Whonix ®

Download

Windows Linux Mac VirtualBox KVM Qubes USB ISO (coming soon) More options Source Code

About

Overview Features Whonix vs VPNs Why Open Source? Project Activities Contributors Mission & Vision

Docs

Documentation FAQ Troubleshooting

Community

Forums Contribute

Support

Self Support First Policy Search Engines, Docs and AI Support (Limited) Reporting Bugs Contact (Restricted)

Tools Upload file Special pages Recent changes Print Version Page meta What links here Related changes Page information

Page Read Edit History Move Protection Unwatch Watch Delete Purge

User Preferences Watchlist Contributions Logout Create account Login

Donate

Anonymous Chat, IRC, XMPP in Whonix.

General Safety Advice[edit]

It is recommended to review the Do not Mix Anonymity Modes section in conjunction with this entry. For a comprehensive comparison of instant messengers, see here.

Encryption[edit]

Tor exit relays can eavesdrop on communications if encryption to the server is disabled. Depending on the protocol which an instant messenger is using, encryption might be disabled by default or not even supported. Tails has noted that without encryption, Tor exit relays can see the contact list, all messages, file transfers, and audio/video. ^[1] While encryption to the server prevents exit relay eavesdropping, it still leaves one problem unresolved: server logging.

High-risk users should also bear in mind that even in the event that strong and secure end-to-end encryption is used -- for example encrypted chat using .onion connections only (staying within the Tor network) -- advanced adversaries are capable of compromising the trusted computing base (TCB) ^[2] of nearly all platforms: ^[3]

All proper end-to-end encrypted (E2EE) messaging systems store private key(s) exclusively on user's device (endpoint). The holy grail of attacks against E2EE systems is called exfiltration where the sensitive data, namely the private keys or plaintext messages, are stolen from the endpoint. The attack is directed against the trusted computing base (TCB) of the target system. The overwhelming majority of TCBs are connected to the network and compromising them with polished malware that exploits a zero-day vulnerability, is trivial and undetectable.

Another consideration is that even when using end-to-end encrypted applications, additional strong security protocols such as forward secrecy ^[4] may not be available for group communication channels, see: More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema.

Web Interfaces[edit]

Avoid using web interfaces for any messengers because they break end-to-end encryption (E2E). If the website can show the messages, it follows that the server, if malicious or compromised, could also view the messages. Locally running applications should be preferred. Web apps running on a foreign server accessed through the user's browser are more exposed and therefore have a higher security risk.

Server Logging[edit]

Encrypted server connections do not prevent the server gathering interesting information about users, such as common contacts and the regularity of communications. An example list includes:

• account names
• buddy list (list of contacts)
• the exact date and time of logins
• message timestamps
• communication patterns like common contacts (see footnote) ^[5]

The content of messages will only be protected by using end-to-end encryption, for example OMEMO. The threat of server logging can be completely removed with decentralized (server-less) instant messengers like OnionShare.

Jabber / XMPP[edit]

Jabber/XMPP is a libre server-federation protocol designed with openness in mind: "... All of the existing XMPP servers, clients, and programming libraries support the key features of an IM system, such as one-to-one and multi-party messaging, presence subscriptions and notifications, and contact lists."

The system is decentralized because there is no central authoritative server; anyone can run a server. Some users are confused on this point because there are a number of large and popular public XMPP servers (like jabber.org), to which many have subscribed. ^[6] Each network user has a unique XMPP address called a JID (Jabber ID). The JID is similar to an email address insofar as it has a username and domain name like username@example.com ^[7]

Safely using the protocol requires proper use of encryption (such as OMEMO), because it is unwise to trust server connections are properly encrypted between each other. Jabber privacy is also limited, as various adversaries are capable of observing which accounts are communicating. Jabber and Tor combined only guarantee pseudonymous communications, as while the user's current location is hidden, the social graph can still expose their true identity. For tips on operational security when chatting anonymously, see this article by The Intercept. Also see: Why prefer open protocols such as Jabber/XMPP over proprietary ones such as ICQ?

