Proton Pass is an open source, end-to-end encrypted password manager app. Create and store passwords, email aliases, 2FA codes, and notes on all your devices
Didnt read anything about a security key or even a keyfile (poor mans security key w/o phishing protection). Im assuming its protected by totp which is fine but I do kinda prefer a security key
I’m all for open source alternatives to bitwarden but this is non competitive with a mandatory subscription fee. Bitwarden is completely free for most users.
I thought the same thing but it actually does have a limited free plan. Seems like, similar to BW, it restricts 2FA behind the pass, but also with the pass you get unlimited hide-my-email aliases, multiple vaults to organize in (I don’t know what this means), and eventually autofill credit cards.
This is quite a bit more expensive than BW’s paid plan though. Not sure what all differences it has to BW otherwise.
Proton is starting to loose focus in my opinion. I’ve been a costumer for 5 years only using email and I moved this year to fastmail and I couldn’t be happier.
Unlimited emails alias, good apps, ability to use thunderbird without a self hosted bridge.
The promise of a encrypted email does not work if your contacts are not on proton too (for me was 100% of my contacts).
If you are really focused on privacy you would choose nextcloud for cloud for example and keypass or Bitwarden for password managers.
I would like them to focus on email client features and stop this side hustles.
Fortunately, I don’t have the same experiences as you. I mean, sure, I’ve encountered bugs in the Android app, but I’ve never lost any files with my selfhosted Nextcloud server.
Setting up the Nextcloud server and optimizing it was quite a big hassle for me (took an entire afternoon), but after it was all done, I was pretty happy with it.
No, the web UI is quite slow and that probably won’t change, but the caldav server and the Windows Desktop app work perfect. The automatic upload of media on my (Android) phone has no issues at all.
In my experience, the most issues are with the web UI due to its bad performance, but besides that, it works perfectly.
I advice anyone against switching for now, especially if you’re using KeePass or Bitwarden. Proton Pass has just been released, meaning it is not audited and it’s immature.
I would not trust it with my passwords just yet.
They make good products, but they promise release dates over and over again, and miss them by 2+ years.
They also fuck people over by releasing apps to only their visionary memberships. Like okay. Guess my $150/month doesn’t mean shit because I’m not visionary? Glad to wait 8 months for the beta to trickle down to me…
Still waiting on the ProtonMail Android app to be remade, and ProtonDrive Windows desktop app.
Edit: wait, I need a business plan to use this? What?
Ya, I’ll stick to my $1.30 CAD per month for BitWarden over the $6 for this.
I feel their business side is run by morons. I tried to setup a small business with them, and gave up when I couldn’t wrestle a price out of their sales folks after two weeks of back and forth emails.
As discussed in the January update, Android will require more work as we are rewriting more of the application, with a big focus on performance and stability. This means some Android features you have requested for Mail are not in our immediate scope for delivery. In particular, conversation view (also known as threading view) won’t make it into the first version of the new Android app, but we hope to deliver it soon after release.
Paid plan adds really basic features other password managers offer for free. Like auto copying of 2FA codes.
Wouldn’t be bad if I could just pay for it. The fact they are requiring me to upgrade to a different tier to do it is ridiculous. This model should be shunned hard.
I shouldn’t have to upgrade to an entirely different tier to unlock access to a different Proton service. I should be able to just subscribe to it. Especially since Proton has removed previous tiers in the past, so who’s to say if I no longer want Proton Pass that I can downgrade back to my previous tier?
Like ya, the business tier offers Pass Plus, Drive Plus, and VPN Plus, all of which I do not care about nor do I want. Stop bundling it together. Sell me Pass Plus separately.
Terrible, terrible system. I am honestly over the way they manage their company, and I really think about leaving their services for good. I’m sure when they release Proton Notes it’ll be in beta for visionary customers for 3 years before trickling down to us plebs that only pay $150/month and even then it’ll only be available on their business plan.
EDIT: actually it seems like they only offer 2FA on their paid plan in general.
EDIT 2: for those wondering, I have a mail essentials business plan customized to allow a bunch of custom domains. The fact I pay SO much just to have a handful of custom domains, but the rest of my account essentially gets the same features as a FREE Proton account is insane. I’d love to pay less and remove Proton VPN, since I literally never use it, as Mullvad is better and cheaper.
