sir_reginald

I didn't say otherwise. If the focus of the site was user friendliness and moderate privacy, Thunderbird would be the first on the list.

But our privacy standards are higher than that and we avoid software that has telemetry especially when there are other options available.

Okay so I've updated the website based on everyone's feedback. Thanks for your comments!

thank you so much! It's been a fun run to put everything together. There's still a lot to do, but I'm getting closer to the point I want the website to be.

I don't know a lot about private smart whatches since I don't own one, but I'll make a note to take a look at it. I appreciate the feedback.

oh that was added by the previous maintainer. I should probably remove it tbh.

Oh thank you for the information! I'll swap pfsense with opnsense.

Yeah I try to make informed decisions, that's why every recommendation is something I use or I have used, listed I used to have a pfsense firewall for a few years and it worked great for my use case, but yeah, the issues you comment make opnsense a much better option.

oh I know about Cromite, but it's pretty new and I'm waiting to see if the project lasts and if it's well maintained. Mulch has been around for longer so I opted for recommending that for now.

they don't support email clients, just their own. They don't support PGP encryption, just their own and because it's done with JavaScript, no matter if in the web client or their "desktop" client (which is still the web), could be injected with malicious scripts and steal the encryption key and send it to their servers.

Oh and it blocks VPNs and Tor registration:

Thank you! I do research for myself so why don't share it with others.

And you're completely right, sources are needed. I'll try to add them tomorrow to the website, for now, I'll leave some of them here, just in case anyone is interested:

From Thunderbirds Privacy Policy, the most interesting bit is that they share your IP with Amazon:

Thunderbird uses Amazon Web Services (AWS) to host its servers and as a content delivery network. Your device’s IP address is collected as part of AWS’s server logs.

source: https://www.mozilla.org/en-US/privacy/thunderbird/

Thunderbird has had various security flaws in the past, most notably efail. A table noting the email clients affected by this vulnerability:

source: https://efail.de

I'm sure there's more, this is just what I found with some fast searches.

Edit: read here https://privacy.awiki.org/fake-privacy-initiatives/thunderbird.html not as in depth as I would have liked it, but I'll do for now

It is easy to check by yourself by reading their privacy policy and analyzing the automatic connections that Thunderbird makes using Wireshark or mitmproxy.

I can't find any in depth analysis right now, I might have to write it myself. But this page, although a bit outdated, gives some information about it:

https://spyware.neocities.org/articles/thunderbird

Thunderbird has also been vulnerable to a lot of email attacks because it has JavaScript enabled by default. See efail for the most notable one.

The email client that is recommended, Claws Mail, does not make any automatic connection and by default has no HTML renderer which improves security.

Edit: forgot to mention that Thunderbird supports cookies, which IMO are totally unnecessary for a email client and just add another way of tracking the user.

There are already a lot of router firmware options, I considered it, but I thought that pfsense offers almost the same things.

Any feature that makes opnsense preferable over pfsense? I have experience with pfsense only.

thanks! I'm glad someone found it useful.

same here, using Voyager until Eternity gets more developed