Advanced users, developers and willing testers only.

1. After logging in, the Whonix ™ Setup Wizard / Anon Connection Wizard should appear.
2. Check the Tor version.

   anon-info

   anon-info

3. Check Tor config.

   anon-verify

   anon-verify

4. Check Tor warnings. Some messages can be safely ignored.

   grep -i warn /var/run/tor/log

   grep -i warn /var/run/tor/log

5. Check Tor errors.

   grep -i error /var/run/tor/log

   grep -i error /var/run/tor/log

6. Check for clock skew.

   grep -i clock /var/run/tor/log

   grep -i clock /var/run/tor/log

7. Test if arm is fully functional.

   arm

   arm

8. Test obfsproxy bridge connectivity is functional.

1. Power off Whonix-Gateway ™. Try to ping outside or to use the browser in Whonix-Workstation ™. Obviously this should not work.
2. Power on Whonix-Gateway ™ again. Visit https://check.torproject.org/ ^[archive] with Tor Browser. You should see a “Congratulations”.
3. Ping the Whonix-Gateway ™; this will not work. ^[2]

   ping 10.152.152.10

   ping 10.152.152.10

4. Note: Ping commands should NOT work for external addresses from your Whonix-Workstation ™; ICMP traffic ^[3] is not proxied, and filtered by Whonix ™ Firewall (/usr/bin/whonix_firewall) because Tor does not support UDP. For more information on ping inside Whonix-Workstation ™, see Whonix-Workstation Firewall, ping.
5. Use Tor Browser to visit an onion address - try the torproject.org onion service ^[archive].
6. Test Tor Button's New Identity Feature.
7. dig google.com must only return a single IP; compare that with the output on Whonix-Gateway ™ or Host.

   dig google.com

   dig google.com

8. See if syste gets autostarted.
9. Setup an Onion Service.
10. Test the onion service by connecting to its address with Tor Browser.
11. Test HexChat and connect to a an SSL protected IRC server.
12. Test HexChat and connect to an onion IRC server.
13. Run systemcheck leak tests.

    systemcheck --leak-tests

    systemcheck --leak-tests

14. After downloading the key, the user should verify its authenticity:

    gpg --keyid-format long --import --import-options show-only --with-fingerprint {{{source_filename}}}

    gpg --keyid-format long --import --import-options show-only --with-fingerprint {{{source_filename}}}

15. Before importing the key:

    gpg --import {{{source_filename}}}

    gpg --import {{{source_filename}}}

16. Test curl uwt wrapper.

    curl http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion

    curl http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion

17. Install lighttpd.

    sudo apt install lighttpd

    sudo apt install lighttpd

18. Restart lighttpd.

    sudo service lighttpd restart

    sudo service lighttpd restart

19. Try to download the local index.html.

    curl 127.0.0.1

    curl 127.0.0.1

20. Check.

    cat index.html

    cat index.html

21. Install git.

    sudo apt install git

    sudo apt install git

22. Check if regular git servers are reachable.

    git clone https://github.com/Whonix/Whonix

    git clone https://github.com/Whonix/Whonix

23. Check if Tor Project git onion service ^[archive] is online.
24. If yes, try to clone its onion Tor git repository.

    git clone http://xtlfhaspqtkeeqxk6umggfbr3gyfznvf4jhrge2fujz53433i2fcs3id.onion/tor.git

    git clone http://xtlfhaspqtkeeqxk6umggfbr3gyfznvf4jhrge2fujz53433i2fcs3id.onion/tor.git

1. Open a terminal.

2. Run the following command.

echo http://127.0.0.1

3. Right-click on the echoed http://127.0.0.1 ^[archive] and choose open link.

4. Check it is fully functional.

It should open and ask for confirmation to open that file in Tor Browser. Check that nothing happens when pressing No (which should be the default!) and conversely a new Tor Browser window is opened when pressing Yes.

1. Create a file ~/test.html with the following content.

test

2. Open Thunar (default file manager) and double-click on that file.

3. Check if it opens and asks for confirmation to open that file in Tor Browser.

1. Open a terminal.

2. Run the following command.

x-www-browser http://127.0.0.1

3. Check if it asks for confirmation to open that file in Tor Browser.

4. Check the same for.

gnome-www-browser http://127.0.0.1

5. Check the same for.

xdg-open http://127.0.0.1

6. Check the same for.

gnome-open http://127.0.0.1

7. Next, remove open-link-confirmation.

sudo apt purge open-link-confirmation

And repeat the tests above.

Test that all the following applications are fully functional:

1. Metadata
2. Tor Browser
3. Manually Downloading Tor Browser
4. Check if Tor Browser runs in Whonix ™ out of the box -- without use of the torbrowser script -- by running /home/user/.tb/tor-browser/start-tor-browser.

1. Check locale.

locale

2. Check apt config and see if periodic updates are disabled.

apt-config dump

3. Install a new kernel ^[archive] for testing purposes. ^[6]

apt-cache search linux-image

sudo apt install linux-image-flavour

4. Check the content of /etc/network/interfaces

cat /etc/network/interfaces

5. Check the content of /etc/resolv.conf

cat /etc/resolv.conf

6. Check /etc/apt/sources.list

cat /etc/apt/sources.list

7. Check iptables.

sudo iptables-save-deterministic

8. Reboot from terminal while X is running.

Switch to terminal.

Reboot.

sudo reboot

No errors should appear like "failed to kill service".

1. Check if aptitude is functional.

sudo aptitude update

See the footnotes if additional manual tests are preferred. ^{[7] [8]}

2. Test the re-installation of x11-common.

sudo apt install --reinstall x11-common

Whonix ™ is Supported by Evolution Host DDoS Protected VPS. Stay private and get your VPS with Bitcoin or Monero.

Love Whonix ™ and want to help spread the word? You can start by telling your friends or posting news about Whonix ™ on your website, blog or social media.