But but goat milk

I believe in the underlying message (use linux), but doesn’t practically every big company change their privacy policy or tos every 10 minutes.

I don’t trust any governmental body, probably for the best.

💀

I believe their license (GPLv3) doesn’t permit modifying the source code without releasing it to anyone who asks for it, but realistically, if it’s only code they have written, they won’t sue themself over it.

I’m no licensing expert, but that’s how I see it.

I didn’t mean to say that it’s (still) trash, I think it’s useable, but there are still a lot of improvements to come.

Element as a client seems to want to do everything, which is probably great for a lot of people, but it (in my experience) has led to a poor user experience (which with more time, will likely improve, they seem to have a lot of backing).

With Element completing voice/video implementation, I imagine it’ll be easier for other clients to reference their work when implementing their own support.

Once the other clients get voice support, I will definitely be trying them out again, I’m sure they will make a much simpler experience that works out the box.

The lost keys problem has luckily never happened to me, it usually boils down the user error I believe, but yeah, if it is a user error that happens often, they should figure out some way to fix that (probably a hard problem, which is sort of fixed (i believe) if you use the client on multiple devices, so if you get logged out of your account you can easily authorize your access from another logged in device, eg desktop/mobile).

I agree, I don’t think it’s trash. From my experience, chatting is very good, voice/video are just the next thing they are tackling.

Better UX will probably come after important features are done.

Just imagine the good they could have done by being a new competent Matrix client that can do everything, but instead they are a Discord clone.

Yeah, they kinda screwed up Element with combining mobile and desktop features into one app. The first time I tried creating a call on desktop, it was suddenly apparent how confusing they had made it, because you can do it in multiple ways (normal calls & conference calls).

There are other UIs that look very nice, but sadly don’t support voice chat. Hopefully these other clients can catch up, but it’ll likely take a while.

Hosting on your own hardware is much more fun though! In most cases it’s safer too, you don’t really need to worry about much as long as you dont portforward your ssh port & don’t run programs as root.

I would say it’s cheaper as well, but that depends on how expensive the static ip lease is per month.

The internet is full of bots pounding at your machines to get in. It is only a matter of time until the breach Jellyfin.

If you are talking about brute force attacks for your password, then use a good password… and something like fail2ban to block ips that are spamming you.

This point doesn’t exactly match, but: public services like google auth don’t require users use vpns. They have a lot more money to keep stuff secure, but you may see my point… auth isn’t too trivial of a feature to keep secure nowadays. They implement similar protections, something to block spammers and make users have good passwords (if you dont use a good password, you are still vulnerable on any service).

I don’t think a vpn and mail providers can relate in this scenario.

I have heard in the past that authorities have forced (possibly proton, but I forget) to basically wiretap incoming mail before proton can encrypt it for storage on the users account (because pretty much no one sends encrypted mail in a way that only the receiver can read it).

The only data other than that, that they store is ip logs (when forced to, I believe) and recovery email addresses. They are not able to present existing encrypted mail to authorities (from before a wiretap).

This seems overblown, I don’t think theres more they can do. Users have to start sending encrypted mail from their inbox, then the wiretapping won’t be an issue (proton address to proton address can work like this I think).

Them dropping sms took away a big carrot for adoption though.

Still miss that feature everytime I get an SMS or have to send an sms if data isn’t working.

Not everyone can do this but I just deleted those other apps and only had signal, which forced ppl to use it to contact me.

That article is stupid. Any company that receives a “legally binding order” has to comply with it… what would you expect?

Most companies aren’t going to commit a crime to protect a user (like that one dude who ran an email service and destroyed it when he was required to hand over data, forgot his name!!!). If they did, they’d be out of business…

(The article isn’t exactly dumb, but it doesn’t address this properly in my opinion. The outrage over it seems dumb to me. The government will force companies to do whatever it wants, be mad at the gov not the corpo in this case when its to apprehend a journalist or whatever… i understand if its a terrorist or similar, but this specific case may be more poopy om the gov behalf)

Not sure why people care so much, the individual can think whatever he wants, it hasn’t stopped proton from continuing on its good path (even though I don’t use them much nowadays, they are a great service with a respectable free tier).