To replace everything. Mail, calendar, drive, vpn, password manager, documents etc. What are the pros and cons relative to proton? What are the mobile apps like? What assurances do you have they won’t go full proton in the future? And other questions
So the whole “we encrypt your life” thing is pretty nice. But in reality look at what you’re actually doing… You have super secure encrypted email to do what? Send unencrypted emails to your friends…
It makes no sense to me… Like, you need an encrypted calendar? Why? What are you getting with encryption that you can’t get with using a VPN to connect to your local network and access a self-hosted calendar. In what was is that less secure?
Drive? Sure. VPN? Sure. Password manager? Sure. Documents? Sure. I see the value in having H/A for services like this, but all of that can be self-hosted on an rPi in your basement with a rProxy and a domain.
One reason is to prevent targeted advertisement.
It doesn’t, though. Not even a little bit. Using encrypted services doesn’t stop tracking cookies. That too has to be handled client side. So you would use a browser that lets you use host files via extensions (firefox, etc) and other tracking blocking extensions, or you can setup network wide protection via Adguard Home, etc.
It does. You need both. Even if you have cookies disabled, Gmail can read all of your emails and use that information.
You need both.
For the third time now–not if the service/device you’re using contains both the password and the 2FA… How is this not getting through?
If someone gets into my Bitwarden install, and gets access to both my passwords and my 2FA seeds, in what way does 2FA protect me? I kept all the family jewels in one place. That’s the exact situation two factor authentication is designed to prevent by forcing you to have an additional and separate device/key/passcode/password.
Say it a fourth time if you want to continue feigning ignorance. You’re assuming that the only way your credentials could be compromised is if your password manager it compromised. 2FA would not protect that specific use case if you store both authentication methods in your password manager. However, it does still protect your services from other types of compromises, which is better than no 2FA at all.
This community is just as bad as the one on Reddit. Bunch of candies that run around with a VPN thinking they’re security experts meanwhile they’re the type of person who lets their son get shot because the password to their gun safe is
0000and they’re just flabbergasted that the gun safe didn’t work…
Tuta – https://tuta.com/
Includes mail and calendar and contacts. No files, or password management. But worth a look, if you want an encrypted solution and you’re OK with using their client apps. I do, and I am and it’s great, IMO.
Their blogs say they’re pro-privacy, and anti-BS, if you believe them: https://tuta.com/blog
Tuta for mail & calendar, CryptPad for cloud docs and spreadsheets, Mullvad for VPN, plus a few other random things like Disroot which offers email and and some other services. There’s some overlap and duplication but I don’t want to keep all my shit in one place any more. The Tuta app is blocky but acceptable. Everything else I only view in browsers.
disroot
Tuta will show you ads in your mailbox, don’t fall for it.
I’ve had Tuta for years and can’t recall ads… what do you mean?
And I am a newer tuta user ( a year or so) and haven’t seen an ad yet either.
I’ve never seen an ad in my mailbox. Even if they did, they have to make money somehow. At least they’re not selling my data.
they have to make money somehow.
I was a paying costumer.
Mail and calendar I’m still trying to figure out. VPN you don’t need as long as you use HTTPS everywhere.
password manager
documents
Collabora Office + LibreOffice
What are the pros and cons relative to proton?
Pros: free, open source, and 100% offline with no intermediary company. Your file security is entirely in your own hands.
Cons: you must devise your own cross-device sync system. I use Syncthing + Syncthing-Fork.
What are the mobile apps like?
Collabora is currently just bad lol. It’s best reserved for really simple edits, if not just for viewing, with all major changes made on a desktop/laptop computer. KeePassDX isn’t terrible but it can’t view all the fields that the KeePassXC desktop platform can, and getting it to take PIN instead of password for vault-unlocking is really convoluted (although you’d only have to do it once).
What assurances do you have they won’t go full proton in the future?
They’re all open-source so anyone dissatisfied with the direction that the maintainers go in can fork them at any time.
I can second most of the suggestions. I do not host an office suite (for now?) but I am syncing my keepass dbs over syncthing along with my notes and important documents. I think since 2016 or so. It works well.
Before I had a server I just synced them in a triangle between my phone, laptop and desktop. Most things had 3 copies this way. Any device could offload changes to another. Now I have a central node and the option to sync as before if the server is down. With Tailscale, I don’t need to be on the same wifi now eiter.
The keepassDX limitations are not a big deal if all you need is basic autofill.
Mail providers are hard to chose. I am leaving proton for the lack of easy smtp and their locked in nature. Get your oen domain and you will be able to switch more easily in the future.
