Survey about privacy, anonymity and JonDonym

Tuesday, November 7. 2017

In the scope of a public research project, we ask to to participate in an anonymous survey:

You will thereby support our work and the privacy research. 

Site outages

Wednesday, April 26. 2017
Due to problems with on one of our servers, some services (ip-check, some payment) are currently not available. We are working on the problems and hope to solve them until next week.

Old JonDo versions will expire

Monday, February 6. 2017
Old JonDo versions before 00.20.001 will expire within the next months, as we added some necessary certificates. At the end of April 2017, only the current JonDo version will be able to connect to the anonymization services. All JonDo users are therefore encouraged to update to 00.20.001 as soon as possible.

End-of-Live DVD

Tuesday, February 16. 2016

Sadly, we need to tell that the development of the JonDo live DVD has been stopped. You may still download the current version, but we will remove the download quite soon. The reason for this is, that there are not enough developers available to do the maintenance work. Our focus is to use our available time for maintaining the core components JonDo, JonDoFox, Mixes and other integral software components of the JonDoym system.

We hereby say a big THANK YOU to Cane, the long-time developer of the Live DVD, for the great work he did in the past!

New software signature key (GPG)

Monday, January 25. 2016

What lately lead to some confusion on the side of Linux users:

We changed the software signing GPG key, but this was news not updated on the Debian repository instruction page. So some users got  an error while verifying the GPG signature, while we on our side could not see any problem. This is fixed now, please follow these instructions to get and use the new verification key:

For Debian:

The change of the key was necessary in order to separate it from the general e-mail and support key, so that developers and the support team do not need to share the same key. Moreover, the key has a greater cryptographic strength now.

Merry Christmas and happy New Year

Friday, December 25. 2015
We wish all customers, partners and supporters of JonDonym merry Christmas and a happy and successful New Year 2016!

JonDonym against data retention in Germany

Thursday, December 17. 2015

Again, the German government passed a law for data retention, which came into force today.

Fortunately, this is nothing JonDonym users need to worry about. Unlike the previous law, which was dropped by the Federal Constitutional Court in 2010, only Internet acces provider are affected [§113(b)(3)]. Pure Internet services like JonDonym will therefore not get into any troubles, now will their users.

In any case, JonDonym users should be safe by against such single-country-laws in general. This is due to the nature of our system: operators from different countries and jurisdictions provide the Mix services, and always two or three of them need to get their data linked together to potentially uncover users.

This allows for legitimate crime prosecution in very serious, individual cases, but effectively prevents a mass observation. Until now, there has not been any court order that obliged a complete premium cascades to log data. By default, the Mix operators neither look into the users' traffic nor do they store it. That's what you can expect, now and in the future!

JonDoFox: Help on today's update to Mozilla Firefox 43

Wednesday, December 16. 2015

With today's update of the Mozilla Firefox release, Mozilla made some major changes concerning add-ons. If you do not have the current version of the JonDoFox add-on, it might not work any more in this new Firefox browser.

Important: If you are using JonDoFox, please verify that JonDoFox is still working correctly by visiting our ip-check-site. If you see any major problems here, this strongly indicates that you need to update your JonDoFox add-on.

In case you are using Microsoft Windows, we recommend you to download the latest version of the complete JonDoFox profile and reinstall it on your system:

For all other systems (Mac OS, Linux), please use this URL to directly download the JonDoFox add-on:

Unpack it by using your favorite zip/unzip tool. Then, use drag-and-drop to pull it in your Firefox browser for installation and update. If you still have problems, please feel free to contact our e-mail support, and we will help you.

If you still have problems updating the XPI, you may do the following:

1. Remove the JonDoFox add-on
2. Restart the browser
3. Move the XPI file (see link above) into the add-on list by drag using drop.

Please note that the two add-ons "Profile Switcher" and "Canvas Blocker" will nevertheless be unavailable, as their development has been stopped by third parties.

