Frequently Asked Questions

The software offered by us is free of charge and open source. Some of the JonDonym services the software may connect to are also free of charge. The high quality Premium services, however, may only be used when paying a fee.

How may I send you money?

Payment is done exclusively using the program JonDo JonDo. If you use it for starting a payment process. you may choose between different payment methods and are autoamtically forwarded to the right page.

How may I choose a rate?

This is done directly by using the program JonDo. If you connect to a Premium service, or if you create a one-time account, you will be led to a charging dialog which presents your the rates available for choosing.

Do you support credit/Visa/Mastercard payments?

Yes, but currently only as indirect payments using the payment method PayPal.

May a pay for a rate with more than one paysafecard?

Yes, paysafecard allows you to combine up to ten paysafecards for one single payment.

Typically, PayPal payments are billed at once or within seconds. In some cases, however, PayPal delays a payment by one, two or three days. This is caused by an automatic fraud recognition mechanism used by PayPal which does not always work satisfactorily.

Unfortunately, PayPal does not report such a payment to until the review is completed. Your JonDonym account will get activated not till then. You may speed up the review by writing a message to PayPal telling them that your payment to us was desired and no fraud attempt.

My internet provider (AOL, T-Online, ...)?

Your provider can only see that you are using the anonymization service JonDonym. An encrypted channel is set up between JAP / JonDo and the anonymization servers, over which your data is sent. All data requests in the browser that leave or arrive at your computer are therefore encrypted.

However, if you installed the provider's access software on your computer, he could bypass JAP / JonDo easily. You should not do this accordingly. You do not need this software to access the internet using your provider (even if he should tell you that...).

My boss, colleagues, or system administrator at work?

The only thing apparent at work is that you are using the anonymization service JonDonym. An encrypted channel is set up between JAP / JonDo and the JonDonym servers, over which your data is sent. All data requests in the browser which leave or arrive at your computer are therefore encrypted.

Of course, when surfing at work, one should be aware that the old "reading-over-your-shoulder" type of observation is just as easy with or without JAP. Browsers and operating systems on desktops often save data from recently visited websites, for example, in the address bar or in the Temporary Internet Files folder. This has the comfortable advantage of automatically completing typed addresses, but the disadvantage is that others who use the same computer or user account can very easily see where the last user surfed. This is the default setting in most browsers, but can be deactivated in the options menu.

A Mix / JonDonym Operator?

A Mix Operator can only determine a relationship between the incoming and outgoing connections to his mix server and must, in fact, do this to ensure that the data packets were correctly transferred. If the user uses a Mix Cascade consisting of more than one independently run Mix, the Mix Operator of one single Mix in the chain cannot determine a relationship between the user and the websites surfed.

For this reason, we especially point out that the "Dresden-Dresden" Mix Cascade is for test purposes and is run solely by members of the TU Dresden. Whoever uses this Cascade is protected from external observation, but the TU Dresden could theoretically observe everything.

No log files are kept at the anonymisation service with the following exceptions:

• For research purposes, we sometimes record statistical data during very limited periods, for example the number of data packets processed per user or a list of the most requested websites .This data is not related to specific persons. The data is statistically processed and the records are deleted.
• We save the current number of active users on each mix cascade for statistical purposes and as information for the user. JAP / JonDo continually displays this information when JAP is running and active.

Law enforcement requires legal surveillance court orders against each Operation in a Mix Cascades and, for orders concerning data in the past, laws for data retention. The legal basis, that differs from country to country, is documented by us.

In principle, any service could be used by the government for control and surveillance. For this reason, transparency, clarity, and trust of the service's function are vital to the user.

Since there is no central instance involved in the Mix concept, all Mixes involved in a Cascade would need to work together in order to track a connection. Because of this, any kind of observation of the internet user, including from the side of the government, is not made easier, rather more difficult by using JAP / JonDo.

Of course, such anonymisation services especially attract interest for surveillance. We are definitely aware that unobservable internet usage is for this reason especially important for users of the anonymisation service. JonDos and the Operators of JonDonym are well aware of the responsibility toward their users.

No, only the data you send over your web browser that is configured for JAP / JonDo are encrypted.

Typically no, as, for achieving such an end-to-end encryption, the requested web server would have to support encryption (HTTPS/SSL) as well. Unfortunately, most of the web site do not support this. An encrypted channel ist set up between JAP / JonDo and the server of the JonDonym service only. An observer between the last JonDonym Mix and the web site may typically read the transmitted data in plain text.

