnitnaware
    @kushalnitnaware Год назад +1

    Your view on downloading Qemu/kvm on windows 10 ?

  • @UU-dp9th
    @UU-dp9th 2 года назад +2

    Been waiting for this episode

  • @TheLinuxGallery-qz2vs
    @TheLinuxGallery-qz2vs 2 месяца назад

    I have a question
    What is the advantage of using Whonix, vs using two alpine data-disk installs configured to use tor?
    Also, how hard would it be to run a Whonix gateway in front of your bare metal?

  • @alerey4363
    @alerey4363 2 года назад +5

    As I see it whonix's only advantage over TAILS is that it runs on a VM so if your dark web session is hacked your real OS/fs is safe; but kvm requieres too much resources; I'd prefer the risk of booting TAILS from a usb pendrive: it's fast, amnesiac (which whonix is not) and I won't save anything on my notebook fs

    • @andrepipo4542
      @andrepipo4542 2 года назад +9

      With Tails, if your dark web session is hacked your real OS/fs is safe too. The advantage of Whonix is being able to run both your dark web OS and real OS securely at the same time

    • @bcz1337
      @bcz1337 2 года назад +3

      No. Whonix is much better than Tails. Whonix is more secure/hardened, impossible to leak IP Address even if your Workstation has been compromised (since the tor gateway are not on Workstation like Tails) Full torified system and a lot of interesting tools like Kloak. Also you can make Whonix amnesic with Qubes-Whonix DispVM.

    • @pier_is_losing
      @pier_is_losing 2 года назад

      What should I use on my main computer (not a burner) connected with ethernet cable?
      Tails or Whonix?

    • @andrepipo4542
      @andrepipo4542 2 года назад +1

      @@pier_is_losing tails. Its easier

    • @pier_is_losing
      @pier_is_losing 2 года назад

      @@andrepipo4542 Is it safer though?
      Virtualbox+Whonix is not that hard to install, but, what I understand is that it leaves traces on my hard drive? I can still reset the pc, there is not much stuff on it anyway.
      Soo I really don't know, I just want the safest option here, I'll probably be resetting the pc after browsing for a couple of days, not doing anything illegal, I'm just looking for a specific info.
      soo, tails or whonix?

  • @GargoilXD
    @GargoilXD 9 месяцев назад +1

    I wonder how Whonix would do against an Intel computer with an Intel management engine. The low level "spyware" thing.

  • @displayname7t4
    @displayname7t4 2 года назад +1

    Hello, love your content. What host distro do you use? Do you have a video on that?

  • @BaggerPRO
    @BaggerPRO Год назад

    At 11:03 it turned out funny that you say that you could encrypt the volume and at the same time the volume window appears on the top right :)

  • @trashpanda-rz2xy
    @trashpanda-rz2xy Год назад

    i set up kali in virtualbox using whonix as a gateway without any issues, one thing i'm trying to figure out is if it's possible to configure the network settings to switch between routing traffic through the whonix gateway or using NAT to connect directly to my host machine. after spending 3 hours downloading updates through the tor network at 300kb/s i realized that it would be less painful to temporarily disconnect from whonix to do the updates.

  • @schnow265
    @schnow265 2 года назад +1

    I have a Linux VM. In this VM I installed Whonix using KVM.

  • @AndreasZeitler
    @AndreasZeitler 2 года назад +1

    We still don't have a working version of Whonix for ARM-based Macs, have we?

    • @nothingtoseeherelolkek
      @nothingtoseeherelolkek 2 года назад

      There is testing version, but it’s not recommended

    • @AndreasZeitler
      @AndreasZeitler 2 года назад

      @@nothingtoseeherelolkek Last time I checked they hadn't compiled it. Do they have a working alpha release now?

