A SaaS solution that claims to be private but won’t provide the backend code to prove it. You don’t find it at all suspicious that they claim releasing backend code would make it less secure? What kind of security product is not open for inspection? The same kind of “security” you get from Microsoft.
I imagine it probably is inspected, just not by the public. They probably do it themselves.
And they may have contracts with certain companies specializing in this sort of security that also inspect it.
And there’s also the cybersecurity companies that test it whether they’re contracted or not. At some companies, their entire job revolves around finding bugs (especially security bugs) in other companies’ software.
Just because it’s not on GitHub doesn’t mean it’s not a good product that hasn’t been thoroughly tested.
You realize that Microsoft code is inspected as well, even more heavily and regulated… and yet they still end up with major breaches. Security evolves through open source collaboration and inspection by experts that aren’t being paid to say you’re doing a good job.
You don’t find it at all suspicious that they claim releasing backend code would make it less secure? What kind of security product is not open for inspection?
No, because Proton has 3rd party audits all the time and they share the results openly.
Microsoft has third party audits all the time and say they’re secure, and then you learn of new backdoors every 6 months. Audit companies are unreliable and paid to give good feedback while doing the least work possible.
Enterprises are using a plethora of open source tools at this point. They may still utilize closed source solutions, but they definitely have quite a bit of open source solutions tied in.
Drive has no Linux client, Photos is extremely barebones and locks you basically in, as there is no export function.
Pass still has no proper SimpleLogin integration, no credit card support and UX wise is the browser extension pretty bad. Funny enough, years after launch you still can’t auto fill on Reddit.
The only thing I don’t like about Mail is that you still have to create reverse aliases through SimpleLogin. Better integration would be great.
Contacts still don’t sync to you local mobile contacts. Which means you either do it manually or you have to keep two sets updated.
Calendar is good too, I’ve heard it has no offline support though. Although I haven’t verified that.
Last thing I would like to see is notification support without Play Services.
Some of those things might be super unimportant to some, but for me it makes the use of their stuff unnecessary cumbersome. Especially if you consider that those are all Proton products and should work together well.
My by far biggest problem is their communication and general development speed though. Stuff like contact sync has been requested for 5(?) years now but there hasn’t been so much as a “we’re working on it”.
It feels to me they come out with new products all the time, like the document editor now, without addressing the little things that would make their ecosystem great.
Anyway, long ramble. But I appreciate that you asked for more details without insulting me.
I’m actually pretty sure they have one. I was doing a lot of exploring the last 2 days to make sure it was worth it to me to spend money on. And I landed on a downloads page on my Linux desktop that had a download link for drive for fedora, or debian. I can’t find it on mobile (where I am now), but I’ll look later on my PC and see if I can link it.
Was wrong, not sure what I found. Must have been the vpn or mail app.
Photos is extremely barebones and locks you basically in, as there is no export function
Interesting, thanks for the heads up. Hopefully it gets better later on, but for the moment I’m glad I made my own solution using a NAS, and a sync client.
Contacts still don’t sync
This was one of my first concerns, I’m also annoyed by it.
Additionally, I was hoping their big “docs update” would also include spreadsheets, but hopefully soon.
Gee, it’s almost as if that’s the whole point of an ever-evolving SaaS platform.
A SaaS solution that claims to be private but won’t provide the backend code to prove it. You don’t find it at all suspicious that they claim releasing backend code would make it less secure? What kind of security product is not open for inspection? The same kind of “security” you get from Microsoft.
I imagine it probably is inspected, just not by the public. They probably do it themselves.
And they may have contracts with certain companies specializing in this sort of security that also inspect it.
And there’s also the cybersecurity companies that test it whether they’re contracted or not. At some companies, their entire job revolves around finding bugs (especially security bugs) in other companies’ software.
Just because it’s not on GitHub doesn’t mean it’s not a good product that hasn’t been thoroughly tested.
You realize that Microsoft code is inspected as well, even more heavily and regulated… and yet they still end up with major breaches. Security evolves through open source collaboration and inspection by experts that aren’t being paid to say you’re doing a good job.
No, because Proton has 3rd party audits all the time and they share the results openly.
Microsoft has third party audits all the time and say they’re secure, and then you learn of new backdoors every 6 months. Audit companies are unreliable and paid to give good feedback while doing the least work possible.
Yeah because enterprises primarily use a ton of open source security tools…
ಠ_ಠ
Enterprises are using a plethora of open source tools at this point. They may still utilize closed source solutions, but they definitely have quite a bit of open source solutions tied in.
Releasing unfinished products and expect users to just make do while they launch the next product can’t be the solution either.
Then it’s a good thing all of their products are fully functional and working as advertised, I guess.
Sure, whatever you want to belief :)
Which bits are not functional? I’m using their email and calendar… they aren’t completely polished, but they’re very usable.
Drive has no Linux client, Photos is extremely barebones and locks you basically in, as there is no export function.
Pass still has no proper SimpleLogin integration, no credit card support and UX wise is the browser extension pretty bad. Funny enough, years after launch you still can’t auto fill on Reddit.
The only thing I don’t like about Mail is that you still have to create reverse aliases through SimpleLogin. Better integration would be great.
Contacts still don’t sync to you local mobile contacts. Which means you either do it manually or you have to keep two sets updated.
Calendar is good too, I’ve heard it has no offline support though. Although I haven’t verified that.
Last thing I would like to see is notification support without Play Services.
Some of those things might be super unimportant to some, but for me it makes the use of their stuff unnecessary cumbersome. Especially if you consider that those are all Proton products and should work together well.
My by far biggest problem is their communication and general development speed though. Stuff like contact sync has been requested for 5(?) years now but there hasn’t been so much as a “we’re working on it”.
It feels to me they come out with new products all the time, like the document editor now, without addressing the little things that would make their ecosystem great.
Anyway, long ramble. But I appreciate that you asked for more details without insulting me.
I’m actually pretty sure they have one. I was doing a lot of exploring the last 2 days to make sure it was worth it to me to spend money on. And I landed on a downloads page on my Linux desktop that had a download link for drive for fedora, or debian. I can’t find it on mobile (where I am now), but I’ll look later on my PC and see if I can link it.Was wrong, not sure what I found. Must have been the vpn or mail app.
Interesting, thanks for the heads up. Hopefully it gets better later on, but for the moment I’m glad I made my own solution using a NAS, and a sync client.
This was one of my first concerns, I’m also annoyed by it.
Additionally, I was hoping their big “docs update” would also include spreadsheets, but hopefully soon.
That’s a good list. Certainly a public feature/bug tracker would be nice. But those are pretty rare for corporate software…