Re: RFC: advise against using Proton Mail for Debian work?
I wrote:
>nilesh@mailbox.org wrote:
>>
>>>2. The Proton Mail web client automatically encrypts email to anyone who
>>>it has a key for. Usually, this would be a great thing, but it means
>>>that emailing 1234 at bugs.debian.org while CCing
>>>uploader_since_this_is_an_RC_bug@debian.org will encrypt the email that
>>>is sent to the BTSe...which has the effect of making Debian development
>>>veiled in plain sight rather than "in the open".
>>
>>Does it not encrypt email per-sender?
>
>Ewww, I certainly hope so!
So I've just set up a ProtonMail test account to verify. Mailing to
myself, it already clearly knew about my PGP key (I've already had
lots of encrypted mails from ProtonMail users), but sending to a
different address that came through in plain text.
So *that* doesn't seem to be a worry, but the concern about people
sharing private keys is still very real... :-/
--
Steve McIntyre, Cambridge, UK. steve@einval.com
Can't keep my eyes from the circling sky,
Tongue-tied & twisted, Just an earth-bound misfit, I...
Reply to: