my progress:
- fully migrate to #keepass (away from #protonpass) โ
- set up unbox.at fascade โ
- migrate passmail.net addresses to unbox.at โ
- create brand new mail account @mailbox_org and set up PGP, Thunderbird (desktop + mobile) etc. โ
exiting #proton is definitely happening and is in good progress ๐๐๐ฝ
just witnessed the @simplelogin / #passmail feature from #protonpass protecting my email address ๐
I had ordered a case for my Pixel 8a in February from some random online shop. I used an on-the-fly generated passmail email address for this shop.
Now I noticed an email in my inbox that was 100% spam (someone asking for money with some stupid flavour text)
checking the proton pass app, I can see that the passmail-address was already targeted by other spam mail prior (which was correctly identified as spam).
the protonpass-app creates "contacts" that are attached to this email address (see the screenshot ๐ค)
time to shut down the one-time address that I had used for that shop.
my main address was never leaked ๐๐๐ฝ
never use your real email address when buying from random shops online.
I have seen enough code in order to imagine HOW BAD AND DEPRECATED their backends probably are ๐คฃ
@Jeffrey @JeniParsons @Beedazzled
Yes a good point. People in countries with restrictive regimes use something like ProtonMail which apart from the lowest tier and free tier comes integrated with passmail. Passmail allows you to create email alias addresses on the fly when you subscribe to something or email someone. They then never use their main proton account for email, but create a different passmail alias for everyone.
I don't go to this extreme myself, but you are right, without it I am linked to every Gmail user I contact.
Nikhil ๐ง
Chris Brooking
Domdel AKA Data