this post was submitted on 31 Jan 2025
32 points (97.1% liked)

Privacy

516 readers
249 users here now

Protect your privacy in the digital world

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

~PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!~

  1. Be nice and no bigotry/prejudice
  2. No tankies/alt-right fascists. The former can be tolerated but the latter are banned
  3. Stay on topic
  4. Don't promote proprietary software
  5. No crypto
  6. No Xitter links (only allowed when can't fact check any other way, use xcancel)
  7. If you post news exclusive to a country please name it. ~(This isn't a bannable rule, just a recommendation!)~

Related communities

founded 2 months ago
MODERATORS
fxomt@lemm.ee
fxomt@lemmy.dbzer0.com
otter@lemmy.ca
shaytan@lemmy.dbzer0.com
32
Simple guide towards mail privacy (lemmy.dbzer0.com)
submitted 6 hours ago* (last edited 1 hour ago) by shaytan@lemmy.dbzer0.com to c/privacy@lemmy.dbzer0.com
16 comments fedilink hide all child comments
 

It's hard to make the full switch towards a more private life, but switching your mail already fixes a big underlying issue: that being, Google or other companies having access to all your emails. So, I'll cover the basics of making your online mailing more private.

Switching Mail Providers:

Your email is a big part of your online footprint and helps you keep track of your online identity. So, in order to keep that to yourself, I encourage leaving services like:

"Gmail" or "Outlook",

for others like:

"ProtonMail" or "Tutanota".

This is already a big step towards keeping all your emails private and safe. Both of these are free and respect your privacy on their free tier, but expand in features with paid plans. This takes time, as you have to switch your email on most accounts to this new email.

For the best privacy, you should delete most accounts and create new ones with this new email or with aliases. Some people, like myself, prefer to have multiple emails over aliases. For example:

  • "something.banking11231@provider.me" -> For banking and finance
  • "something.social12312@provider.me" -> For social media
  • "general.use@provider.me" -> For casual and responsible internet use
  • "something.trash21412@provider.me" -> For crappy websites or similar uses

(Self-hosting your own mail domain is possible, but it’s a harder process, and custom domains are not always accepted or reliable.)

(You should keep your old email for a year or so to make sure no important service was left behind locked to that email. Once that's done, you can delete the account.)

Tips:

If you can, you should try expanding your protocol with this:

  • Adding 2FA to any online website, especially email. I use ~~"Authy" ~~for this. -> Better use Aegis, good app!

  • Switching your browser to something like "Librewolf".

  • Switching to a password manager like "Proton Pass" or "1Password".

  • Encourage your close family to do the same once you're comfortable with the process.

  • Switch social media to private alternatives.

  • If you take any efforts to switch browser or install Aegis, try to use "F-droid", or even better, "Droidify". These being a FOSS app store, and a good Material alternative frontend. For apps not in here, consider "Aurora store", a more private **"Play store" **alternative

This is about it for me, quick posts from class, feel free to add into this topic bellow.

Edit:

Important additions after reading the comments:

  • Proton is a bit disencouraged by some for some political views published by the CEO under proton's account and image. They backed down, and I believe it isn't something too bad as for users to leave such a good privacy oriented suite of apps. I encourage anyone who cares about this topic to research before making the switch.

  • Mail is not 100% private with any option, and shouldn't be used for highly sensitive information. For that use end to end encrypted apps well respected, like "signal". Still is best to just don't send very sensitive information online.

  • As a comment pointed, for a mail to be as private as possible, both the sender and reciever should have a private mail, otherwise you can be private but the other person would still be having your mail conversations stored under "gmail" or similar.

Sorry if this post didn't give the best newbie advice, I tried to track back some of my old knowledge, but I'll take more time to research the next time. Take care and stay private!

top 16 comments
sorted by: hot top controversial new old
[–] fxomt@lemm.ee 12 points 6 hours ago* (last edited 5 hours ago) (2 children)

Great guide, thank you :)

PS: You should probably add a disclaimer to proton, many people are against it now, and i'd say for good reason but YSK.

Also, to all who read: Email aliases are amazing. There are two good choices:

A couple of tips:

Adding 2FA to any online website, especially email. I use "Authy" for this.

Authy is known to be shady. Some better (open source) alternatives are Ente, aegis (android) and 2fas (apple).

Authy practically traps you in its walled garden, since you can't export. Also it's closed source.

Switching your browser to something like "Librewolf".

I recommend against using forks of firefox. Instead users should use a configured and personalized version of it, with Arkenfox. But that may be extreme (tho librewolf uses arkenfox).

The reason why is because often those forks are outdated or are late by days, when crucial security updates may be available. Most of their features can also be recreated in the user.js or userchrome, so they're often redundant too.

Switching to a password manager like "Proton Pass" or "1Password".

Both of those are closed source; a better, FOSS and trusted alternative is Bitwarden. I've been (and others here) using it for a long time and i can confidently say it's the best password manager on the market.

BTW: While we're all here, should we create the [soon-to be created lol] guide on the community, codeberg or dbzer0's wiki feature? I'm fond of the wiki and i'd like to try it, but reply with your vote.

