- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
Safe, encrypted email
Posted on 6/27/22 at 12:01 pm
Posted on 6/27/22 at 12:01 pm
I had CTemplar for a few years, but they just recently shut down. It was based out of Iceland, which has the strictest privacy policies in the world. They had a number of safety practices that made it one of, if not the best email service on the planet. Will miss sorely.
Now, I’m looking for something new. I know there are services like ProtonMail, but my biggest concern is how easy it is for government to just go in and manhandle them. I’ve read stories about VPN services having this problem. You may have a VPN, but that’s only as safe until governments demand your data.
So, what is the tech board’s opinion on this?
I have Tor and do another small things to make things difficult for our overlords.
On a side note, the YOUTUBE Channel, The Hated One, is fantastic in exploring the capabilities of government agencies and companies to essentially hijack your data at anytime. He has a number of really well done documentaries of how to beat these threats. His latest one was making his phone completely untraceable (which took months of research and looked quite like the pain in the arse. I believe you can buy SIM cards from India or something)
Anyway, back to the best email client and best practices to make their heads explode. :). Furthermore, what’s the best VPN service, or potential use of Proxy.
Kind of seems like a good project
Now, I’m looking for something new. I know there are services like ProtonMail, but my biggest concern is how easy it is for government to just go in and manhandle them. I’ve read stories about VPN services having this problem. You may have a VPN, but that’s only as safe until governments demand your data.
So, what is the tech board’s opinion on this?
I have Tor and do another small things to make things difficult for our overlords.
On a side note, the YOUTUBE Channel, The Hated One, is fantastic in exploring the capabilities of government agencies and companies to essentially hijack your data at anytime. He has a number of really well done documentaries of how to beat these threats. His latest one was making his phone completely untraceable (which took months of research and looked quite like the pain in the arse. I believe you can buy SIM cards from India or something)
Anyway, back to the best email client and best practices to make their heads explode. :). Furthermore, what’s the best VPN service, or potential use of Proxy.
Kind of seems like a good project
This post was edited on 6/27/22 at 12:05 pm
8
Posted on 6/27/22 at 12:59 pm to xxTIMMYxx
Why do you keep starting new threads about the same topic instead of bumping your old ones?
Need a new secure email service: CTemplar is shutting down Posted on 5/8/22 at 12:40 am
Best Secure, Encrypted Email Service Posted on 5/30/22 at 9:21 am
Need a new secure email service: CTemplar is shutting down Posted on 5/8/22 at 12:40 am
Best Secure, Encrypted Email Service Posted on 5/30/22 at 9:21 am
This post was edited on 6/27/22 at 1:00 pm
Posted on 6/27/22 at 1:39 pm to xxTIMMYxx
Same as last time. Proton or Tutanota. Those are your best options.
eta: You need to understand your threat model. I don't know what your specific situation is, but it's extremely unlikely your personal emails are going to become an international warrant type of issue.
eta: You need to understand your threat model. I don't know what your specific situation is, but it's extremely unlikely your personal emails are going to become an international warrant type of issue.
This post was edited on 6/27/22 at 1:45 pm
Posted on 6/27/22 at 2:25 pm to Korkstand
I can do whatever I want. Times change. New things pop up. How do you know proton isn’t compromised. MANY VPN’s can’t be trusted
This post was edited on 6/27/22 at 2:27 pm
Posted on 6/27/22 at 2:36 pm to xxTIMMYxx
quote:
I can do whatever I want.
quote:
11. DO take a minute to check for an existing thread on a topic of interest to you before starting a new thread.
quote:That's what the edit and reply buttons are for.
Times change. New things pop up. How do you know proton isn’t compromised. MANY VPN’s can’t be trusted
Posted on 6/27/22 at 2:47 pm to xxTIMMYxx
quote:
Times change.
New encrypted/security-based email services don't pop up every few weeks, you know.
quote:
How do you know proton isn’t compromised.
How do you know [insert new email service we suggest] isn't compromised?
quote:
MANY VPN’s can’t be trusted
While this is true, VPN services spread FUD about each other.
What exactly is your threat model?
Posted on 6/27/22 at 3:02 pm to xxTIMMYxx
quote:
I have Tor and do another small things to make things difficult for our overlords.
