I-Whonix ukusatshalaliswa kwe-Linux yakhelwe ukuhlinzeka ngokungaziwa okuqinisekisiwe, ukuphepha nokuvikelwa kwemininingwane eyimfihlo. Ukusatshalaliswa kusekelwe ku-Debian futhi isebenzisa iTor ukuqinisekisa ukungaziwa.
Isici esikhethekile se-Whonix ukuhlukaniswa kwethuluzi lokusabalalisa libe izingxenye ezimbili kufakwe ngokwehlukile: I-Whonix-Gateway ngokuqaliswa kwesango lenethiwekhi lokuxhumana okungaziwa kanye neWhonix-Workstation ngekhompyutha yedeskithophu.
Mayelana neWhonix
Inethiwekhi itholakala endaweni yeWhonix-Workstation kuphela ngeWhonix Gateway, ehlukanisa indawo yokusebenza nokuxhumana okuqondile nezwe langaphandle futhi evumela kuphela amakheli enethiwekhi amanga ukuba asetshenziswe.
Le ndlela ivikela umsebenzisi ekuvuzeni ikheli langempela le-IP uma kwenzeka kuba nokugenca kwesiphequluli sewebhu futhi nalapho kuxhashazwa ukuba sengozini okunikeza umhlaseli ukufinyelela kwezimpande ohlelweni.
Uma kwenzeka ukuthi iWhonix-Workstation iba sengozini, izovumela kuphela umhlaseli ukuthi athole kuphela amasethingi enethiwekhi yedummy, ngoba izilungiselelo zangempela ze-IP ne-DNS zifihliwe ngaphandle kwesango lenethiwekhi elithumela kuphela ithrafikhi ngeTor.
Kumele kuqashelwe ukuthi Izakhi ze-Whonix zenzelwe ukusebenza njengezinhlelo zezivakashis, okungukuthi, amathuba okusebenzisa ubungozi obunzima bezinsuku ezingama-0 kuzingxenyekazi zokwenza izinto ezinganikeza ukufinyelela ohlelweni lokusingathwa akuhlanganisiwe.
Ngakho-ke, akunconywa ukusebenzisa iWhonix-Workstation kukhompyutha efanayo neWhonix-Gateway.
I-Whonix Workstation inikeza imvelo ye-Xfce ezenzakalelayo yabasebenzisi. Ukulethwa kufaka phakathi izinhlelo ezifana ne-VLC, Tor Browser (Firefox), Thunderbird + TorBirdy, Pidgin, njll.
Ekulethweni kweWhonix-Gateway, ungathola isethi yezinhlelo zokusebenza zeseva, kufaka phakathi i-Apache httpd, ngnix, kanye namaseva we-IRC, angasetshenziswa ukuhlela umsebenzi wezinsizakalo ezifihliwe zikaTor.
Kungenzeka udlule imigudu yeTor yeFreenet, i2p, JonDonym, SSH neVPN. Uma ufisa, umsebenzisi angakwazi ukuphatha i-Whonix-Gateway kuphela futhi axhume ngayo kumasistimu abo ajwayelekile, kufaka phakathi iWindows, okwenza kube nokwenzeka ukunikeza ukuphuma okungaziwa kwezindawo zokusebenza ezisetshenzisiwe.
Yini okusha ku-Whonix 15?
Cishe ngemuva konyaka wentuthuko, i- Uhlobo lwe-Whonix 15, lapho le nguqulo isuselwe ku-Debian 10 (buster) futhi esikhundleni se-KDE, ideskithophu ye-Xfce inikwe amandla ngokuzenzakalela.
Okwe-systemd onjiniyela bafake izilungiselelo ezizenzakalelayo zamayunithi wokuhlukaniswa kwe-sandbox (PrivateTmp = true and PrivateHome = true) kanye nokuqoqwa okuthuthukisiwe kwe-entropy ye-pseudo-random number generator (iphakethe le-jitterentropy-rngd elifakiwe).
Futhi isebenzise ukuvikelwa okwengeziwe ekuhlaselweni yiSpecter, Meltdown neL1 Terminal Fault, nalokhu ekusetshenzisweni kokusekelwa kokusebenza kwimodi ebukhoma ngokufakwa kwedatha ku-RAM hhayi kudiski.
Kunezindlela ezimbili zokuqalisa ze-boot ze-grub-live ne-ro-mode-init (yenza ngokuzenzakalela imodi ebukhoma uma iyunithi ifundwa kuphela).
Izithombe zezinhlelo zokwenza izinto nazo zancishiswa ngosayizi (elungiselelwe ukusebenzisa i-zerofree). Isithombe seWhonix-Gateway sehle sisuka ku-1.7 siye ku-1.1 GB, kanti iWhonix-Workstation isuka ku-2 iye ku-1.3 GB.
Kubasebenzisi be-VirtualBox, ukwakhiwa kwe-CLI kwalungiswa ngaphandle kwesibonisi sokuqhafaza. Izakhi zeWhonix-Gateway neWhonix-Workstation zihlanganiswe njengesithombe esisodwa se-ova.
De Okunye ukuthuthuka okugqanyiswe ngonjiniyela kule nguqulo entsha yile:
- Ukufakwa Kwento Eyenziwe Lula yamaQubes
- I-Whonix KVM ingeza ukuxhaswa kwe-console nge-serial port
- Ukusekelwa kwe-ARM64 ne-Raspberry Pi
- Uhlaka oluyinhloko lubandakanya i-zulucrypt, i-qtox, i-anyanisi, i-keepassxc, nezicelo ze-firejail Izendlalelo zengezwe i-scurlget, i-curlget, i-pwchange, i-upgrade-nonroot, i-apt-get-non-active, ne-apt-get-update-plus.
- Kungezwe ukusekelwa kwenethiwekhi yeBisq P2P.
Isithombe se- Isistimu yezivakashi ze-CLI yi-1.1 GB ne-Xfce desktop ingu-1.3 GB.