bigstrat2003 2 days ago

I certainly hope not. I like Kagi and I don't want Mozilla messing with it.

Reply View 0 replies
technocratius 2 days ago

Just use Proton

Reply View 8 replies
  • Avamander 2 days ago

    Proton says they care about security and privacy but at the same time makes it impossible to use your own keys or properly export the original emails from your inbox. I really can't take this suggestion seriously.

    Reply View 7 replies
    • gausswho 2 days ago

      I haven't tried myself but is this insufficiently proper? https://proton.me/support/proton-mail-export-tool

      Reply View 1 reply
      • Avamander a day ago

        Last I checked that tool reordered all the headers (which destroys a lot of forensic value amongst other issues) and neither should such a tool be the only way to get (supposedly) good exports.

        Both the IMAP bridge and web interface should provide original unmodified emails upon request.

        Reply View 0 replies
    • kowabungalow 2 days ago

      That's not a good argument. The easiest way to undermine security of everyone is to allow portability of keys features. Look for example at where Signal fails and for no benefit to a normal user.

      Reply View 4 replies
      • Avamander 2 days ago

        Current email encryption schemes provide no forward security, it's nothing like Signal. Key management has to work totally different.

        You're also wrong in the aspect that it would undermine something, you can absolutely export keys from Protonmail, you just can't use your own keys properly. You can't remove all the keys they have generated, you can't use your own client with your own keys, the bridge literally mucks it up. The defaults can be what they are, it's not mutually exclusive in any way.

        In the end this restriction undermines the security and privacy for everyone that want to use secure hardware storage. Which is absolutely insane for a service that boasts about these things.

        Reply View 3 replies