🔗 David Sommerseth

F/OSS hacker, mostly working on #OpenVPN
- speaks only for himself.
ex-Twitter account (now inaccessible): https://twitter.com/DavidSommerseth

“Don’t aim to be someone. DO something.”

  • 2 Posts
  • 39 Comments
Joined 2 years ago
cake
Cake day: December 28th, 2022

help-circle




  • @testeronious

    So I spent a little bit time to dig up what Notion is.
    This is what I found when searching for it … https://www.notion.so/about

    And I honestly have no idea why Skiff would be interesting for Notion. From what I can grasp the only Notion features overlap are Skiff Pages and perhaps Skiff Calendar. It’s so off I struggle to fully grasp this.

    First of all, Notion is not a service talking about privacy at all, afaict. And that was one of the main arguments Skiff had.

    And then the first thing this merges states is that Skiff services are closing down.

    I hate to say this, but Skiff founders couldn’t really have cared that much about privacy then, when they chose to close down so quickly and abruptly like that, without a continuation plan on bringing privacy to Notion.

    I believe the Skiff founders, if they really cared strongly about privacy, realised their service was not sustainable in a longer run, with too high running cost and too low income. In addition they might have seen that they would need to invest a lot more into further development and that it was too hard to improve their revenue stream. So the alternative was either to go down with a bang (bankruptcy), or they could sell “something” to another company and make it sound nicer.

    Right now I just wonder what Skiff managed to actually sell to Notion. Most likely manpower, if I should guess.


  • @Rookwood @testeronious

    Tuta seems to be driven by idealists and privacy activists as well. AFAIK, they also don’t have venture capital and their user base of paying users is what keeps them alive. Which is also why it’s still a small company.

    I don’t recall how Tuta got their initial funding to get startet. I don’t think they were crowdfunded in the same way Proton did.

    But the idealsism goals of both Tuta and Proton is what generally makes it less likely they will sell out.

    AFAIR, Skiff was VC funded. The idealism of the founders are easily ignored when the VC backing wants to cash in on their investments. And that’s what happened here, in some way or another.


  • @case2tv @Nelizea

    Proton and Tuta has similar challenges most others don’t care about (including FastMail) - End to End Encryption. That itself is a pretty hard nut to crack. FastMail and similar services don’t need to think about that, which makes their services simpler.

    I would also not claim that Tuta has a quicker development cycle. They had a round recently where more features were highlighted. But that’s an exception. I’ve had a Tuta account for years as well, to test it out, and both the webmail and Android app is still not that feature rich.

    And Proton delivers new features and updated apps quite regularly now compared to just a few years ago. Can it be better? Yes, of course. But still, they are doing alot than just 2-3 years ago. And 2-3 years was even better than the years before that.

    Also consider that Proton delivers on a broad range of products and services. Mail, Calendar, Drive, Pass and VPN. Tuta basically has Mail and Calendar, where both of these Tuta services being fairly reduced in features still.

    My experience (mostly using Mail and a little bit Drive these days) is that Protons releaes are also pretty solid. It’s extremely seldom I’m hit by bugs these days. To have that kind of quality requires quite some QA efforts. I’m not claiming the other services are equally good, but Mail and Drive is now very stable - and Mail is especially crucial for my 15-20+ users abd myself.

    Finally, Proton serves more than 100 million users by now. Tuta has reached a bit over 10 million, IIRC. That requires Proton to have more staff on support and operations tasks. So even if Proton has more than 400 employees, that’s not 400 developers.








  • @unruhe @protonprivacy

    I thought a bit more on these complaints since this post. And I realised these complaints can also be ignored by applying some basic mathematics and common sense.

    Proton has more than 100 million users by now. So let’s say 100 million in this example. How many public complaints would it need to be from these users to really “catch fire”? Meaning - how often do you read about complaints and from how many users? More than 100.000 users? Okay. Let’s say there are 1 million dissatisfied users.

    If half of that million users complained loudly on the Internet, I would say that would probably be quite noticeable. Media would most likely pick it up, and it would brew up to media storm right?

    Have you noticed anything like that? Do you see that many users complaining?

    And if yes, that would still only represent 0.5% of the whole user base of Proton. If you include the other half complaining “silently”, it would represent 1% of the Proton users.

    That still leaves 99% users which are at least to some degree satisfied with Proton.

    Even if you pull it up to 20 million dissatisfied users, they would still be in the minority compared to users finding Proton’s services being just fine. And 20 million dissatisfied users - that would definitely have caused some media traction, don’t you think?


  • @amju_wolf

    They could even have a Fedora Copr repo, where they push out the updated .spec file and get a proper package build for all Fedora, RHEL/CentOS and more distros. With proper RPM packaging and repository. Push a new build and all users gets an updated package at their next update cycle.

    That’s a reasonable path to get started with preparing packages to become part of the native yum/dnf repos at least. And that across a lot of distributions and releases in a single go.





  • @Prototype9215 @LunchEnjoyer @LinkOpensChest_wav

    That’s what really happens when @protonmail insists on doing everything on their own, not even doing the continuous development in the open. They provide source code updates only on stable releases, and even that can be delayed some days until after the release.

    That’s not how you build a community of users, developers and package maintainers.

    Had they instead spent resources getting their Linux packages into the native package streams for the most important distros, they would have solved more bugs earlier with help from the community.

    That is probably the most disappointing aspect of Proton. They still don’t grasp how to interact with a broader community, to get real help.

    They would still need to review contributions, just as I expect they do with changes from their own employees. So it wouldn’t reduce the security.

    Also, they can’t really hide behind the code not being ready to be published; they code is being published in the end.

    But they really miss the opportunity to get their packages into the standard Lunux repositories. Which would help resolving all the incompatibility issues they now have with certain Linux distributions.

    On top of that, all the needed tooling required already exists. It just need to implemented correctly in their processes.



  • @LinkOpensChest_wav

    Yeah, some. You need to learn some new tools, like ssh, command line usage and how to keep the system up-to-date. That’s the bare minimum. Then it’s good to learn a bit of network firewalling, to secure the host better.

    Then you need to deploy a VPN server. OpenVPN Access Server is easily installed and can help settings things up reasonably quickly. The unpaid install allows you to have 2 devices connected at the same time.

    Alternatively, there is the Cloud Connexa service. That will function a bit more like the Proton VPN Secure Core when fully set up (you can can connect from your devices from a different region from your VPS’s location). You run a few commands on your VPS which the Cloud Connexa wizard setup guides you through. The free plan here includes 3 connected devices (in your case VPS + 2 devices).

    With both alternatives you can install the OpenVPN Connect app on your devices, provide the username/password/otp for the account you’ve created in Access Server or Cloud Connexa, and you’re basically ready. The Connect app downloads the proper config file and you can connect just as the consumer VPNs.