I’m seeing many people recommend Thunderbird. Let me enlightnen you.
I personally never trust any software that is not secure and private by default. Mozilla Corp is a for-profit corporation that makes nearly a Billion dollars in cooperation with Google monetizing data about your life. Thunderbird is Mozilla and if you setup with the Wizard, it already got the basics about your email life even if you disable it later.
Thunderbird Not Private by Default
Sends all interactions with it to Mozilla
Whether calendar is in use
How many filters you have
How many email accounts you have
Computer/Device Information including hardware configuration
17 Criticial or High Vulnerabilies this year alone
Conclusion
If email security and privacy means a lot to you, or even computer security and privacy, your best options are to use BSD/UNIX/Void/Alpine and Claws-Mail. That is just the way the cookie crumbles in 2023.
Honestly I’m glad they highlighted the telemetry. I went through the local report about what’s included and while it’s not an upsetting level of detail, it’s more comprehensive than I would have opted in to if asked.
Still, as sibling points out it’s in a completely different league from slurping up your IMAP creds, something which has always been local-only data. This is the second time I know of recently where MS has trampled on this kind of local-only expectation - the other was Edge defaulting to sending the contents of textboxes you’re filling out on webpages to the MS cloud for spelling and grammar checks. Thunderbird is still a sound recommendation, and unlike Microsoft, I trust that if I uncheck the telemetry box they’re not going to try to get me some other way.
Thunderbird doesn’t passphrase-protect your PGP key. Though you can set a general password… For something less important, its OpenPGP may be convenient, given that if you send/receive email normally, there is metadata problem anyway. But if you need to play it safe, you may want to use gpg offline and paste ascii.
Increasingly more and more “phoning home” is not exactly comfortable, either: thunderbird-settings.thunderbird(.)net location.services.mozilla(.)com addons.thunderbird(.)net versioncheck.addons.thunderbird(.)net services.addons.thunderbird(.)net, etc. Perhaps people today, both users and developers, feel something like this is normal, because things were already more or less like this when they were born.
Re: Micro$oft - It might be that after raped by Google, the society has been desensitized and stopped feeling anything about “minor details.” Why worrying now? You use a Windows 10 passport account (what is it called?) just to log on to “your own” computer and also a Gmail account anyway, right? So bad news is, your privacy is almost zero already.
I’m seeing many people recommend Thunderbird. Let me enlightnen you.
I personally never trust any software that is not secure and private by default. Mozilla Corp is a for-profit corporation that makes nearly a Billion dollars in cooperation with Google monetizing data about your life. Thunderbird is Mozilla and if you setup with the Wizard, it already got the basics about your email life even if you disable it later.
Thunderbird Not Private by Default
https://support.mozilla.org/en-US/kb/thunderbird-telemetry
Disabling Telemetry
Thunderbird Bad Security Practice of using a Primary Password
https://support.mozilla.org/en-US/kb/protect-your-thunderbird-passwords-primary-password
17 Criticial or High Vulnerabilies this year alone
Conclusion
If email security and privacy means a lot to you, or even computer security and privacy, your best options are to use BSD/UNIX/Void/Alpine and Claws-Mail. That is just the way the cookie crumbles in 2023.
Can someone respond to this who is able to reasonably challenge this view(s)?
Honestly I’m glad they highlighted the telemetry. I went through the local report about what’s included and while it’s not an upsetting level of detail, it’s more comprehensive than I would have opted in to if asked.
Still, as sibling points out it’s in a completely different league from slurping up your IMAP creds, something which has always been local-only data. This is the second time I know of recently where MS has trampled on this kind of local-only expectation - the other was Edge defaulting to sending the contents of textboxes you’re filling out on webpages to the MS cloud for spelling and grammar checks. Thunderbird is still a sound recommendation, and unlike Microsoft, I trust that if I uncheck the telemetry box they’re not going to try to get me some other way.
Thunderbird doesn’t passphrase-protect your PGP key. Though you can set a general password… For something less important, its OpenPGP may be convenient, given that if you send/receive email normally, there is metadata problem anyway. But if you need to play it safe, you may want to use gpg offline and paste ascii.
Increasingly more and more “phoning home” is not exactly comfortable, either: thunderbird-settings.thunderbird(.)net location.services.mozilla(.)com addons.thunderbird(.)net versioncheck.addons.thunderbird(.)net services.addons.thunderbird(.)net, etc. Perhaps people today, both users and developers, feel something like this is normal, because things were already more or less like this when they were born.
Re: Micro$oft - It might be that after raped by Google, the society has been desensitized and stopped feeling anything about “minor details.” Why worrying now? You use a Windows 10 passport account (what is it called?) just to log on to “your own” computer and also a Gmail account anyway, right? So bad news is, your privacy is almost zero already.