this post was submitted on 13 Feb 2024
250 points (96.0% liked)

Technology

59429 readers
2968 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 33 comments
sorted by: hot top controversial new old
[–] [email protected] 10 points 9 months ago

Switched to Proton last week. Currently paying for Mail Plus. Happy so far. I do wish they make the mail app icon MY3 compatible.

[–] [email protected] 6 points 9 months ago

I liked Skiff but moved to Proton as Skiff was still too new for me to trust at the time. Glad I went with my instinct.

Shame though when people are actively taking their privacy seriously and getting away from the major free providers.

[–] [email protected] 29 points 9 months ago (3 children)

So what is the point of acquiring them if they just dismantle the company? Seems stupid unless it's funded by the CIA or something.

[–] [email protected] 5 points 9 months ago

Just buying the tech. Might want to use it internally or whatever

[–] [email protected] 19 points 9 months ago (1 children)

No need to look for a conspiracy, this sort of thing happens all the time to all sorts of companies. Maybe it's a patent they want, maybe they want the talent, maybe they want the assets, maybe they want to remove a competitor... It's really not that unusual.

[–] [email protected] 7 points 9 months ago

You're right, if it was an intelligence service they'd want the service to continue while they have a backdoor.

[–] [email protected] 17 points 9 months ago

Maybe they want to suck part of the codebase into notion?

I have a friend who works with ex Zenly employees, and that's exactly what Snapchat did with them.

[–] [email protected] 32 points 9 months ago (6 children)

I dont get any of those "encrypted mail" services.

You need an app with good PGP support.

  • generation / import when logging in
  • share with every message
  • autoimport sent keys
  • encrypt messages if you have a key
  • sign every message
  • display a checkmark if message is signed

I have no idea what an "encrypted mail" provider is supposed to do differently. Either you use E2EE or you have to trust some random people.

[–] [email protected] 8 points 9 months ago* (last edited 9 months ago) (1 children)

Proton is just your PGP email client + cloud sync (kind of like a password manager).

It generates a PGP key when you create an account. Then they encrypt incoming email with that key. You can replace this key if you want.

You can add PGP keys for contacts that aren't in the Proton ecosystem and they'll use those keys to encrypt out going mail and provide the information to reply using your Proton PGP key.

If your contract is another proton mail user, they set all this up automatically (they can figure that out via MX records). They've also pushed for an open standard for doing this automatically for all PGP capable MX servers (i.e. allowing the automatic key exchange to happen when emailing someone out of their ecosystem).

So what you get with Proton is a fancy PGP web client, encryption at rest server side, some niceties with automatic key exchange, and an IMAP bridge that handles all the key management outside of your mail client (which makes sure it's done right and everything is in sync across all your devices).

All the encryption and the initial key generation happens client side just like with Bitwarden.

[–] [email protected] 1 points 9 months ago

Thanks for the clarification!

[–] [email protected] 0 points 9 months ago

This! Encrypt at rest with the key handed off to the provider every single time you login is just a PR stunt

[–] [email protected] 3 points 9 months ago

I was just there for the calendar tbh. I find it stupid how it's always tied to email

[–] [email protected] 3 points 9 months ago (1 children)

But what you are suggesting only works if you only communicate with people who use gpg-aware clients, right? I've done that for years but I was mostly only able to sign my emails because nobody cares.

But of course when using a provider like Proton you can only trust them to keep just encrypted data.

[–] [email protected] 6 points 9 months ago (1 children)

Yes nobody cares and that is bad. But I have no idea how "encrypted providers" want to change that.

[–] [email protected] 1 points 9 months ago

Well everyone on proton uses it by default. And if more adopt that strategy then maybe

[–] [email protected] 3 points 9 months ago (1 children)

They're all trying to reinvent email by bolting something else on top likely an in-house implementation of whatever's hot at the moment. However, the supposed benefits are completely gone once you're exchanging mails with any other email host.

