What's new in Jondo 00.20.001
Dec 20, 2016
- added new mix and infoservice root certificates
- fixed: reconnection after changing the network configuration now works better
- Added fixed password storage for authenticated network proxy
- updated help files
- Added a test / showcase for using the ANONChannels directly
- Minor GUI fixes
- Added an option to disable *ALL* HTTP header processing
- Added Skein Hash for zertificate verification
- update to latest version of BouncyCastle
New in Jondo 00.19.001 (Sep 10, 2013)
- New features:
- Windows: new JAP.exe now calls java library directly, not java.exe any more; show "JAP" in task manager
- added library option to completely disable http header processing
- added farsi translation (many thanks to Mostafa!)
- Added a function to set the block timeout, i.e. the timeout an interface of a cascade is blocked, if an error occurred during connection.
- This is helpful for allowing faster reconnects for debugging purposes:
- support for new bouncyCastle crypto library
- open portable browser only with empty tab
- Bug fixes:
- fixed problem with http header procsssing
- some minor stability patches (closed some open streams)
- Other:
- removed http header filtering completely, as it does not provide a significant security gain, but hinders JonDoFox development
- code reformatting
New in Jondo 00.18.001 (Jul 24, 2012)
- New features:
- added Skype client functionality to anti censorship feature for release version
- option to switch off sending general system info to infoService
- startup option --noSystemErrorLog prevents to write logging to the standard error
- options to switch off all warning and error popups
- check for valid account BEFORE connecting to Premium service (if most users have this update, it prevents a massive overload on Premium services if free services go down)
- Bug fixes:
- Error corrections in integrity check protocol (older JonDo versions are incompatible now)
- fixed double counting of HTML accesses
- fixed possible null pointer when stopping service conection
- ConfigAssistant: correctly identify missing account
- ConfigAssistant: correctly identify blacklisted services
- show more detailed certificate errors
- some corrections in the integrity protocol
- fixed null pinter in ConfigAssistant internet connection check
- Other:
- let the user see more pages (20) before showing the payment reminder on free services
- updated jondofox headers
- if charged account is requested, always return the active account as first account if possible
- auto reconnect after finishing the account wizard only if currently selected service is usable with the new account
New in Jondo 00.17.001 (Dec 2, 2011)
- New features:
- completely replaced old UpdateWizard by new SoftwareUpdater
- make filtered services available for selection also in anonymity off mode
- new update wizard may be started directly using the popup menu
- simplified main view layout
- Bug fixes:
- compatibility fixes for new bouncycastle crypto library
- Fixed some possible Null pointer exceptions in ClassUtil
- fixed country calculation for cascades
- compatibility patches for new BouncyCastle library
- fixed possible null pointer when reading proxy from windows registry
- Other:
- enhanced speed of toHexString() by 150 times
- added some messages for ConfigAssistant giving hints to switch of firewall and virus scanner in case of connection problems
- automatically save configuration before update
- optional command line parameter "--hideUpdate" now prevents all direct updates
- small enhancement for anon mode off message
- separated browser statistics from JonDoFox headers
- HTTP anonymization is now off by default
New in Jondo 00.16.001 (Sep 30, 2011)
- New features:
- Security: show warning if user does not use JonDo and maybe only thinks to be anonymous
- Security: try to switch current service on startup if it has only one mix
- Security: only if connection to all other services failed, automatic switching to one-mix services is allowed
- Security: integrity error notification
- Comfort: Added support for multiple download sources for new versions of JAP.jar
- Comfort: introduced temporary whitelist attribute for trust model, that enables the user to temporarily connect to filtered services
- Comfort: merged all filters/trust models into one single, editable trust model
- Comfort: JonDoFox users now get a clear error message if JonDo im niht-anonymen Modus ist and if they try to access a blocked HTTPS site
- Comfort: transferred bytes are now shown in kilobytes
- Bug fixes:
- allow all JonDonym related websites even if access to all websites is blocked
- fix for warning about correct JonDo usage
- fixed some bugs related to automatic cascade switching
- some debug entries for InfoService
- fixed global timeout for InfoService requests
