Which eMail provider? ProtonMail Vs. LavaBit Vs. Tutanota

Discussion in 'Serious Discussion' started by CHEF-KOCH, Nov 28, 2017.

  1. CHEF-KOCH

    CHEF-KOCH MDL Addicted

    Jan 7, 2008
    941
    878
    30
    #1 CHEF-KOCH, Nov 28, 2017
    Last edited: Dec 1, 2017
    Hello friends recently someone asked me why I'm using ProtonMail. So I decided to write a small review and I will share my opinion which eMail Provider is really good for you.

    As shown in the title describtion the guide isn't fully done and it will get several updates which I not mention seperatily here on MDL, just follow the GitHub commit history if you want to see what I changed.

    At this point LavaBit is a bit useless (the reason is mentioned in my guide) which basically brings us to a ProtonMail Vs. Tuanota battle. If I get enough likes and I see that there is more interest in this topic I also could expand other eMail providers like MailBox.org, Posteo...

    However the goal of this thread is to keep people updated and informed because eMail is (same like the right Browser) a really important task because you need to use it daily to communicate.

     
  2. CHEF-KOCH

    CHEF-KOCH MDL Addicted

    Jan 7, 2008
    941
    878
    30
    Final version is up, when there are more questions I might move it as seperate project on GitHub to give a better format + pictures.
     
  3. lostpassword

    lostpassword MDL Member

    Nov 21, 2009
    194
    13
    10
    Interesting thread, but why does the ordinary person need encryption? I use Bitlocker to protect stuff like financial data on my computer, but there is nothing I email that is that important. Assuming that all traffic is logged/analysed surely the fact that emails are encrypted would raise suspicion?
     
  4. CHEF-KOCH

    CHEF-KOCH MDL Addicted

    Jan 7, 2008
    941
    878
    30
    #4 CHEF-KOCH, Dec 3, 2017
    Last edited: Dec 3, 2017
    (OP)
    The 'why we need encryption' questions is a little bit off-topic and a thread for itself (see my net neutrality thread) but I try to explain it in short.

    Encryption is important because it allows you to securely protect data that you don't want anyone else to have access to. ... Espionage uses encryption to securely protect folder contents, which could contain emails, chat histories, tax information, credit card numbers, or any other sensitive information. However I give you an detailed example why you we need eMail encryption to stay on the topic.

    If you are mailing a check to pay a bill, or perhaps a letter telling a friend or family member that the extra key to your house is hidden under the large rock to the left of the back porch, you might use a security envelope with hatched lines to obfuscate or hide the contents of the envelope even better. The post office offers a number of other means of tracking messages – sending the letter certified, asking for a return receipt, ensuring the contents of a package, etc. Why then would you send personal or confidential information in an unprotected email? Sending information like the location of your extra house key under the large rock to the left of the back porch in an unencrypted email is the equivalent of writing it on a postcard for all to see.

    However I know about the argument that we have secure Chat alternatives like e.g. Threema, Signal & Co. but these are still personal things which are not widely used in business environments so there still using eMails to e.g. sending Steam keys, login confirmations and more.

    I think thi isn't about getting suspicion since we learned from the NSA leaks that they want to collect all data not only from single persons.
     
  5. lostpassword

    lostpassword MDL Member

    Nov 21, 2009
    194
    13
    10
    Thanks for your answer. I realise that you would not want information about where a key is hidden, and I agree. The point I have missed all these years, is that I thought an email was reasonably secure. I realise that if someone had access to the computer they could get the details, but is there another way this information can be stolen?
    Is it done by the ISP staff?
     
  6. MS_User

    MS_User MDL Guru

    Nov 30, 2014
    2,621
    388
    90
    wouldnt be easier to use a app like whatsapp for stuff like that...to me is better than any encrypted email.
     
  7. lostpassword

    lostpassword MDL Member

    Nov 21, 2009
    194
    13
    10
    Sorry to admit it, but I have never heard of Whatsapp. I have been looking for a program to replace SKYPE as the quality is now so bad. I used to use Voipbuster, but that seems to have finished. Sad, as the voice quality to another PC was very good.

    Will give whatsapp a try
    Many thanks.
     
  8. Yen

    Yen Admin
    Staff Member

    May 6, 2007
    11,027
    10,605
    340
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  9. gorski

    gorski MDL Guru

    Oct 21, 2009
    2,912
    741
    90
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  10. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    369
    60
    A better question is how does the ISP know if you are an ordinary person ?

    How do they know that the encrypted traffic isn't client HIPAA protected traffic until AFTER they break the encryption ?

    How would you feel if your information was broken into by government agencies in that manner ?
     
  11. pisthai

    pisthai Imperfect Human

    Jul 29, 2009
    6,746
    1,959
    210
    I really didn't like the use of 3.party for my E-Mail and Messages, which need some confidence. Any data going over 3.party Data Servers are in the hand of that Data Server Providers, and no one would know what (all) could be done with it! For that, I use my own Server which gives me full and 100% control! All data on that Server are encrypted which gives me a lot of freedom! Beside of that Server, which handles all my Companies Data, for to use even another Linux Server, rented abroad, I use another Server for my 'private' computer work and play, which didn't need such high security, even I could simply configure it to the same level! Just don't need to do that!!

    From bad experiences, I stopped already years ago to use 3. Party E-mail services and others like services of my ISP etc., etc.! I don't use the Modem-Router at all, just the Modem in Bridge Mode, and Smoothwall Express as High-End Router, Firewall and more for the Security in my Company and my home also! Once or twice a week, I just 'adjust' some settings in Smoothwall Router and Firewall, if needed, that's all!

    I don't need to be paranoid about the Internet Security! Don't need to spend extra time and may even money for new Security Apps etc.! The Service of my ISP is used for to hard-connect to the Internet only, because of the installation of a direct hard-wiring from my Office and/or home is too far and therefore too much too costly.

    What I want to say with that, is that's not too expensive or complicated to create a secure connection to the Internet for most of the users, doesn't matter where they are located. A little bit Effort, Time and small Investment, and all could be easily done. All that complaining and shouting about the Telemetry and so on, the heated discussion about that isn't needed anymore!. The majority of the Members of this forum would be having no problems to built and handle such environment on their own! So, WHY they're don't go that way??
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  12. Tuff Knuckles

    Tuff Knuckles MDL Junior Member

    Dec 10, 2017
    66
    12
    0
    Protonmail. Tutanota says that my IP range is blockerd.