just adrienneSo if you're using Proton thinking it's "privacy-focused", it turns out they're giving data to the Feebs now. https://www.404media.co/proton-mail-helped-fbi-unmask-anonymous-stop-cop-city-protestor/
Nitin Khanna@adrienne so who's left?
Ángela Stella MatutinaNobody say Tuta, you're gonna jinx it.
Arnel Šarić Sharan 
@angelastella @nitinkhanna @adrienne
@Tutanota are you planning on working with law enforcement agencies? Not that I plan to break any laws, but this is such a defeat
@sharan @nitinkhanna @adrienne @Tutanota
Here waiting for the answer, if any.
Colorado Springs Anti-Fascists@sharan @angelastella @nitinkhanna @adrienne @Tutanota Of course they do. Tuta would be shut down if they did not respond to orders from German courts. They're a business, not a radical project.
@COSAntiFascists I figured so much. There's the same law in Bosnia and Herzegovina, too, or a similar one. Once the court invites you and you're doing business under Bosnian laws...
@angelastella @nitinkhanna @adrienne Tuta complies with orders from law enforcement too.
Don't trust any email provider with your credit card information, IP address, or phone number. Don't expect Tuta to fight government orders on your behalf. All of these companies will comply rather than go out of existence, so you need to make sure they don't have your PII to begin with.
@COSAntiFascists @nitinkhanna @adrienne
Yeah, my access to state services depends either on an email provider (had problems with Tuta until I showed up in person to settle the issue because they're not goddamn Google) or WhatsApp. Guess if I have to route PII via such channels.
@angelastella @nitinkhanna @adrienne You should compartmentalize your emails. Make a personal email and a separate one for radical projects. If you're using the email to access state services, Proton or Tuta giving your credit card data over due to an order from an overseas government is going to be the least of your worries.
The 404 article is about a proton email setup for an anonymous radical project that was investigated for terrorism. The alleged admin of this project made the mistake of paying for the email account with a payment method associated with their personal identity, which is how they were identified from the Proton account.
@angelastella fyi, i don't know anything about Posteo but apparently they might be good? https://furry.engineer/@ysegrim/116181161858800673
Ysegrim (@[email protected])
@[email protected] @[email protected] @[email protected] While Posteo.de stores your payment details (they have to), they do not connect it to your account. The only information connected to your account is _that_ you paid. Meaning, while they already straight out reject a third of their requests for formal incorrectness (and file complaints), last year they never provided any user/payment data because they straight up do not store it. https://posteo.de/en/site/transparency_report
At first sight they look a bit better than Tuta. Thank you.
WesDym@COSAntiFascists Tuta complies with German law, which sometimes -- not always -- requires them to do that. Tuta sometimes disagrees, and sometimes prevails in those disagreements.
@angelastella Germany has the same law. So do nearly all countries.
Everyone here needs to get over the childish fantasy that companies somehow exist outside legal and govt structures and are somehow magically immune to them.
zyxhere💭@nitinkhanna @adrienne the solution is to abandon email itself
Gray Hairs
Arthfach 🐻@nitinkhanna @adrienne If that's a serious question - https://bear-den.org.
It's plain old normal encryption in transit - TLS (plus encryption at rest) - but it's a known, well studied technology and I don't comply with bullshit.
It's plain old normal encryption in transit - TLS (plus encryption at rest) - but it's a known, well studied technology and I don't comply with bullshit.
@nitinkhanna @adrienne I use LVM-on-LUKS and have the header backup stored with my attorney.
@nitinkhanna @adrienne That, unfortunately, is something LUKS doesn't handle. Once the system is online and the passphrase provided to unlock the volume, it stays unlocked until the system is shut down.
I'm working on the basis of "if we're at the point where the government is going to surgically remove the system from the datacenter while keeping it powered on and I get no prior notice that they're attempting that so I can't shut the system down, we're more screwed than I as a small provider can handle," to be honest.
I'm working on the basis of "if we're at the point where the government is going to surgically remove the system from the datacenter while keeping it powered on and I get no prior notice that they're attempting that so I can't shut the system down, we're more screwed than I as a small provider can handle," to be honest.
Andrew Drake@arthfach @nitinkhanna @adrienne fwiw, keeping a computer powered while seizing it is a standard tactic, and tools to do it are commercially available and not particularly expensive, e.g. https://cdsg.com/products/hotplug-field-kit?image=0
No surgery needed most of the time, unless you are connected directly to the wall (no power strip), and your power connector doesn't expose anything hot while slightly removed from the wall.
@nitinkhanna @adrienne There is no email provider that will anonymize your credit card payments to them.
Credit card data is extremely traceable. Don't give it to any company if you don't want it handed over to cops. This is why Proton and other privacy-focused businesses accept cash and crypto as payment methods.
Ysegrim@COSAntiFascists @nitinkhanna @adrienne While Posteo.de stores your payment details (they have to), they do not connect it to your account. The only information connected to your account is that you paid. Meaning, while they already straight out reject a third of their requests for formal incorrectness (and file complaints), last year they never provided any user/payment data because they straight up do not store it.