Privacy

34334 readers

1161 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

128

What are your alternatives to proton? (lemmy.ml)

submitted 2 days ago by wuphysics87@lemmy.ml to c/privacy@lemmy.ml

54 comments fedilink hide all child comments

To replace everything. Mail, calendar, drive, vpn, password manager, documents etc. What are the pros and cons relative to proton? What are the mobile apps like? What assurances do you have they won't go full proton in the future? And other questions

you are viewing a single comment's thread
view the rest of the comments

[–] Xanza@lemm.ee 5 points 15 hours ago (5 children)

So the whole "we encrypt your life" thing is pretty nice. But in reality look at what you're actually doing... You have super secure encrypted email to do what? Send unencrypted emails to your friends...

It makes no sense to me... Like, you need an encrypted calendar? Why? What are you getting with encryption that you can't get with using a VPN to connect to your local network and access a self-hosted calendar. In what was is that less secure?

Drive? Sure. VPN? Sure. Password manager? Sure. Documents? Sure. I see the value in having H/A for services like this, but all of that can be self-hosted on an rPi in your basement with a rProxy and a domain.

[–] recall519@lemm.ee 1 points 14 hours ago (4 children)

One reason is to prevent targeted advertisement.

[–] Xanza@lemm.ee 3 points 14 hours ago (3 children)

It doesn't, though. Not even a little bit. Using encrypted services doesn't stop tracking cookies. That too has to be handled client side. So you would use a browser that lets you use host files via extensions (firefox, etc) and other tracking blocking extensions, or you can setup network wide protection via Adguard Home, etc.

[–] recall519@lemm.ee 1 points 13 hours ago (1 children)

It does. You need both. Even if you have cookies disabled, Gmail can read all of your emails and use that information.

[–] Xanza@lemm.ee 1 points 13 hours ago (1 children)

You need both.

For the third time now--not if the service/device you're using contains both the password and the 2FA... How is this not getting through?

If someone gets into my Bitwarden install, and gets access to both my passwords and my 2FA seeds, in what way does 2FA protect me? I kept all the family jewels in one place. That's the exact situation two factor authentication is designed to prevent by forcing you to have an additional and separate device/key/passcode/password.

[–] recall519@lemm.ee 1 points 11 hours ago

Say it a fourth time if you want to continue feigning ignorance. You're assuming that the only way your credentials could be compromised is if your password manager it compromised. 2FA would not protect that specific use case if you store both authentication methods in your password manager. However, it does still protect your services from other types of compromises, which is better than no 2FA at all.

load more comments (1 replies)