Whonix 17.2, yomwe cholinga chake ndi kupereka chitsimikizo chotsimikizira kusadziwika, chitetezo, komanso chitetezo chachinsinsi, tsopano ikupezeka. Kugawaku kumachokera pa Debian GNU/Linux ndipo imagwiritsa ntchito Tor kuti iwonetsetse kuti anthu sakudziwika. Ntchito ya pulojekitiyi ili ndi chilolezo pansi pa GPLv3. Zithunzi za makina enieni mu mtundu wa .ova wa VirtualBox (2.1 GB yokhala ndi Xfce ndi 1.4 GB ya console) zikupezeka kuti zitsitsidwe. Chithunzicho chikhozanso kusinthidwa kuti chigwiritsidwe ntchito ndi KVM hypervisor.
Mbali yapadera ya Whonix ndi kugawidwa kwake m'magawo awiri osiyana: Whonix-Gateway, yomwe imagwiritsa ntchito chipata cha netiweki cha mauthenga osadziwika, ndi Whonix-Workstation, yomwe ili ndi desktop. Magawo onsewa amaperekedwa mkati mwa chithunzi chimodzi choyambira. Kulowa kwa netiweki kuchokera ku Whonix-Workstation kumachitika kokha kudzera mu Whonix-Gateway, yomwe imalekanitsa malo ogwirira ntchito ndi kulumikizana mwachindunji ndi dziko lakunja ndipo imalola kugwiritsa ntchito ma adilesi abodza a netiweki. Njira iyi imateteza wogwiritsa ntchito ku kutayikira kwa deta yeniyeni. IP ma adilesi ngati msakatuli wa pa intaneti wabedwa, kapena ngati vuto lagwiritsidwa ntchito lomwe limapatsa wowukirayo mwayi wolowa mu dongosolo.
Kuthyolako Whonix-Workstation kudzalola wowukirayo kupeza zongopeka zama netiweki magawo, popeza magawo enieni a IP ndi DNS amabisika kuseri kwa malire a chipata cha netiweki choyendetsedwa ndi Whonix-Gateway, chomwe chimayenda kudzera pa Tor. Ziyenera kuganiziridwa kuti zigawo za Whonix zidapangidwa kuti ziziyenda mwa mawonekedwe a kachitidwe ka alendo, i.e. kuthekera kogwiritsa ntchito zovuta zamasiku a 0 m'mapulatifomu owoneka bwino omwe angapereke mwayi wopezeka pagulu la alendo sangalepheretse. Chifukwa cha izi, sizovomerezeka kuyendetsa Whonix-Workstation pakompyuta yomweyo monga Whonix-Gateway.
Whonix-Workstation imabwera ndi malo ogwiritsira ntchito a Xfce mwachisawawa. Imakhala ndi mapulogalamu monga VLC, Tor Browser, Thunderbird+TorBirdy, Pidgin, ndi ena. Whonix-Gateway imabwera ndi mapulogalamu a seva, kuphatikiza ma seva a Apache httpd, ngnix, ndi IRC, omwe angagwiritsidwe ntchito kuyendetsa ntchito zobisika za Tor. Kuyika Tor pa intaneti ndikotheka pa Freenet, i2p, JonDonym, SSH, ndi VPNKuyerekeza kwa Whonix ndi Michira, Tor Browser, Qubes OS TorVM, ndi corridor kungapezeke patsamba lino. Ngati mukufuna, wogwiritsa ntchito angagwiritse ntchito Whonix-Gateway yokha ndikulumikiza machitidwe awo achizolowezi kudzera mu izo, kuphatikizapo Windows, zomwe zimapangitsa kuti zikhale zotheka kupereka mwayi wosadziwika ku malo ogwirira ntchito omwe akugwiritsidwa ntchito kale.
Zosintha zazikulu:
- Misonkhano yosinthidwa kutengera zigawo za kugawa kwa Kicksecure kotetezedwa, komwe kumapitilira Debian njira zina ndi makonda kuti muwonjezere chitetezo (AppArmor yodzipatula, kukhazikitsa zosintha kudzera pa Tor, kugwiritsa ntchito gawo la tally2 PAM kuti muteteze ku kuyerekeza mawu achinsinsi, kukulitsa entropy ya RNG, kuletsa SUID, kusatsegula madoko a netiweki mwachisawawa, kugwiritsa ntchito malangizo ochokera ku KSPP (Kernel Self Protection Project), kuwonjezera chitetezo ku kutayikira kwa chidziwitso chokhudza ntchito ya CPU, ndi zina zotero).
- Yathandizira kulumikizana ndi netiweki ya Tor mwachisawawa (popanda kuyimba wizard yolumikizira pa boot yoyamba). Ogwiritsa ntchito omwe amafunikira kulumikizana mwachindunji ndi netiweki amafunsidwa kuti ayimbire padera ACW (Anon Connection Wizard).
- Chiwombankhanga cha Whonix-Firewall chasunthidwa kuchokera ku iptables kupita ku nftables.
- Thandizo la IPv6 labwino.
- Ntchito idapitilira pakuyesa Live kumanga kwa Whonix-Host, yokhala ndi choyikira. Kumangaku kumachokera ku malo a Kicksecure ndipo adapangidwa kuti apereke malo otetezeka ogwiritsira ntchito makina enieni ochokera ku Whonix-Gateway ndi Whonix-Workstation.
- Mitundu yosinthidwa ya Tor ndi Tor Browser.
- Zosintha zapangidwa kuti zithandizire netiweki ya Bisq 2 yokhazikitsidwa ndi P2P pakusinthana ndi ndalama za Digito.
- Ma templates a Qubes OS asinthidwa. Kusintha kuchokera ku pulseaudio kupita ku pipewire kwatha. Tinyproxy ndi protocol ya SOCKS amagwiritsidwa ntchito kuyendetsa magalimoto kudzera mu Tor.
- Mukathamanga pansi pa hypervisor ya KVM, kukula kwa RAM mu magawo a makina a Whonix-Gateway kumawonjezeka kufika 1280 MB, ndi Whonix-Workstation - mpaka 2048 MB, zomwe zimagwirizana ndi zomwe zinagwiritsidwa ntchito kale pa VirtualBox.
Source: opennet.ru
