I’ve been using skiff. com for sometime, as they claim to be a fully privacy preserving app suite like GApps or proton. One thing I like is they provide 10GB storage even for free accounts, where proton eventhough much bigger provides only 500MB.

But that got me wondering… Are they trustworthy as proton? Is there a chanve they end up being a honeypot? Does data actually gets encrypted before sending to the servers in a trustworthy way?

mintyfrog
link
fedilink
11Y

They don’t seem as transparent as tutanota

I don’t like that you have to use play store to install their apps. ‘Oh, but I use Aurora store’ you say. Doesn’t matter, the email app (the only one I checked) uses the play billing api and firebase installations so on first run it phones home to the mothership.

Someone pointed that out on the other site, and the owner jumped in and said ‘those are disabled’. Then someone else posted firewall logs.

Edit: I realized that what I wrote in now way answers you question, mea culpa. Tutanota wrote a comparison Here that does though. It seems relatively unbiased, judge for yourself.

Fwiw I use both Tutanota and Proton. They also have the advantage of being outside of Five Eyes countries.

Edit: word

Possibly linux
link
fedilink
1
edit-2
1Y

Both Tutanota and photon mail are proprietary

Edit: Apparently Tutanota us working on becoming librejs compliant

Aurora store doesn’t even work anymore… Btw you can pay using the web interface too? Do we need play billing API?

I just used Aurora store to download Skiff Mail before I posted this. Definitely worked a few hours ago.

Aurora works but the rate limiting on the anonymous accounts is getting tough. I need to switch accounts multiple times before I can even get one search in

I guess I got lucky, I hadn’t used it in a long time and it worked right away after I unblocked the googly from my firewall.

I just wanted to check Skiff again to see if anything had changed. It was good though, Aurora said I had a few updates, and I thought ’ cool, I can delete those things’. I use Kiss launcher, which I love, but not having everything in front of you I sometimes forget less used apps.

uses the play billing api and firebase installations so on first run it phones home to the mothership

Ooh yikes

Oliver Lowe
link
fedilink
101Y

I’ve never heard of Skiff. Beyond studying the protocols and system design, here’s a couple of things off the top of my head to help:

  • Follow the money. Are they charging enough to not be tempted to sell data about their users?
  • Who is in charge? Have leadership demonstrated respect towards their user’s privacy in the past? See their About Us page
  • Read their privacy policy
  • Keep up-to-date. Lots of services start out with good intentions, but over time they get acquired, acqui-hired, big investments… and policies change.

removed by mod

I hope they at least are doing the E2EE thing… Last thing I want is to know that they could in fact read the decrypted data…

Are they open source?

https://skiff.com/open-source

Skiff is pretty good, I switched from proton over as they had a good one year promo and I found it fits better on what I need. The drive and page setup is pretty good too and so is the calendar. Overall I like skiff and they update and add a lot almost weekly. Big fan so far

Their open soruce only has skiff mail, what about the otther products?

Skiff licensed all of it’s apps it at CC-BY-NC-4, why not change it for GPL 3.0 to make it a real free and open source software that respects user’s freedom and mandates the fork to be free and open source. There’s a difference between free software, open source and source available!

obosob
link
fedilink
11Y

I presume the reason they didn’t use GPL3 is because they wanted the attribution and non-commercial clauses offered by CC-BY-NC.

Not suggesting that they should not prefer to drop those clauses in favour of a copyleft free software licence. but you asked “why not” and losing those clauses is clearly an obvious candidate for why they might not want to.

A software using CC-BY-NC-4 is not a good option, as it was made for media. If skiff markets itself as open source, it should respect the guidelines of opensource( it’s open source(https://opensource.org/osd/), you can read the 6th rule. It says the software should not be limited for commercial use.)

obosob
link
fedilink
11Y

I agree, I’m just answering the why question. Free software licenses don’t have non-commercial clauses and they want an NC clause.

Create a post

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

  • 0 users online
  • 57 users / day
  • 383 users / week
  • 1.5K users / month
  • 5.7K users / 6 months
  • 1 subscriber
  • 2.96K Posts
  • 74.6K Comments
  • Modlog