i wish people would stop viewing this guy as someone who is a guru extreme online privacy.
Bazzell is good at one thing primarily, and that is Real Life privacy/hiding, when one’s adversaries on nongovernmental. that is his specialty and what he should be respected for.
Bazzell is not a huge expert in thwarting mass surveillance or thwarting nation-state adversaries in technology. otherwise he wouldnt be giving recommendations that involve closed sourced software or cloudflare lol.
He is a practical guy and knows enough to keep his clientele’s privacy for the types of adversaries he is accustomed to going up against (not nation state or federal gov)
I found out also that Tutanota is essentially the same, except that they do E2EE subject lines between tutanota users, but I am guessing that is because they don’t use PGP unlike Proton. In which case, Proton is in the right in this case because they are increasing E2EE interoperability beyond just their own users. So, my comment about honeypotting was really uncalled for I think, and I apologize for that.
The OpenPGP proposal is interesting, but I couldn’t find anything on it. All I found was this below, which explains that email headers can’t be/aren’t encrypted, and subject is one of those, so that’s why. I have no clue what Proton was talking about, or where they got that info
when it comes to server-side software, FOSS is of little importance unless you are self hosting. there is zero way for you to verify, unlike client software.
jitsi conference room server, or matrix chat server.
you could run an Oxen node for the Session onion messenger, or a relay for the SimpleX messenger. these are especially important things we need to reduce decentralized messenger dependence.