IRC[edit]

When using IRC (Internet Relay Chat) inside Whonix-Workstation^™, the Ident Protocol is automatically blocked because Whonix-Workstation^™ is firewalled. Therefore the associated daemon will not identify the username which is linked with a particular TCP connection, as is normally the case.

The Tor Project Internet Relay Chat page contains a number of important recommendations and tips for safe IRC use:

Legal Data Access[edit]

In 2021, a Freedom of Information request uncovered a FBI training document that summarizes the level of access US law enforcement has to various secure messaging services. Most importantly, it revealed there is some limited access to encrypted messages in iMessage, Line and WhatsApp, but not to messages sent with Signal, Telegram, Viber, WeChat and Wickr; refer to the comparison table below.

Table: Legal Access: Secure Messaging Service Comparison ^[8]

Instant Messenger Selection Criteria[edit]

A recommendation if any can be made depends on the threat model, priorities of the user. An obvious recommendation is impossible at time of writing because no instant messenger exists with all of the minimum desired security properties.

Signal is adamant about phone number validation (see Phone Number Validation vs User Privacy) , registration by phone which leads to very bad usability for most users that wish to remain anonymous and/or hide their social graph from the server.

OMEMO encryption has amazing security properties but it's opt-in in all known chat programs, which is a huge usability issue. Meaning users could easily forget to enable it or due to bugs getting disabled. Furthermore, there are no known instant messengers that are serverless (and thereby hiding the user's social graph) as well as at the same time support OMEMO encryption. Unfortunately, only jabber based, server based instant messengers support OMEMO.

The most secure instant messenger would be serverless, peer to peer (p2p) over Tor onions with OMEMO encryption enabled by default. But no such instant messenger combining all security properties exist. The user can either choose a server dependent (jabber) OMEMO encrypted chat or serverless Tor onion to onion instant messenger.

Instant Messenger Security Properties Comparison[edit]

Table: Instant Messenger Security Properties Comparison

TODO: unfinished

TODO: other features in separate table

• Multiple Devices Support
• Offline Messages / Backlog
• File Transfer

Recommendation[edit]

Applications discussed in this chapter are listed in order of best usability and compatibility with Whonix, based on the opinion and experience of Whonix developers.

It should be noted that no single application listed here has a superior feature set. Users must make a choice based on personal preferences and their self-assessed threat model:

1. Dino IM It provides good UX, a modern and clean look and OMEMO support. On the downside, it requires a Jabber server which weakens anonymity.
2. Gajim has more Jabber users, is written in memory-safe python, supports offline messages, and can provide OMEMO-grade encryption. On the downside, it requires a Jabber server which weakens anonymity.
3. OnionShare provides a serverless (hosted using a Tor onion service), secure, ephemeral and anonymous chat feature. It is particularly useful because it does not require account creation, is encrypted end-to-end and reduces the risk of messages being stored locally.
4. Nheko Reborn is another desktop IM client for the Matrix protocol and can be used for IRC channels. The developers do not recommend it as a daily driver due to possible implementation bugs.

Dino IM[edit]

Overview[edit]

Dino IM is a modern XMPP ("Jabber") Chat Client written in GTK+/Vala for GNU/Linux and is available in Debian. OMEMO is supported, but needs to be toggled in the chat window. OpenPGP is also supported.

Installation[edit]

Dino IM is planned for inclusion by default in Whonix 16. One outstanding issue at present is broken OMEMO compatibility with Gajim users. ^[13]

Key Backup[edit]

In addition to the fingerprint displayed in clients, OMEMO uses session/ephemeral keys: as soon as you chat with someone, these keys are created and they are replaced with new ones after every message exchange.

Without the latest session keys, incoming messages cannot be decrypted. This means when session keys are imported from an older backup, problems are likely if the keys were used in between.

Both types of keys are stored in ~/.local/share/dino/omemo.db (a SQLite database). Problems are avoided so long as keys are not backed up while Dino is running and Dino is not started from the same database twice.

