I’m currently still using gmail unfortunately

Cock.li (airmail.cc)looks very nice but it is invite only

  • TCB13@lemmy.world
    link
    fedilink
    English
    arrow-up
    8
    arrow-down
    7
    ·
    1 year ago

    For the Proton people. I learnt about a guy that ended up in a US court and they asked proton for all his emails and the handed them right away, no questions asked.

    • dracs@programming.dev
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      2
      ·
      edit-2
      1 year ago

      Got a source for that? Proton isn’t able to access to any user emails. I believe Swiss law also makes it illegal for them to provide user information without a (Swiss) court order.

      The only case I’ve heard of that was similar was when the Swiss court ordered them to provide all the info they had on a user. This was the last IP address they logged on from and a recovery email the user had entered. The recovery email is an optional thing the user had set up on their account. They also used this same email address to sign up for a Twitter account. They were able to get enough data from Twitter to identify the person.

      • daq@lemmy.sdf.org
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Courts can require you to provide your password in some circumstances. Where your email is stored is irrelevant.

        • dracs@programming.dev
          link
          fedilink
          English
          arrow-up
          5
          ·
          1 year ago

          In that case Proton wouldn’t be providing the data, the user would be. Proton can’t provide what they don’t have.

        • TCB13@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          arrow-down
          7
          ·
          1 year ago

          This wasn’t the case, at all. Proton simply handed the entire mailbox decrypted.

          • daq@lemmy.sdf.org
            link
            fedilink
            arrow-up
            6
            ·
            1 year ago

            That seems unlikely since your data is encrypted with a password they don’t have.

            • TCB13@lemmy.world
              link
              fedilink
              English
              arrow-up
              3
              arrow-down
              8
              ·
              1 year ago

              I’m simply reporting on what I’ve been told and saw. Form what I read seem to be using asymmetric encryption and generating a private key itself protected with your password when you sign up. There’s no guarantee they don’t have an unprotected copy of that as well.

              • daq@lemmy.sdf.org
                link
                fedilink
                arrow-up
                4
                arrow-down
                2
                ·
                1 year ago

                Vast majority of Proton users signed up because Proton promises your data is safe at rest. Even from them. In fact, they specifically advertise this protects them from subpoenas because they cannot provide decrypted copy of user’s data.

                • ArcaneSlime@lemmy.dbzer0.com
                  link
                  fedilink
                  arrow-up
                  6
                  ·
                  1 year ago

                  Of course, the only emails that are encrypted with proton are proton->proton. Mail between proton and anyone else, like say gmail, isn’t encrypted unless you pgp it separately.

                  • TCB13@lemmy.world
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    ·
                    1 year ago

                    Guess the question is if your private key is actually only yours or do they have some copy they can use somewhere.

                  • MrMonkey@lemmy.world
                    link
                    fedilink
                    arrow-up
                    1
                    ·
                    1 year ago

                    Not fully correct. Mails between Proton users are E2E encrypted where Proton cannot see them, and rest of the emails are encrypted at rest once Proton receives them. Based on the audits and open source code, Proton is not keeping a copy of those emails when it receives them, and once they are encrypted, nobody but you will have access to it

              • MrMonkey@lemmy.world
                link
                fedilink
                arrow-up
                1
                ·
                1 year ago

                You were being mislead with false information. Share appropriate sources to back up whatever you are saying. Proton has regular audits for security and encryption for all their products, which makes whatever you’ve been told pretty much false information

                • TCB13@lemmy.world
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  arrow-down
                  1
                  ·
                  edit-2
                  1 year ago

                  What’s more likely? a) I’m being mislead by someone that actually got into legal trouble that involved them and isn’t profiting in any way from it or b) You / everyone else that simply is eating their marketing and PR is being mislead in some way.

                  Truth is, none of us can prove their claims and auditors are true.

      • TCB13@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        7
        ·
        1 year ago

        Yes I do, and I tried encouraged my source to make the entire thing public but no luck there. In this case the person was already identified it wasn’t much of an issue, the issue is that Proton simply provided everything to an US court without even a flinch. Apparently they can access user emails and they do without much fuzz.

    • Lena [she/her]@lemmy.blahaj.zone
      link
      fedilink
      arrow-up
      6
      arrow-down
      1
      ·
      1 year ago

      While this is undesirable, you can’t expect a corporation to break the law for you just because. proton at least is better than the rest of the corporate, for-profit providers who sell your data to the highest bidder.