There is one more issue with Tuta that seems unavoidable due to its design, it doesn’t support third-party email clients (like Thunderbird), so you can’t properly archive emails locally in the traditional way. Your options are to use their client to “archive” emails, manually export them, pay for more storage, or delete them.
You’re the second person to misinterpret what I said, and now I realize that this is totally my fault. This is what originally said:
By they I did not mean Tuta. I meant other companies, as in the other private email companies outside of Proton and Tuta that are trying to get a slice of the pie. But I understand why people thought I meant Tuta because it wasn’t clear who I was referring to with the pronoun they. I have since edited my comment to make it clear.
For the record, I don’t have an issue with Tuta building a suite, but if they do, I hope they do it differently than Proton. I also think it’s hard to play catch up when Proton is so far ahead. But Tuta is also way ahead of the rest of the competition in the E2EE email space, but’s it’s crucial for them not to lose that lead, and capitalize it as best they can. If they don’t, someone else will take over and become Proton Mail’s main competitor in the privacy space.
I agree.
When you say Proton free do you mean that your Proton account is free?
I haven’t gotten the chance to fully appreciate that as I have more emails in Tuta than Proton. However, I did notice that once you start accumulating a lot of emails, and trust me, a single year is enough, you really need to have good search. And yeah, I find that Tuta’s is a bit lacking.
I just recenlty had to go through 600+ emails on Gmail, and boy did I appreciate the quality of search. We need the same for E2EE emails. I want to see advance search where you can filter emails with specific characteristics.
I agree. But if they launch an alias provider they have to find a way to be innovative. Proton was the first to integrate aliases into a password manager which IMO, was a strike of genius. Not saying Tuta should follow that model, but so far no other password manager has done this. Right now, I don’t think Tuta has the work capacity to work on a password manager. Moreover, if they did, IMO they would have to modernize their entire UI.
By they I did not mean Tuta. I meant other companies, as in the other private email companies outside of Proton and Tuta that are trying to get a slice of the pie.
Makes sense. I think it’s a question of resources. Posteo is unlikely to add drive any time soon for instance.
When you say Proton free do you mean that your Proton account is free? … I just recenlty had to go through 600+ emails on Gmail, and boy did I appreciate the quality of search.
Yeah, I can’t bring myself to sub, as I’m on a limited income and Proton email is relatively expensive. Right now, I’m using Proton in conjunction with Duck aliases through Bitwarden. For now I have two personal duck aliases, one for random alias generation and another I directed my family to use with me, that both are going to Proton.
So far I don’t have a lot of emails in Proton and I will be limited to 1GB, but I can say gmail is excellent at searching a very large amount. I have always had to log in through browser if I needed to find something, since I never could in Thunderbird. People with PGP encrypted emails say that search is even worse than that, including through IMAP.
I would pay $20 per year for basic email with an official app, ability to search large amounts of emails accurately (even if it’s slower than gmail), and at rest encryption of all email data. It doesn’t seem like there’s one. Either you compromise on the search with Tuta or you get either Proton free or the expensive subscription, at which point subject lines and contacts are still not encrypted.
My basic system could also be replicated with a purchasing a domain name and using an addy.io subscription to redirect that personal domain to Proton or Tuta. That would get it around that $20 range for something a little better than Duck aliases (duck has no DKIM, no two factor, goes to spam folder, etc). But the duck aliases are adequate and people aren’t too confused by hearing “duck.com” like they are with other domains.
I get it. I used Proton Mail for free for good number of years before I could afford to upgrade.
What do you mean by that? Can Duck aliases be integrated to BitWarden?
What’s DKIM?
Yes, that it true. Whenever I have to use an alias that I know I’m going to have to give to real people, I try to use one that is really simple.
Yes. When you go to generate in bitwarden, there’s an option for usernames. You can choose duck, then insert the API key. Getting the API key is confusing but possible.
This is the main reason I switched to bitwarden, as it’s very convenient. You also get a list of duck aliases you generated.
What’s DKIM?
I learned about this recently, but I’ll share my basic understanding.
With emails, there is a risk of email spoofing. Email providers instituted some measures to prevent this. They can write a DMARC policy, which the receiving provider can check to see if the email looks real. The sending provider can also use SPF or DKIM to sign the emails, which the receiving email can use to verify the integrity of the emails.
If an email fails a check, usually the receiving email provider will still accept it, but it will go to spam and often is labeled with something like “possible phishing attempt.”
Duckduckgo has a SPF and a DMARC policy, but seem to not use DKIM. Therefore it lacks one of the ways receiving email providers verify authenticity.
The difference between SPF and DKIM is not clear to me, nor are the implications of having one or the other but not both, so maybe someone else can explain this better. There isn’t a lot of easy to understand information about this topic.
Spf is closer to dmarc than it is to dkim. Dkim is for signalling to receiving server which valid key the outgoing mail are/will be signed with. Spf is to signal to receiving server which outgoing server are allowed to send mail on behalf of the domain. Dmarc is to signal/instruct to the receiving server of what to do (either quarantine as spam or outright reject) if dkim aren’t aligned (either unsigned, or signed with unknown key) or spf aren’t aligned (mail received from unknown outgoing server, aren’t specified in the spf).
Anyway, on topic, i really, really hope Tuta android drive client allow manual defining folder to sync ala RoundSync and FolderSync. Ideally further allow choose sync either 1 way or both way. Among the 1st party drive client for android i believe only Mega and Nexcloud have that.
1 Like
On Reddit, they state their timeline will be:
Web integrations into Tuta Mail & Calendar → Desktop clients including Linux
If they prioritize by market share, Linux will come last.