Why am I paying so much, but I am treated like a free user?
@protonmail Proton claims to be a privacy oriented company and yet their email app doesn’t show push notifications without Google Play Services means you will either have to use Google Play Services or live without push notifications (if you are using a degoogled phone). If Tutanota app could show push notifications without Google Play Services, it is definitely possible. What a joke!!
@SoulKeeper While we rely on Google Play Store services for push notifications, they are end-to-end encrypted. To stay private when using Proton Mail on an Android phone, we recommend trying some of these tips: https://proton.me/blog/android-privacy .
We are also working on a complete rewrite of our Android app, which will allow for the improved functionalities and features to be added.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !privacyguides@lemmy.one
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We’ve tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the “official” Privacy Guides community on Lemmy, which can be verified here. Other “Privacy Guides” communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
We prefer posting about open-source software whenever possible.
No soliciting engagement: Don’t ask for upvotes, follows, etc.
Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
Be civil, no violence, hate speech. Assume people here are posting in good faith.
Don’t repost topics which have already been covered here.
News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
No help vampires: This is not a tech support subreddit, don’t abuse our community’s willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
No misinformation: Extraordinary claims must be matched with evidence.
Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
I use keepassXC and Ive never had a problem with it, Is there anything different about Proton Pass?
Didnt read anything about a security key or even a keyfile (poor mans security key w/o phishing protection). Im assuming its protected by totp which is fine but I do kinda prefer a security key
I think you log in with your proton account, that supports yubikeys for 2fa
I tried it and its pretty cool and polished, but Bitwarden is WAY better in every poseible way.
I agree with you there, KeePassXC is definitely the superior choice.
I’m all for open source alternatives to bitwarden but this is non competitive with a mandatory subscription fee. Bitwarden is completely free for most users.
I thought the same thing but it actually does have a limited free plan. Seems like, similar to BW, it restricts 2FA behind the pass, but also with the pass you get unlimited hide-my-email aliases, multiple vaults to organize in (I don’t know what this means), and eventually autofill credit cards.
This is quite a bit more expensive than BW’s paid plan though. Not sure what all differences it has to BW otherwise.
Thought this was about Valve’s Wine fork and was very confused 😅
Is it open source though?
Here you go :)
https://github.com/ProtonPass
It’s advertised as open source
Proton is starting to loose focus in my opinion. I’ve been a costumer for 5 years only using email and I moved this year to fastmail and I couldn’t be happier. Unlimited emails alias, good apps, ability to use thunderbird without a self hosted bridge.
The promise of a encrypted email does not work if your contacts are not on proton too (for me was 100% of my contacts).
If you are really focused on privacy you would choose nextcloud for cloud for example and keypass or Bitwarden for password managers.
I would like them to focus on email client features and stop this side hustles.
Proton’s whole reason to exist is to provide privacy, not email client features.
I hear what you’re saying but Nextcloud is definitely not a viable option for reliable backups. Wayyyy too buggy to trust
I can not be, nextcloud was just an example. I have never had an issue with nextcloud backups
Certainly way too buggy if you’re selfhosting. At least that was my experience. And if you’re not, the privacy component really goes away.
Fortunately, I don’t have the same experiences as you. I mean, sure, I’ve encountered bugs in the Android app, but I’ve never lost any files with my selfhosted Nextcloud server.
Setting up the Nextcloud server and optimizing it was quite a big hassle for me (took an entire afternoon), but after it was all done, I was pretty happy with it.
No, the web UI is quite slow and that probably won’t change, but the caldav server and the Windows Desktop app work perfect. The automatic upload of media on my (Android) phone has no issues at all.
In my experience, the most issues are with the web UI due to its bad performance, but besides that, it works perfectly.
I’ve had issues with updates. Maybe I should give it another look.
Nextcloud in the cloud works fine with KeepassXC
I advice anyone against switching for now, especially if you’re using KeePass or Bitwarden. Proton Pass has just been released, meaning it is not audited and it’s immature. I would not trust it with my passwords just yet.
