this post was submitted on 05 May 2024
90 points (93.3% liked)

Privacy

31981 readers
341 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Like it or not, email is a critical part of our digital lives. It’s how we sign up for accounts, get notifications, and communicate with a wide range of entities online. Critics of email rightfully point out that email suffers from a significant number of flaws that make it less than ideal, but that doesn’t change the current reality. In light of that reality, I believe that an encrypted email provider is a must-have for everyone in today’s age of rampant data breaches, insider threats, warrantless police access, and targeted advertising. If I can get access to your emails, I can get a range of sensitive information including where you bank (to craft more convincing phishing attacks), information about pets (I get notifications each year from the vet for my cats’ annual checkups), calendar reminders, news announcements from family, support tickets from services you use, and more. In a worse case scenario, if I get access to the account itself, it’s trivial to simply issue password reset requests for nearly any of those accounts, have it to sent to said compromised email account, and gain access to a wide number of other accounts you use – from banking to shopping and more – for any number of reasons. So this week, let’s look into the top encrypted email providers The New Oil recommends and their features to help decide which one is right for you.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 6 months ago (4 children)

Has anyone tried self-hosting on a NAS or similar? I'd be interested to hear the practicalities of it, I imagine it's not exactly set or forget, and the realities of the enshittified internet present some obstacles, like ending up in spam filters etc.

[–] [email protected] 11 points 6 months ago (2 children)

A mail server is often mentioned as the first thing you don't wanna bother with hosting yourself

[–] [email protected] 1 points 6 months ago

I did some more research after your comment and it does indeed sound like it's not for the feint of heart.

Spam seems to be one of the biggest challenges, both incoming and outgoing. For incoming, it's a constant arms race with spammers to circumvent spam filtering techniques. But at least that's something you have control over, you can just turn off your spam filtering and ensure you receive all important email. The real problem is ending up in other people's spam filters, which you have very little control over once you've decided on your mail server domain/certificate.

The crux of the issue seems to be that SMTP is ancient insecure tech designed for an innocent era when email was for universities only. We desperately need a more secure open source email protocol designed for the modern era, but capitalism isn't having it - instead we've got corporations wrestling for control of the next big thing with proprietary protocols... Discord, Slack etc. And big tech companies that continue using SMTP (Gmail, Outlook etc.) simply treat any servers outside their sphere with a high level of suspicion.

load more comments (1 replies)
load more comments (2 replies)