Technology

57432 readers

3842 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

[email protected]

1036

Proton launches privacy-focused Google Docs alternative: Docs in Proton Drive is an open-source, end-to-end encrypted collaborative document editor (proton.me)

submitted 1 month ago by [email protected] to c/[email protected]

181 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 15 points 1 month ago* (last edited 1 month ago) (1 children)

I'm not sure what you're talking about ? You're not sending your private key to their server without first encrypting it first locally. Their servers are not doing the E2EE, your client is. The website front and apps are open source.

Yes they could send you a compromised front if you use it via their website, that's a compromise you accept, otherwhise you could only use their apps which are open source.

[+] [email protected] -10 points 1 month ago (1 children)

Tell me.. when you visit a website that gets updated daily, if not hourly. If it served you a different version of JavaScript than what it served someone else.. would you know?

[–] [email protected] 4 points 1 month ago (2 children)

I already answered that. Yes you can't trust a website's content, that's why they offer apps. It's your choice to trust the website which is as secure as they can make it, or you simply use the apps...

[–] [email protected] 0 points 1 month ago

How does a WebView wrapped app offer much more security than a website? Why do they require a paid subscription to use the desktop apps?

[–] [email protected] -1 points 1 month ago (1 children)

Last I checked the apps are mostly just wrappers around WebView, so either way you're getting served different content randomly without ever knowing. AND, Proton specifically prevents the desktop apps from functioning on unpaid accounts. That would be like Gmail disabling IMAP for unpaid users.

[–] [email protected] 7 points 1 month ago (1 children)

That's not how electron apps works. When you load a website with your web browser you get served the front and execute it. When you have an electron app, the front is in the source code of the app, and you decide when to update it so you don't get served unexpected compromised updates. As for the paid service : They don't sell your data and don't show you ads so they need money, it's that simple.

[–] [email protected] 1 points 1 month ago

For real, if it's a useful product, and it's free, then YOU'RE the product.