For some reason I have it in the back of my mind that they were at one point accused of being a honeypot for US intelligence because of their association with MIT. Probably complete BS, but maybe not. Are they as open source as they claim to be? Looks like they’re on github. F-Droid seems to think they have some Google libraries or whatever that they use.
ProtonMail users, how do you like/dislike it?
You must log in or # to comment.
Been using them for a while before switching to their paid version. Of course they are closed source and a business, so any hype and over the top praise is misplaced. That said they are indeed one of max a handful companies that never did anything to make me feel that my trust is misplaced. Their service is great, the products are well polished and reliable. Development is slow and they aren’t cheap. Their target audience is very security and privacy aware so any betrayal of trust would be punished incredibly hard. In that light, their own self interest should be a good insurance, should you be uncertain.
They’re open source now
They have open sourced their client software and libraries, but the core of what they provide is closed source software that runs on their servers.
Where can I read more about this? Big fan of proton but don’t want to communicate their status incorrectly either.
https://web.archive.org/web/20210710030151/https://twitter.com/ProtonMail/status/1309380464118030342
and
Have a look at their Wikipedia article as well:
“The source code for the back-end remains closed source.[26][27] However, Proton Mail released the source code for the web interface under an open-source license.[28] Proton Mail also open sourced their mobile clients for iOS and Android,[29][30] as well the Proton Mail Bridge app.[31]”
Thanks!
Wait, they are or aren’t closed source?
They are open source
Some of the tech they developed and use is open source. But the core tech is closed. For me, that’s good enough as long as they keep up acting with integrity they do.
General rule of thumb:
- Web: can change at any moment, can serve a highly secure mail web app… except to those it might decide to target, giving them zero notice, leaving close to zero trace.
- Electron based “app”: if it can run random JS from the web, see first point.
- Compiled app: to change its way of working, the user needs to update/download a different version. An explicit user action is required, people can notice malicious changes and warn others about them.
- Compiled open source app: same as a compiled app, except people can also notice malicious changes before running the code, fork it to remove them, compile it themselves, and warn others.
ProtoMail, touts itself as a “secure web app”, which is a contradiction.
If you use an open source app to access ProtonMail’s service, the security lies in whatever app you use. At that point, might as well send E2E encrypted mail via GMail.
TL;DR: the way most people use it, is just security theatre.
Been using them for 2 years now, I’ve got nothing negative to say. Really happy with their service
Only thing would be the closed source server and no third party apps. They do have an API, but I haven’t found anything written on top of that.
I’m not entirely sure why expected a user-owned private key 🤔 How do they ensure zero knowledge if you send them the username and password?
My only major complaint is their free-tier is a bit lacking compared to what Skiff had (or I guess has, but not for much longer.) I think their platform is great, and definitely worth paying for, but given I’m a broke college student that’s not much of an option. Also their support for third party clients (or lack thereof) isn’t great, though I don’t use those as much. Otherwise I like it quite a bit!
On the open/closed source issue: how do they stack up against things like Tuta and Signal? The latter I heard was not actually completely open source.
AFAIK Signal are pretty much FLOSS, they’re just keeping their cards extremely close, to the point of turning into a data silo.
- Moxie Marlinspike famously nixed the LibreSignal app and demanded they stop using Signal servers.
- And last I heard Signal can but refuses to federate with other servers, so their available server code might as well be closed source. That is, you can setup your own Signal server but you can’t connect to the network that others use…
Federation no longer works, no. They did have it at first but Moxie hated it because it was harder to push new features.
But you can use other clients. It’s not expressly allowed and LibreSignal stopped their development, but they’ve never actually banned anyone for doing it. I use the Matrix bridge to Signal and I’ve never seen issues with it.
Also, Moxie doesn’t work there anymore so their attitude might be changing. I hope so, as having an official option to use third-party clients and bots (for the latter see Telegram where they add a LOT of value to group chats like live transcription or translation) would really make the platform a lot more viable for me. As it is now I hardly use it and I never recommend it because I don’t see the point of replacing one walled garden with a slightly nicer looking one that is still nonetheless a walled garden.
I realy like Matrix but normies tend not to grok it because they need a username and password. Weird, because Discord and other services do too and they manage to use them fine. But whatever. I’ll just bridge all their shit.
It’s been a while since I looked at Signal but I was aware that Marlinspike stepped down. that can only be an improvement after he effectively shut down LibreSignal. I guess projects like the Matrix bridge have somehow been more acceptable?
If you want open source encrypted messaging, try delta chat. It’s an email client that’s styled like a messaging app, and it works with most email providers.
Edit: a word
I’ve had good luck. Reliable and fast as any other service.
I’m a 3rd year subscriber of the Unlimited plan, $158 for 2 years at a time. I utilize the drive, aliases, mail and VPN.
No real complaints. I still use Google calendar because it integrated more with Android phone. I still consider going back to Gmail occasionally for simplicity. I really hate Gmail though but email is garbage. Does it really matter?
I basically priced out good vpn’s, and the two year price of proton was pretty similar to most other quality VPN plans. So why not stick with it and get the rest of the ecosystem too.
I don’t think about it too much, it’s email and it works.
I do not care about secure email because I don’t communicate with anyone else using it, but I do like how it automatically blocks trackers and cleans email links for me.
Yeah I remember that conspiracy theory. Iirc, the claim was basically that any company which had any relationship with any US institution must be a honeypot. It was pretty out there, and as far as I’m aware it was very much debunked.
I’m pretty sure that the Google libraries F-droid are things like the push notification service, which afaik almost anything with notifications uses, even signal.
I’ve never actually compiled from source, but AFAIK they are open source. Its been convenient to use for me, just make very sure you don’t lose your password!
