Hi all, I was just reading through this thread https://forum.level1techs.com/t/best-email-service/ and started shifting some of my core addresses to Proton Mail and I like that everything is encrypted through GPG.
It’s a shame there’s only 3-domains that one can add on the higher plan, but it’s cheaper than $4/month for each account on Workmail - I’m running a few and basically doing redirection.
The reason I’m going for a paid solution is because they all automatically setup:
SPF
DKIM
DMARC
another fancy email related tech (pat-pending)…
…and it’s that last part. With more domains to support into the future, I don’t want to have to spend my time supporting “yet-another-service” of my own. I have enough CI/CD to manage as it is.
So, how “secure” and reliable is the Proton cloud vs say Google/AWS? Is Proton fully run by CERN?
Oh, if you want to send me some fun GPG signed messages you can do so by sending electrons to [email protected] - hehe, see what I did there? Yeah
Ive used Protonmail since 2018 and they seem to be fine so far.
Theyre caught up with some issues involving lawful court warrants but there is no avoiding that because a business is going to be bound by a jurisdiction somewhere and it has to follow a country’s laws somehow.
There is this minor issue with Proton Wallets but I am not directly affected by this.
Just a minor caveat with their E2EE: it only applies to sending (and receiving) mail to other Proton accounts exclusively. Proton <== ==> Gmail (or other mail providers) isnt encrypted.
In one of my past roles, I setup GPG and signed everything via Thunderbird; doesn’t hurt to have an extra layer to keep emails private, since it’s work stuff.
I’ve been using Protonmail (and their other products since conception) for years and with custom domains too.
Very reliable and no dark patterns in the user interface.
They have passed security audits and their privacy is tested in court.
My only complaint is that you can only do SMTP with a Business Account or through their Bridge - but that’s not much of a problem for me personally.
i have used Proton services for a number of years now and I have yet to be disappointed. Now do understand while their goal is to eventually be a direct competitor with Google, but they aren’t there yet and will openly admit it. And the path to get there is a multiyear plan with the philosophy of not releasing products or services until they are ready.
@bsodmike My understanding of Proton Mail email encryption is that only emails between Proton Mail members are encrypted; for example, emails between Gmail and Proton Mail are not encrypted. I could be wrong.
I assume email isn’t a secure form of communication. But that’s just me; I probably overreact when it comes to security. I just think government agencies are always spying on me, and there isn’t anything I can do about it, except not be online.
Email in it’s simplest form is completely insecure. But with numerous encryption schemes it becomes much more secure (PGP to name one). As for how that applied to Proton the general comments are correct in stating that external emails aren’t e2e encrypted, but all the contents on their server is encrypted and inaccessible to them. Thus if LE does get it via legal means all they get is encrypted data. But that isn’t to say LE can obtain the same content on the other end.
Proton AG encrypt data at rest and in transit… (if!)
Emails are Encrypted via GPG (as per their platform and tools)…
…and the other recipient is also a Proton email…
OR a 3rd party email BUT they also sign via PGP
…then we can assume it’s E2E encrypted and cannot be accessed by any LE/Govt actor?
P.S. transit means not only internal to Proton but from our local clients, so MITM SSL attacks etc etc can be a factor but still we assume that GPG/PGP will guard against that. Right?
OT: I’m debating moving 3x AWS Workmail accounts to a Proton Unlimited account.
$9.99 vs $4 x3 = savings of $24/year. All this will do is redirect mail to other mailboxes though, security isn’t as paramount for these, but they cannot throw up errors or drop mail.
Workmail offers 50MB/account, with Proton Unlimited 500GB shared, so this looks like a good option. And I get “catch all” as well.