Staff

@Terry Stanford Hello! In the next release you will be able to opt-out of Master Password. Currently you can pick a one-letter password (it's allowed) if you don't want to protect effectively locally stored data. A one letter password can be entered very quickly. You can't reset a Master Password by definition. If you forgot it, you need to delete all app data (not only its cache) and re-start from scratch, because you can't decrypt anymore the data. Kind regards

Hello! key-method directive is no more supported in OpenVPN 2.5. Delete it. If you connect with TLS Crypt (entry-IP addresses 3 or 4) you don't need any replacement. If you connect with TLS Auth, enter the directive: key-direction 1 Kind regards

Thanks. Fixed in some AirVPN domains, in the main domain name (airvpn.org) it will be fixed soon. UPDATE: Problem has been resolved. Kind regards

@Daniel15 Hello! It's not a supported option, but it can be emulated with the AirVPN Suite. A way to do it is by using configuration files like the one you mention. Then, when a "switch" is required, send a SIGUSR2 signal to Bluetit (you need root privileges). Check documentation to see all the signals Bluetit can handle. Kind regards

Hello! We are informing Eddie developer because it looks like an Eddie related problem, as you can run Hummingbird perfectly on its own. Kind regards

@tOjO Thank you very much. Can you please open a ticket? Since we do not have a rational explanation on how the quick connection ends up to Latvia, we would need to know which country you connect from (and optionally which country ipleak.net detects you're in). Does bluetit.rc have any "country" directive? Kind regards

@kgursu Hello! We're glad to know it and we apologize again for the issue. We do not store and/or come to know our customers' credit card data, we're sorry. You should check manually. If you paid via 2Checkout you should also receive an e-mail from 2Checkout, pertaining to the refund, on the inbox of the e-mail address you gave them. Note that between our refund order and 2Checkout actual refund delivery action 2 business days may pass. Kind regards

@tOjO Hello and thank you! We have an explanation for the reported problem which you resolved by modifying raspi-config to wait for network at bootstrap. If raspi-config is not configured to wait for the network to be up, it forces systemd network-online service not to wait for it. Therefore, the target for systemd is reached (systemd assumes that network is up) and Bluetit is launched, but in reality the network is not yet up. Your solution (which, we notice, must be applied to OSMC too) is correct and probably the cleanest one. Then Bluetit probably retrieves the "manifest" file from the local storage as it must do when it can't reach bootstrap servers and a local copy of the "manifest" file is available,. The claim that the manifest is downloaded remotely is just a logging glitch: this issue is still under investigation by the way. What server selection type (quick - server pool - country - continent) do you enforce? Also feel free to send us your bluetit.rc file (wipe out sensitive data first). Kind regards AirVPN Support Team

Hello! This is an horrid bug affecting some very old Eddie version, thank you for having been a customer for years. The bug has been fixed, please upgrade to Eddie latest release at your earliest convenience. We do understand that it's an extremely annoying bug, but we assure you that our servers do NOT send that banner: it's cached in Eddie (therefore, as an alternative solution you can delete Eddie profile file, but an upgrade is recommended). Kind regards

Hello! We're terribly sorry, we see that we have added a mistake over a mistake. We have fixed your account plan now, with a brand new three years plan. Feel free to confirm that you have received your refund and that your account has a valid three years subscription. Kind regards

Hello! The mentioned policy restricts access to: users included in airvpn group and root user. The installer creates the group and optionally creates an airvpn user and put it inside that group. Make sure to run Goldcrest from the proper user. If you want to run it from other user(s), have a superuser add such user(s) to the group airvpn https://linuxize.com/post/how-to-add-user-to-group-in-linux/ Kind regards

@tOjO Hello! We're glad to know that the problem is resolved. However, can you please send us Bluetit log taken just after the problem has occurred (login failure at bootstrap)? We can't understand how Bluetit could download the "manifest file" (according to the log) if you had no connectivity. In such a case Bluetit should read the last available "manifest" file from the local storage, and print the fact on the log. sudo journalctl | grep bluetit Thank you in advance. Kind regards

Hello! This is incorrect, Tor Browser has been protecting you against this attack since years ago. Currently, Brave and Firefox are quite effective, according to the paper itself. However, the author considers Firefox ability to make the attack fail as a side effect of a bug. The attack itself is quite well known, although in the recent past it focused on big LSOs spread throughout various HDD locations and not trivially erasable by the average user to be more effective, because Flash was used by the majority of users. Kind regards

Hello! Just use Brave, Firefox or the Tor Browser (Tor browser appears as the best choice): https://tor.stackexchange.com/questions/21940/will-tor-block-favicons-by-default EDIT: also avoid to browse via Thunderbird. See also the previous message. Kind regards