Gajim[edit]

Overview[edit]

Ubuntu provides a succinct overview of Gajim: ^[14]

Gajim is a free software, instant messaging client for the Jabber (XMPP) protocol which uses the GTK+ toolkit. It runs on GNU/Linux, BSD and Windows. The name Gajim is a recursive acronym for Gajim (is) a jabber instant messenger. The goal of Gajim is to provide a full featured and easy to use Jabber client. Gajim works nicely with GNOME, but does not require it to run. It is released under the GNU General Public License.

Gajim has various features, including: ^[15]

• chat client synchronization
• group chats
• sending of pictures, videos and other files to friends or groups
• secure end-to-end encryption via OMEMO or PGP
• the option to keep and manage all chat history
• connection compatibility with other messengers via transports, such as IRC
• various other features are available via plugins

In 2021, audio/video is reportedly not functional in Gajim. Further, OTR support was dropped in Gajim release 1.0, but the OMEMO plugin is an encryption alternative. ^[16]

Figure: Gajim Client in Whonix

Installation[edit]

The steps below install Gajim, along with the OMEMO encryption plugin and HTTP Upload plugin (which is required for file transfers). ^[17] The latter plugin is fully integrated into the core Gajim software as of version 1.0. Upon first launch of the program, users can use an existing XMPP account or create a new one.

Update the package lists.

sudo apt update

Install gajim and gajim-httpupload. ^[18]

sudo apt install gajim gajim-httpupload

Start Gajim from the start menu or type in konsole.

gajim

^[19]

Configuration[edit]

Account[edit]

On first launch, an Account Creation Wizard Dialog will appear. Use the wizard to either create a new account to connect to the jabber network or use an existing account. For new accounts, there are multiple jabber servers available and only a username and password is required to join. ^[20]

Gajim Settings[edit]

The following changes are recommended for better security and privacy.

Gajim cannot be installed by default in Whonix yet, as there is more development work TODO; see Dev/Gajim.

IRC Client[edit]

Undocumented

OnionShare[edit]

See OnionShare.

element[edit]

Notices[edit]

element installation[edit]

sudo extrepo enable element.io

Quaternion[edit]

Overview[edit]

Quaternion is a Qt-based desktop IM client for the Matrix protocol. Matrix is an open, federated communications protocol. ^[25]

At time of writing, Quaternion did not support end-to-end encryption yet.

For example, it is possible to create an account on the tchncs.de home server for a more private experience; less data is collected about users compared to the matrix.org home server. The privacy issues are inherent in the synapse server side software itself; refer to this list for a full write-up. Besides federating with other Matrix instances, Quaternion supports bridging to IRC, Telegram and many other protocols. ^[26]

Installation[edit]

Nheko Reborn[edit]

Overview[edit]

Nheko Reborn is: ^[27]

... a Qt-based chat client for Matrix, an open, federated communications protocol. The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app and less like an IRC client.

The developers explicitly warn that although the current implementation of end-to-end encryption is functional, it may have bugs that affect security. Further, it may be necessary to bootstrap cross-signing keys in a different client. Online key backup is not supported, but this can be performed offline. Most major chat features are available such as: VoIP calls (voice and video); user registration; creating, joining and leaving rooms; sending and receiving invites/files/emojis and so on.

Refer to the Nheko Reborn GitHub README for further information.

Installation[edit]

Cwtch[edit]

Cwtch Introduction[edit]

Cwtch (by Open Privacy). ^[28]

related:

• upstream documentation: Running Cwtch on Whonix
• Whonix forum discussion: Cwtch messaging

Cwtch Whonix-Gateway Installation Steps[edit]

Extend the onion-grater whitelist in Whonix-Gateway^™ (sys-whonix).

^[30]

Cwtch Whonix-Workstation Installation Steps[edit]

Unfortunately not installable from Debian package repositories at time of writing. ^[31]

Inside Whonix-Workstation.

1. Find latest version and download link.

By visiting upstream download page https://cwtch.im/download/#linux.

2. Download.

Note: Replace download link with newer version if available.

scurl-download https://cwtch.im/releases/cwtch-v1.14.0/cwtch-v1.14.0.tar.gz

3. Digital software signature verification.

• Digital signatures are a tool enhancing download security. They are commonly used across the internet and nothing special to worry about.
• Optional, not required: Digital signatures are optional and not mandatory for using Whonix, but an extra security measure for advanced users. If you've never used them before, it might be overwhelming to look into them at this stage. Just ignore them for now.
• Learn more: Curious? If you are interested in becoming more familiar with advanced computer security concepts, you can learn more about digital signatures here digital software signatures.

