hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

10K
active users

Proton uses a trustless architecture. End-to-end encryption and zero access encryption means we cannot decrypt your messages and hand them over to governments.

Your privacy is mathematically ensured, and no election can change that.

@protonprivacy yeah, but your CEO has been making statements in support of a right-wing authoritarian government, so…?

@thisismissem @protonprivacy Definitely sucky but the upside is that the mathematical assurance applies universally.

Emelia 👸🏻

@schykle @protonprivacy yeah, unless of cause they happen to reneg on that mathematical assurance and suddenly start storing unencrypted emails because it's politically expendient for them to do so.

@thisismissem @schykle @protonprivacy they should go against their Foundation that controls them, and change so much code that it is impossible. Moreover you would know asap as the apps are open source and the encryption happens locally. Having said that, even if they would be able to do that it would be an insanely amount of work. I share the disappointment in the CEO's words and the use of official channels to defend them, but that's a totally different matter

@thisismissem @schykle There is no need to do that, they can install server-side tracking for specific targets as they already did to help French prosecutors get their hands on a climate activist.
en.wikipedia.org/w/index.php?t

en.wikipedia.orgProton Mail - Wikipedia

@nemobis @thisismissem @schykle *
That can intercept regular email but they can't decrypt e2e email right? They're doing as much as they can but they obviously have to abide by the law.

Any emails sent before they had to install the tracker or whatever, are encrypted on the user account so can't be accessed.
But of course if that person receives a plaintext email then that can get intercepted

@thibaultmol Do you mean, if you use PGP encrypted mail and send it through SMTP, so that the plain text never goes near any software or service controlled by Proton? Sure, but then you might as well use any other mail provider.

@nemobis proton makes it easy for those who don't know how to do that.

@thibaultmol Does it, though. I search "Thunderbird" and I find proton.me/support/protonmail-b -> proton.me/support/protonmail-b . This page looks decidedly outdated or misleading, with its advertisement for "Proton Mail Bridge". Isn't that redundant, in newer versions of Thunderbird?

From proton.me/mail/bridge I see you can download a deb or rpm. Does it self-update afterwards by contacting Proton servers? It's linked to a personal subscription. Can French authorities ask a person-specific update?

ProtonHow to configure your email client for Proton Mail Bridge | ProtonSetup guide for configuring Outlook, Thunderbird, and Apple Mail email clients for use with Proton Mail Bridge in Windows, macOS, and Linux.

@nemobis - the bridge for Thunderbird only works on desktop so it's not a solution for mobile.
- some people might not be able to install something on their PC so they can only use a browser or something

I don't know about those last parts but I don't think that has ever happened so far. Plus I think the bridge is downloadable through regular Linux repositories so I don't think you can make user specific downloads anyway

@thibaultmol I can't see the bridge in Debian repositories at least. repology.org/ doesn't know about it either.

There are still cases where ProtonMail is helpful, but as always it depends on the threat model. Proton's answer mastodon.social/@protonprivacy tries to reassure us by showing that Proton CEO's bootlicking doesn't extend to Venezuela's government for now.

repology.orgRepologyMultiple package repositories analyzer

@nemobis @thisismissem @schykle

That's true and important to keep in mind when using Proton. It's also important to note they were legally required to help track down this activist.

@vista Yes. The problem is when you give false reassurances to people at risk. Then you're acting as an effective honeypot.

@nemobis You're 100% right. I think that was a result of Proton's aggressive marketing. I don't like their marketing, I think it's quite corrupting and getting in the way of their offering, clouding customer's vision of what they're actually buying.