Mastodawn

Elijah Waxwing May 7, 2024

Also, WTF logging IP addresses?! I don't know about Swiss law, but at least in the US if you design your system so that you can't gather certain data you can't be compelled to re-engineer it to gather that data just because the cops want it. That is what the whole FBI versus Apple case was about, and the FBI backed down rather than lose in court

Jon (now at neuromatch.social)May 7, 2024

@elijah a few years ago i was talking with an an anarchist in their teens who said "I went with Riseup for email instead of Proton because Riseup was designed by people who understand activism and Proton was designed by scientists." Hard to argue with that!

Vanessa May 7, 2024

@jdp23 @elijah i wish i was able to get riseup, sadly they aren't allowing registrations currently and im unable to find an invite code, there arent any good email providers anymore.

@vendetta02 @jdp23 @elijah

Here's a list of nice tech collective that host different services for people, including emails. A good part of them don't require invite.

https://riseup.net/radical-servers

Radical Servers - riseup.net

Nico🦆May 8, 2024

@elijah I think they were forced by a swiss court to re-engineer their software to enable logging

Proton May 9, 2024

@nicoduck Nothing was reengineered, our threat model remains the same as it was in 2014: https://proton.me/blog/protonmail-threat-model

The Proton Mail Threat Model | Proton

Learn more about the Proton Mail Threat Model.

Proton

Lexi of the Night May 8, 2024

@elijah Swiss law is pretty rigorous there. You have to provide this data or risk fines, jail, or being banned from running your business. That's why I find it very silly when companies make these claims that your data is safe with them because they're Swiss.

Proton May 9, 2024

@elijah IP addresses are not logged by default, and you can see when they are in our Privacy Policy: https://proton.me/legal/privacy

Nothing has been reengineered - this is how it's always worked, and we have been transparent about it since we started in 2014: https://proton.me/blog/protonmail-threat-model

You may be referring to Proton VPN, which is a completely no-logs service: https://protonvpn.com/blog/transparency-report

Privacy Policy | Proton

Proton's privacy policy covering Proton Mail, Calendar, Pass, Drive, Wallet, VPN and Proton Business. Learn how we securely handle and protect your data.

Proton

Elijah Waxwing May 9, 2024

@protonprivacy Your policy states "IP logs may be kept temporarily to combat abuse and fraud"... How exactly is someone accused of leaking information to the Catalan independence movement committing "abuse or fraud"? Oh, is anything "illegal" abuse of your service? Good to know

Proton May 10, 2024

@elijah Note that, in this case, no IP addresses have been shared (and we didn't have any to share, because IP addresses are not logged by default, as explained above). Regarding the definition of service abuse, it's laid out in our Terms of Service: https://proton.me/legal/terms

Terms of Service | Proton

Terms of Service for using the proton.me website and your Proton Account, including Proton Mail, Proton Contacts, Proton Calendar, and Proton Drive.

Proton

Elijah Waxwing May 11, 2024

@protonprivacy so you agree that you share logged IP addresses for purposes other than fraud & abuse but just not this particular time? Or are you claiming this article is wrong? The core problem is that Proton claims jurisdictional arbitrage but in reality almost any jurisdiction is better than Switzerland

Proton May 11, 2024

@elijah Swiss jurisdiction remains superior when it comes to privacy protection, as we have discussed with our community e.g. here: https://www.reddit.com/r/IAmA/comments/10y49ln/comment/j7w6kx4/ and here: https://www.reddit.com/r/IAmA/comments/10y49ln/comment/j7w7pbh/

Email privacy in particular, is better protected since our court victory in 2021: https://proton.me/blog/court-strengthens-email-privacy

divergency May 11, 2024

@protonprivacy @elijah do you like working here, Proton person? Defending pieces of shit that would gave all of your information and identity, if government just asked?