Hello! Well, saying that favicons are "undeletable" is a tiny overstatement. They are not written once and for all in a PROM. 😋 Check where your browser keeps favicons and delete them, when it's not possible to reject them trivially in browser's settings. For example, latest Firefox releases can't be configured to not to ask for favicons (in the past, that was possible). Firefox and Thunderbird keep an SQLite db for them in your profile. For example: $ find ~ -type f -name '*avicon*' /home/myuser/.mozilla/firefox/blabla.default-release/favicons.sqlite /home/myuser/.mozilla/firefox/blabla.default-release/favicons.sqlite.wipemeoutbeforeyougogo /home/myuser/.mozilla/firefox/blabla.default-release/favicons.sqlite-wal /home/myuser/.thunderbird/blabla.default/favicons.sqlite /home/myuser/.thunderbird/blabla.default/favicons.sqlite-wal But check the cache too just in case (and incidentally remember that Tor browser does NOT block favicons and that Firefox actually issues requests to re-fetch favicons that are already present in the cache.) to be clearer, currently you are already protected against favicons based tracking & fingerprinting if you run Firefox or the Tor browser https://tor.stackexchange.com/questions/21940/will-tor-block-favicons-by-default While Firefox and Thunderbird don't run, rename those files for your tests, nuke the cache, and you'll see that nothing breaks except favicons (but verify by yourself). You can also inspect the db to check more thoroughly, and you can to keep a script that "takes care" of them whenever you need it. A quick and dirty solution is also creating a new account, do what you need to do in single or selected web sites (with Tor browser or anyway without allowing scripts if necessary, and following identity separation and any other good practice), and wipe it out after usage. Kind regards

Hello! We are almost ready to publish a public beta version, it's a matter of days. Kind regards

@Unito_ Windows 7 has been abandoned since quite some time: mainstream support ended on January 13, 2015, while extended support ended on January 14, 2020. OpenVPN 2.5 does not have anymore a dedicated installer for Win 7. Download the proper OpenVPN 2.4.10 package for Windows 7, again in https://openvpn.net/community-downloads/ and repeat the procedure. Also consider seriously to upgrade to some supported system. Kind regards

@nocturnaltabernacle Hello and thanks! The SERVFAIL error message suggests that Google infrastructure could not contact airvpn.org authoritative server. It seems it was a short period problem. Please feel free to warn us if you see it re-occurring. Kind regards

$ drill @8.8.8.8 airvpn.org ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 32899 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; airvpn.org. IN A ;; ANSWER SECTION: airvpn.org. 347 IN A 5.196.64.52 ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 17 msec ;; SERVER: 8.8.8.8 ;; WHEN: Sat Feb 13 10:59:57 2021 ;; MSG SIZE rcvd: 44

Hello! Please try the following: make sure to download the correct package for your system here: https://openvpn.net/community-downloads/ make sure you can gain administrator privileges uninstall OpenVPN, disable any antivirus/antimalware/anti* and all that jazz and reboot the system (remember to re-enable them later) install OpenVPN and make sure to authorize drivers installation If the driver installation still fails, you can be sure that the problem is not Edde related. Check carefully the error message you get during installation and report it. Kind regards

@Tazhill Thanks! In order to understand the cause of the issue we need to know whether the problem occurs when some network interface has IPv6 disabled (problem is then expected and explained) or not (problem is then unexpected). The system report will show that. We also ask you to generate the system report while the system is still connected to the VPN (thanks to IPv6 layer block), so that we can see even the properties of the tun virtual network interface used by OpenVPN. Kind regards

@grammarye Hello! Please try with WantedBy= and combine udev and systemd, as detailed here: https://superuser.com/questions/851846/how-to-write-a-systemd-service-that-depends-on-a-device-being-present A much simpler solution, worth a test, is reported here: https://unix.stackexchange.com/questions/360214/systemd-service-run-when-network-interface-up-down-eth0 Kind regards

Hello! There is no way to do that, but it's irrelevant. Just make sure that the port does not exist on the devices where you don't want to receive packets. Kind regards

@Aronos Hello! By disabling IPv6 in your Wireless LAN adapter Wi-Fi you made Eddie and OpenVPN unable to connect. The IPv6 layer combo box has not been set to "Block", according to the system report you kindly included. We see that you set "Internet protocol for connection" to "IPv4 only", but that's a different thing. Please open "Preferences" > "Networking" window and set the "IPv6 layer" combo box to "Block", then click "Save" and try again. Alternatively, make sure that IPv6 is enabled in your network interfaces. Kind regards

@Tazhill Hello! Are you 100% sure that your system as well as all network interfaces have IPv6 enabled? If so, can you open a ticket to investigate the matter more thoroughly? Please include a system report ("Logs" > LIFE BELT icon > copy all icon > paste into your message) generated while the system is still connected successfully thanks to the "blocked" IPv6 layer. Kind regards