Ok, so I’m not completely senile yet; awesome! Oh, and thanks too 🙂
Proton AG lost me as a customer the minute they backdoored a binding arbitration clause into their TOS last year.
The difficulty of proving damages in breach of privacy cases combined with generally weak privacy legislation globally means the threat of a class action often serves as one of the only practical deterrents to abuses of power by corporations controlling sensitive personal information. By changing its terms of service, Proton essentially immunized itself from suffering any significant penalty in the event its negligence leads to a mass breach of privacy of its users.
Tactics like the use of binding arbitration clauses are hallmarks of inherently untrustworthy corporations.
I’m on the edge of quitting protonmail. The issues:
- #CAPTCHA hell. At least for Tor users.
- no app in f-droid
- API shenanigans and/or CAPTCHA breaks hydroxide (the foss bridge)
- protonvpn: you can no longer fetch all the configs in one download. You have to click “download” >120 times now to get all the configs
- account locks if you do not login frequently enough (i think every 6 months)
- if you supply your login creds but get a CAPTCHA and say fuck this, and walk, it does not count as a full login needed to reset the expiration clock
- the CAPTCHAs are graphical which forces you to enable images in your browser; but when you do that you get images that junk up your screen and waste bandwidth
- no public keyring. Hushmail was better in this regard. An advanced user could upload their PGP public key to Hushtools and then encryption just worked for hushmail users contacting that person. After Hushmail started charging, I would tell the normies who need comms w/me to get a gratis Protonmail account. But then I have to send them my public key and they have to figure out how to attach it to my profile in their phonebook. It’s a show-stopper in many situations.
For what it’s worth, I think if you add the izzysoft repo to F-Droid (https://apt.izzysoft.de/fdroid/repo) then you’ll get the ProtonMail App; I think regular F-Droid has only the VPN.
Protonmail failed to satisfy F-Droid’s inclusion criteria because it requires gms (playstore framework) and because it uses Firebase messaging.
Since I’ve disabled gms in my device I’m not sure how Protonmail would work for me. Someone tells me I might simply lose push notifications capability. But I am confused because Snikket pushes notifications just fine on my device.
Nothing really. They did once put a scan on someone’s email after the authorities asked them to. But it was a court order. Makes sense.
I don’t use them because I think Email is beyond saving anyway. 90% of our mail goes to or from Amazon, Google or Microsoft anyway. OpenPGP is not used by anyone, even Phil Zimmermann famously refused to use it. There is so much spam and phishing that most institutions no longer send anything of value by email, it’s just a notification service for “please log in to our portal to view your message”. Email is just so broken and the workarounds so feeble that it’s beyond fixing.
Email as we knew it is just gone and done. I just use O365 because it’s cheaper and offers me a lot more (like 1TB cloud storage which I use with Cryptomator). Proton Drive is too expensive for me and I like doing that on the user-end anyway because that offers real end to end security. I applaud what proton are trying to do but it’s too little too late and I don’t want to use a special email client. If they want to promote privacy they should do it with something where that’s still possible.
Proton fell into the black hole when they pitched to replace Gmail on Huawei phones. Being eager to do business with the CCP was a dealbreaker.
That said, I have a Tuta account. I don’t use it for everything, but I have no complaints.
I like proton mail a lot. Proton drive not bad either but can be finicky when uploading dozens of larger files at once.
Protonmail is fine, I doubt they are a honeypot but they do have to comply with Swiss court orders which some people give them undeserved hate for, they logged the IP of an activist after an order by Swiss authorities1, however this could happen regardless of where they’re based, no one can ignore a court order. Swiss privacy laws are less protected for communication providers than they are for VPNs, which causes people to mistakenly assume the email providers there are just as private.
IMO they are decent, I only use them as a mirror for my primary email address in case something happens to it, but it’s never failed me in that yet.
As for the open source side of it, the Google libraries they use are the services to allow notifications through Google’s push notification service on Android, and Firebase telemetry. The rest of the app is open source aside from having those included. They don’t offer a version of their app without those yet sadly.
1French authorities initially requested the information, however Proton didn’t respond until it went through a Swiss court___
Doesn’t Proton specifically provide instructions for how to use proton mail via proton vpn (and/or tor, discussed in the article) to provide extra privacy against IP-demanding court orders?
@Nia_The_Cat@beehaw.org, thanks for your detailed reply! 🙂👍
and Firebase telemetry.
According to Exodus, version 3.0.17 only had Sentry crash-reporting.
Did they add in Firebase in later versions?
Hmm, the repo I was looking at must’ve just been poorly worded then, I was looking at this one. It said it only used sentry but the warning label said that it also had Firebase, maybe they had it in old versions but got rid of it later but the repo didn’t bother to remove the label possibly, I’ll edit that part
no one can ignore a court order.
They don’t have to ignore it, just go to court to fight it. Apple has done this. To be clear I have no idea if they did or did not do that or what their chances of winning would be.
I don’t think they contested it for this case, we do get numbers on how many they contest yearly though https://proton.me/legal/transparency
Interesting how much the legal orders jumped after 2018/2020
Well I’m glad to see they contest at least some of them. That must cost them a fortune in legal fees to protest 7k orders/year.
They only logged the IP. That’s metadata. IIRC Apple refused backdooring its phone encryption. That’s a lot more invasive.
They didn’t just log the IP, they provided it to French authorities.
like… yeah, no shit
Also: if the activist had used ProtonVPN he would’ve been completely fine, as (iirc) swiss courts cannot order you to disclose information about your VPN-Users
it appears that they haven’t been providing the source code for the latest version of their Android client so far, the latest version available on Github is from last October, with the latest commit being pushed 5 months ago: https://floss.social/@IzzyOnDroid/112152355218556203
