search

tasket / Qubes-vpn-support

VPN configuration in Qubes OS
GNU General Public License v3.0
126 stars 28 forks source link

General leak test results - Tor #1

Open tasket opened 8 years ago

tasket commented 8 years ago

So far, Wireshark is showing no leaks (and zero non-arp chatter) on the eth0 and vif interfaces when using whonix/tor over the vpn vm.

Test pages from tor project. ​

Some results:

http://samy.pl/evercookie Pass

http://stevesouders.com/tests/clearbrowser/save.php, 'New Identity', ​http://stevesouders.com/tests/clearbrowser/check.php Pass ​ http://phoul.github.io / ​http://websocketstest.com All 'yes' except HTTP Proxy. ​ http://www.youtube.com/watch?v=8LsxmQV8AXk (HTML5 test video "Switch to Linux") Plays fine, right away

http://www.dnsleaktest.com/ No servers appear after 10min (Pass?)

http://www.ip-check.info Not applicable (fingerprints browser characteristics)

Versions: Qubes 3.1 Debian 8 (template for VPN VM) Whonix rel. 201602110654 Tor Browser 5.5.5

tasket commented 8 years ago

Tests from Whonix project: https://www.whonix.org/wiki/Dev/Leak_Tests

WhonixCheck Results (Gateway): WARNING: Check Kernel Messages Test Result: Remarkable kernel message found using dmesg. [ 1979.734382] timekeeping watchdog: Marking clocksource 'tsc' as unstable, because the skew is too large: WARNING: Whonix Meta Packages Test Result: Whonix-Gateway detected, but the meta package qubes-whonix-gateway is not installed. Did you accidentally uninstall it? See also: https://www.whonix.org/wiki/Whonix_Debian_Packages If you know what you are doing, feel free to disable this check. Create a file /etc/whonix.d/50_whonixcheck_user.conf and add: whonixcheck_skip_functions+=" check_meta_packages " INFO: SocksPort Test Result: Connected to Tor. IP: 217.12.204.104 INFO: Whonix News Result: √ Up to date: whonix-gateway-packages-dependencies 3.4-1 WARNING: Debian Package Update Check Result: apt-get reports that packages can be updated. Please update your 'whonix-gw' TemplateVM.

  1. Open a TemplateVM terminal. (dom0 -> Start Menu -> Template: whonix-gw -> Terminal)
  2. Update. sudo apt-get update && sudo apt-get dist-upgrade
  3. Shutdown your TemplateVM. (dom0 -> Qubes VM Manager -> right click 'whonix-gw' -> Shutdown VM)
  4. Shutdown and restart this Template-Based ProxyVM. (dom0 -> Qubes VM Manager -> right click 'sys-whonix' -> Shutdown VM) INFO: Whonix APT Repository: Enabled. When the Whonix team releases JESSIE updates, they will be AUTOMATICALLY installed[...]

Hmmm... This is a fresh whonix install with one update, so I'm puzzled about the metapackage warning.

The clock skew warning... An effect of VPN latency?

tasket commented 8 years ago

WhonixCheck results (Workstation):

WARNING: Whonix Meta Packages Test Result: Whonix-Workstation detected, but the meta package qubes-whonix-workstation is not installed. Did you accidentally uninstall it? See also: https://www.whonix.org/wiki/Whonix_Debian_Packages If you know what you are doing, feel free to disable this check. Create a file /etc/whonix.d/50_whonixcheck_user.conf and add: whonixcheck_skip_functions+=" check_meta_packages " INFO: SocksPort Test Result: Connected to Tor. IP: 45.62.251.146 INFO: TransPort Test Result: Connected to Tor. IP: 77.247.181.163 INFO: Stream Isolation Test Result: Functional. INFO: Whonix News Result: √ Up to date: whonix-workstation-packages-dependencies 3.4-1 WARNING: Debian Package Update Check Result: apt-get reports that packages can be updated. Please update your 'whonix-ws' TemplateVM.

  1. Open a TemplateVM terminal. (dom0 -> Start Menu -> Template: whonix-ws -> Terminal)
  2. Update. sudo apt-get update && sudo apt-get dist-upgrade
  3. Shutdown your TemplateVM. (dom0 -> Qubes VM Manager -> right click 'whonix-ws' -> Shutdown VM)
  4. Shutdown and restart this Template-Based AppVM. (dom0 -> Qubes VM Manager -> right click 'Anon-whonix' -> Shutdown VM) INFO: Whonix APT Repository: Enabled. When the Whonix team releases JESSIE updates, they will be AUTOMATICALLY installed...