[–] [email protected] 2 points 9 months ago

Vendor lockin basically. Protonmail is doing something really bad in my eyes, in that they force you to use their app. That bridge works too, okay

[–] [email protected] 16 points 9 months ago* (last edited 9 months ago) (1 children)

Email is inherently insecure and not private. If you need private and secure communication use a different protocol.

If you just don't want Google or Microsoft to read through your emails ( completely reasonable) then that's where the "private" and "encrypted" providers come in, imo.

No matter what, your email provider can read all of your emails if they want unless you encrypt the actual content before sending. But even then the meta data is all available. So you have to trust your email provider.

But also it's not a secure protocol. Pick something better if you need security and privacy.

[–] [email protected] 2 points 9 months ago

An email provider can encrypt your data so they can't read it. But they can't prove that they did that. So just like any other online service you have to trust them or not rely on their encryption.

[–] [email protected] 6 points 9 months ago (1 children)

Another shining example of how a brilliant idea was simply made for-profit by being acquired.

[–] [email protected] 1 points 9 months ago

What was brilliant about it?

[–] [email protected] 24 points 9 months ago (1 children)

This is why you want your own domain, providers aren’t nearly reliable enough…

[–] [email protected] 8 points 9 months ago

Yup, I’ve always considered my private/personal domains something akin to interfaces in programming. Send messages here, and I’ll receive them. Despite changing the email providers and services several times behind-the-scenes. The people contacting me need not worry about the details, they just want to contact me with some amount of guarantee that the address is valid, and with no need for unnecessary questions as to whether or not it might have changed. It hasn’t and it won’t, worry not.

[–] [email protected] 51 points 9 months ago (1 children)

Big recommend for ProtonMail for anyone looking where to migrate to

[–] [email protected] 22 points 9 months ago (2 children)

Until Proton gets acquired too.

[–] [email protected] 8 points 9 months ago (2 children)

You can say that about literally anything.

[–] [email protected] 5 points 9 months ago

I don't see how GnuPG can be acquired

[–] [email protected] 3 points 9 months ago* (last edited 9 months ago)

Well not everything, we're talking about encrypted mail services. Skiff being acquired proves that there's a market for buying and selling such a thing. And if someone's interested then Proton should be an even more attractive target (albeit more expensive):

It's a startup, so it will look for an exit at some point. It has built a large user base and good word of mouth. It's currently working on locking down the ability to take your mail elsewhere.

It's ripe for plucking and squeezing and it will happen sometime this year IMO.

[–] [email protected] 16 points 9 months ago (1 children)

Hopefully doesn’t happen but we’ll see!

[–] [email protected] 6 points 9 months ago (1 children)

It's a startup that was financed by a Swiss startup fund. I don't know if the founders are really that idealistic as to say no to a bunch of millions, but even if they are it may be out of their hands. If a buyer with the right price comes along I think it's going to happen.

[–] [email protected] 17 points 9 months ago

Proton is 10 years old, so it's hardly a startup anymore. It was crowdfunded and is mostly led/owned by cern scientists (inventors of the www) and also financed/owned by a swiss non profit focused on helping startups, which in turn is financed by the swiss government (geneva to be exact)

Skiff was founded in the US by americans.

Do you see the difference?

[–] [email protected] 22 points 9 months ago

lol

I got an email with them when they blew up. Told myself it'd be a good place to go when I ditch Google.

😔

Oh well.

[–] [email protected] 14 points 9 months ago

This is the best summary I could come up with:


Losing your email address can be a nightmare, as it can feel almost impossible to chase down every service you've tied to your account.

A sign-off reads, "We look forward to continuing to serve you," so it's easy to assume that the service will keep running.

You only learn about the impending shutdown after scrolling down, clicking the small "migrate your data" link at the bottom of the page, and opening the first FAQ answer.

Burying the lede under all the self-congratulatory acquisition news makes Skiff users look like a disposable afterthought.

Publicly, the company is committed to users and privacy, but those VCs needed a return on their investment.

With Skiff, there will now presumably be an email service, putting Notion pretty close to Google Workspace or Office 365.


The original article contains 473 words, the summary contains 130 words. Saved 73%. I'm a bot and I'm open source!