Conversation

Notices

1. Embed this notice
   Nemo_bis 🌈 (nemobis@mamot.fr)'s status on Friday, 24-Jan-2025 16:47:24 JST Nemo_bis 🌈

   • Emelia 👸🏻
   • Schykle

   @thisismissem @schykle There is no need to do that, they can install server-side tracking for specific targets as they already did to help French prosecutors get their hands on a climate activist.
   https://en.wikipedia.org/w/index.php?title=Proton_Mail&oldid=1269611533#cite_ref-75

   #ProtonMail

   • Embed this notice
     Nemo_bis 🌈 (nemobis@mamot.fr)'s status on Friday, 24-Jan-2025 16:54:01 JST Nemo_bis 🌈

     in reply to

     • Thibault Mol. 💤 from FOSDEM

     @thibaultmol Do you mean, if you use PGP encrypted mail and send it through SMTP, so that the plain text never goes near any software or service controlled by Proton? Sure, but then you might as well use any other mail provider.

   • Embed this notice
     Thibault Mol. 💤 from FOSDEM (thibaultmol@en.osm.town)'s status on Friday, 24-Jan-2025 16:54:02 JST Thibault Mol. 💤 from FOSDEM

     in reply to

     • Emelia 👸🏻
     • Schykle

     @nemobis @thisismissem @schykle *
     That can intercept regular email but they can't decrypt e2e email right? They're doing as much as they can but they obviously have to abide by the law.

     Any emails sent before they had to install the tracker or whatever, are encrypted on the user account so can't be accessed.
     But of course if that person receives a plaintext email then that can get intercepted

   • Embed this notice
     Nemo_bis 🌈 (nemobis@mamot.fr)'s status on Friday, 24-Jan-2025 17:03:04 JST Nemo_bis 🌈

     in reply to

     • Thibault Mol. 💤 from FOSDEM

     @thibaultmol Does it, though. I search "Thunderbird" and I find https://proton.me/support/protonmail-bridge-configure-client -> https://proton.me/support/protonmail-bridge-clients-windows-thunderbird/ . This page looks decidedly outdated or misleading, with its advertisement for "Proton Mail Bridge". Isn't that redundant, in newer versions of Thunderbird?

     From https://proton.me/mail/bridge I see you can download a deb or rpm. Does it self-update afterwards by contacting Proton servers? It's linked to a personal subscription. Can French authorities ask a person-specific update?

   • Embed this notice
     Thibault Mol. 💤 from FOSDEM (thibaultmol@en.osm.town)'s status on Friday, 24-Jan-2025 17:03:05 JST Thibault Mol. 💤 from FOSDEM

     in reply to

     @nemobis proton makes it easy for those who don't know how to do that.

   • Embed this notice
     Nemo_bis 🌈 (nemobis@mamot.fr)'s status on Friday, 24-Jan-2025 17:38:29 JST Nemo_bis 🌈

     in reply to

     • Thibault Mol. 💤 from FOSDEM

     @thibaultmol I can't see the bridge in Debian repositories at least. https://repology.org/ doesn't know about it either.

     There are still cases where ProtonMail is helpful, but as always it depends on the threat model. Proton's answer https://mastodon.social/@protonprivacy/113879107355870155 tries to reassure us by showing that Proton CEO's bootlicking doesn't extend to Venezuela's government for now.

   • Embed this notice
     Thibault Mol. 💤 from FOSDEM (thibaultmol@en.osm.town)'s status on Friday, 24-Jan-2025 17:38:30 JST Thibault Mol. 💤 from FOSDEM

     in reply to

     @nemobis - the bridge for Thunderbird only works on desktop so it's not a solution for mobile.
     - some people might not be able to install something on their PC so they can only use a browser or something

     I don't know about those last parts but I don't think that has ever happened so far. Plus I think the bridge is downloadable through regular Linux repositories so I don't think you can make user specific downloads anyway