Unavailable. Apparently upstream does not provide digital signatures yet. Cwtch upstream feature request: digital software signatures - sign releases

4. Extract.

tar xvf cwtch*.tar.gz

5. Change directory.

cd ./cwtch

6. Run the Cwtch for Whonix installer.

./install-whonix.sh

6. Done.

Installation of cwtch has been completed.

Cwtch Usage[edit]

Inside Whonix-Workstation.

To start Cwtch.

/home/user/.local/bin/cwtch

Web Browser / JavaScript Clients[edit]

Web clients can provide weaker or stronger security depending on the user's threat model.

One disadvantage of web clients is that they rely on the server not attacking the user and stealing their encryption keys from the browser. Websites can target specific users with malicious JavaScript whereas with an installed application, the code is completely static. ^[32]

Furthermore, installed applications can utilize TLS certificate pinning to better mitigate man-in-the-middle attacks by eliminating the dependence on potentially compromised certificate authorities. Certificate pinning is already being extensively used by applications such as Signal ^[33], ProtonMail ^[34] and others.

In addition, the stateless design of Tor Browser will erase any keys created and approved by communicating parties. This can cause confusion about the trustworthiness of contacts in subsequent sessions -- one workaround is to use a dedicated install of Firefox for that purpose.

However, there are advantages to web clients too. Websites are much less privileged than installed applications and have no direct access to system resources. Common browsers also often employ browser sandboxing technologies to contain malicious websites even in the event of a browser exploit (unless chained with an additional sandbox escape exploit).

Element Web[edit]

Element Web App is a browser-based Matrix client. It can also be run from different platforms.

Converse.js[edit]

Converse.js is an OMEMO browser client which is provided by some XMPP hosting services. However, chat encryption is only available on "Trusted Devices".

Deprecated Chat Clients[edit]

Introduction[edit]

The following is a list of chat clients which were previously documented on this page. It is not a list of all deprecated chat clients that have ever existed.

CoyIM[edit]

CoyIM is no longer included in Whonix due to technical issues. Namely, it is currently not available from Debian stable or backports package sources (packages.debian.org). ^[35] There is a chance it will be reintroduced when Whonix 16 (based on Debian bullseye) is released. Manual software installation might also be possible (see Install Software), but that procedure is undocumented by Whonix developers.

Nheko[edit]

The original Nheko application is no longer maintained and was last worked on in 2018. ^[36]

As an alternative, consider installing Nheko Reborn.

Pidgin[edit]

Pidgin supports most protocols and OTR end-to-end encrypted chat. However, it is not recommended because it has a very poor security record with many remotely exploitable bugs. Security researcher and developer Micah Lee notes this is the result of reliance on legacy protocols and the libpurple, libotr and libxml libraries which are: "... massive, written in C/C++, and are littered with memory corruption bugs. ..." ^[37]

RetroShare[edit]

Whonix developers no longer list RetroShare, which is a friend-to-friend (peer-to-peer), decentralized network and not an anonymizing network. Encrypted RetroShare connections support chat, voice and video, mail, file-sharing, forums and Tor. ^[38] Although RetroShare is under active development, ^[39] there are several serious concerns which disqualify a recommendation:

• The RetroShare package is signed with weak 1024-bit keys (in late-2018).
• A 2016 code review which focused on implementation vulnerabilities discovered multiple security issues: ^[40]
  • The attack surface is high due to the feature-rich codebase.
  • Systemic "insecure coding practice" was identified, particularly "...inconsistent return value checking and error handling, poor usage of explicit and implicit typecasting, and relaxed handling of adverse security edge-cases."
  • Within a 24-hour period, auditors had developed proof of concept exploits for web-like vulnerabilities, weak binary protections, and out of bound memory reads and remote memory corruption (promptly rectified by developers).
• A coverity scan of the RetroShare code shows a large number of outstanding defects, along with a relatively high defect density. ^{[41] [42]}

