Olvid
github.com
external-link
Olvid has 2 repositories available. Follow their code on GitHub.

cross-posted from: https://lemmy.ml/post/134819

Olvid, a secure messenger, is finally open-source! They said before the end of 2021, well it’s really just before the end but it’s there. They released the source for their Android and their IOS app.

@airikr@lemmy.ml
link
fedilink
6
edit-2
3Y

https://olvid.io/technology/en/#security > Encrypted e-mails:

Plain text unencrypted metadata in the header

Me logging in to my account on posteo.de and checking the settings:

Activate Posteo crypto mail storage for your account: This function encrypts your entire email data at the press of a button, including all content and metadata. The encryption is comprehensive; it encompasses your existing email archive, all newly-arriving emails and your notes.

Lie #1. I think Olvid needs to be more updated :)

And on Olvid’s privacy policy page:

Olvid does not collect ANY personal data.

Next section:

Olvid simply uses purely technical data, i.e. users’ IP addresses

IP addresses counts as personal data -.- Lie #2. But! They states that they do not consulting, collecting, or keeping the IP addresses… but they collects them?

After installed the application, I saw that I need to give them money in order to make secure calls. But to receive secure calls are 100% free. That’s a deal-breaker for me. Uninstalled…

Activate Posteo crypto mail storage for your account: This function encrypts your entire email data at the press of a button, including all content and metadata. The encryption is comprehensive; it encompasses your existing email archive, all newly-arriving emails and your notes.

To be honest, this sounds like gobbledyremoved aimed at duping people who don’t understand cryptography. The problem with encrypted email is first of all that it only works if both sender and receiver agree to do it. You cannot use your posteo account to send an encrypted email to other email users, because they wouldn’t know how to decrypt it! Likewise, incoming emails can only be end-to-end encrypted by the sender; if the sender sends them in plain text (which all but one in a million email users will), the server receives them in plain text. Even if the server “encrypts” them for storage, the plain text is still available to the server.

This is not to say you should trust Olvid’s claims of superiority; on the contrary, they are definitely telling some lies themselves: https://lemmy.ml/post/134819/comment/103067

@Reaton@lemmy.ml
creator
link
fedilink
23Y

I’m not sure about “lie #1” so let’s talk about the second one. Read the privacy policy again, they are using IP adresses, they do not collect them. That’s a big difference. I see no lie here.
For secure call, yes you must pay, that’s their business model. Honestly I prefer to know that’s how they make money rather than selling my data.
But hey, we can’t all like the same thing. :)

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

  • 0 users online
  • 14 users / day
  • 18 users / week
  • 24 users / month
  • 15 users / 6 months
  • 20 subscribers
  • 619 Posts
  • 1.56K Comments
  • Modlog