  • @MemesnShet
    @MemesnShet 2 года назад +6

    Hey apparently Apple is going to release a lockdown mode to protect against Pegasus and similar software
    I imagine it will mostly mitigate the damage Pegasus can do

    • @therealb888
      @therealb888 2 года назад +3

      Great news but sooner or later linux privacy folks need to expand their arsenal with opensource hardware. More & more attacks are getting hardware & cryptography based.

    • @yunggoosbumps215
      @yunggoosbumps215 2 года назад +1

      Isn't the lockdown mode a step after believing that someone is in your phone? In which case won't protect anything that they have already accessed. The problem with pegasus is that most people have no idea they are infected, so it's kind of pointless for most iphones.

  • @jeffbezos8917
    @jeffbezos8917 2 года назад +1

    Hey, can you also make a video on invidious? It’s a secure frontend for youtube that you can make your own instance for.

  • @howling-wolf
    @howling-wolf 2 года назад +4

    When my traffic is already routed through the tor network, does it make sense to use the tor browser then? Wouldn't that be unnecessary?

    • @sm_stormzy1075
      @sm_stormzy1075 2 года назад +1

      I don't know a lot about this, but I'm pretty sure it brings more anonymity since pretty much everyone else is using Tor Browser as well

    • @Rei-x
      @Rei-x 2 года назад +3

      tor to some extent prevents fingerprinting your browser

    • @bcz1337
      @bcz1337 2 года назад

      Tor is more hardened than Firefox and protects you from fingerprinting, since everyone who use Tor Browser and don't modify him (adding extensions, changing Proxy settings, etc) have the same fingerprint.

  • @nilkonom
    @nilkonom 11 месяцев назад

    i got some error when i was trying to run the gateway and then noticed it only gets 256MiB of RAM by default thus wasn't able to launch all the required systemd services

    • @imoust7788
      @imoust7788 5 месяцев назад

      I run with 512MiB RAM

  • @CaptZenPetabyte
    @CaptZenPetabyte 2 года назад

    Can you recommend a video for invisible/anonymous/untraceable use of the internet? I know its actually not possible (reading the research papers) but I could at least protect against most pen-testing?

  • @joshuamaserow
    @joshuamaserow 2 года назад

    Saved to watch later before shaband

  • @byteexpress2214
    @byteexpress2214 Год назад

    What about running Whonix on Tails OS, which itself is a VM on QubesOS?

  • @HülyeLó
    @HülyeLó 2 года назад

    Should one run Mullvad or some kind of VPN on the gateway VM?

  • @BobSockTwo
    @BobSockTwo 8 месяцев назад +2

    I live in a Post-USSR country, I might need this lol

  • @tylerdean980
    @tylerdean980 2 года назад +8

    tails but riceable basically. I like the ability to customize, I normally just leave the gateway as CLI only, and put a window manager or something on the workspace VM

    • @tylerdean980
      @tylerdean980 2 года назад

      @Not Convinced no one asked you to interject, but here you are, the difference between us is that you're acting like an ass-hat and I'm not.

  • @damnedmadman
    @damnedmadman 2 года назад +4

    If you have enough RAM, just put the virtual disk file in a tmpfs ramdisk 😎 (and disable swap)

  • @monotonemoe
    @monotonemoe 2 года назад +1

    Genuine question, why do you have 128gb of ram

  • @crunchybones2528
    @crunchybones2528 2 года назад

    Kenny, I've been trying to get a dualboot working for a month and I'm losing my shit. I only need windows for a handful of applications, but they're all GPU intensive stuff like CAD and illustration software. I don't know if using a windows VM will run well enough with the performance hit but I'm sick of fucking with Windows and having it run its slimy tentacles through my entire system and break Linux every time I boot into it.
    do you have any recommendations?

    • @Senshi00
      @Senshi00 2 года назад

      I have a secondary gpu ( Gtx 1050). For GPU intensive Windows only applications I use a Windows VM and pass through the second GPU. Since I also only have one monitor I use looking glass to access the video output. This works really well, no need to dual boot but you do need to dedicate a gpu to the vm.

