As I used to say. The Nix community acts more like a cult of people willing to support flat earth.
As I used to say. The Nix community acts more like a cult of people willing to support flat earth.
Sounds just like Microsoft to me.
How does this even work? How is a District Court judge in another state allowed to stop something before it is heard by a higher court? Do all federal judges have more power than the President?
How does a WebView wrapped app offer much more security than a website? Why do they require a paid subscription to use the desktop apps?
Last I checked the apps are mostly just wrappers around WebView, so either way you’re getting served different content randomly without ever knowing. AND, Proton specifically prevents the desktop apps from functioning on unpaid accounts. That would be like Gmail disabling IMAP for unpaid users.
Microsoft has third party audits all the time and say they’re secure, and then you learn of new backdoors every 6 months. Audit companies are unreliable and paid to give good feedback while doing the least work possible.
I’m a black belt in TypeScript, JavaScript, Go, Rust, C, C++, Python & can read and write assembly with my eyes closed, okay?😉
Tell me… when you visit a website that gets updated daily, if not hourly. If it served you a different version of JavaScript than what it served someone else… would you know?
It will cache credentials for a short time so you can still access some of your passwords. It will not let you add new credentials. It’s like a web browser working in offline mode for a period of time. It is a cloud-based password manager with a closed-source server backend.
Enterprises are using a plethora of open source tools at this point. They may still utilize closed source solutions, but they definitely have quite a bit of open source solutions tied in.
You realize that Microsoft code is inspected as well, even more heavily and regulated… and yet they still end up with major breaches. Security evolves through open source collaboration and inspection by experts that aren’t being paid to say you’re doing a good job.
Vaultwarden/Bitwarden integrate with SimpleLogin… and they offer other alias service providers as well.
Incremental in what way? There is an illusion of privacy. If that makes people feel good then sure, you increase your illusion of privacy.
Keyword… unlock, not add information or use them offline where they can sync to an open source backend. They are cloud-based password managers that are designed to operate online. The backend is not open source. It is designed to lock you into a walled garden.
And so what happens to your passwords if Proton were to go offline and you needed to continue using Proton Pass? Do they have an open source server you can use like Bitwarden does or vaultwarden? Or are you essentially locking yourself into a new walled garden for no reason other than name recognition? Why not just use KeePassXC which is encrypted locally rather than share your password with a third party who can easily capture your private key password?
Because their primary audience is those gullible enough to believe they somehow can’t read your messages, yet they can easily capture your private password.
I’ll tell you what. If you can prove to me by pointing to the specific source code that would prevent Proton from capturing your private key password when you login or decrypt using their standard clients then I’ll join the Proton cult.
It means that questioning decisions or problems is seen as negative in the community generally and that everyone else must be wrong for not using NixOS.