- remove "initial dummy cascade" whenever possible, also if auto switching is disabled
- fixed possible null pointer in XMLSignature
- fixed language selection for payment options
- fixed view of amount to pay for cash and money transfer payment methods
- fixed possible deadlocks and null pointers in DirectProxy
- show low balance popup only if no other full account is available
- fixed deadlock in DirectProxy caused when interrupting running request threads
- fixed possible double-binding of default listener
- stop connection attempts if auto-switching is disabled and payment is mandatory
- Other:
- new random order for services on every startup
- show current service on top in popup menu
- automatically switch to next service if current service is filtered and "getNextCascade()" is requested
- X-Headers are now always active
- keep reconnect on error if current service is initial dummy service
- ignore performance filter if no performance data is available at all
- connection to user defined services is now only allowed within the current trust model
- create self-verified signatures
- request all InfoService documents with http compression
- reduced InfoService requests for InfoServices and Mix cascades
- clearer HTML messages for DirectProxy
- show squid error pages if forced by last mix operators
- new JonDoFox headers
- enhanced DirectProxy error page presentation
- clearer HTML "not-allowed" messages for DirectProxy requests
- if only premium services are available, the ConfigAssistant is now shown instead of closing the connection
- ConfigAssistant now tries to connect automatically if it has been called because of a connection timeout; the user thus quickly sees the reason for the connection problem
- do not show "free" filter if free services are not allowed
- added security warnings for user defined services
- removed warnings about "no JonDoFox" and "insufficient bytes for download"
New in Jondo 00.14.004 (Apr 28, 2011)
- Bug Fixes:
- check trust model filter also during connection attempt to anonymity service as reconnection speed-up
- fixed connecting status in AnonProxy
- do not show automatic reconnect warning if user has interrupted the connection
- fixed possible unwanted anonymity shutdown during switching of services
- changed label in certificate panel
New in Jondo 00.13.006 (Nov 25, 2010)
- Usability enhancements:
- allow automatic connection to premium services also on first start of JonDo
- always ask all infoservices for performance data
- re-added the possibility to listen on all interfaces
- added a warning dialog with a check box for preventing DAU users from listening on all interfaces
- show global listener in extended view only
- updated help files for JonDoFox 2.4.0
- Bug fixes:
- fixed possible null pointer in AIControlChannel
New in Jondo 00.13.001 (Sep 3, 2010)
- New security features:
- Less secure services with only one Mix and only one operator (like Dresden) are now separated from the other services. They are only accessible by using a special filter named "Test/experimental services" in order to prevent a connection if a user does not deliberately want it.
- Anonymous HTTP header signature of the internal JonDo HTTP filter is now the same as the new JonDoFox HTTP header signature.
- If a connection from the JonDoFox browser is recognized, the internal HTTP filter of JonDo is deactivated for this connection, because JonDoFox can do the HTTP anonymization much better than JonDo alone.
- Removed global socket listener: JonDo can now only listen on "localhost" and cannot be forced any more to accept connections from outside your own computer (if you really need this feature, use JonDoConsole). This prevents others from misusing your JonDo connections in case you had accidentially allowed global access.
- Check type and ID of each account challenge in order to prevent first mixes from reading the user's balance.
-
- Usability enhancements:
- spanish translation
- Switching, disconnecting and reconnection of services is much faster now and more robust against network problems.
- Updates of infoservice and payment information on startup is much faster now.
- Support for a new type of payment rates: monthly rates that provide the same data volume each month. These rates will be introduced within the next weeks.
-
- Bug fixes:
- If anonymous mode is OFF: non-anonymous "direct" proxy can now open arbitrary long URLs, is immediately updated if its settings change and is automatically initialized when JonDo starts.
- Proxy authentication (proxy login with username and password) works again.
- Services that change their certificates are now affected by the auto-blacklist.
- Old/lost cost confirmations are now correctly restored when received from the first mix.
- KDE4 update works again
- External browser in portable mode may now be set on all operating systems and to all local file paths.
