33
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 14 Jul 2024
33 points (100.0% liked)
TechTakes
1442 readers
33 users here now
Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.
This is not debate club. Unless it’s amusing debate.
For actually-good tech, you want our NotAwfulTech community
founded 1 year ago
MODERATORS
No surprise that folks in anarchist circles are skeptical of Proton ha. That said, I do know quite a few people in the email "industry" who are broadly skeptical of Proton's general philosophy/approach to email security, and the way they market their service/offerings.
Fastmail has a great interface and user experience imo, significantly better than any other web client I've tried. That said, they're not end-to-end encrypted, so they're not really trying to fill the same niche as Proton/Tuta.
From their website:
I honestly don't know enough to separate the wheat from the chaff here (I can barely write functional python scripts lol - so please chime in if I'm completely off base), but this comes across to me as an understandable (and fairly honest) compromise, that is probably adequate for some threat models?
Last time I used Tuta the user experience was pretty clunky, but afaik it is E2EE, so it's probably a better direct alternative to Proton.
re fastmail, david mentioned a thing I wasn't aware of so they're off the list now, more or less just going to forget they exist except as a counter-recommendation
they're sorta saying "yeah just use external GPG like before"
albeit I will say their reasoning is a bit fucked in the head imo: that "if you can't trust the server" shit applies equally for whether it's serving you up the page elements to do message cryptography, or whether it's serving you up a normal webmail client. I think I know/understand where they meant to go with it, but the wording they picked is quite shit
I set up a tuta domain for a thing about a month ago. it could've been a bit smoother (esp. domain/dns state checks) but I didn't find anything immediately jarringly bad - and I was even drunk at the time (which means my diy-able supergrump comes out about this sort of shit). will see how it goes over some longer use :)