• ghost_laptop@lemmy.mlOP
      link
      fedilink
      arrow-up
      3
      arrow-down
      2
      ·
      2 years ago

      IMO if you’re starting with your project is understandable, they seem to have a shit ton of money put on it, thought, so that may make it a bit unforgivable, but things can change.

    • jokeyrhyme@lemmy.ml
      link
      fedilink
      arrow-up
      0
      arrow-down
      1
      ·
      2 years ago

      Of all the commercial networks they could use, surely CloudFlare is less evil than e.g. Google

        • Gunther@lemmy.ml
          link
          fedilink
          arrow-up
          1
          ·
          2 years ago

          I would disagree. I understand the issues people have with Cloudflare and how their man-in-the-middle as a service business model compromises privacy and internet decentralization in general, but there’s just no comparison to Google, whose business model is to build personalized advertising profiles for all of their users.

          • ailiphilia@lemmy.ml
            link
            fedilink
            arrow-up
            1
            ·
            2 years ago

            Some may make more money than others, but if they spy on you it means that they spy on you and eventually sell your data. You’re the product. And as someone already said in this thread, you cannot self-host. This appears to be neither decentralized nor private.

  • poVoq@lemmy.ml
    link
    fedilink
    arrow-up
    7
    ·
    2 years ago

    Your Skiff Mail account gives you access to the first-ever end-to-end encrypted productivity suite.

    CryptPad would very much disagree with that.

    Dunno, hard to say if this Skiff thing is good or not, but reading their website raises some red flags… might be just BS marketing though.

  • Mad@sopuli.xyz
    link
    fedilink
    arrow-up
    5
    ·
    edit-2
    2 years ago

    the software looks really good for an open source project, and would probably be very useful for collaborating on documents.

    they store your encrypted data on ipfs, so in theory it’s decentralized and there’s no reliance on any one party. except in ipfs you still need a host to keep your file alive while the rest of the network doesn’t care about it, which would be this company, hence why there’s a storage limit. i don’t see any options to self-host or switch host, though technically the software is open source so you can just change the default host in the code. there might have been an easier option that i missed, in fact i really hope there is

  • IΛM0DΛY@lemmy.ml
    link
    fedilink
    arrow-up
    5
    ·
    edit-2
    2 years ago

    It is very interesting that they use the IPFS protocol, but it is disappointing that only the front-end is open source and that there is no self-hosted solution.

    • kevincox@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      2 years ago

      It’s actually fairly concerning. I trust encryption but it is still always wiser to practice defense in depth. I’d rather not hand out the cyphertext of my messages to anyone who wants to do sidechannel analysis, encryption implementation failures or even just archiving my messages to crack in 50 years when quantum computers become popular.

  • Ilia@mander.xyz
    link
    fedilink
    arrow-up
    3
    ·
    2 years ago
    • The software is freely licensed (AGPL) and that’s a nice thing.
    • I hate Web3, so I’d rather not to use this.
    • What’s the problem with PGP? There’s no reason for me to use Skiff’s encryption method when I can easily use PGP.
    • I couldn’t see anything regarding that you can use third-party mail clients. Only their apps.
    • This is rather like feedback: I don’t understand why do they use a PDF file for recovery keys? That’s a strange decision.
    • ghost_laptop@lemmy.mlOP
      link
      fedilink
      arrow-up
      3
      arrow-down
      2
      ·
      2 years ago

      Yeah, the Web3 shit is a bit fishy but maybe they are doing it because it attracks customers, the IPFS thing is a nice addition although the MetaMask shit is not, ultimately, if they provide a good and free e-mail service and the rest does not interfere I am good with it though.

      Regarding the PDF thing I think that is optional for inputting it, since I was able to copy the code to my password manager.