I’d like to move off from the shackles of the Google menace and transferring my Gmail related accounts over including steam but I’d like some solid advice of any well regarded and better alternatives (including open source if that is possible)
I did search but was unsure of what was best as I did hear some shoddy things about Proton.
Do you know anything that could be the “aegis 2fa” of email providers?
Thank you and have a good day/night.
Email, as a suite of protocols, was designed long before we thought deeply about encryption. In 2025, you can count on email encryption in transit and encryption at rest from providers, although try to verify it. E2EE like Proton and Tuta offer is severely limited. I was recently looking up if Proton and Tuta were even compatible with each other in terms of PGP encryption. I could find no confirmation that they are.
If you use Proton and you email another Proton user it’ll be encrypted with PGP. Otherwise your email is sent unencrypted, and email you receive is unencrypted, then Proton stores it on their server encrypted. All of this paragraph applies to Tuta as well.
You can get most of the same benefits from other providers by downloading your email locally and deleting off the mail servers. The benefit of regular email servers is open standards and compatibility with your preferred mail and calendar applications.
I use Fastmail and love it. I know many people mention using burner addressed with a custom domain, but I prefer generating a burner email with a FastMail domain for signing up to websites. Using my own domain would make it easier to identify me.
Pick a provider which lets you bring your own domain and you’ll never need to change address again if you move providers.
Plus you can give out really stupid email addresses that work
Rather make the domain odd.
Whats odd about that domain, much better then weird shit like apple.com
Just make sure you buy a domain and use that as your mail MX. So when you eventually have to switch again, it’s easy
A lot of people who are moving away from Proton due to the recent controversy are switching to Tuta
This is the way
Protonmail
I would say Tuta or Runbox or Posteo, but the truth is that any paid account that is not Google or Microsoft is way better than anything so as not to be profiled too much with their trackers and privacy-invasive practices.
On the technical side, no email is ever safe from being read either by the sending server or the receiving one. Email hasn’t changed for the past 50 years.
The contents can be read, sure, but unless ChatGPT is doing a lot of hallucinating at least a few providers support e2e encryption and don’t manage the private keys.
Edit: To avoid reading the whole thread, providers may support E2EE but can’t guarantee it in all cases. A guarantee requires the clients on each end to manage the encryption and decryption so no plaintext enters the network.
a few providers support e2e encryption
There is no such thing with the email protocol, and most providers don’t have that kind of hack.
To be clear, this page is a lie? https://proton.me/security/end-to-end-encryption
So even if I have the recipients public key the message actually goes to Proton servers in plaintext before it is encrypted?
Messages you send to other Proton Mail accounts
That’s a small but important detail. If you have public keys from people at other providers, AND you trust their security (JS thing I guess), then fine. But 99.99% of the world do not have that and don’t know what it means.
If you want full trust, use Thunderbird and GnuPG. Proton is a nice package but you don’t control it, so no trust IMHO.
The “shoddy things about Proton” were political, so unless politics is important to you in your choice of mail provider, Proton remains a good alternative.
Bad news, privacy is sadly political. When you build your brand on “trust us with your sensitive information” it’s less than ideal to align yourself with the “if you’ve done nothing wrong you have nothing to fear from privacy invasion” party
Can’t remember what big platform provider, maybe Google, was giving out personal info to the government just because they were asked (i.e. no warrant given).
Also, they comply with subpoenas and have assisted in the arrest of multiple people. https://proton.me/legal/law-enforcement
Start defying court orders and see how long you can run a business that depends on having a bank account.
All commercial providers have to comply with subpoenas.
If they keep no logs, there’s nothing to hand over.
https://www.ivpn.net/blog/when-law-enforcement-knocks-on-a-vpns-door-what-happens/
Email providers need to store messages.
Proton has a business model where they want the user to put their eggs all in one basket. If you want that kind of userbase you need to leave your personal politics out of it. The problem isn’t that the CEO is right wing. It’s that he is very publicly right wing. And lastly supports a known huckster. All of this calls into question just for how long Proton will be secure before they are selling user info to the state. https://proton.me/legal/law-enforcement
Politics are very fucking important in terms of security for whistleblowers and dissidents. They are the canaries in the coalmine as far as personal liberties go.
Proton has some technical issues as well. Recently there was a day when email wasn’t working at all for hours, maybe even half a day. I’m paying for their VPN sub and using it for years and not going to move in nearby future, but if I was picking something now I would carefully consider other options. Never heard about those mentioned in thread though, if they are new I wouldn’t use them, I’d like something with good record track of at least one decade, better few decades.