  • @vicstoron
    @vicstoron 2 года назад +8

    I want a video on Qubes now.

  • @pencilcase8068
    @pencilcase8068 2 года назад +2

    Finally a way to protect my deep fried dank memes from the glowies

  • @josephreagan9545
    @josephreagan9545 2 года назад +3

    How does whonix os compair to qubes os?

    • @Keniisu
      @Keniisu 2 года назад +4

      Qubes OS is more secure, but requires more technical knowledge to setup from my understanding.

    • @trik9464
      @trik9464 2 года назад +5

      Qubes also uses whonix. It is probably the most nightmarish thing to learn. I suggest having a dedicated laptop for it that you can afford to be out of comission on

    • @josephreagan9545
      @josephreagan9545 2 года назад

      @@trik9464 ok Thanks

    • @josephreagan9545
      @josephreagan9545 2 года назад

      @@Keniisu thanks for the info

    • @vicstoron
      @vicstoron 2 года назад

      @@trik9464 after installing Arch from the command line and daily driving it for a while, I do plan to in a future get a separate laptop just to dedicate myself to run Qubes but I can already imagine what a nightmarish task it will be to learn it.

  • @baitinq3155
    @baitinq3155 2 года назад +7

    Could you take a look at NixOS? I recently switched from a 4 year arch journey and I think its fantastic and probably the future of linux

    • @vicstoron
      @vicstoron 2 года назад

      I mean, a look on NIxOS would be good.
      I'm not really a fan of transactional operating systems (really more of the rolling release type guy) but yeah, tested it a bit but I still think it's a more "advanced" user type of OS (at least for me) and, if I'm like, installing a transactional/atomic update system to someone like my grandmother or smt, I'd definitely prefer Fedora Silverblue tbh

    • @sethadkins546
      @sethadkins546 2 года назад

      How good is the general software availability? I've been wanting to switch for a lil bit but I'm worried there's less applications and drivers available than what I use right now (Manjaro).

    • @baitinq3155
      @baitinq3155 2 года назад +4

      @@sethadkins546 I believe it has the biggest repo of any distro 90k+, and adding custom packages is super simple

    • @baitinq3155
      @baitinq3155 2 года назад +5

      @@vicstoron it definitely requires some tinkering but once it's setup it's the most comfy os experience I've ever had

    • @nguyennguyenkhang5800
      @nguyennguyenkhang5800 2 года назад

      @@sethadkins546 I think enough for you to use. The only part that if you grab source from Internet and try to install or compile like normal mostly it won't be work so therefore you need to learn nix to touch it. Also installer is pretty easy now.

  • @juligomez2493
    @juligomez2493 Год назад

    If I got host encrypted volume and only boot partition unencrypted is imposible to read swap data if I turn off the computer Right? I mean I don't have to disable nothing I'm with LUKS + lvm and LUKS over lvm

  • @itsbxntley2970
    @itsbxntley2970 11 месяцев назад

    The question is should you use a VPN on your host os so that they cant tell (Your ISP) youre connecting to tor?.... Or there's no need for that?

    • @imoust7788
      @imoust7788 5 месяцев назад

      There's no reason for you to hide that you're using Tor, since you can't know what you did using this proxy

  • @PeKaNo
    @PeKaNo 2 года назад

    lmao did you just put tor in full screen

  • @moneymaketheworldgoround
    @moneymaketheworldgoround Год назад

    Will this run on a Debian 11 Live USB ? I always get an error when trying to run the Workstation...

  • @RedVRCC
    @RedVRCC 6 месяцев назад

    15:08 a lot more convenient to _use_ sure but a lot more of a pain to set up. Tails is probably the easiest thing to actually set up

  • @LNVACVAC
    @LNVACVAC Год назад

    Can it run from RAM?
    I would like to boot it from BD-R and run from RAM.

