Comment on Standard notes: what about don’t put all your eggs in one basket rule?
Imprint9816@lemmy.dbzer0.com 7 months agoIf all your eggs are encrypted, having those eggs in one basket or five doesn’t matter from a security perspective. Its the same reason you wouldn’t split up your passwords to multiple password managers.
LWD@lemm.ee 7 months ago
There’s a lot of metadata Proton passes around, and two of their oldest flagship products (email and VPN) require you to put a lot of trust in one company. For email, you trust them to encrypt them without snooping. For VPN, you trust them to not collect logs about where you’re going.
And in the former case, they were compelled to give up at least a little data in the not-so-distant past.
Imprint9816@lemmy.dbzer0.com 7 months ago
It doesn’t matter what is being discussed, if its about proton the email incident gets brought up. Here is the deal. No major company is going to break the law for its users. Had the activist been using proton vpn to create and access their email Proton would not have had the info they were forced to give up. The takeaway from the story is bad opsec is usually what gets people caught.
Whether you use Proton or someone else you will need to trust that service. If you don’t trust them, don’t use them. Its that simple, no need for conjured up FUD excuses.
LWD@lemm.ee 7 months ago
I bring up “the email incident” because it’s a reminder that Proton may record stuff that’s not encrypted, which includes the vast majority of emails.
And it’s not to say that you wouldn’t trust it with one individual service, but whether it’s wise to trust it with so many services at once, from a security, privacy, and even monetary perspective.
Not every concern is FUD, and I think you’ll start seeing diminishing returns every time you repeat it.
Imprint9816@lemmy.dbzer0.com 7 months ago
Not every concern is but ones where concern is based solely on fear and hypotheticals are. This all eggs in one basket line of reasoning is FUD and has no real bearing in reality.
gamedeviancy@discuss.tchncs.de 7 months ago
What? If protonmail collects any info, why do you assume protonmail doesn’t?
Imprint9816@lemmy.dbzer0.com 7 months ago
Proton can see my traffic. I already know that. Any vpn provider you use could. Its not that i trust proton implicitly its that i trust them more then my ISP that would be able to see it if i did not use a vpn. Couple that with their record of audits and im not sure what else you could expect from them.