I’ve been using Tutanota for a while now. Been interested in people’s opinions about Tutanota and Protonmail.
Tutanota doesn’t share their security audits, which Proton does.
Also, IIRC Tutanota uses their own custom encryption implementation, while Proton contributes to open source OpenPGP projects.
And when in the past the the Swiss gov ordered Proton to do some limited tracking for a specific user, after that they went to the court and succeeded in changing the law so it’s no longer possible to order this tracking.
Proton might not be ideal, but they seem to actually care about making the Internet a safer place.
I am sure that Tutanota does not use any custom encryption algorithm. It is clearly stated in the FAQ that they use RSA (with PFS) and AES to encrypt emails exchanged between Tutanota users. https://tutanota.com/encryption There’s even a section which discusses why they do not use PGP. So it’s not like they can’t add it, they just don’t because it lacks “important requirements”. Plus they even are slowly developing a protocol that is post-quantum secure to encrypt their emails.
I’m not really saying that what Tutanota does is insecure, but historically doing security on your own instead of using established standards has not been a winning move.
Plus their unwillingness to open source it and not sharing the audits just doesn’t inspire my confidence.Overall they’re probably fine, but these are some of the main reasons I ultimately chose Proton instead.
BTW, they’re not “slowly developing” post-quantum encryption, they’re just saying they may do that at some point in the future - which everyone will have to do anyway when we get to this point.
I am sure that Tutanota does not use any custom encryption algorithm. It is clearly stated in the FAQ that they use RSA (with PFS) and AES to encrypt emails exchanged between Tutanota users. https://tutanota.com/encryption
These are only primitive algorithms, the actual implementation is custom and specific to Tutanota, which mean it will only work with Tutanota as nothing else will implement it.
There is no way to do key distribution outside of Tutanota’s service.
Tutanota deleted my account due to not logging in for 6 months. That was rough.
I’ve never used Tutanota but been a Proton Unlimited user for a few years now. I definitely like the mail service, and Drive and VPN are nice but can be slow, especially Drive. Everything else I don’t have much use for, and honestly I cringe when I see the new stuff they’re working on. Not that any of it’s bad, but it feels like they’re in the “can’t just make a good product” camp, constantly trying to add on new stuff instead of focusing on quality. Could have it all wrong, though, I’m just a person, not an analyst.
i immediately got defensive at this, but that’s just my sunk cost fallacy speaking. The fact that it’s a suite is what originally sold me; cancel my 1password/dropbox/PIA and still have money left over. But yeah apart from proton mail everything else is halfbaked, and in the case of protonpass i’d call it undercooked/raw.
@keenworld I agree. They started with email a decade ago and even though it was unfinished they tacked on calendar, storage, vpn and so on. I would have wished that they finish one thing before starting another.
+1 on that. They’re still struggling to make a good app for VPN on Linux while every other provider has sovlrd this ages ago. But overall a good service.
Yeah VPN app on Linux is ridicously bad.
To be honest, that’s probably less of a priority since most Linux users are likely to be comfortable with just downloading the configs and importing them into NetworkManager.
Personally, Linux VPN app is not something I ever had any interest in. I’d rather get a Drive sync client…
Well in a recent poll that Proton held in Reddit I think, Linux users were the first requesting an app.
I am fine with Tutanota. Simple and working. All the half-finished services from Proton are just really annoying for me.
What half-service?
Did you try their VPN on linux? Bc I did
yes is slow/shit
What do you mean by “half finished services”?
half backed?
I am using Tutanota as my e-mail provider and it’s quite OK.
They’re both excellent, but I prefer Proton because I need to be able to take reliable offline backups of my mail accounts & sync to a standard mail client. I can bridge and archive copies with Proton… last I checked, Tutanota lacked those features.
Removed by mod
“I have no evidence, but let me make an unsubstantiated claim and mention there’s YouTube videos about it and then recommend the very thing I said might be problematic”
In interest of a complete record, the video I found most compelling on the issue:
I’d love for you to disprove this guy’s claims. I mean this in good faith and will be checking back in the next couple hours.
Here is an alternative Piped link(s): https://piped.video/IeXaYR4ed9c
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source, check me out at GitHub.
Don’t have any real evidence to substantiate this,
Then why post it and spread FUD?
Seriously shit like this is ridiculous and should get you banned. I can make shit up with no evidence as well, but it does no one any good.
Then why post it and spread FUD?
Deleted by Mod.
People please try to remember the rules about substantiating your content/posts.