  • @nathancoats6432
    @nathancoats6432 2 года назад

    How do I set up the whonix gateway to use kicksecure os so I can set up I2P?

  • @wvladimir21
    @wvladimir21 2 года назад +4

    Is this like CIA and FBI trap OS?

    • @wvladimir21
      @wvladimir21 2 года назад +4

      @@neighbor472 ok, so who is checking?

    • @Whatthellisthisthing
      @Whatthellisthisthing 2 года назад

      @@wvladimir21 Just checked it out while pooping… you’re good to go.

  • @13thravenpurple94
    @13thravenpurple94 Год назад

    Great video Thank you

  • @0x7f2c
    @0x7f2c 2 года назад

    is there a video of you compiling gentoo on your threadripper?

  • @Zc4sh
    @Zc4sh 2 года назад

    How about zero Knowledge at network base layer instead ?

  • @enriquedelacal2814
    @enriquedelacal2814 2 года назад +1

    What do they mean by "watertight"?

  • @TraceursMonkey
    @TraceursMonkey 2 года назад

    Would you say this is more secure than Tails OS ?

  • @LNVACVAC
    @LNVACVAC 2 года назад

    Is there a way to boot and run it completely from RAM in a PC without any HDD/SSD?

    • @msas6020
      @msas6020 2 года назад

      I don't remember exactly what it's called but I've seen a modification that uses ddr2 Ram. It makes it act like temporary hard drive storage. If you had something like that you could install any operating system on it, then it would all disappear Once you turn your computer off.

    • @LNVACVAC
      @LNVACVAC Год назад

      ​@@msas6020 That's the intent.

  • @TechLifeForLife
    @TechLifeForLife 2 года назад

    I'm running into a "no bootable device" error and wondering if it has something to do with permissions. The gateway is owned by libvirt-qemu and the Workstation is owned by me (user). I have a Kali VM I run through KVM and it is set as root. Not sure how any of these got set, but do you think this is the issue?

    • @TechLifeForLife
      @TechLifeForLife 2 года назад

      I got it to work. Honestly, I think the problem was that I didn't unzip the files the way the instructions dictate.

    • @marcosmos7478
      @marcosmos7478 11 месяцев назад

      @@TechLifeForLife hey how did you get it to work?

  • @Jatinjay-JAM
    @Jatinjay-JAM Год назад

    I want to use to upload files without compromising my privacy can i do it?

  • @YasinEfeee
    @YasinEfeee 11 месяцев назад

    KVM or Oracle VM VirtualBox for better option security and anonymity? (Maybe ı will start to use Linux for KVM, should ı do it or use Oracle VM VirtualBox)

    • @imoust7788
      @imoust7788 5 месяцев назад +1

      KVM

    • @imoust7788
      @imoust7788 5 месяцев назад +1

      Virtualbox is closed-source, KVM not

  • @heapsofeddies
    @heapsofeddies Год назад

    Is there a reason why I cant extract the download file so I can have the files separate therefore I can open in terminal and install?

  • @zelenskysboot361
    @zelenskysboot361 2 года назад

    Like the thread ripper high siding.😁

  • @Zhejiangopterus
    @Zhejiangopterus 2 года назад

    can I safely use soulseek to download scatman john with this?

  • @D369_
    @D369_ 2 года назад +1

    so should i do tails live boot + whonix or qubes + whonix? why?

    • @D369_
      @D369_ 2 года назад

      i'm guessing tails live boot (for forensic protection) +. whonix, but correct me if i'm wrong please

    • @D369_
      @D369_ 2 года назад

      @znapz not according to a number of pros.