Ricochet IM[edit]

Ricochet IM (original) is no longer recommended as a decentralized (server-less) option because it is not functional in Whonix and deprecated upstream by its original developers. Ricochet IM 'only' uses onion encryption and is difficult to set up and use. OTR or OMEMO-grade encryption is not available and offline messages are not supported. ^{[43] [44]} Ricochet Refresh is unsupported since it was broken in Whonix 15 despite all efforts to fix it. A contributor submitted github pull requests ^[45] which were unfortunately rejected due to Ricochet Refresh's rewrite gosling in development. The Ricochet Refresh was changed and Ricochet rewrite is now non-freedom software. The chosen license for gosling (a rewrite of Ricochet Refresh) is the same non-freedom software license Commons Clause.

An issue Ricochet-Refresh is now proprietary had been reported. According to the Ricochet-Refresh developer's reply it seems unlikely that the license would be reverted to a Freedom Software license.

Update: Was reverted.

^[46]

(archived documentation)

TorChat[edit]

TorChat has not been recommended by Whonix developers since late-2015. The reason is development has been at a standstill since 2013 and the TorChat developer does not respond to other people, suggesting the project has been abandoned. TorChat is also an unofficial project and unaffiliated with The Tor Project. Since communication, support, active development and security fixes are essential for anonymity-related projects, modern software alternatives are recommended. ^[47]

Another reason to avoid TorChat is the findings of a 2015 security analysis ^[48] which inspected the protocol and Python implementation: ^[49]

It was found that although the design of TorChat is sound, its implementation has several flaws, which make TorChat users vulnerable to impersonation, communication confirmation and denial-of-service attacks.

Tor Messenger[edit]

Do not use Tor Messenger! It was deprecated by upstream developers in early-2018. ^[50]

Tox[edit]

Tox is a fully-featured, decentralized (server-less) option which employs strong encryption, but the software is in alpha status.

qTox has been removed from Whonix due to serious security issues.

Other Software[edit]

For anonymous Voice over IP (VoIP) or encrypted, anonymous phone calls using the Tor anonymity network, see: VoIP.

If a messenger program is not listed in this chapter, it is for now recommended against. If readers feel any privacy-respecting chat clients are missing on this page, first search the Whonix forums to see if that application has been discussed in the recent past. Any additions to this page will be based on an objective analysis of the software's underlying strength and compatibility with Whonix. ^[51]

See Also[edit]

• Signal
• Telegram
• OnionShare
• Wickr

Footnotes / References[edit]

License[edit]

Whonix Chat wiki page Copyright (C) Amnesia <amnesia at boum dot org>
Whonix Chat wiki page Copyright (C) 2012 - 2024 ENCRYPTED SUPPORT LP <adrelanos(at)whonix.org (Replace (at) with @.)Please DO NOT use e-mail for one of the following reasons: Private Contact: Please avoid e-mail whenever possible. (Private Communications Policy) User Support Questions: No. (See Support.) Leaks Submissions: No. (No Leaks Policy) Sponsored posts: No. Paid links: No. SEO reviews: No. >

This program comes with ABSOLUTELY NO WARRANTY; for details see the wiki source code.
This is free software, and you are welcome to redistribute it under certain conditions; see the wiki source code for details.

Whonix The most watertight privacy operating system in the world.

Dark mode

Follow us on social media

Supported by Power Up Privacy

Whonix is proudly supported until 2025 by Power Up Privacy, a privacy advocacy group that seeks to supercharge privacy projects with resources so they can complete their mission of making our world a better place. (Strictly subject to our sponsorship policy.)

At Whonix we value freedom and trust, supporting Open Source and Freedom Software

By using this website, you acknowledge you have read, understood, and agree to be bound by these agreements: Terms of Service, Privacy Policy, Cookie Policy, E-Sign Consent, DMCA, Imprint 2012- 2024 ENCRYPTED SUPPORT LP

Your support makes
all the difference!

We believe security software like Whonix needs to remain open source and independent. Would you help sustain and grow the project? Learn more about our 12 year success story and maybe DONATE!