If you moreover have problems to activate "Profile Switcher" or "Canvas blocker", please do the following: 

1. Remove these add-ons
2. Restart the browser
3. Re-add these add-ons from the mozilla download site, e.g. from these URLs:

Recommendation: In order to prevent future update problems with JonDoFox, please enable automatic extension updates in your browser. You may do this by entering about:config in your address bar. Make sure the options extensions.update.enabled and extensions.update.autoUpdateDefault are both set to "true".

Unperfect e-mail spam by PerfectMoney

Tuesday, April 7. 2015

Thoughout the last months, we got a lot of e-mails concerning a payment service called „PerfectMoney“. In these mails, a lot of „customers“ tell us their „interest“ in using this service to pay for ours. Almost all of these e-mails had the subject „Payment“ and contained only one or two lines of text. These are some of them:

„Greetings. I want to use your services. Can i
pay with PerfectMoney on your site ? Thanks !“
„Hello sir. I am interested in your services
and i want to ask you , can i use Perfect Money to pay on your
website? Thanks and have a great day“
„Hello. I want to use your services. I was
wondering if i can pay with perfectmoney ? thanks“
„Hello . 
I'm interested in using your services and i was
just wondering if i can pay with Perfect Money on your website ?“

Obviously, this is SPAM. And it originates from PerfectMoney themselves, as there is neither a URL nor an affiliate code in these messages. But how trustworthy can a payment service be, that is advertised by massive spam? We visited their German website and read:

„Genauer, zuverlässiger finanzservice, den deutsches Volk anerkennen wird“

Gipfel der Vollendung in der virtuellen Weltwirtschaft wird von nun an durch ein ideales Finanzinstitut – Gesellschaft Perfect Money vertreten, deren Zielprogramm ist es, Finanzoperationen im Internet auf ideales Niveau zu erheben.“

Source: (2015-04-07)

This sounds like a very bad google translation... How trustworthy can a payment service be, that – instead of writing all English – relies on quite random translations for „informing“ their customers?

Wouldn't it be more honest and effective to directly contact us in the name of PerfectMoney, and acquire us as a partner rather than as a spam victim? 

Just for clarification: we are not against new payment services. They help us to finance our services. And maybe we would give PerfectMoney a try in other circumstances. But we hate SPAM. Maybe this article helps to stop it.

SSL certificate for webserver

Tuesday, April 7. 2015

We installed a new SSL certificate for our webserver. The domains and are affected. The fingerprints of the new certificate are:

  • SHA256: 63:D4:5C:47:72:0C:9E:E5:4B:59:5E:D0:8F:84:BC:2C:69:9F:62:0B:2B:66:7E:60:13:37:C8:71:A0:5D:9B:74
  • SHA1: E2:2B:91:0E:CE:C3:52:80:26:6D:64:9B:13:02:A5:88:2F:1E:67:CF

(Corrected SHA256 fingerprint on 2015-04-13)

JonDoFox protects against WebRTC IP leak - since ever

Monday, February 2. 2015

Hello visitors,

just as we got a lot of questions regarding the recently published WebRTC ip leak attack, we just thought it might be a good idea to clarify that this is not an issue for JonDoFox users. Since ever this WebRTC was active in Firefox, we switched it off as even our preliminary analysis showed that it will be harmful for anonymity. So even if you activate JavaScript on a page, this is not a problem for you.

Note that, however, if you do not use JonDoFox but ANOTHER browser in connection with JonDonym, for example a self-configured Firefox, you are NOT protected automatically. Just to make this clear: normal browsers have so many IP and data leaks that even most tech-users are not able to configure them privately. Mabye you will be able to fix this one, but forget another three leaks... So we strongly recommend to use JonDoFox, as we use our best experience to make it secure for you.

