this post was submitted on 19 Nov 2023
61 points (81.4% liked)

Technology

59105 readers
3224 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 13 points 11 months ago* (last edited 11 months ago) (2 children)

I really wanna support these folks but I'm also curious about the recent headlines with Cameron Ortis (Canada's own selfish version of Snowden who deserves a damn Peace Prize for reals) referencing these.

Also, I think people need to learn there is nothing "private" about email beyond not scanning which is like paying for a not-service (like don't fuck me over). Hell, its hard enough to work up the courage and stamina to vanishing-messages-set someone adversarial who desperately needs you to make and ebforce that decision upon them as a baseline for engaging with them at all.

I will pay $1/month for email company to not be an asshole but that's the extent of my patience with the notion and I have zero illusions about what is likely still happening on some level.

Edit: Snowden deserves reward, not Ortis.

Edit: whats the timeline/continuity in terms of Ortis' mention and Tutanota rebranding to Tuta

[–] [email protected] 7 points 11 months ago (1 children)

I wasn't familiar with the headlines you're referring to so took a look, here is one story from the CBC. And here is Tuta's post responding to the allegation.

Besides knowing the name I was not super familiar with Tuta, but it appears their source code is publicly available for review for any backdoor (and that Cameron Ortis doesn't seem trustworthy or even especially knowledgeable).

[–] [email protected] 1 points 11 months ago

That's my instinct, but its good free publicity I think. The worst thing is not being talked about, maybe there's some truth to that

[–] [email protected] 7 points 11 months ago (2 children)

Proton is doing privacy the right way.

[–] Ginko 6 points 11 months ago

Proton lost me when I found out you can't receive notifications from their app on a de-googled phone. Their app requires Google services for notifications. Since then I've moved to Tuta and am very happy with the service and notifications work. I mean how hard is it to set up a new email check every half hour in the app. What's the point of private email when you have to run it on a spyware (Google) infested phone.

[–] [email protected] 3 points 11 months ago (2 children)

Can you share more about why you think Proton's approach is better than Tuta?

From a casual read through they both appear to use end to end encryption when users are on the same service. (Proton emailing Proton or Tuta emailing Tuta) and both offer the option to password encrypt an email so you can message someone on other services as long as you can share that password with them IRL somehow.

[–] [email protected] 3 points 11 months ago* (last edited 11 months ago) (1 children)

The biggest difference would be the theoretical claim that proton can't know anything about your emails because the mailbox itself is encrypted. The calendar too. This also means these accounts aren't compatible with any IMAP/POP3/Activesync clients, and you need to install your own proton plugin to use it with them. On the desktop. On the phones they have their own apps, since you can't use the phone email app nor the phone calendar. They are a bit lacking there too. Regarding the mailbox theoretical encryption claim, I'm sure it's really encrypting everything. It's just, email is inherently unencrypted (unless it's proton to proton) as it travels along the servers, unless you go to several pains to encrypt it, and your destinatary too, to decrypt it on their end. So for most purposes, right now the main difference between these two doesn't seem all that useful and it continues to be relatively simple to intercept/read your email along the way, since most likely it won't be encrypted anyway.

[–] [email protected] 2 points 11 months ago (1 children)

Proton supports openPGP natively in its apps which is neat so encrypted emails are easier but you can use openPGP with k9 and Thunderbird too.

Unfortunately openPGP is very rarely used by anyone.

[–] [email protected] 2 points 11 months ago

Unfortunately openPGP is very rarely used by anyone.

My point exactly. What's the point of having an encrypted mailbox if everything that arrives to it is unencrypted and easily intercepted?

[–] [email protected] 2 points 11 months ago* (last edited 11 months ago)

Along with what has already been said, for the same package deal they offer an email, a vpn, a password manager, drive, and alot more space than the competition (500gig).

they include services such as proton sentinel.

https://proton.me/blog/sentinel-high-security-program

and secure core

https://protonvpn.com/support/secure-core-vpn/

one of the few still allowing port forwarding

https://protonvpn.com/support/port-forwarding/

how to use them in high risk countries

https://protonvpn.com/blog/vpn-servers-high-risk-countries/

development over the years and their dedication to bringing privacy, security, freedom of information to the masses speaks for itself.

Encrypt the planet