Um...You might research the origins of Tor. The government has no difficulty at all watching what you do on Tor.
Posted on 6/27/22 at 3:42 pm to xxTIMMYxx
I use Proton mail
Posted on 6/27/22 at 4:48 pm to xxTIMMYxx
quote:
I have Tor
You use Tor and you are worried about the Feds monitoring your email
They pretty much have a log of everything you are doing on Tor right now
Posted on 6/27/22 at 10:04 pm to xxTIMMYxx
OP, the bottom line is absolutely no system outside of your own control can be trusted (and even many in your control can't be trusted). Any system can be seized, and any wire communication can be intercepted. Email is insecure by design. For decent privacy, you will need to encrypt your emails before sending, and have senders encrypt their messages to you. Even so, the people you are messaging might be using insecure systems, so your messages can be read anyway if you are actually a target.
Running your own email server allows you to control your own data, but it's a huge pain and if you don't know what you're doing your email may be even less secure than at gmail.
My best advice is that whenever you want to send a sensitive message, do not use email. Use a messaging service with end-to-end encryption. But even those require trust.
As I said in one of your other threads, I think the way forward for email and other messaging will be via blockchain tech. Decentralized, secure, and anonymous by default.
Running your own email server allows you to control your own data, but it's a huge pain and if you don't know what you're doing your email may be even less secure than at gmail.
My best advice is that whenever you want to send a sensitive message, do not use email. Use a messaging service with end-to-end encryption. But even those require trust.
As I said in one of your other threads, I think the way forward for email and other messaging will be via blockchain tech. Decentralized, secure, and anonymous by default.
Posted on 6/29/22 at 8:37 am to Korkstand
quote:
OP, the bottom line is absolutely no system outside of your own control can be trusted (and even many in your control can't be trusted). Any system can be seized, and any wire communication can be intercepted. Email is insecure by design. For decent privacy, you will need to encrypt your emails before sending, and have senders encrypt their messages to you. Even so, the people you are messaging might be using insecure systems, so your messages can be read anyway if you are actually a target.
exactly. unless you are running an illegal op, its almost not worth the hassle. BUt proton and tutanota are the best options but they only work if its across the platform unless someoen is using a key.
and ftr pretty much every single encrypted service will comply with US warrents so unless you are running an illegal op, wtf is the point. and if you are running an illegal op, i would hope you would be running tails anyways and moving every month or every other max amongst a bunch of other security things.
Posted on 7/3/22 at 1:09 pm to xxTIMMYxx
Protonmail is what I use. ProtonMail is still a centralized service, and you have to rely on trusting them for big pieces, many of which are not verifiable. For example you have to trust that when an unencrypted email comes in, say from gmail that they are deleting the original after encrypting it. Same with when you send an email to an unencrypted provider.
Some things are verifiable, but not to the layperson and even for an expert it would take a great deal of time to continually check it. An example would be, if the keys they are generating for you in browser are secure. Or that the client isn't sending unencrypted versions of email back to PM for storage, or your plaintext password when you log in.
The trust doesn't end at PM either. You have to trust hardware, operating system, browser, the certificate authorities, the list is endless.
You use the word safe but that is depending on your definition. You have to figure out what individual risks you are trying to protect yourself from, and then take steps to mitigate each one. If you want to send a message your risk of interception can never be zero. If it is by carrier pigeon, smoke signals, email, or Bitmessage you will always have a risk.
Some things are verifiable, but not to the layperson and even for an expert it would take a great deal of time to continually check it. An example would be, if the keys they are generating for you in browser are secure. Or that the client isn't sending unencrypted versions of email back to PM for storage, or your plaintext password when you log in.
The trust doesn't end at PM either. You have to trust hardware, operating system, browser, the certificate authorities, the list is endless.
You use the word safe but that is depending on your definition. You have to figure out what individual risks you are trying to protect yourself from, and then take steps to mitigate each one. If you want to send a message your risk of interception can never be zero. If it is by carrier pigeon, smoke signals, email, or Bitmessage you will always have a risk.
