[kortilla]

The cognitive dissonance in the article when it comes to Signal and Protonmail is the same thing the author is deriding with people trusting Apple et al.

Apple has far more to lose monetarily than protonmail if it comes out that Apple sells off iMessage contents or similar.

I agree with the ideal of the article and the plight, but the shilling of Signal and Protonmail absolutely destroy the message because it goes right back to who you decide to trust to run a closed source service for you.

A corporation betraying a relationship with a customer is not a magic property of a corporation. It can happen just as easily with non-profits, coops, and any other org structure.

They are all groups of people in the end who you don’t know and fundamentally cannot trust to be acting as an agent of your interests.

100% we need more of Stallman or someone pushing actual open source.

Signal and Protonmail are not that. They are just other SaaS providers that you have to trust the marketing of.

[rini17]

Even if you self-host on own domain using libre software, you have to trust the registrar and certificate authorities. Thinking you can cut out all trusted third parties is naive,too.

[kortilla]

No you don’t. The CAs are only necessary if you want random public devices to be able to validate your domain.

And you don’t have to trust the registrar because of what I just said. You don’t need to depend on PKI.