    • @D369_
      @D369_ 2 года назад

      @znapz 1. I’m not arguing. I’m stating a fact. Whether u choose to agree or disagree is your choice. 2. I never asked what was overkill or not, so your reply to the comment doesn’t answer the question appropriately. 3. I don’t need to provide u with references. Not interested in a debate. What is this? Who are u? Go THAAAT way 👋

    • @D369_
      @D369_ 2 года назад

      @znapz yet, ur the one answering the wrong question nobody asked. then, defaulting to name calling when i point it out and tell u to move on 🤣

    • @D369_
      @D369_ 2 года назад

      @znapz dude, take my nuts outta ur mouth. go troll someone else. i’ll no longer respond. get the last comment if u must. have fun.

  • @pouet4608
    @pouet4608 2 года назад

    what is the state of the tor netwok? i mean do really anyone runs an end node at home?

  • @I_Unintentionally_Morph
    @I_Unintentionally_Morph 2 года назад

    Is this a virtual machine I can use on my windows

  • @TheHandsomeOne
    @TheHandsomeOne 2 года назад +1

    Is there an VM for android?

  •  2 года назад

    Then why not use QubeOS with a disposable Whonix Qube

  • @HR02Himanshu_Vlogs
    @HR02Himanshu_Vlogs 8 месяцев назад

    Which is Good Quebes Or Whonix Or Tails ?

  • @algerotrancer
    @algerotrancer 15 дней назад

    why iso version is taking so long

  • @whitenight8895
    @whitenight8895 2 года назад +6

    Babe wake up Mental Outlaw just dropped

  • @azatecas
    @azatecas 2 года назад +4

    thanks i legit tried doing this a few weeks ago and couldnt get it working

    • @1teamboy
      @1teamboy 2 года назад +1

      Same. I thought KVM was like, a cool version of VMware or something. But I think I was mistaken….. lmao

  • @DanteHaroun
    @DanteHaroun 2 года назад +10

    This vs Tails? Lol imagine running Whonix ON Talis

    • @rishirajsaikia1323
      @rishirajsaikia1323 2 года назад +2

      After you remove the tails live usb, all the KVM setup and whonix will be gone.

    • @DanteHaroun
      @DanteHaroun 2 года назад +1

      ​@@rishirajsaikia1323 Not necessarily, Tails does offer encrypted persistent storage for exactly this type of application. Its probably super overkill but it is definitely doable.

    • @bcz1337
      @bcz1337 2 года назад

      @@DanteHaroun Wouldn't be good. Tails blocks all clearnet traffic. If you use KVM with any VM, the VM will have the traffic through tor too. Whonix Workstation need Whonix Gateway to work. If you use Tails + Whonix, you will have tor over tor traffic, which is slow and insecure. Qubes-Whonix is 100x better, more secure, stable and faster.

  • @xCwieCHRISx
    @xCwieCHRISx 2 года назад +4

    This is from the official Whonix Wiki
    Why use VirtualBox over KVM?
    VirtualBox advantages:
    The virtual network interfaces are better encapsulated inside the VM by VirtualBox.
    Virtual network interfaces by VirtualBox: Are invisible on the host using tools such as "sudo ifconfig".
    corridor leak tested.
    Therefore Whonix VirtualBox has a higher leak-proofness then Whonix KVM.
    KVM disadvantages:
    Virtual network interfaces by KVM: Are visible on the host using tools such as "sudo ifconfig".
    KVM: This complicates leak tests because tshark / wireshark on the host can see connections between Whonix-Workstation and Whonix-Gateway .
    KVM: Therefore also leak-testing using corridor on the host failed.
    KVM: host software such as for example NordVPN client kill-switch can break Whonix-Workstation KVM network connectivity.

  • @anup.bhattarai
    @anup.bhattarai 2 года назад +2

    Is it better to use whonix in vmware instead of virtualbox ?