Posted on 7/4/22 at 3:19 pm to Breauxsif
I've started using use ProtonMail less for privacy concerns and more for data ownership. I'm trying to slowly deGoogle myself but it's hard, and I don't think I'll ever get away from Maps. Photos is huge too. I moved my Pixel device to GrapheneOS but I still have Google Play services on it 
Its all kind of a moot point BC I still have Echo devices throughout my house, so Amazon will gather tons of info
It's a process.
Its all kind of a moot point BC I still have Echo devices throughout my house, so Amazon will gather tons of info
It's a process.
This post was edited on 7/4/22 at 3:21 pm
Posted on 7/4/22 at 3:54 pm to Hulkklogan
quote:Tried any of the privacy-focused assistants like rhasspy or almond/ada?
Its all kind of a moot point BC I still have Echo devices throughout my house, so Amazon will gather tons of info
Posted on 7/4/22 at 7:52 pm to Korkstand
No I will need to look into those. We mostly use the assistants for music, weather info, and timers.
Assistants and personalized content algos like Youtube, Maps, etc. Are where you really miss the big tech data. They may sell of your data, but they make incredibly powerful tools with it as well.
I don't think anyone will unseat Google Maps anytime soon, much less open source maps.
Assistants and personalized content algos like Youtube, Maps, etc. Are where you really miss the big tech data. They may sell of your data, but they make incredibly powerful tools with it as well.
I don't think anyone will unseat Google Maps anytime soon, much less open source maps.
This post was edited on 7/4/22 at 8:10 pm
Posted on 7/4/22 at 9:48 pm to Hulkklogan
I agree, but it's in my nature to at least try to use software and devices that are free as in freedom.
I'm hoping that the next crypto run brings a wave of apps to replace some of big tech's tech. In addition to a modern replacement for email, I would love to see a map app where you can opt in to sharing your real-time location for traffic purposes to earn crypto. Maybe earn crypto to collect aerial imagery via drone.
There are federated alternatives to youtube/twitter/facebook that have been around for a while, but of course it's hard to get traction.
I'm hoping that the next crypto run brings a wave of apps to replace some of big tech's tech. In addition to a modern replacement for email, I would love to see a map app where you can opt in to sharing your real-time location for traffic purposes to earn crypto. Maybe earn crypto to collect aerial imagery via drone.
There are federated alternatives to youtube/twitter/facebook that have been around for a while, but of course it's hard to get traction.
Posted on 7/5/22 at 6:01 am to Korkstand
That's fair.
And that's a good idea about Web3 mapping. Storage of that data could be incentivized as well.
As for on chain email replacement.. There are messaging protocols being developed. So...possible. Hardest part is probably the fact that it's an open ledger, so there's a permanent record of who everyone's communicating with. You'd have to obfuscate sending/receiving addresses or pull it off-chain anyway if it is privacy-oriented.
And that's a good idea about Web3 mapping. Storage of that data could be incentivized as well.
As for on chain email replacement.. There are messaging protocols being developed. So...possible. Hardest part is probably the fact that it's an open ledger, so there's a permanent record of who everyone's communicating with. You'd have to obfuscate sending/receiving addresses or pull it off-chain anyway if it is privacy-oriented.
This post was edited on 7/5/22 at 6:03 am
Posted on 7/5/22 at 10:03 am to Hulkklogan
i dont understand, what are yall trying to encrypt and hide?
i mean i understand the privacy things, but in the end proton will repsond to a warrant from US authorities.
unless you are using Tails, really have no privacy in the end. Thats why i said, unless you are doing something illegal, kind of a waste.
now if you are sending sensitive info like a credit card number or something for some reason, then makes sense to use proton so long as you get user on other end to sign up too.
i mean i understand the privacy things, but in the end proton will repsond to a warrant from US authorities.
unless you are using Tails, really have no privacy in the end. Thats why i said, unless you are doing something illegal, kind of a waste.
now if you are sending sensitive info like a credit card number or something for some reason, then makes sense to use proton so long as you get user on other end to sign up too.
Posted on 7/5/22 at 10:35 am to lsu777
quote:
i dont understand, what are yall trying to encrypt and hide?
Personally, I'm not.
I said:
quote:
I've started using use ProtonMail less for privacy concerns and more for data ownership.
I'm trying to lower, over time, the amount of data big tech mines from me and sells.
Page 1 of 1
Popular
Back to top
Follow TigerDroppings for LSU Football News