[–] shaytan@lemmy.dbzer0.com 3 points 4 hours ago

I somehow tripped writing this, I also use aegis woops, but I did use authy on the past

My browser recommendation was based on how easy it is to just download librewolf compared to messing with user agent

I'm outdated in that proton situation, I'll look into that

I vote positive on the wiki, we can discuss it in DMs

[–] Telorand@reddthat.com 3 points 4 hours ago* (last edited 4 hours ago) (1 children)

I feel like email is the one option where "total privacy" is either difficult or impossible to get secure, because the relay/service stores a copy and the receiver accesses that copy. If either of them are insecure or otherwise able to be configured to be no longer fully-private (e.g. ProtonMail), your efforts at private email are rendered moot.

Something is certainly better than nothing in this regard, but it seems to me that if you truly need secure communication, you should be using an E2EE chat app with local-only storage.

Edit: Saw your edit. Wiki sounds good to me.

[–] fxomt@lemm.ee 3 points 3 hours ago (1 children)

True, you can't make email completely secure. But I'd trust tuta for example any day over gmail.

I send sensitivish content over email sometimes but I always use encrypted chat apps for the real threats. Otherwise email is just for receiving from services.

[–] Telorand@reddthat.com 3 points 3 hours ago

Yep, I think we're of the same mind. I hadn't heard of Addy, so I'm going to have to look into that one!

[–] Libb@jlai.lu 8 points 5 hours ago

It’s hard to make the full switch towards a more private life, but switching your mail already fixes a big underlying issue: that being, Google or other companies having access to all your emails. So, I’ll cover the basics of making your online mailing more private.

The issue is that the moment you send a mail to someone or receive an email from someone that is using Gmail (or whatever provider that don't care about privacy), your own email is not private anymore: it's read by that other company. So, unless everyone was to start using encrypted emails and I should say compatible encrypted emails, real email privacy will be little more than a wish.

It's a good move to ditch companies like Google, obviously, but one should not let potential switcher believe that it's a magical wand that will make their emails private. It is not.

As a side note, I would also suggest for a much better privacy: use emails aliases so you never share your real email with any company or service provider.

[–] shoulderoforion@fedia.io 1 points 4 hours ago (2 children)

i have some very bad news about proton

[–] fxomt@lemm.ee 2 points 3 hours ago* (last edited 3 hours ago)

Proton the corporation may suck but the software is still solid. It's valid, just needs a disclaimer, and the user makes their choice.

[–] shaytan@lemmy.dbzer0.com 2 points 4 hours ago (1 children)

I'll check and correct my post when I get home

Thanks!

[–] JackAttack@lemmy.dbzer0.com 7 points 4 hours ago* (last edited 4 hours ago) (2 children)

While the original comment has validity, I think it's important to know that a lot of the proton news you'll find is very "drop it immediately" biased.

I definitely think the news left a bad taste that's worth keeping an eye on, but I don't think it should eliminate them completely as an option. Especially for newer privacy advocates.

Edit: full disclosure for future readers, I may be biased as well since I do continue to use proton services and I love it. But I still try to look at both sides on things like this.

[–] shaytan@lemmy.dbzer0.com 2 points 1 hour ago

Just researched into it, and while I dislike the situation, is not something I see bad enough to delete proton from this post

I'm quite happy with proton and while I don't think they are the silver bullet of privacy, they're still about the best "private suite" of apps you can get with little to no effort

[–] Telorand@reddthat.com 4 points 3 hours ago (1 children)

I think you're spot on. I find it vexing when people point to what happened with ProtonMail as proof that their entire software stack is compromised, when what happened is simply a limitation of email clients in general (and maybe always will be) and laws that every business is subject to. How email works is not how VPNs work.

I think it was a wakeup call for a lot of people, though, that thought they could just use their email to remain anonymous.

[–] JackAttack@lemmy.dbzer0.com 3 points 1 hour ago (1 children)

What I was referencing was the political news recently with their CEO. Lotta people up in arms about that one. However I haven't heard of the email one. Was that the one where the Users IP got leaked/turned over?

Any links you can share?

[–] Telorand@reddthat.com 1 points 1 hour ago* (last edited 1 hour ago)

Yep. I think this is the one I originally read. It goes into some detail about why the mail client functions differently from the VPN (for example) and Proton even suggested a way to prevent what happened for any future users. It's prescient advice for any user or activist that relies on secure email, Proton or not.

https://arstechnica.com/information-technology/2021/09/privacy-focused-protonmail-provided-a-users-ip-address-to-authorities/

[–] heavydust@sh.itjust.works 2 points 6 hours ago (1 children)

Proton lol. Also the only privacy is achieved with OpenPGP but no one uses it.

[–] sudneo@lemm.ee 5 points 5 hours ago

Nobody uses PGP because it's annoying, the tooling is not user friendly, it requires a lot of manual efforr for multi-device access and most people simply don't have the ability to manage keys safely. And that is why offloading all this effort to Proton (or similar providers like tuta) who does all the PGP stuff transparently is the only viable solution.