Proton Pass has already been audited by Cure53.
Its also been in an invite beta for a few months so they would have had time to sort out major bugs and security flaws
deleted by creator
This company is a love hate relationship.
They make good products, but they promise release dates over and over again, and miss them by 2+ years.
They also fuck people over by releasing apps to only their visionary memberships. Like okay. Guess my $150/month doesn’t mean shit because I’m not visionary? Glad to wait 8 months for the beta to trickle down to me…
Still waiting on the ProtonMail Android app to be remade, and ProtonDrive Windows desktop app.
Edit: wait, I need a business plan to use this? What?
Ya, I’ll stick to my $1.30 CAD per month for BitWarden over the $6 for this.
How.come u.r paying 150$/month? Havent you ment 150$/year?
I feel their business side is run by morons. I tried to setup a small business with them, and gave up when I couldn’t wrestle a price out of their sales folks after two weeks of back and forth emails.
The protonmail app seams good to me on Android?
Me too, I love all of their Android apps personally.
YMMV based on the phone though.
It’s missing so much that iOS has. They’ve said they are releasing a rewritten app, but keep delaying it.
For example, there’s no threaded email support on Android.
https://proton.me/blog/2022-roadmap
True, no threads. I didn’t notice cause for threads I usually used the website on my laptop
Why do you need the paid subscription? I thought it was for businesses, organizations etc.
Paid plan adds really basic features other password managers offer for free. Like auto copying of 2FA codes.
Wouldn’t be bad if I could just pay for it. The fact they are requiring me to upgrade to a different tier to do it is ridiculous. This model should be shunned hard.
I shouldn’t have to upgrade to an entirely different tier to unlock access to a different Proton service. I should be able to just subscribe to it. Especially since Proton has removed previous tiers in the past, so who’s to say if I no longer want Proton Pass that I can downgrade back to my previous tier?
Like ya, the business tier offers Pass Plus, Drive Plus, and VPN Plus, all of which I do not care about nor do I want. Stop bundling it together. Sell me Pass Plus separately.
Terrible, terrible system. I am honestly over the way they manage their company, and I really think about leaving their services for good. I’m sure when they release Proton Notes it’ll be in beta for visionary customers for 3 years before trickling down to us plebs that only pay $150/month and even then it’ll only be available on their business plan.
EDIT: actually it seems like they only offer 2FA on their paid plan in general.
EDIT 2: for those wondering, I have a mail essentials business plan customized to allow a bunch of custom domains. The fact I pay SO much just to have a handful of custom domains, but the rest of my account essentially gets the same features as a FREE Proton account is insane. I’d love to pay less and remove Proton VPN, since I literally never use it, as Mullvad is better and cheaper.
Why am I paying so much, but I am treated like a free user?
@protonmail Proton claims to be a privacy oriented company and yet their email app doesn’t show push notifications without Google Play Services means you will either have to use Google Play Services or live without push notifications (if you are using a degoogled phone). If Tutanota app could show push notifications without Google Play Services, it is definitely possible. What a joke!!
I don’t think that’s true.
I get push notofications on my degoogled phone.
Wait what I have no google services and I get all the notifications. I do have microG of course…
@SoulKeeper While we rely on Google Play Store services for push notifications, they are end-to-end encrypted. To stay private when using Proton Mail on an Android phone, we recommend trying some of these tips: https://proton.me/blog/android-privacy .
We are also working on a complete rewrite of our Android app, which will allow for the improved functionalities and features to be added.
Has anyone tried it yet? Two downsides for me:
It’s also more expensive than Bitwarden even at €1/mth
“no desktop app” One can use the iPad App on Mac with m1, tho sure not optimised for desktop.
“No safari extension” They announce it on their download page, so it should be available later.
Goodbye LastPass (I’m aware I should have migrated already but I was holding out for this)
The most important step a man can take. It’s not the first one, is it? It’s the next one. Always the next step.
Oh my god you’re still on Lastpass? RUN!
Not as of last night!
deleted by creator
I think these will either become obsolete or become passkey based, presumably the latter.
Why?
Th email protection is nice, but my one of my mails is already full of spam, so I don’t care any more and just use that when I don’t trust…