OpenVPN Support Forum

I was looking at possibly using the JonDo service but when looking at how expensive it was compared to using an OpenVPN service I thought no...

JonDo sent me an email saying their service was more expensive because it was a better more secure service then using OpenVPN.

Well I wonder about all that...

And then this was their last reply....

we know all of the attacks and protections that are possible when connecting through a loopback port into the browser. And we know some specific attacks that are possible to launch on VPNs, especially on OpenVPN. You might have a look on our anonymity test and on our documentation for this:

http://anonymous-proxy-servers.net/en/help/otherServices.html

http://anonymous-proxy-servers.net/en/help/jondonym.html

http://anonymous-proxy-servers.net/en/help/premium.html

http://what-is-my-ip-address.anonymous-proxy-servers.net

http://anonymous-proxy-servers.net/en/help/flash-applets.html


Well What do you guys think, can JonDo really offer a better, more secure service over OpenVPN?


THANKS

i would think that going over some web loopback would only tunnel web traffic. openvpn tunnels based on route, so everything that is routed over the tunnel would be tunneled. the only way you will leak info is via dns, but you can use an open server like 8.8.8.8 or you could use whatever dns server lies on the other side of the tunnel... in fact openvpn has options for pushing dns info
they said they know attacks, i would be interested in knowing what these attacks are, to me it just sounds like marketing.
with openvpn you dont need some paid service, i tunnel through my own servers and pay nobody... or you can choose to go with some service, but then know that you are trusting them with the traffic which you send over the tunnel (if you surf the web without encryption, they could see it all, etc etc)

krzee wrote:i would think that going over some web loopback would only tunnel web traffic. openvpn tunnels based on route, so everything that is routed over the tunnel would be tunneled. the only way you will leak info is via dns, but you can use an open server like 8.8.8.8 or you could use whatever dns server lies on the other side of the tunnel... in fact openvpn has options for pushing dns info
they said they know attacks, i would be interested in knowing what these attacks are, to me it just sounds like marketing.
with openvpn you dont need some paid service, i tunnel through my own servers and pay nobody... or you can choose to go with some service, but then know that you are trusting them with the traffic which you send over the tunnel (if you surf the web without encryption, they could see it all, etc etc)

Yeah I think that JonDo is just some marketing hype...

By the way how do you surf the web with encryption?


THANKS

Jondo is not about making money; it's a research project at a German university. However they have to charge for the premium services simply because they cannot run servers and provide bandwidth off the university infrastructure for free.

However, it's not very fast and you have to use their custom built Firefox.
Unless you are very desperate for total privacy (and then I have to wonder why!) it's just too awkward.

The problem with services such as VPNs and premium proxies is that they usually keep logs and you need to pay electronically for their services. So although there IS some degree of privacy, it's not impossible to find your identity with enough resources and authority. Also, with proxies, there is leak.

For an alternative to Jondo, try I2P which is a free alternative, community based.

dasfox, as in https

martienne, if you run your OWN vpn server, you control the logging