In interest of a complete record, the video I found most compelling on the issue:
I’d love for you to disprove this guy’s claims. I mean this in good faith and will be checking back in the next couple hours.
deleted by creator
please stay respectful even when someone spreads fud
In interest of a complete record, the video I found most compelling on the issue:
I’d love for you to disprove this guy’s claims. I mean this in good faith and will be checking back in the next couple hours.
Here is an alternative Piped link(s): https://piped.video/IeXaYR4ed9c
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source, check me out at GitHub.
With respect, allegations without proof are conspiracy porn. There’s no reliable indication that Proton is anything but what it claims to be.
In interest of a complete record, the video I found most compelling on the issue:
I’d love for you to disprove this guy’s claims. I mean this in good faith and will be checking back in the next couple hours.
It’s not on us to disprove, it’s on him to prove.
That’s fair.
I do think this video lays out a clear case that Proton is not as open and anonymity focused as it could be. While going from those facts to a postulation that it’s a fed honey pot is probably a stretch, to use this as grounds to say “Proton isn’t as trustworthy as they claim to be” seems reasonable.
Thoughts on that line of thinking?
Proton’s trustworthiness requires framing the service properly. First, they only guarantee E2EE for stored data and data between Proton users. Data passing into the general email stream is not protected after it leaves. Second, they don’t claim to be anonymous, but “secure and private.” You should absolutely expect that you’re not anon.
Here is an alternative Piped link(s): https://piped.video/IeXaYR4ed9c
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source, check me out at GitHub.
Bulls*t. What the random YouTubers claim without evidence is also nonsense. It’s remarkable to allege that an open source and audited app is a honeypot. Well, find it guys, it’s open source.
In interest of a complete record, the video I found most compelling on the issue:
I’d love for you to disprove this guy’s claims. I mean this in good faith and will be checking back in the next couple hours.
I didn’t watch the video, because I don’t have 15 minutes to listen to what sounds like a conspiracy theory, but the source link for his info he put in description is dead, so that doesn’t inspire confidence…
Anyway, how would a Swiss company be a honey pot for the feds?
Tutanota is mainly an email service, with very basic calendar and contact functionality. Proton has a suite of apps, including Mail, Drive, VPN, Calendar, and Pass. I got the Tutanota subscription when it was €1/month and it works well for me.
I used to use both mail mobile apps, but found out that Proton Mail notification doesn’t work without Google Play Services, which is a deal breaker for me. So I use Tutanota as my main email and Proton as my backup and for its Drive. Either way, I’m just glad to leave Gmail.
There’s this solution for notifications if you wanna try.
https://www.f-droid.org/packages/dev.lbeernaert.youhavemail/
Thank you. I’ve looked into it, but I didn’t feel comfortable logging in with my Proton credentials.
Tutanota also has calendar. But I understand your point.
Better graphic interface for proton and it come with vpn, storage (500go), proton pass, calendar, etc
I pay 12$ a month
Both are ok, but Proton is too weird, also IMAP issue for Linux users makes it even worse. Posteo is probably better service, than both combined.
How is Proton weird?
I’m using IMAP on Linux; what issue are you seeing?
I have been using both Posteo and Tutanota for a while. Tutanota has much more modern looking webmail and custom domains support. Both rock solid though
I like Tutanota, but find it visually annoying.
I love Proton and have been a visionary member for quite a few years. They give visionary member so much space it’s nuts.
Protonmail’s interface and mobile app is more refined and faster than Tutanota’s, and PM has more features on their free tier than what Tutanota provides on their free tier. Having said that, both are great email providers. I have accounts on both but I tend to use PM more at this point in time.
I’ve been using Proton for a few months now and I like it. It’s under Swiss law and not part of that Five Eyes agency, so I at least feel like my data is secure. Their iOS app is actually really nice and easy to use if that will make or break something for you OP.
Proton lost me in the testmonth. I wanted to cancel the auto renewing subscription about two weeks before it would habe been renewed and realized that they immediately removed all subscription-features. That disappointed me so much. That’s not fair, I think.
I use both Tutanota and Protonmail and love both. Protonmail is based out of Switzerland where Tutanota is based out of Germany. Germany is part of fourteen eyes so I give the win to Proton there. Tutanota has lower prices. Tutanota has apps available in App Image and Flatpak for Linux where Proton is only in the AUR and as a .deb. Tutanota has an Android app on F-Droid where Protonmail you have to navigate their site to find a standalone apk. Both are on the Fediverse but Proton did leave for a while where Tutanota stayed and was more active. Overall both are good choices.