The inner circle so to speak

  • Hot SaucermanEnglish
    991 year ago

    The thing is, ownership of any of these can change at any time. Bitwarden, Mullvad, and Tutanota could be sold to very different owners.

    That is up to and including something like uBlock Origin, which only has one developer, and would suddenly be very different if that developer died and the project had to be forked.

    You can never trust that the person who takes on the reigns has the same ideals as the people running them now.

    Hell, Mullvad was abused to the point they removed access to Port Forwarding on their VPN service, which has led to many people needing to switch to crummier, shadier VPNs that still offer port forwarding access. That’s not Mullvad’s fault, but it is an example of them having to change their philosophy and what they offer because of abuse.

    Trust should only go so far, and loss of trust should be very easy. There’s not a good reason to keep “trusting” something when it has fundamentally changed from its initial ideals.

    • r00ty
      221 year ago

      Hell, Mullvad was abused to the point they removed access to Port Forwarding on their VPN service, which has led to many people needing to switch to crummier, shadier VPNs that still offer port forwarding access. That’s not Mullvad’s fault, but it is an example of them having to change their philosophy and what they offer because of abuse.

      It’s a real shame too. It was a nice feature.

    • Rayspekt
      101 year ago

      Hell, Mullvad was abused to the point they removed access to Port Forwarding on their VPN service, which has led to many people needing to switch to crummier, shadier VPNs that still offer port forwarding access.

      Could you explain what happened?

      • Hot SaucermanEnglish
        251 year ago

        As clear as I can make it out, it seems like it was related to a search warrant that was executed on Mullvad.

        https://mullvad.net/en/blog/2023/4/20/mullvad-vpn-was-subject-to-a-search-warrant-customer-data-not-compromised/

        Because just a little over a month after the news of the failed raid, there was news of them removing port forwarding.

        https://mullvad.net/en/blog/2023/5/29/removing-the-support-for-forwarded-ports/

        Emphasis mine.

        Unfortunately port forwarding also allows avenues for abuse, which in some cases can result in a far worse experience for the majority of our users. Regrettably individuals have frequently used this feature to host undesirable content and malicious services from ports that are forwarded from our VPN servers. This has led to law enforcement contacting us, our IPs getting blacklisted, and hosting providers cancelling us.

        The result is that it affects the majority of our users negatively, because they cannot use our service without having services being blocked.

        The abuse vector of port forwarding has caught up with us, and today we announce the discontinuation of support for port forwarding. This means that if you are a user of forwarded ports, you will not be able to add or modify the ports you have in use.

      • @[email protected]
        41 year ago

        They made a smart call that has probably increased the long term privacy of their users.

        People were using port forwarding to host illegal shit, and governments were getting pissed off about it. Mullvad has been able to prove in court that they don’t keep logs, but that’s not a perfect deterrent; a properly motivated government, perhaps if somebody is using Mullvad to host CSAM, might attempt to legally force Mullvad to put logging in and add anti-canary clauses.

        Preventing port forwarding keeps customers as consumers rather than hosters, and avoids this issue.

    • @Udonezo
      71 year ago

      allows their car insurance to spy on their location data and driving habits Is curious about privacy

      Okay buddy

    • ChlorineAddictEnglish
      21 year ago

      My brain saw Adobe Flash. Was about to have some bad news for OP

    • RBG
      161 year ago

      Ah, the new pokemon game that just came out.

  • Fazoo
    251 year ago

    Why do you trust a Germany based secure email over something like Proton? At least Mullvad is Sweden based.

    • @Postis2
      11 year ago

      deleted by creator

    • TJA!
      -101 year ago

      Because in Germany we value privacy and the protection of personal data

      • Fazoo
        251 year ago

        Not more than the Swiss. Germany is part of the spy dragnet. It does not offer the same level of privacy protection.

        • @[email protected]
          161 year ago

          Five and eleven eyes doesn’t matter if the service is encrypted and open sourced. Also, did you know that Switzerland has no superior privacy laws comparing to Germany? It’s all marketing bluff.

