Remix clone Hacker News

new | show | ask | jobs Github

▲

n42 2 days ago

is there a future where Mozilla buys Kagi and becomes the privacy Google?

▲

bigstrat2003 2 days ago | parent | next [-]

I certainly hope not. I like Kagi and I don't want Mozilla messing with it.

▲

technocratius 2 days ago | parent | prev [-]

Just use Proton

▲

Avamander 2 days ago | parent [-]

Proton says they care about security and privacy but at the same time makes it impossible to use your own keys or properly export the original emails from your inbox. I really can't take this suggestion seriously.

▲

gausswho 2 days ago | parent | next [-]

I haven't tried myself but is this insufficiently proper? https://proton.me/support/proton-mail-export-tool

	▲	Avamander a day ago \| parent [-]
		Last I checked that tool reordered all the headers (which destroys a lot of forensic value amongst other issues) and neither should such a tool be the only way to get (supposedly) good exports. Both the IMAP bridge and web interface should provide original unmodified emails upon request.

▲

kowabungalow 2 days ago | parent | prev [-]

That's not a good argument. The easiest way to undermine security of everyone is to allow portability of keys features. Look for example at where Signal fails and for no benefit to a normal user.

▲

Avamander 2 days ago | parent [-]

Current email encryption schemes provide no forward security, it's nothing like Signal. Key management has to work totally different.

You're also wrong in the aspect that it would undermine something, you can absolutely export keys from Protonmail, you just can't use your own keys properly. You can't remove all the keys they have generated, you can't use your own client with your own keys, the bridge literally mucks it up. The defaults can be what they are, it's not mutually exclusive in any way.

In the end this restriction undermines the security and privacy for everyone that want to use secure hardware storage. Which is absolutely insane for a service that boasts about these things.

▲

kowabungalow 2 days ago | parent [-]

I didn't critique their security model, I said you wanting greater convenience to exfiltrate keys and documents, even if its to a system that is more secure for you, is not arguing for better security and privacy in their product.

▲

Avamander 2 days ago | parent [-]

Your comment makes no sense. You can already export all the keys Protonmail generates (which I don't want to use and neither should I be forced to use). Not allowing the user to use their own provides absolutely no resistance to any kind of exfiltration.

	▲	kowabungalow a day ago \| parent [-]
		>> Proton says they care about security and privacy but at the same time makes it impossible to use your own keys or properly export the original emails from your inbox. I really can't take this suggestion seriously. They shamefully don't care about security and privacy because you can't get anti privacy capabilities working to your satisfaction. You apparently could have lead with a lot of valid complaints but your 'shame' isn't really consistent with what you actually want.