Tuta?
I just synced them in a triangle between my phone, laptop and desktop.
This is precisely my setup, haha! But I don’t even use my desktop often enough to merit a server…
Yeah, I tried tuta. I have (overall less but) the same issue with proton. I just want to use my own client apps of choice.
I have registered with mailbox.org and while the trial period is very limited, the web ui is minimalistic and basic looking. You could say outdated. I seriously consider paying for a “team” account for me and my wife. The price is unbeatable. Aside from the gui, the features I need are there.
I just need the Wife’s approval. She’d be migrating from yahoo of all places.
Honestly you could easily selfhost all of that except mail and maybe a VPN.
Baikal for calendar. Vaultwarden for passwords.
I can vouch for Vaultwarden and Baikal. Two great essential programs I use.
mailbox.org but i dont put all my eggs in one basket. I only mailbox for mail.
What assurances do you have they won’t go full proton in the future?
Absolutely none. That applies to all services that exist now or in the future. The only way around that is self-hosting but that path has its own issues including a very steep learning curve if you want to be secure as well as private. Maybe this could be a longer term project to work towards?
For services:
- Mail - Mailbox.org seems the best option right now
- Calendar - don’t know.
- Drive - either Cryptomator used with literally any service or a dedicated service like Filen
- VPN - Mullvad
- Password Manager - Bitwarden
- Documents - I just use LibreOffice offline or CryptPad occasionally if I’m collabing with someone.
In truth none of these are perfect. Privacy has got a lot harder recently as Proton and StartMail/StartPage have politically shit the bed and the UK seems determined to kill encryption which means I have to avoid really good services like IceDrive just because they’re in the UK.
What happened with StartPage?
Regarding Password Managers, you can put a little extra effort into setup with KeePass + SyncThing to avoid using 3rd parties at all.
Highly recommend not relying on a cloud provider for this kind of thing. You’re just asking for one of two things to happen:
- Their servers get compromised
- They decide to shut down
I know you can self-host with vaultwarden, but if you’re not a self-hoster then it’s a little bit simpler to setup SyncThing and use the kdbx format.
Thats a good point, I might set that up myself!
At the moment I do a once-a-week encrypted export from BitWarden and Aegis (authenticator) and put those exports onto an encrypted USB pen drive to avoid the issues you mention but I think your way is probably better.
Can you provide any link for what Startpage has done wrong? I’m familiar with the Proton situation but hadn’t heard anything about Startpage. I’ve actively been looking for non-US based search engines.
I can personally recommend fruux for calendars and contacts, but their free accounts are rather limited.
I can’t find anything specific on their data security - do you have a link to that?
Tuta is a great german alternative with e-mail and calendar. For Drive there is many options but I don’t feel recommanding one now For VPN there is Mullvad, IVPN and NymVPN(beta) For Password Manager there is BitWarden or any popular KeePass clients but sync is mainly on you. For Documents there is CryptPad
I wholeheartedly agree with Tuta over Proton Mail!
And to add to password manager, KeePass + SyncThing is excellent if you need to access your vault on multiple devices without any 3rd parties involved.
Custom domain + migadu.com
As others have said no all-in-one solution, but Privacy Guides has good recommendations for each use case
ENTE for photo storage: https://ente.io/
Crypt.ee is also an option.
Have a look at: https://www.privacyguides.org/en/tools/
Proton’s probably the best mail.
Calendar: paper
Documents: cryptpad
Crypt.ee looks like a solid option to replace proton drive and docs(only for solo use) if you don’t mind their UI/UX. It also gives me confidence in them when I read their FAQ and listen to the podcasts episodes the CEO has been intertwined in.
Podcast episodes
https://neat.tube/videos/watch/cf2d43d7-56ab-42d6-82af-a0375ab7f8ca or on odysee https://odysee.com/@techlore:3/developing-privacy-tools-with-john-ozbay:3
https://neat.tube/videos/watch/2d5e2d92-f440-498b-ad1c-c2fa3d3c720b or on odysee https://odysee.com/@techlore:3/how-secure-is-big-tech-other-digital:0
https://neat.tube/videos/watch/4a279d2f-dbf3-4cb9-b5e0-377950dd702f or on odysee https://odysee.com/@techlore:3/privacy-dilemmas-education%2C-toxicity%2C:c
Things I have changed to or plan to
Tutamail for e-mail and calendar
Plan to change Filen for cloud services
F-secure’s Freedome for VPN
For the rest I’m looking for good solutions as well and also opinions on Filen or if there’s other alternatives that might be better
