I’ve been looking to switch from gmail to a different email provider that’s more private. I’ve been hearing about Tuta, are there any drawbacks to it? Are there better options?
For a while I was planning on making the switch to protonmail but that’s off the table now due to the recent events surrounding them.
Tuta’s product is snake oil.
A cryptosystem is incoherent if its implementation is distributed by the same entity which it purports to secure against.
If you don’t care about their (nonstandard, incompatible, and snake oil) end-to-end encryption feature and just want a free email provider which protects your privacy in other ways, the fact that their flagship feature is snake oil should still be a red flag.
Is there anything about Startmail (company that does Startpage.com) that is worth avoiding? I’ve never paid for mail but if it’s solid and avoids Google I might.
StartPage/StartMail is owned by an adtech company who’s website boasts that they “develop & grow our suite of privacy-focused products, and deliver high-intent customers to our advertising partners” 🤔
They have a whitepaper which actually does a good job explaining how end-to-end encryption in a web browser (as Tuta, Protonmail, and others do) can be circumvented by a malicious server:
However (i am not making this up!) they hilariously use this analysis to justify having implemented server-side OpenPGP instead 🤡