I was thinking “Oh, maybe I’ll donate. They’re donating to MSF and Tor? That’s cool.” And then I saw this part.

  • RyanGosling [none/use name]@hexbear.net
    link
    fedilink
    English
    arrow-up
    36
    ·
    1 year ago

    All “privacy” services are compromised by the CIA and NSA unless they’re hosted by Russian and Chinese companies. It’s not inherently a bad thing because some things like VPNs kind of need a ton of users to keep you “anonymous.” But it’s worth keeping in mind.

    • oscardejarjayes [comrade/them]@hexbear.netOP
      link
      fedilink
      English
      arrow-up
      8
      ·
      1 year ago

      Valve’s proton is super great, love it. Proton, the cloud service, I’m a bit less into. I’ve thought about switching to Tuta or Riseup, but my proton email is already connected to enough stuff to make it a pain. Probably still better than google though.

      • vexikron@lemmy.zip
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Its miles and miles better than Google… but I would recommend using an email service that at bare minimum open sources all its code.

        Oh and obviously do not pay for it. Not too hard for the powers that be to trace a credit card transaction, if they get interested enough to.

        And fucking no, no do not use fucking bitcoin, its not secure, its easy traceable… god now i need a smoke just thinking about the total insanity of cryptocurrency.

        Oh right fuck, for the love of GOD dont use Windows or Mac.

  • CarbonScored [any]@hexbear.net
    link
    fedilink
    English
    arrow-up
    12
    ·
    1 year ago

    Their free mail is neat and relatively secure. They’ve always been too aggressively corporate and profit-focused to ever feel that trustworthy though.

    • dead [he/him]@hexbear.net
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      If you want private communication, you have to encrypt your emails with PGP/GPG. You could also connect to the email with a VPN, this is an additional layer of security, not an alternative to GPG encryption. There is no email provider that you can trust.

    • Maoo [none/use name]@hexbear.net
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      Not really. Email is inherently broken due to capture by just a few big corps and “anti-spam” requirements. You could try to use GPG but that requires the other party to be on board and for you to have shared keys and for both of you to use secure inboxes, i.e. self-hosted.

      At that point you might as well use a messaging service that’s meant for secure communication from the ground up.

    • mittens [he/him]@hexbear.net
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      private/self-hosted smtp servers i imagine. it just doesn’t strike me that these email services that offer free inboxes would be any good for privacy concerns (proton mail, tutanota, whatever). but they’re good to sign up for shit i suppose.

  • voight [he/him, any]@hexbear.net
    link
    fedilink
    English
    arrow-up
    7
    ·
    1 year ago

    I can’t imagine how people survive without being like “oh they sold out French climate activists? they wanted my phone number? of course it was an op, damn” like I still saw people reasoning only protonmail is compromised. Like there aren’t further ways to divert traffic and break certain forms of encryption practically everyone knows about know! I can practically sense when something is part of a fed reality show. But intuition and caution cannot help people who give them piles of plausible deniability no one deserves.

  • vexikron@lemmy.zip
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    Thats pretty funny as I recently got a bunch of shit in some Tech lemmy or something for pointing out that ProtonMail recorded the IP of a French climate protestor after the French asked Europol to ask the Swiss government nicely, and then I pointed out that if they are even /capable/ of doing that then at best they are falsely marketing themselves as secure and private, and also poorly designed as a service.

    The whole ostensible idea of doing a secure messaging service of any kind is more than encryption. It is making it so its just not actually possible for you to comply with a subpoena due to actually being clever in the way you design your software and how it uses what hardware.

    But I just got dogpiled on because ‘its the law moron they are a business they have to comply IDIOT’.

    oh well. Techbros be techbros. I guess that means ‘performative privacy advocacy’ is a thing. Bleck.