Whonix is an operating system focused on anonymity and security. It’s based on the Tor anonymity network, Debian GNU/Linux and security by isolation. In Whonix, DNS leaks are impossible, and not even malware with root privileges can find out the user’s real IP.
Whonix consists of two virtual machines on a separate, isolated virtual network. One virtual machine (VM) is for actual usage (browsing, etc), the other is a gateway which uses Tor to anonymize all traffic sent to it by the first virtual machine. In theory:
- All traffic is sent through Tor, eliminating unwanted data leakage
- Programs like Flash can be run, as the above stated security concern is eliminated
- Compromise of the Virtual Machine used for browsing doesn’t compromise one’s location or identity
Compare this to the anonymous operating system TAILS. With TAILS, if your computer is compromised (someone has remote access to it), your location is also compromised, as they now have access to your clearnet IP address with a simple ifconfig
and, if you have a wireless card, access to which wirelss APs are around (this is how Google and Apple can track a device without GPS). So, Whonix is safer in theory.