@protonprivacy from that link:

2.5 IP logging: By default, we do not keep permanent IP logs in relation with your Account. However, IP logs may be kept temporarily to combat abuse and fraud, and your IP address may be retained permanently if you are engaged in activities that breach our terms and conditions (e.g. spamming, DDoS attacks against our infrastructure, brute force attacks). The legal basis of this processing is our legitimate interest to protect our service against nefarious activities. If you enable authentication logging for your Account or voluntarily participate in Proton's advanced security program, the record of your login IP addresses is kept for as long as the feature is enabled. This feature is off by default, and all the records are deleted upon deactivation of the feature. The legal basis of this processing is consent, and you are free to opt in or opt out of that processing at any time in the security panel of your Account. The authentication logs feature records login attempts to your Account and does not track product-specific activity, such as VPN activity.

it sounds like you or the swiss government can arbitrarily decide to start logging IP addresses without being compelled to notify users? is there a reason you don't make a commitment to notify users whenever their IP address is logged? does swiss law put you under a gag order, or are you just not interested in notifying users when their privacy may be compromised?

@protonprivacy i was really shocked that your post regarding the climate activist buried halfway into a discussion about tor that you're actually legally compelled to record IP addresses to comply with swiss law. i understand that's bad PR for your whole privacy thing, but "does not record IP addresses by default" is a really disappointing marketing line when it seems there is literally no way for a protonmail user to avoid having their IP logged according to the whims of protonmail and/or the swiss government.

d@nny mc² (@[email protected])

@[email protected] i was shocked i just saw [their response to the IP address leak](https://proton.me/blog/climate-activist-arrest) and they literally said: > The Internet is generally not anonymous, and if you are breaking Swiss law, a law-abiding company such as Proton Mail can be legally compelled to log your IP address. the direct statement that they are *legally compelled to log IP addresses* is an absurd fucking thing to bury halfway in the middle of the post!!!

GSV Sleeper Service

@protonprivacy also i literally pay for the highest tier proton plan because i actually care a whole lot about this company and i'm certainly not going to move off immediately but i find the marketing line "does not log IP addresses by default" while you can actually be compelled to log IP addresses without notifying users to be fundamentally contradictory to your stated goals of privacy. i would really appreciate it if you said out loud that IP addresses must be logged and if you continue to refuse to do so i will be moving away from your services because i don't know what else you're not notifying me about.

Proton May 10, 2024

@hipsterelectron It's never arbitrary, there's legislation that limits this. Also, gag orders are not legal in Switzerland.

d@nny disc@ mc² May 10, 2024

@protonprivacy you did not link to the legislation that limits this, and you did not respond to my point about notifications. if there is no gag order, then why not notify users whenever their IP address is being logged?

@elijah i was shocked i just saw their response to the IP address leak and they literally said:

The Internet is generally not anonymous, and if you are breaking Swiss law, a law-abiding company such as Proton Mail can be legally compelled to log your IP address.

the direct statement that they are legally compelled to log IP addresses is an absurd fucking thing to bury halfway in the middle of the post!!!

Important clarifications regarding arrest of climate activist | Proton

We would like to provide important clarifications regarding the case of the climate activist who was arrested by French police.

Proton

@elijah also, not logging user IPs is the bare minimum if you want to call yourself a secure email provider.

Tony “Abolish ICE” Arcieri🌹🦀May 8, 2024

@just1602 @elijah Signal feels like the gold standard here. This is how they respond to subpoenas:

https://signal.org/blog/looking-back-as-the-world-moves-forward/

Looking back at how Signal works, as the world moves forward

In the midst of world-wide protests against racism and police brutality, a lot of people are becoming more immediately aware and concerned about the security of their data and online communication. We’ve gotten a lot of questions at Signal over the past week, so we wanted to briefly recap how it ...

Signal Messenger

Justin !May 8, 2024

@bascule yeah, it should always be like that for most service provider.

Elijah Waxwing May 8, 2024

@bascule @just1602 Agreed. I have held off on fully recommending Signal for all situations because of phone numbers, but now that Signal has disposable handles there is no other protocol that comes close: forward secret, asynchronous, blind envelopes, secure contact discovery, encrypted multiplexing, unlinked handles... Each of these was a major technical innovation that moxie and Trevor and the Signal team deserve credit for. It would be nice if call routing proxy was enabled by default, but I understand why it is not. Email will never be able to combine those

srijit May 9, 2024

@elijah @bascule @just1602

Unfortunately, unlike email, there is no browser based web app for using Signal Messenger to the best of my knowledge. Installation of Signal app is necessary on any platform and this may not be appreciated by many potential users. Though Signal Messenger has disposable username handles, phone number is still mandatory only for registration and this can be a source of discomfort for some. Many countries require identification to buy a sim card. Also recovery e-mail is not compulsory for using Proton Mail.