HTTPS / SSL for additional encryption?

Yes! JAP / JonDo only anonymises. It doesn't keep your data secret all the way to the receiver. An encrypted channel is set up between JAP / JonDo and the JonDonym servers.

If you don't use SSL, however, the data leaves the final server in a Mix Cascade unencrypted. In order for data to be sent encrypted from the anonymization service to the requested server, the server has to support encryption. This is done with the standard SSL protocol. Therefore, calling up websites with "https" instead of "http" is recommended for sensitive data.

HTTP-Filter for browser information like browser type and operating system?

Yes! For optimal anonymity, all JonDonauts should show the same behaviour. By analysing and comparing the data tranferred by the browser, for example the browser type or the operating system, users may be partitioned into groups, which diminishes anonymity. JAP / JonDo will receive its own Filter, that euqalises such information for all JonDonauts, very soon. However, if using JavaScript or HTTPS conenctions, such filter may be prinzipally bypassed. Therefore in the long run such a filtering is planned for selected browsers (especially Firefox). Unfortunately there is no practical way to secure Microsofts's Internet Explorer like this. Consequently, it should not be used for anonymous surfing.

Personal firewall?

Even while JAP / JonDo itself does not protect you from attacks from the Internet, we basically do not recommend using personal firewalls, as they often act as specific point of attack for a system. Moreover, personal firewalls often interfere with the smooth operation of JAP / JonDo.

Unfortunately, so-called active contents allow for gaining a lot of information about the user's computer. While JavaScript "only" allows to create unique pseudonyms for computers, third parties may typically use the other means mentioned to get the JonDonaut's IP address even if JonDo is activated. Consequently, there is no real anonymity for those who emphasise colorful animations and easy accessible multimedia content. However, we are doing research on technical solutions for that.

Our official support for E-Gold has been cancelled, as we thereby got no revenue worth to mention, and moreover got problems with intransparent account limits and temporary blockings.

JonDo versions earlier that 00.11.001 unfortunately cannot automatically update in directories that are protected by your operating system. Solution: Do a complete reinstall of JonDo.

Almost always, this problem is casued by a personal firewall running on your computer (Kaspersky, ZoneAlarm,...) which blocks connections of JonDo. Please release JonDo in the firewall options or shut down the firewall.

Just delete the installation folder if you have used the Windows installation file (paf.exe). JDF is then completely removed from your system. If you have included the profile directly in your Firefox, you can delete it using the Firefox profile manager. In case it does not open automatically on start, you may open it from console, shell or in the Windows start menu under "Run" by typing firefox -P There you may delete the profile named "JonDoFox". Hints for unexperienced computer users:

• The space between "firefox" and "-P" ist important, as is the upper/lower case of the letters!
• Uninstallation is only possible if Firefox is installed. Therefore do not uninstall Firefox if you want to uninstall JonDoFox!
• Firefox may not run/be started/be opened when you type the above command!

In the file FirefoxPortable\FirefoxPortable.ini, set the entry DisableSplashScreen to true

Yes. However, data about your visited websites wil then be stored on your local drive. This setting is therefore not recommended. For all people, who would like to do this nevertheless: Enter about:config in the browser line, get the entry browser.startup.page and set it to the value 3. Then go to browser.sessionstore.enabled and set it true. Moreover, set browser.sessionstore.resume_session_once to false and set privacy.item.history to false.

In JonDoFox, you may choose File->Load other profile->[Profile name] to switch to another profile, e.g. to the Firefox "default" profile. You may thereby also launch more than one profile at the same time.

Alternative:

Close Firefox first. Then you may start the profile mananger by using

Windows

• Start/Windows-Icon->Run or
• Start/Windows-Icon->Start Search
• Start/Windows-Icon->Programs->Accessories->Run
• Start/Windows-Icon->Programs->Accessories->Prompt
• Windows-Key + R

Linux / Mac OS X

• the shell/command line

There, type:

firefox -P

If you would like to get the list of available profiles presented at each start of Firefox, just remove the check arrow "" in the profile manager.

Hints for unexperienced computer users:

• The space between "firefox" and "-P" ist important, as is the upper/lower case of the letters!
• Uninstallation is only possible if Firefox is installed. Therefore do not uninstall Firefox if you want to uninstall JonDoFox!
• Firefox must not run/be started/be opened when you type the above command!
• You will find more information about the profile manager here.