- use 127.0.0.1 instead of localhost for default socket listener in order to prevent IPv6 connections to JonDo
- block internal auto-update if Java Web Start is recognized
- raised update intervals for database entries and reduced number of contacted InfoServices in order to draw load from InfoServices and payment instance
- fixed many other small bugs and instabilities...
New in Jondo 00.12.005 (Aug 26, 2009)
- Patch for HTTP client library that reactivates proxy authentication.
New in Jondo 00.12.002 (Aug 20, 2009)
- Enhancements:
- do not replace referer within the same domain
- encrypted control channels
- different encryption keys for upstream and downstream packets
- warn on usage of potentially insecure browsers
- transparent (de)compression for gzip and deflate http-content-encoding
- new user agent
- help files updated
- enhanced terms and conditions stylesheet and classes
- updated cz messages
- show warning if update certificates are about to get invalid
- show message if Java version is too old before doing an update
- Changed handling of expired certificates to accept them only within a maximum grace time of 2 month
- updates for terms and condition classes
- construct cascade name from mix or operator common name if set by the individual operators
- small gui updates
- added frequent browser name to general statistics
- use JCE DSA key generator if available (needs bouncycastle for >= 1.3 java)
- warn if credits are not sufficient for big HTTP download
- activate header filtering for CONNECT requests
- remove system-wide Java proxy settings with ProxySelector call
- warn if no InfoService certificates are verifyable on update
- recommend stable update if newest beta version is below stable version and below the installed beta version
- new dutch translation
- recognize billing errors in payment instance by calculating the sum over all locally stored cost confirmations
- Bugs fixed:
- DNS resolution now works over SOCKS5 when forced proxy is set
- fixed gzip-header split bug
- fixed client-side byte counting for nearly-empty accounts
- fixed forced cascade auto switch on error
- removed backwards compatibility to 7.x mix payment protocol
- fixed synchronisation issue with InfoServices
- filter special characters from XML
- fixed wrong calculation of PC hash
- fixed problem that dll update window could not be hidden
- fixed automatic account switching when account is empty
- no timeout for InfoServiceDB entries in client context
- fixed local/global listener reversal
- removed some unnecessary panel updates at "onUpdateValues()"
- filter special characters from cascade name fragments
- security and length fixes for automatic cascade name generation
- fixed possible null pointer in XMLUtil format function
- fixed possible null pointer in JAPController
- small fix for socket listener
- changed "socks5" labels to "socks"
- fixed possible null pointer in PayAccountsFile
- fixed possible NullPointer in HyperLinkAdapter
- fixed memory leak in HTTPProxyCallback
- auto-interrupt monitored file chooser if windows API blocks
New in Jondo 00.11.012 (Mar 28, 2009)
- Fixed UTF8 transformation.
- Fixed possible null pointers in startup classes.
- Proxy-keep-alive support for direct proxy.
- Show always top of terms and conditions.
- Preload anonym-o-meter images for offline and connecting.
- Clarified data retention dialogs.
- Close cascade popup on main window click.
- Asynchronous update of payment instances on startup.
- Downsized DSA key pool for accounts to one.
- Create InfoService statistics about Java versions and operating systems.
- Lower granularity on version statistics.
- Added explicit custom filter option for free services.
- Enforce some Java updates by a non-removable update window.
New in Jondo 00.11.007 (Mar 23, 2009)
- Added filter for data retention.
- Fixed certificate check for verified cascade certificates.
- Fixed tooltip error message for forwarding server.
- Do not automatically connect to premium services when custom filter is active and no charged account is available.
- Temporarily removed critical header replacement (HTTP_ACCEPT_ENCODING).
- Immediately react when switching automatic account and InfoService updates.
New in Jondo 00.11.004 (Mar 20, 2009)
- Added XML library for JRE 1.3 compatibiliy.
- Encode XML characters as entities when storing and loading help path.
- Help files: more detailed explanation for Anonym-O-Meter.
- Close program on severe startup errors.
- Set selection to default InfoService if no InfoService is selected when root panel is shown.
- Removed redundant storage of cascade data in services panel.
- Fixed performance problem with fast downloads by limiting GUI updated.
- Fast removal of status messages.
- Removed references to jap packages from InfoSercvice.