Distribution release Whonix 17 has been published, aimed at providing guaranteed anonymity, security, and protection of private information. The distribution is based on Debian GNU/Linux and uses Tor to ensure anonymity. The projects of the project are distributed under the GPLV3 license. For loading virtual machines in OVA format for VirtualBox (2 GB with XFCE and 1.3 GB console), click here. The image can also be named for use with the KVM hypervisor.
The feature of Whonix is the division of the distribution into two separately launched components: Whonix-Gateway and Whonix-Workstation. Whonix-Gateway implements a network gateway for anonymous communications, while Whonix-Workstation includes a desktop environment. Both components are delivered inside one loading image. The Whonix-WorkStation network only exits to the network through the Whonix-Gateway gateway, which isolates the working environment and allows the use of only fictitious network addresses. This approach protects the user from leaking a real IP address even during potential web browser hacks or the exploitation of vulnerabilities that provide root access to the system.
If Whonix-Workstation is hacked, the attacker will only obtain fictitious network parameters as the real IP and DNS parameters are hidden behind the Whonix-Gateway, which directs traffic only through Tor. However, it is important to note that the Whonix components are designed to run as guest systems, which means there is a possibility of exploiting critical 0-day vulnerabilities in virtualization platforms that can provide access to the host system. Hence, it is not recommended to launch Whonix-WorkStation on the same computer as Whonix-Gateway.
The default Whonix-Workstation provides the XFCE user environment. It includes programs such as VLC, Tor Browser, Thunderbird+Torbirdy, Pidgin, and more. The Whonix-Gateway supply includes a set of server applications like Apache HTTPD, NGINX, and IRC servers that can be used to organize hidden Tor services. Whonix also supports passing over Tor tunnels for Freeneet, i2p, Jondonym, SSH, and VPN. Comparisons of Whonix with Tails, Tor Browser, Qubes OS Torvm, and Corridor can be found on this page. Additionally, users can choose to only use Whonix-Gateway and connect their usual systems through it, including Windows, to ensure anonymous browsing on their already-used workstations.