These problems may occur on very large USB flash drives (confirmed for Corsair Flash Voyager 2, 16GB). Please defragment the USB flash drive and repeat the installation.

If you just want to view web videos on common video portals, you do not need Flash (ref. related FAQ). You should enable Flash in your browser only if you know what you are doing. Then, however, set at least retrictive security settings before:

In order to activate the settings manager, you first have to allow the domains macromedia.com and adobe.com for JavaScript. After that, you should restrict the storage space for web sites to "0" and additionally forbid storage of web site information (third parties) completely. This prevents you from getting so-called Flash cookies.

In order to prevent your IP address from being unconvered easily, you have to forbid your computer any internet connections to the ports 80 and 443. You may do this, for example, by using a personal firewall. If possible, allow exceptions for the JonDonym network addresses. The JonDonym services are, in case of need, automatically reachable by other ports, but this may lead to delays when connecting. Moreover, the payment instance may only be contacted if JonDo has previously established an anonymous connection which serves as tunnel.

In order to prevent automaticed attacks by Flash on your system, you should execute Flash contents only in virtual environments like VMWare or Virtual PC, or in a sandbox.

Hint A lot of websites show Flash applications only if you have previously allowed JavaScript for these sites.

The file can be unpacked with a ZIP program. Such a program is integrated in almost all operating systems. In the ZIP file, you will find an installation help and an install script. You cannot start the install script directly from the archive. Start it after unpacking the archive files it to a separate directory.

Tip: Firefox should be installed on your computer before.

In order to keep yourself from having to activate the dangerous Flash in your browser, you should always download web videos to your hard drive and play them from there. This also saves you the additional data traffic which would be needed to view a streaming video again. JonDoFox contains some download tools for doing this. For Windows and Linux (under WINE), there moreover exists an excellent freeware program called aTube Catcher. You may configure this program for JonDo by activating the HTTP proxy in aTube Catcher under Tools->Connection settings and setting it to Host:127.0.0.1 and Port: 4001

For playing movies of all video formats and on all operating systems, the free VideoLAN Media Player is a very good choice.

JonDoFox is, in its basic settings, not compatible with RefControl. However, if you do like follows, you may install and use RefControl without any restrictions:

• Using the URL about:config, set the value extensions.jondofox.set_referrer to false
• DO NOT restart Firefox now, but...
• install RefControl!
• Now you may restart Firefox and use RefControl.

Dr. Web may give you a first evidence about malicious files. If possible, however, you you use at least one additional virus scanner to check downloaded files.

First, start your old Firefox profile using the profile manager. The,n save the bookmarks stored there into a file:

1. menu "Bookmarks"
2. "Organize Bookmarks..."
3. "Import and Backup"
4. "Export HTML..."

After that, close Firefox and start JonDoFox, also using the profile manager. Then load the saved file the in the same steps as above, this time by choosing "Import HTML...", however.

The recommended method for an update is to "over-install" the version of JonDoFox isntalled on your system with the current version. Moreover, when updating single extensions using auto-update, you should normally face no problems as well.

Also the browser itself may be updated automatically. In case of major version hops, howver, it may happen that one or more important extensions do not work any more.

The browser history is already deactivated in JonDoFox by default. That what you see in the address bar are just your bookmarks, for giving you faster access to them. From a security point of view there is no reason to switch off this behaviour. However, if you are concerned (which is unsubstantiated after the current state-of-the-art knowledge of technology) that your bookmarks could be read by web sites, you should delete all your bookmarks and keep from creating new ones instead of fading them out of your address bar.

Just see this FAQ about the profile manager for further instructions.

Firefox has an automatic recognition feature for web sites that are known as fraudulent or as a malware distributor. Every 30 to 60 minutes, this causes an update of a local database from Google which holds the addresses of those web sites. The database is needed, so that not on every requested page Google has to be contacted. This procedure is thereby very privacy-friendly. If you moreover use JonDo, the database request is independently and additionally anonymised, of course.

If you nevertheless would like to abandon this recommendable protection, however, you may prevent downloading the database. To do that, change the following configuration settings in about:config:

browser.safebrowsing.dataProvider = -1
browser.safebrowsing.enabled = false
browser.safebrowsing.malware.enabled = false