However, I appreciate the innovations of Signal app towards defending free speech and communication.

#Signalapp #Signal #Proton #Protonmail

Delta Chat May 14, 2024

@elijah @bascule @just1602 let's see :) Over at delta chat and with the growing https://delta.chat/en/chatmail ecosystem we are getting into a position to consistently and collaboratively change server+client sides in lock step. Moxies 2016 criticism of decentralisation arguably boils down to the difficulty of moving such a diverse server/client ecosystem, not to any inherent limits of email itself.

Delta Chat: Chatmail for instant, interoperable and privacy-preserving messaging

What are chatmail servers and how to select one? Chatmail servers provide a privacy-preserving and speedy messaging experience, securely interoperable with chatmail and classic e-mail servers. Tap ...

Elijah Waxwing May 14, 2024

@delta @bascule @just1602 while I think Delta Chat is awesome and I really appreciate all the work people have put into it, SMTP can't support blinded envelopes so you will never get true metadata protection. You could extend SMTP, but then you might as well just fork Signal and remove phone numbers (as some have done already) and add federation. OpenPGP can certainly simulate "good enough" forward secrecy by having short-lived sub keys, if and when key discovery is actually solved

holga May 14, 2024

@elijah @delta @bascule @just1602 why would it be impossible to have sealed sender/ blinded envelopes via SMTP? Already a lot of metadata is put into the encrypted part (https://delta.chat/en/help#message-metadata ) and in principle the outer From address could also be untied from the sending identity and the actual from then put into the protected part of a message so that the recipient can still verify authenticity.

Delta Chat: FAQ

What is Delta Chat? Delta Chat is a reliable, decentralized and secure instant messaging app, available for mobile and desktop platforms. Instant creation of private chat profiles with secure and i...

Elijah Waxwing May 14, 2024

@hpk @delta @bascule @just1602 Yes, you can encrypt the From, but it breaks bounces and opens up a huge spam problem, and would be rejected by most SMTPd. You really want to protect delivery metadata from both the sending and receiving SMTPd servers. Assuming totally custom STMPd, you could have a key pair for each server, so that sender's client encrypts the "To" using the public key of the recipient's server, and the "From" using the public key of the sender's server. This could work fine, with minimal protocol changes (e.g. bounces work normally, server reputation and spam prevention work normally). Which leaves open the problem of two users on the same server. You would have to come up with some very un-SMTP system for this. Basically, what Signal does, and have per-recipient delivery tokens that let you deliver to an SMTPd unauthenticated, through open relays. Not impossible at all, just not really SMTP.

holga May 15, 2024

@elijah @delta @bascule @just1602 are you aware of the current operational characteristics of https://delta.chat/en/chatmail
https://github.com/deltachat/chatmail ?
It's open signup. Addresses are created by logging into the server, no invite or registration neccessary. It's a fundamentally different model from traditional providers. Thinking about sealed sender is easier because DC could use temp throwaway addresses easily for sending and because server/client can evolve together quite quickly.

Delta Chat: Chatmail for instant, interoperable and privacy-preserving messaging

holga May 15, 2024

@elijah @delta @bascule @just1602 if you haven't seen it maybe https://delta.chat/en/2023-12-13-chatmail#how-to-make-e-mail-spammers-sad-and-users-safe is good to read as background. I am sure you have critique and skepticism. Happy to jump on a call sometime. It's all even related to some original LEAP goals :)

Delta Chat: Chatmail - replicable, fast and secure chatting infrastructure for all

Today, we are unveiling chatmail services, making onboarding with Delta Chat a breeze, with peace of mind: Convenience: Get a chatmail address in a few seconds Privacy: No questions asked, no name,...

