Yeah, Proton is awesome, that’s for sure. Now, being a “security and privacy” company, it blows my mind that they put so much effort on making apps for Windows and Mac first, leaving Linux behind, and when they finally get to it, they just dump in a glorified PWA.
This world is really weird 🤣🤣
Are you kidding me? Doesn’t bother me that much, as I use Thunderbird with Protonmail bridge. I’m still waiting on Proton Drive for linux. Well, I’m gonna end up self hosting at this point. :(
I prefer rpm over flatpak. at least I know any os dependency updates are happening regularly, flatpak may not get weekly dependency updates from proton
I’m on OpenSuse which will take a Fedora RPM, and most will take deb, if they don’t you can uae the alien tool to convert it for your OS…extra steps which sucks
I installed it and it works. i have also installed other Fedora RPMs. RPM can contain repo links to dependecies needed. or just contain all the libraries needed. OpenSUSE will install it and just treat them as Orphaned Packages (in the later case)
Proton being a “security” company is like calling TSA a “security” department. It’s technically true so long as you don’t look behind the curtain into the security theater.
That’s why I put “security and privacy” between quotes. I have absolutely Jo way to confirm if they are secure and private or if they’re not, other than all the contradicting mentions all over the internet. Also, while security and privacy may not be mutually dependent in the physical world, it stands to reason that something insecure cannot be private, and something not private is inherently insecure, as @pixelscript@lemmy.ml clearly pointed out.
As for controlling my own email infrastructure, I’d love to, as everything else I do self-host, and only with FOSS software. However, email hosting is a seriously complicated animal that requires too much effort and maintenance, and most of us dont have the knowledge and time to invest in that, so compromises need to be made. I am well aware that there’s always risk on using something I have no real control over, but the alternative meets the reason for the phrase “the treatment is worse than the decease”.
If you just did this little thing, you would convey your point very well. Proton is unfit for activist and journalist tier threat models. You could link Moon Of Alabama blog articles. Proton is better than Gmail and Outlook, but it is no saint. It is enough to achieve good basic privacy and security, but not bulletproof in worst cases.
Companies have to comply with law enforcement. If anything, the little amount of data they were able to give after being forced is a good proof of their overall claim. If there is someone to blame here are courts using antiterrorism laws to catch environmental activists.
I mean, if you want secure/private communication, email should not be your go-to. It’s a horrible platform by today’s standards. It was never designed to have any serious level of security. Once they have an unencrypted email on the target with timestamps and mail headers, all they need to do is see who was communicating with Proton at that point. I don’t know if anything has changed since the PRISM days, but back in the 2000s, they definitely had that level of insight into the web.
Privacy: I have blinds on my windows. I control whether they are open or closed, but they aren’t secure. You could break a window and look inside if you really wanted to.
Security: my glass storm door has a lock. But privacy is only there when I close the front door.
There is overlap between these two concepts but one does not imply the other.
I had no idea. That’s good information to have. And my wife doesn’t get why I spend so much time in Lemmy. I learn more here than with all the online courses I take regularly put together. I love this community.
it blows my mind that they put so much effort on making apps for Windows and Mac first, leaving Linux behind
Because most people use Windows and Mac, including their clients. It’s not the world that is weird, it’s people who don’t understand such basic things. You don’t focus on 5% of your users.
Yeah, Proton is awesome, that’s for sure. Now, being a “security and privacy” company, it blows my mind that they put so much effort on making apps for Windows and Mac first, leaving Linux behind, and when they finally get to it, they just dump in a glorified PWA. This world is really weird 🤣🤣
Capitalism is weird? Ok, but this is what we have.
And that they decided to go with RPM and DEB instead of just doing a Flatpak
Tbh it should have simply been a flatpak
Are you kidding me? Doesn’t bother me that much, as I use Thunderbird with Protonmail bridge. I’m still waiting on Proton Drive for linux. Well, I’m gonna end up self hosting at this point. :(
I prefer rpm over flatpak. at least I know any os dependency updates are happening regularly, flatpak may not get weekly dependency updates from proton
Its kinda annoying for anyone not on debian or fedora (and derivatives) though.
I’m on OpenSuse which will take a Fedora RPM, and most will take deb, if they don’t you can uae the alien tool to convert it for your OS…extra steps which sucks
“Extra steps for thee, not for me!”
OpenSUSE does not have Fedoras ABI or package names. The RPMs aren’t compatible.
This one might work as its just Electron.
I installed it and it works. i have also installed other Fedora RPMs. RPM can contain repo links to dependecies needed. or just contain all the libraries needed. OpenSUSE will install it and just treat them as Orphaned Packages (in the later case)
Proton being a “security” company is like calling TSA a “security” department. It’s technically true so long as you don’t look behind the curtain into the security theater.
Let’s not forget they Gave law enforcement IPs of activist while claiming they don’t keep IPs Only to scrub those claims after getting caught
Proton was also accused of giving out email meta data (which is unencrypted)
If you want security only use services and applications that are open sourced and where you control your encryption keys.
That’s why I put “security and privacy” between quotes. I have absolutely Jo way to confirm if they are secure and private or if they’re not, other than all the contradicting mentions all over the internet. Also, while security and privacy may not be mutually dependent in the physical world, it stands to reason that something insecure cannot be private, and something not private is inherently insecure, as @pixelscript@lemmy.ml clearly pointed out. As for controlling my own email infrastructure, I’d love to, as everything else I do self-host, and only with FOSS software. However, email hosting is a seriously complicated animal that requires too much effort and maintenance, and most of us dont have the knowledge and time to invest in that, so compromises need to be made. I am well aware that there’s always risk on using something I have no real control over, but the alternative meets the reason for the phrase “the treatment is worse than the decease”.
If you just did this little thing, you would convey your point very well. Proton is unfit for activist and journalist tier threat models. You could link Moon Of Alabama blog articles. Proton is better than Gmail and Outlook, but it is no saint. It is enough to achieve good basic privacy and security, but not bulletproof in worst cases.
Companies have to comply with law enforcement. If anything, the little amount of data they were able to give after being forced is a good proof of their overall claim. If there is someone to blame here are courts using antiterrorism laws to catch environmental activists.
I mean, if you want secure/private communication, email should not be your go-to. It’s a horrible platform by today’s standards. It was never designed to have any serious level of security. Once they have an unencrypted email on the target with timestamps and mail headers, all they need to do is see who was communicating with Proton at that point. I don’t know if anything has changed since the PRISM days, but back in the 2000s, they definitely had that level of insight into the web.
Are you confusing security and privacy?
I’m not, the comment I was replying to literally called proton a “security and privacy” company.
They mutually imply one another.
If something was private, but not secure, well, that implies there are ways to breach the privacy, which isn’t very private at all.
If it’s secure, but not private, that implies it’s readable by someone other than the consenting conversational parties, which makes it insecure.
Privacy: I have blinds on my windows. I control whether they are open or closed, but they aren’t secure. You could break a window and look inside if you really wanted to.
Security: my glass storm door has a lock. But privacy is only there when I close the front door.
There is overlap between these two concepts but one does not imply the other.
…and proton advertises as both, which as pointed out, isn’t true
It’s a native app on Windows and Mac?
I don’t use either OS, but the apps are .DMG (Mac) and .exe (Windows), so I believe they are, yes.
PWAs can be packed in .dmg and .exe.
I had no idea. That’s good information to have. And my wife doesn’t get why I spend so much time in Lemmy. I learn more here than with all the online courses I take regularly put together. I love this community.
Because most people use Windows and Mac, including their clients. It’s not the world that is weird, it’s people who don’t understand such basic things. You don’t focus on 5% of your users.