InnerScientist @ InnerScientist @lemmy.world

Posts

1

Comments

264

Joined

2 yr. ago

The emails are unencrypted, emails in transit are in transit between the e-mail servers and relays and use secure tls channels.
They are only encrypted from your phone/notebook/browser to the server, then when send they will be encrypted till the next server.

Every server/relay first decrypts everything send to it, because it has to due to the TLS terminating at each server.

See also your source:

Transport Encryption: This form of encryption is used to secure your emails while they are transmitted over the internet. Most of today’s email services, including Gmail, employ transport layer security (TLS) to protect emails in transit. While it encrypts emails between servers, it doesn’t protect the content once it reaches the recipient’s inbox.¹

In practical terms, Your e-mail server, your e-mail servers relay (if it has any) and your recipients relay server/server can all read your email unless

End-to-End Encryption (E2EE): E2EE takes encryption a step further. It ensures that only the sender and the recipient can decrypt and read the emails. Even the email service provider cannot access the contents of the email. E2EE is typically achieved through third-party encryption tools or services.¹

Which takes active effort from both the sender and the recipient to make work - it's almost only possible with people you know and little else.

¹ https://umatechnology.org/gmails-new-encryption-can-make-email-safer-heres-why-you-should-use-it/

You can use caddy-l4 to redirect some traffic before (or after) tls and to different ports and hosts depending on FQDN.

Though that is still experimental.

Only thing I can comment on is that 99% of all E-Mails you will get are unencrypted and can be read by your relay. (There are few e2e encrypted emails being send.)

So either trust them or don't use a relay.

How many Beans does it take to turn on a lamp?

Step 1: Get write access to the project you dislike.

I think you can't change that on any other os.

Small correction: Using Networkmanager in KDE/Linux you can select the frequency (and even individual APs) in the GUI.

They don't have quantum in the name.

Security vs having someone to message.

From the mailing list I'm reading that kernel maintainers have heard a few companies looking for something like this, so yes?

Edit:

However, to be clear, the Hornet LSM proposed here seems very reasonable to me and I would have no conceptual objections to merging it upstream. Based on off-list discussions I believe there is a lot of demand for something like this, and I believe many people will be happy to have BPF signature verification in-tree.

Preventing kernel modifications to expand upon the work done for kernel lockdown. Add additional layers to system security.

Kernel_lockdown:

prevent both direct and indirect access to a running kernel image, attempting to protect against unauthorized modification of the kernel image and to prevent access to security and cryptographic data located in kernel memory, [...]

I recommend switching to NixOS only after you have a basic but broad understanding of Linux, many things in NixOS are more complicated than in "normal" Linux, which is needed to archive what it does, but is overwhelming for someone who doesn't know the what and why and where that using Linux brings.

Sell their houses to who, Ben? Fucking Aquaman?!

Because no person in my life uses it I made the generalization that it isn't used much, leading to my top comment.

The point is to take the base communication technology (texting) and bring it to the 21st century without being beholden to some American company.

Is this satirical? RCS is beholden to some American company as far as I can tell.

They still need an RCS client on PC, etc.
All the apple users I know use WhatsApp, Signal, telegram and not one uses IMessage, not even the company I work at, which uses iPhones mainly, uses IMessage for communication, private or otherwise.

I guess so? I haven't met anyone who's using sms for that but apparently that's just regional.

It's going live in a few months iirc.

Yeah you need a TrickyStore and a valid key, though my point is that they can pick and choose who can be an RCS client.

Did you expect it to ever get better? Best google can do is kill background apps without your permission.

So we're back to square one, five messengers and one which "can do anything"©®™ led by google. No thanks I'd rather let SMS be as it is.

As far as I can see you can't join the network without some kind of authorization (see rooted phones being unable to).

No, I'm saying that there isn't. You can use all those things on every platform, RCS would be the 6th program you need to install besides the other 5 you already have and it seems useless compared to the rest.

Edit: platform as in android, windows, iOS etc