What To Do About Email? *UPDATED*


I have had several colleagues of late that are complaining of issues with the privacy centric email provider Unseen. I myself have been witnessing sporadic issues from failed logins to delayed sending of messages. Frustrating indeed.

I think its safe to say that the most alluring thing that Unseen brings to the table is that it sits in one of the world's most privacy respecting legal jurisdictions, Iceland. While a jurisdiction that has laws favorable to personal privacy with respect to data is certainly a good thing, it is not the only factor for consideration. As far as jurisdictions go, a good starting point is to be cautious doing business with companies in the Five Eyes (USA, UK, Canada, Australia, New Zealand) for reasons we have already addressed in the past I should also point out that this is a much more important factor with a VPN service than with an email service.

Bear in mind though that if you setup your email account anonymously (use a throwaway contact email and obfuscate your IP with TOR and/or VPN) and use GPG/PGP encryption, even if some authority or bad guys grab those email servers they really have nothing useful on you.

Here are some providers I have been studying that are worth consideration:

1. Bitmessage.ch
          - Free
          - can be used with your mail client
          - hybrid of normal email and the Bitmessage decentralized network
          - setup can be a little confusing for newcomers
          - based in Switzerland (good jurisdiction)

2. Disroot.org
          - Free
          - can be used with email client
          - offers several other privacy services like secure chat & cloud
          - setup is pretty straight forward
          - based in the Netherlands (fair jurisdiction)

3. Protonmail
          - Free and paid versions
          - can be used with client on Windows/Mac, Linux still waiting
          - offers VPN service as well
          - simple setup
          - based in Switzerland (good jurisdiction)

4. Tutanota
          - Free
          - not email client compatible at this time
          - simple setup
          - based in Germany (fair jurisdiction)

5. Novo-ordo.com (Sub Rosa Email)
          - Paid
          - can be used with email client
          - offers numerous and fairly unique services
          - one of the only providers to use Mixmaster service
          - simple setup
          - based in Switzerland and Panama


Here are some others that look promising (some are US based):

1. Mailfence

2. VFEmail

3. Scryptmail

4. Confidesk

5. Lockbin

6. Lavabit (back in business with some new tricks)


There are, of course, non-email "email" services out there that offer much more anonymity, security and privacy; such as Confidantmail, Retroshare, Keybase, Riot, Bitmessage and Tox just to name a few. Usage of these services is covered in the GroundRod courses.

** UPDATE **

I should probably include the I2P based emails, I2P-Bote and Susimail.

- I2P-Bote
          - Unique "email like" system (uses key hash as address)
          - can be used with email client
          - must be running I2P router backend
          - can only communicate with other Bote users
          - encryption by default
          - can be tricky to setup
          - can be setup multi-hop with timing obfuscation
          - Free

- Susimail
          - I2P based
          - communicates with normal SMTP email
          - can be used with email client
          - can be used with your PGP keys
          - can talk to I2P based addresses or clearweb addresses
          - scrubs metadata
          - Free











Comments

Post a Comment

Popular posts from this blog

Upcoming Courses Summer/Fall 2023 *Updated*

Image
 We are looking at doing the following courses: - GroundRod Level One                              Bozeman, Montana           August 19-20 - Gunfight Concepts - Pistol & Carbine    North Carolina                 September 15-17 - Hard Target Traveler                                North Carolina                  September  18 - GroundRod Level One & Two                North Carolina                  September 21-24 - GroundRod Level One                            Boise, ID  (Private)            September 30 - GroundRod Level Two                             Bozeman, Montana          October 28-29 - Tactical Night Operations                        Central Montana                November - GroundRod Level One                            Kalispel, Montana              November Exact dates will be updated shortly. Contact us at comstugrp@protonmail.com    for inquiries or to reserve a seat. 
Read more

Become More Dangerous...

Image
  New Years resolutions....I’ll be honest, I have never been a big proponent of them. I mean we have all seen the people around us make the same resolutions every year...with the same result...being that they fizzle out within a few weeks. But, if we are going to talk resolutions, might I offer this:   In 2023, become dangerous .   What do I mean by that? It should be abundantly clear to anyone paying attention at this point that our way of life in the West and in America in particular, is being deliberately and systematically destroyed. From “in your face” voting fraud to bio-engineered viruses to genocidal gene therapy shots to wide open borders to the fleecing of the public to fund engineered foreign conflicts to the governmental targeting of “traditional Americans” as “domestic terrorists” and I could go on and on. As the saying goes - The threat is real....and we are in danger.   For the sake of yourself, your family and your way of life - become more dangerous!   - Get into fight
Read more

The Insecurity of "Push Notifications" and What to Do About It

Image
 By now it has been widely circulated that the US government (and their 5 Eyes friends) has been secretly snooping on phone user's messaging in the form of Push Notifications. Not only are they snooping, but they applied a legal gag order to Apple and Google to prevent them from alerting you the customer of this fact. What's that you say? You are using an end-to-end encrypted messenger such as Signal and therefore are safe from said intrusion? Not so fast... While there are indeed some well designed and audited secure chat apps out there, that is only part of the story. Most, if not all, messaging applications employ Push notifications as a way to let you know that someone just reached out to you, even if you didn't happen to have the corresponding application open at the moment. This is, of course, very convenient for the end user, but the problem lies in how this is facilitated on the back end. Apple and Google both employ proprietary servers that intercept a message head
Read more