Technology

Honestly, I just use wg-quick to connect to VPNs, and I tested out ProtonVPN and it worked fine with it. I even set up my router to connect to ProtonVPN, so I could have a wifi network that's always connected to their VPN.

But I'd really rather not have the same company host my VPN, email, and other stuff, I'd prefer to separate them a bit so no one company has a lot of my data. And something like a VPN really doesn't benefit from bundling anyway, unless it's bundled with a browser or something a la Mozilla VPN.

I've seen doubt of it's push to pack products into it's offering ala Google - however I don't see that as enough to call it not good.

It's also very easy (and suspicious imo) for anyone to call a service not good without any reason to back it up.

• ProtonMail Amends Its Policy After Giving Up an Activist's Data -(archive)-

The email service says it was unable to appeal a Swiss court’s demand to log the IP address of a French climate advocate.

This weekend, news broke that the anonymous email service ProtonMail turned over a French climate activist’s IP address and browser fingerprint to Swiss authorities. The move seemed to contradict the company's own privacy-focused policies, which as recently as last week stated, "By default, we do not keep any IP logs which can be linked to your anonymous email account."

Edit: formatting

I often figure it's google bias and / or people trying to impose their threat models on other people.

Been using proton for quite a while with a few custom domains and am impressed with the service to price of their offerings.

We can one off use cases with any vendor, but at the end of the day, they offer a more secure out of the box experience than just about any other platform out there. If someone is doing illicit shit and gets popped, it's not on the service provider to provide air cover for them. Improve your opsec or self host.

The one and only critique I'll give to Proton is how they have it where you can have Google e-mails forwarded to you to your Proton address.

And it's like...why? The entire reason you're going to ProtonMail is to escape Google. Why the hell would you want Google to try and pry into your Proton usage when all you want is to distance yourself from them?

Correct. They comply with court orders, its a business. People still need to be secure in how they use it, which that guy wasnt. So if you're attempting to evade the government, use a vpn. All your data is encrypted, where you access it from and your billing information cannot be.

True but the guy was the one at fault and Proton had to comply. The French Activist was using ProtonMail e-mail for bad usages which is what it boiled down to. You left out the part where they complied with Swiss government yes but they didn't with the French authorities.

Yet it still comes down to people's own responsibility. But people love to throw that out the window and expect everything to protect them when they get up in shit.

It's probably tight enough for your needs. Unless you live in Switzerland or are breaking Swiss law, they'd need a really good reason to send your data anywhere.

That said, I use Tuta. They have a similar source model (open client, closed server) and are based in Germany, but since they're an underdog, they have a bit more value and lower costs. I pay €3 and get 3 custom domains and 15 aliases, whereas w/ Proton I pay $4 and get just 1 custom domain and 10 aliases; I can also add people to my plan for €3, instead of upgrading to a Duo for $15 or family for $24. If Proton matched Tuta's features, I'd probably pay slightly more for the better UX, but I use those features so I'm very hesitant to give that up. I don't intend to use their VPN or other products, so I'm very much not interested in their higher tiers.

I do wish their server code was open source and self-hostable. I'd love to use my own storage, but still use their spam filtering and whatnot.