![]() |
Table of Content |
Thunderbird configuration ![]() |
The reasons as to why using e-mail accounts together with JonDonym may be:
If you would like to have an anonymous email account, please create a new account first. Choose an E-Mail address of the form anonymous1234abcd@xx.yy, that is "anonymous" + numbers + letters. If all JonDo users create addresses of this form, they are much less distinguishable. You can use JonDo+JonDoFox to create the account in the web interface of the new provider.
The following email providers are privacy-friendly and offer secure SSL encryption for POP3 and SMTP. The HTTPS encryption for some webinterfaces is not genuinely secure. We recommed the usage of email clients like Mozilla Thunderbird for email communication to avoid this flaws.
neomailbox.com (offers secure, anonymous e-mail accounts hosted in Swiss for $3.33 per month, anonymous payment with Pecunix or Liberty Reserve, secure HTTPS encryption for webinterface)
Posteo.de and aikQ.de (German mail providers, servers located in Germany, accounts from 1 € per month, anonymous accounts possible, anonymous payment by letter, secure HTTPS encryption of webinterface)
Secure-Mail.biz (server located in Island, free accounts without POP3, anonymous payments with Paysafecard, LibertyReserve, Webmoney, secure HTTPS with up2date browsers of webinterface)
runbox.com (Runbox Solutions AS is a Norwegian limited company, server located in Norway, accounts for $1,66 per month, flaws in HTTPS encryption of webinterface)
CryptoHeaven (anonymous accounts from $60 per year, offshore corporation, servers located in Canada, flaws in HTTPS encryption of webinterface)
XMAIL.net (operated by Aaex Corp registrated at British Virgin Islands, server located in Canada, free version with POP3 but without SMTP, premium accounts from $10 per year, flaws in HTTPS encryption of webinterface)
MyKolab.com (Swiss hosted groupware with addressbook, calendar and email, only SMTP and IMAP but no POP3 for email accounts, no third party ads used for webinterface, 10 CHF per month, flaws in HTTPS encryption of webinterface)
Associazione-Investici, Nadir.org and AktiviX.org (services for political activists, offers blogs and mailing lists too)
Due to the US PATRIOT Act (especially p. 215ff) and the fourth amendment to the FISA Amendments Act it is possible for US authorities to eavesdrop on the communication of non US citizens without warrant. According to the US authorities it is enough that the servers are located in the US. In the EC study Fighting cyber crime and protecting privacy in the cloud the authors are warning about political surveillance. That's why we can recommend the following email providers only partially.
VFEmail (anonymous mail provider, free and premium, use a temporary e-mail address for registration, disposable addresses)
SecureNym (offers anonymous e-mail accounts, offshore corporation, servers located in US)
S-Mail (accounts from $4,50 pro Monat, servers located in US)
Fastmail.fm (free version without SMTP support, premium version full featured, server located in US)
Zoho.com (useful for more than one mail account with own mail domain like familie or small office)
Riseup.net (service for political activists, offers blogs and mailing lists too, servers located in US)
Security Notes: Information about long term communication partners can be used to feature out your real identity! If you need a highly anonymous e-mail account to do something – may be for whistleblowing – create a new mail account and use it only for this one job. Delete the account, if the job was done and never use it for other communication partners.
User of GMail accounts may have problems using TorBirdy and anonymisation services like JonDonym. The Google account security team wrote an answer because of questions by the Tor community:
Hello,
I work for Google as TL of the account security system that is blocking your access.
Access to Google accounts via Tor (or any anonymizing proxy service) is not allowed unless you have established a track record of using those services beforehand. You have several ways to do that:
With Tor active, log in via the web and answer a security quiz, if any is presented. You may need to receive a code on your phone. If you don't have a phone number on the account the access may be denied.
Log in via the web without Tor, then activate Tor and log in again WITHOUT clearing cookies. The GAPS cookie on your browser is a large random number that acts as a second factor and will whitelist your access.
Once we see that your account has a track record of being successfully accessed via Tor the security checks are relaxed and you should be able to use TorBirdy.
Hope that helps,
Google account security team
![]() |
Table of Content |
Thunderbird configuration ![]() |