    • @moth5799
      @moth5799 2 года назад +5

      QEMU/KVM is the best option

    • @mlcs
      @mlcs 2 года назад +9

      Vmware is proprietary (its gay)

  • @ifodaniell
    @ifodaniell 2 года назад +3

    TAILS > Whonix ; no VM needed with Tails if started from a USB

    • @bcz1337
      @bcz1337 2 года назад

      Whonix is more secure/hardened than Tails. Whonix have so many good tools like Kloak, anon-apps-configs, etc. Whonix have the tor gateway separated from the Workstation, so IP leaks are impossible even if your Workstation Whonix gets compromised. And since Whonix use VM, your hardware information doesn't get leaked/exposed. Whonix is 10x better than Tails. Tails is more a easy anonymous portable OS to use on untrusted computers. There's no reason to use Tails instead Qubes-Whonix on personal computer.

    • @kjroastkings3831
      @kjroastkings3831 Год назад

      @@bcz1337unless whonix and qubes is packaged together on a live usb. Then I say TAILS is better. All that isn’t so great when it has to be downloaded from windows 11

  • @theWebmasterify
    @theWebmasterify 2 года назад +2

    All fine and dandy until you the pleasure to go through compromised Tor exit nodes

  • @askhowiknow5527
    @askhowiknow5527 2 года назад +1

    Finally a honeypot from the ATF and NSA

  • @Anondady
    @Anondady 2 года назад

    Does it work on 32bit?

  • @ELECTROHAXZ
    @ELECTROHAXZ 2 года назад +2

    This seems less secure than tails or kodachi because it runs in a VM, which means that your host can be compromised and then your guests are insecure. I believe using tails or kodachi on a system without Intel ME enabled (or present at all if possible) in live mode (for tails) or loaded entirely in RAM (for Kodachi) would be more secure.

    • @blubaustin1
      @blubaustin1 2 года назад

      @Spada from what I recall, it's a thing that boots up with the computer. It's why earlier versions of it, you could strip it out of the bios but in later ones you cant. Same goes for amd's ppsp or whatever it's called, it runs when the computer is turned on.

    • @Danglutas
      @Danglutas 2 года назад +1

      Tails can be run it entirely in RAM with the *toram* boot option

    • @ELECTROHAXZ
      @ELECTROHAXZ 2 года назад

      @Not Convinced Yes

    • @ELECTROHAXZ
      @ELECTROHAXZ 2 года назад

      @znapz Yes, but a custom BIOS will only disable it, but it's still there. The only way to fully remove Intel ME is to not have it in the first place, which means you need a system with a CPU from 2007 or earlier.

    • @ELECTROHAXZ
      @ELECTROHAXZ 2 года назад +1

      @znapz That's not a solution either. AMD has AMD PSP which is AMDs own version of Intel ME. ARM won't save you either as ARM manufacturers have their own variants too. Go for old Intel or maybe RISC V.

  • @SIGMA_BLYAT
    @SIGMA_BLYAT 2 года назад

    In, Russia, 80% of imported computers do not have a Windows operating system

  • @ukuk9576
    @ukuk9576 2 года назад

    Now we just need a whonix-qubes video

  • @draken5379
    @draken5379 2 года назад

    You should really try out docker, its not as complicated as most think it is.
    Considering its used by by all cloud providers, its the most secure and up to date solution running instanced VMs.

    • @DanLivings
      @DanLivings 2 года назад +1

      Docker containers aren't full VMs, they share the same kernel as the host OS.

    • @rishirajsaikia1323
      @rishirajsaikia1323 2 года назад

      @@DanLivings like wsl container OSs which share the wsl kernel.

    • @draken5379
      @draken5379 2 года назад

      @@DanLivings That doesnt stop you from having VMs, with containers within.
      Its just silly to have a separate VMs to isolate your 'virtual world' from the 'real world' computers.
      Easier to have just one, that is filled with containers.

    • @DanLivings
      @DanLivings 2 года назад

      @@draken5379 I'm not sure what the point that you're trying to make is. Docker containers and VMs solve related but distinct problems. Sometimes the level of isolation provided by a container isn't enough and you will need a full VM.