          • @Postis2
            21 year ago

            deleted by creator

            • Fazoo
              31 year ago

              A single IP address, which would mean nothing with VPN use. Germany is literally part of the spying eyes. That is the difference here. Proton giving out one address vs the surveillance network of a NATO state?.. Lol

              • @Postis2
                11 year ago

                deleted by creator

      • TimeSquirrel
        61 year ago

        So why are my German relatives super-scared of pirating because of the government finding out, and get me to torrent all their shit for them and mail it to them on cheap hardrives?

        • @[email protected]
          131 year ago

          Correction: It’s not the government, it’s private law firms doing this. Your IP is public when you torrent, they just have bots monitoring the most active trackers and try to extort money from the people they catch.

  • @whileloop
    191 year ago

    KeePass is also a good password manager, it’s open source and you get to store the password database anywhere you like.

    • Marcus
      141 year ago

      It’s Tutanota, an email service

  • darcy
    141 year ago

    keepass > bitwarden

    vpn providers should be reviewed regularly

    email is inherintly insecure/non-private, self hosted is best

    • @[email protected]English
      91 year ago

      why do you prefer keepass to bitwarden? has it better privacy or is it just a personal preference because you like the UI more for example?

      • darcy
        201 year ago

        keepass is a different paradigm. it uses a locally encrypted file. many frontends for it (use keepassxc and keepassdx). dont have to rely on some 3rd party, even if they say they have e2ee. theres no better privacy (and security) for an app than not using it with the internet. im not too concerned about ui for pw manager personally, the less time i spend w it unlocked the better. only (slight) problem for me: multi device usage (i just copy the file onto my phone occasionally). general rule of thumb: if it can be selfhosted, it is best to.

        i think bitwarden is the best one of its type, it comes down to your needs and threat model

        • king_link1
          71 year ago

          I use syncthing to sync my KeePass file, and I highly recommend it. Very easy to set up

        • @[email protected]English
          51 year ago

          I really like the cross device sync, even tho it’s a security risk of course. also, I don’t know anything about self hosting (might get into it when I got the time), so bitwarden might be the best pw manager for my requirements rn.

          • darcy
            21 year ago

            sorry i didnt mention but yeah like the other reply says u can absolutely sync, i just personally prefer not to

        • @[email protected]
          71 year ago

          You can selfhost bitwarden, there’s also vaultwarden, an open bitearden api implementation. You could host this on an internal-only server. But you also can sync your single password file with a lot devices and use keepass, I just find that a bit annoying. You also cannot share some passwords with your relatives easily that way.

          • Radioactive Radio
            21 year ago

            Hey it’s fine if you trust them, it’s a very convenient service and from what I found it’s pretty secure, since there’s no way to recover logins if you forget your master pass. But i personally don’t like the idea of having passwords on someone else’s server and I’m too stoopid to set-up my own instance on a docker container server thingy. Syncthing just works for me, got GUI and everything.

      • @RookiA
        11 year ago

        its more user friendly. Just a file you have to have. You can encrypt that double and tripple on bitwarden nope.

    • Almace
      201 year ago

      You do also kind of put all your eggs in one basket so to speak though. I don’t have anything against Proton and the pricing makes sense if you value all their services and pay for Ultimate (though by my estimate, less sense if you are only looking for a smaller handful of services). However, if you go fully into Proton for everything, you’re placing your trust into an entire stack of services and it can end up a single point of failure.

      • @[email protected]
        11 year ago

        I trust their privacy claims but if you backup your email and calendar you can just as easily move elsewhere if Proton does go down. Having only one provider can make things a lot easier to manage.

    • Cliffjumper
      21 year ago

      Still can’t bring myself to use proton pass. I’ll be much happier when proton drive better integrates with desktop machines as well but calendar, VPN, email and the bonus simplelogin premium are way too useful.

    • @Postis2
      -11 year ago

      deleted by creator

  • @[email protected]English
    71 year ago

    For anyone still using Mullvad and wants port-forwarding, I recommend AzireVPN.

    Good list! I use all of them too.

  • GVasco
    41 year ago

    I might swap bitwarden by passbolt as it uses a more recent programming stack, although vaultwarden looks to be a good alternative too.