Continue reading "JonDoFox protects against WebRTC IP leak - since ever"

Stelle als JonDoBrowser-Entwickler

Monday, June 3. 2013

Liebe Leser des Blogs,

aktuell suchen wir jemanden, der uns bei der Entwicklung des JonDoBrowsers unterstützt. Dabei könnte diese Aufgabe im Rahmen von Telearbeit (von zu Hause aus) als Teilzeit-Stelle, nebenberuflich, oder auch in selbständiger Arbeit auf Projekt- oder Stundenbasis wahrgenommen werden. Wir freuen uns auf Bewerbungen!

Bewerbungen sind bitte per E-Mail zu richten an: rolf.wendolsky_(at)


  • Erfahrung mit JavaScript-Programmierung
  • Kenntnisse über online-Tracking-Techniken und Online-Anonymität
  • wünschenswert: Kenntnisse in C++
  • optional: Erfahrung in der Entwicklung von Firefox-Add-Ons

Am Besten liegt der Bewerbung auch ein Programmierbeispiel bei, und kurze Angaben dazu, was man bereits im Software-Bereich gemacht hat. Umfangreiche Zeugnisunterlagen sind uns dabei weniger wichtig.

New flat rates for JonDonym - Up to 20% off!

Thursday, December 15. 2011

Today, you get a new special offer: new JonDonym flat rates are available, that provide you up to 20% off the previous prices:

Look at the rates here!

We currently plan to offer these reduced prices for a limited time only. So if you would like to try JonDonym, or need more volume anyway, it might be time for you to buy now!

This is what your browser tells about you

Thursday, May 5. 2011

JonDos presents the free anonymity test „IP check“ for Tor, JonDonym, VPNs and anonymous proxy servers

Regensburg, 2011-05-05. Today, JonDos publishes „IP check“ - a free and easy understandable anonymity test. The test shows at a glance which attacks a website may launch on your privacy. Moreover, you get recommendations for possible counter measures.

The IP check explains which data your own web browser sends to websites. A website may use this data to create an individual profile of your computer. By misusing such a profile, you may later get identified reliably on this or on another website. For hiding your traces on the Internet, it is therefore not sufficient to use an anonymizer service like JonDonym or Tor alone.

What is the difference to the Panopticlick project? What is new?

Panopticlick is just a demonstration on how web browser data may be aggregated to profiles. In contrast, IP check analyzes thoroughly each chance to read data from the user's browser, and intentionally circumvents various security mechanisms. In case of proxy servers, web proxies or VPNs, the test may even uncover the real IP address in many cases. This knowledge helps web surfers who strive for anonymous surfing to close „data leaks“ in their browsers. If you are using the Tor or JonDonym anonymizer service, the IP check moreover shows you in detail whether the browser settings comply with the recommendations of the Tor project, or with the recommendations for JonDonym, respectively.

The test is constantly being enhanced for considering newly discovered privacy attacks. Besides the IP check, the site also contains a list with links to many recommendable websites about the topic. You may moreover include your own free IP check as image on your website.


IP check

DICCDI Call for papers

Wednesday, April 27. 2011

Privacy and Identity Management for Communities - Communities for Privacy and Identity Management

Internet communities are spreading rapidly in all areas of life. For their members, they are central to their social networking and information sharing. In those communities, many elements of identity management are used for fundamental functions. For example, a cross-domain identity management infrastructure is often used to exchange (partial) identities with third party providers in order to generate benefits for those involved. However, this also implies privacy risks, due to the cross-domain exchange of identity information, or due to centralized data processing. The implementation of privacy-friendly technologies has not kept pace with the rapid spread of communities. On the other hand, communities can as well be utilized for improving data privacy. Many successful privacy-enhancing technologies are provided by communities of enthusiasts. They often gather for ideological reasons, to jointly contribute to a better privacy on the Web.

The goal of this workshop is to attract scientists, practitioners, representatives of communities and providers of community platforms to enable an interdisciplinary discussion illuminating this vibrant field of Internet culture.

Please note: The deadline for submissions has been moved to May 16, 2001.

Web site: