Well, there is no huge difference between Whonix and Tails Linux systems as both are Debian-based and designed to maintain the privacy, security, and anonymity of the person who uses them. However, there are some features offer by the developers of these secure Linux systems that make them different, and here we know what are those?
Security is the great concern of people who are in testing, ethical hacking, surfing the Dark web, or just one who worry about its privacy while going online. In such scenarios, Tails, Whonix, and other similar Linux systems will be great options to maintain security and anonymization. Let’s go through the different aspects of these two Linux operating systems to know what makes them different from each other.
As both the Whonix and Tails are based on Debian thus, in terms of the base code, they won’t be any different. The difference will be in the number of tools, how hardened the OS, portability, and more… For reference see the below table.
Some Key feature differences between Whonix and Tails
| Features | Whonix | Tails |
| Desktop environment | Xfce | Gnome |
| Route Internet Connection | Yes, via Tor | Yes, via Tor |
| Default Browser | Tor Browser | Tor Browser |
| Based on | Debian | Debian |
| Torifying Gateway | Yes | No |
| Live Mode | Yes | Yes |
| Live USB | No | Yes |
| Require Virtualbox, KVM, or Vmware | Yes | No |
| System requirements | Higher | Lower |
| Can run in Virtualbox or Vmware | Yes, even it is available by default in OVA format | Yes, it can but Persistent mode will not work |
| Persistence mode | Full | Only for Live USB |
| Open-source | Yes | Yes |
| Non-anonymous developers | Yes | No |
| Multi-language support | No | Yes |
| VPN support | Manual configuration is required | No |
| Email client | Thunderbird | Thunderbird |
| Installation difficulty | Medium | Easy |
| Comprehensive documentation | Yes | Yes |
| Disable power savings in VMs | Yes | No, but there is no sleep mode |
| AppArmor is enabled by default | Yes | Yes |
| Secure distributed network time synchronization | Yes | Yes |
| Web fingerprint | Same as TBB | May not same as TBB |
| Local disk encryption | No | Yes, for a persistent USB |
Know all in detail at this Wiki page.
Tails and Whonix System Requirements
For Whonix
- 4 GB RAM
- 32 GB disk space
- A 64-bit Intel or AMD processor with Intel VT-x or AMV-V respectively.
- Virtualization platform
For Tails
- 2GB of RAM
- USB stick of 8GB minimum or a DVD.
- A 64-bit x86-64 compatible processor for the latest version
Installation and setup
The setup and installation of Whonix and Tails are not much difficult, however it depends on what kind of user you are, advance or beginner. Tails installation is pretty much simple and straightforward, just download its ISO file, use some third-party software like BalenaEtcher and flash the ISO file to a USB drive and start using it on any system.
That means we can install Tails via Windows, macOS, Debian /Ubuntu, or using other Linux such as Redhat, Fedora, and more…
For installation you need:
- A computer with internet access to download its ISO or IMG file.
- A USB sticks (or memory cards or blank DVDs) with at least 4GB of memory
- Bootable USB maker software.
Learn– How to Setup and run Tails in VirtualBox.
To use Whonix, we need two virtual machines, basically two computers, one of which serves as a gateway to the Tor network is known as Whonix Gateway. Alternatively, this can also be connected via a proxy server (instead of a direct Internet connection). Whereas the other VM is known as Whonix Workstation that hosts the applications with which you work, such as browsers, email programs, or your important software.
To install it, we just need to visit its official website, where it is available in the form of Virtual Appliance for VirtualBox, Vmware, Qubes, and KVM. Here we will talk about its setup in VirtualBox.
Once you have the file simply open VirtualBox on your Linux, macOS, or Windows system. Click on the File -> Import Appliance and select the downloaded OVA file of Whonix. Once the Appliance is imported you will see two virtual machines one is for Gateway and the other Workstation.
For Whonix to run smoothly, your system or virtual machine should have at least 2 GB of RAM and 10 GB of free memory on the hard drive and the CPU must offer the Intel VT-x or AMD-V virtualization functions.
This means out-of-the-box Whonix supports full persistent mode and whatever you save on it will remain there until you clear it manually. However, in the case of Tails, we cannot use Persistent mode on VirtualBox, nevertheless, if you are using Live USB on a PC or laptop then Persistent mode can be turned ON manually.
Therefore, in terms of setup and usage Tails is easy and beginner-friendly and the same goes for Whonix in Virtualbox or VMware player, but other than that you have to put some efforts.
Whonix and Tails Interface
You would already have seen the screenshots given for Whonix and Tails Desktop. Both look simple and easy to handle because of the popular desktop environments they are using. XFCE which is a lightweight one, is on Whonix while Tails comes with classic GNOME which looks better than Whonix in terms of icons and other elements.
At first glance, the user-interface does not differ significantly from other well-known distributions. At the top-left, a button for the menu and the terminal, file manager, and the Tor browser icons are given on Whonix, and the similar kind of setup you will also find on Tails as well.
Nevertheless, the interface will not be an issue because the users using these two Linux systems are not looking for beauty instead for security. Thus, this question is null and void that which one has the best interface.
Both the systems start automatically and do not require a password. However, Tails doesn’t allow to use the system as a root because by default the password for it will be disabled and if the user wants to use it, then he has to set the same just before starting it, using the option dedicated for this.
On the other hand, Whonix comes with a pre-defined standard username and password that is “ user ” and “ changeme ”, respectively, are preset and should be changed in the first step. To do this, start the terminal and type the command
sudo passwd username
Note– Replace the username with root or the user account for which you want to change the password.
Security
Whonix is primarily focused on security and anonymization. To enhance the security it uses Tor network just like Tails to disguise the user’s IP address, location and also anonymizes the data traffic.
In the Whonix, the (forced) connection to the Tor network is only established via the gateway. The workstation is completely isolated in its own network and is also protected by a second firewall (regardless of the gateway). This means that DNS leaks are practically impossible and malware with root rights cannot determine your real IP address either. It even minimizes potential user errors that could lead to malfunctions.
The concept with the gateway also has another further advantage and some additional security as compared to Tails. Moreover, you can not only use the Whonix workstation to access the Internet but can also use the gateway for other computer or Android device and even several VMs can connect in parallel to it. In short, Whonix gateway give us an option to work more securely even with the security distributions such as “Kali” instead of the workstation, for example, we can install the gateway on external hardware to route all our data through it. That’s why Whonix is for advance users.
Well, that doeesn’t mean the Tails users don’t have any perks. The best thing about Tails is the portability and ability to done the job without leaving any trace. As it is Live USB Linux system, thus we can use it on any computer (home, public computer, library, etc.) without actually using its default OS and the hard drive to store our data. Thus, the user will not only have the anonymity of Tor network but also can access old or new hardware using just a small USB stick.
Tails spoofs MAC address and ofcourse can hide Ip address because of integrated Tor; the privacy can be enhanced further using the various inbuilt tools such as Tor browser, Onion Share and more… Being a Debian based, you can install various security and hacking open source tools that are available on kali linux.
The best thing is its designed, if you haven’t turned ON the Presistent mode, then the moment you turned off the PC everything will be cleaned , thus it leaves no trace of your activity, even someone else got you USB stick, no personal information or activity can be gleaned. However, the users using presistent volume option, they have to delete things manually using the option available on Tails. Nevertheless, your information of various things such as PGP keys, Bitcoin wallet info, wifi passwords, etc.on the presistent volume will all be stored in a secure encrypted form.
E-mails can be sent in Whonix and Tails by encrypting all messaged via OpenPGP that could be configured with a few clicks of the mouse and worked perfectly for the dispatch .
Whonix vs. Tails Advantage and Disadvantages
Tails Pros and Consa
#Pros:
- Nice Interface
- Very Easy to user and Handle
- Can boot from USB on any machine even on very old one.
- Clear all data and history, once system is restarted or shutdown, thus leaves no trace of activities such as logs, page files, bash history, browsing history etc.
- Root password is disabled by default.
- Nice and quick option to hide IP address, browser fingerprint and other privacy options.
Cons:
- Doesn’t support Presistent mode in VirtualBox
- Unlike Whonix, less possibilities for customization and configuration
- Not for very advanced users those want a Linux OS for long term security and hacking purposes.
- If you are using in VirtualBox, then no option to install Guest Additions because Vbox need the Virtual Machine restart to modify kernel.
Whonix Pros and Cons
#Pros
- Strong option to hide IP address because of Workstation Isolation from network with help of Gateway
- Easy to virtualize
- Woksation automatically identifies use and Gateway on VirtualBox and other Virtaulization platform, thus no additional configruation.
- Presistence support even on VirtualBox, thus all your updates, configuration, customization and software updates will reside on the OS even after shutting VMs down.
- A very strong option to secure identity while surfing online.
- Easy to install in VirtualBox, however, if you are not using virtual machine then it is difficult and need some expertise.
#Cons:
- Always turned ON presistence feature of Whonix, could put you in jeopardize, if some one gets the access of system or it gets compromised, he/she could have accessed to your browser history and other saved infromation. Therfore, manually cleaning is required either by clonnig or taking the snapshot of the VM, when you want to use the OS.
- Require high system configuration as it needs virtualization technology and two VMs one for Gateway and other for Workstation.
Conclusion
With these two operating system any user can quickly start a Tor integrated Linux operating system to create a safe and secure environment for surfing in a very uncomplicated and fast way.
So, if you are a regular internet uses, who wanted to secure his identity then simply install VirtualBox and Whonix, the setup hardly takes few minutes only. Special knowledge is not required at first, because Whonix is already completely preconfigured. However, if you want to go deeper and wanted to perform some real tech stuff online then make sure you have good knowledge on how to perform individual configurations.
Alhough the Whonix has very strong working environment using two VMs, however, it has a weak point as well. For instance in the past there was a case in which malware managed to break out of a virtual environment. Nevertheless, it is a once in blue moon thing, still you have to take care while transferring data between host and Whonix Guest VMs.
On the other hand, users those like portability and want instant access to some secure environment anywhere, anytime on any PC or laptop to access their data, Tails is the best option to go for.
Overall, the both Linux systems are good way to secure your self, yet, it’s all depend upon you and your requirements.
If you have some views or want to add something to this article, the comment section is all yours!!!
Thanks for the article. Whonix requires more than 4 GB. My host Windows PC has 4 GB of RAM. As soon as I opened the Workstation, after opening the Gateway, my system froze. This happened twice.
I would say that your host computer should have at least 8 GB to run Whonix. All the Youtube videos I saw about installing Whonix had 8-16 GB RAM on their systems