✨buff dog himbo✨May 7, 2024

@elijah damn, I use proton, for email & VPN. But, I don't use a secondary/recovery email address either for this reason. If I forget my account password, my data dies with it, as God intended.

@itsmeholland @elijah but they also logs IPs, at least for their email service, and they already gave those IPs to the cops in the past.

✨buff dog himbo✨May 7, 2024

@just1602 @elijah yeah true, that's bullshit, kind of garbage to need a VPN to safely access your encrypted email service LMAO 🙄🤦

4censord

May 7, 2024

@elijah i may be missing something, but if you store the 2nd email hashed, how do you send an email there?

cyplo May 7, 2024

@elijah I'm on proton and looking to move, don't have any riseup invites by any chance ? :D I'm thinking for this to be fair, for me to donate annually what I pay for proton

Hot Mess Express🍉🌹May 7, 2024

@elijah uhg, well that's disappointing.

Semitones May 7, 2024

@elijah I'm kind of curious how you do this - can you share? As I understand it, proton can encrypt email contents with a private key it doesn't have and can't provide access to. But if you lose your password, how could they send a recovery email if it's hashed / encrypted?

@semitones @elijah you ask the user to enter the recovery email, you hash it, and if it matches the hash in the database, you send the recovery to the email address the user provide.

Semitones May 7, 2024

@just1602 @elijah thanks that makes a lot of sense

Eloy.May 7, 2024

@elijah hashing is no solution because that can be bruteforced, email addresses usually aren't that long because they aren't creating with that threat in mind

Elijah Waxwing May 7, 2024

@eloy The average email address is about 20 characters long, although there is less entropy because so many people use gmail. Riseup uses argon2 for hashes, so they are memory hard. It is not impossible to brute force, but not trivial either.

Eloy.May 7, 2024

@elijah Yeah fair, worthwhile defense in depth measure

SimpleX Chat May 9, 2024

@elijah @eloy you do salt hashes at least, right?

Cyb3r1c 🇧🇪 ☠️May 7, 2024

@elijah Proton se conforme aux demandes de droit Suisse. C’est dans les CGU. De plus, quoi qu’il arrive, le contenu du message restera chiffré est sécurisé.

@protonprivacy

scoonch May 7, 2024

@elijah I really dont get how you use email recovery with an hashed email address. Anw, u should not put a recovery email if u want privacy. Second, keeping IP address might be in swiss law, in France u have to but eu law says it personnal data and it shouldnt be stored without consent.

Kostyn May 7, 2024

well, shit... Thanks for your good work, @elijah

Ornella 🍉May 7, 2024

@elijah oh no :(

Steven Sparrow May 7, 2024

Eeeeeyikes.

Just when I switched to Proton.

Proton May 9, 2024

@theothersparrow The name/address of the terrorism suspect was actually given to police by Apple, not Proton. The terror suspect added their real-life Apple email as an optional recovery address in Proton Mail. Proton can't decrypt data, but in terror cases Swiss courts can obtain recovery email.

Elijah Waxwing May 9, 2024

@protonprivacy @theothersparrow calling Catalon independence movement "terrorism" is technically what the Spanish state says, but is completely laughable and destroys all meaning of the word. The point remains: the request "what account is associated with this email" is not a question Proton should be able to answer.

@elijah aw shit

@elijah The name/address of the terrorism suspect was actually given to police by Apple, not Proton. The terror suspect added their real-life Apple email as an optional recovery address in Proton Mail. Proton can't decrypt data, but in terror cases Swiss courts can obtain recovery email.

@elijah where can i find more information about riseup's e2e encryption work? this page refers to a "comprehensive solution" to be released soon. i have been developing a library on top of libsignal which has no concept of any central server which i want to use to replace gpg. while my goal is to achieve metadata resistance without adding noise like tor by using ephemeral identities, i haven't quite figured that out yet. it would take a huge amount of work to make it usable for riseup but i would love to know how you've been planning to address this even just as prior art for my work.

Email - riseup.net

Jorge - vitrubio.net May 10, 2024

@elijah worth reading and getting informed avot how email providers manage your privacy.

Private ≠ privacy