Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@Chiquidrakula" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Chiquidrakula</span></a></span> <span class="h-card" translate="no"><a href="https://kolektiva.social/@COSAntiFascists" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>COSAntiFascists</span></a></span> <span class="h-card" translate="no"><a href="https://neuromatch.social/@iris" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>iris</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@Em0nM4stodon" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Em0nM4stodon</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@mastodon.earth</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@chaos.social</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> </p><p><a href="https://infosec.space/tags/FACT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FACT</span></a>: It's not <em>real <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>E2EE</span></a></em> unless you have100% <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> of <em>all the keys</em>!</p><ul><li>By contrast, <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> are <a href="https://docs.monocles.eu/services/mail.service/#security_of_keys" rel="nofollow noopener" target="_blank">upfront and honest</a> that <em>if you use their <a href="https://infosec.space/tags/WebMailer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebMailer</span></a>'s built-in Encryption / Decryption, your Keys *will be stored on the Servers</em> [Something that <span class="h-card" translate="no"><a href="https://mastodon.social/@protonprivacy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>protonprivacy</span></a></span> / <a href="https://infosec.space/tags/ProtonMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProtonMail</span></a> does too but tries to <em>leave out as a little detail</em>]...</li></ul><p>Thus <em>the correct way</em> as <a href="https://infosec.space/tags/monoclesMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesMail</span></a> says is to <a href="https://docs.monocles.eu/services/mail.service/#full_access_with_any_standard_client_of_your_choice_for_email" rel="nofollow noopener" target="_blank">use your own client and keep your keys to yourself</a>.</p><ul><li>Cuz unlike <a href="https://infosec.space/tags/Proton" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proton</span></a>, <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a> actually offer <a href="https://docs.monocles.eu/services/mail.service/#full_access_with_any_standard_client_of_your_choice_for_email" rel="nofollow noopener" target="_blank">standard protocols</a> to use with <a href="https://docs.monocles.eu/services/mail.service/#client_setup" rel="nofollow noopener" target="_blank">regular eMail clients</a></li></ul><p>Now OFC, monocles charge <a href="https://docs.monocles.eu/account/account/#comparison_chart" rel="nofollow noopener" target="_blank">€2 p.m. for their starter account</a> but they <a href="https://docs.monocles.eu/account/account/#where_how_to_buy" rel="nofollow noopener" target="_blank">also accept</a> <a href="https://infosec.space/tags/SEPA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SEPA</span></a> <a href="https://infosec.space/tags/WireTransfer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WireTransfer</span></a>, <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a>, <a href="https://infosec.space/tags/CashByMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CashByMail</span></a>, <a href="https://infosec.space/tags/Stripe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Stripe</span></a> and <a href="https://infosec.space/tags/PayPal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PayPal</span></a> for <a href="https://infosec.space/tags/payments" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>payments</span></a>, so it's pretty flexible and affordable given they don't put <a href="https://infosec.space/tags/ads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ads</span></a> in your <a href="https://infosec.space/tags/inbox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>inbox</span></a> or invade user privacy!</p>