Likely the DDoS attack on ProtonMail was orchestrated to follow with an offer of generous "help" it could not refuse, necessarily a re-route of all traffic through third-party "anti-DDoS" systems. Now the "Switzerland" based privacy firm is proxied by an Israeli firm for traffic analysis, network exploitation of users, cryptographic monkeying. Israeli expertise in the latter is unmatched. Classic gov-mil cyber op with great PR happy ending for exploited asset. Users of ProtonMail must not fret; they got lucky with this fumble. Don't trust this security faker; don't trust the next one.
https://cryptome.org/2015/11/protonmail-ddos.htm
>>51309379
waiting for what protonmail has to say on this.
ANOTHER SHOAH!
Interesting if true
Fucking kikes I swear.
>>51309379
>generous "help"
they collected more than $50k
it's a service they are paying. I am expecting them to have something locally and not outsourced.
>>51309554
It's not hard to crosscheck what's written there.
Nothing to worry about, guys. Protonmail is still save!
>>51309379
whatever
>>51309553
>>51309576
>>51309679
/pol/ is that way >>
>>51309578
$50,000 is not a lot of money when hosting a large online system.
>>51310085
>>51310097
Jidf has arrived.
What took so long?
>>51310146
JIDF my ass. Seriously if I want your shit - which happens from time to time - i go to /pol/ or /b/. I come here for all my geeking needs. Now shush.
![2000px-Cloud_computing.svg[1].png](https://i.imgur.com/1F8z5Pq.png "2000px-Cloud_computing.svg[1].png")
>>51309379
This is why I will never take anybody seriously for think storing their data in DA CLOUD is a good idea. Especially in this day military/industrial espionage, and sabotage.
Not having full control of the data that you own is the stupidest you could do in this day and age.
>>51310199
>>51310097
>article literally talks about Israeli Defense Force.
>ZOMG DONT TALK BAD ABOUT GODS CHOSEN PEOPLE GOY!
>>>/mu/h6billion
>>51309379
>>51309554
>'only' encrypted traffic
>>51309379
>working on an encrypted messenger
>all this proto telegram hate lately
and here i thought it was going to be hard to sell a new service
>>51310304
So basically their service is pointless now.
Bravo.
>>51309379
> is proxied
Hold the fuck on.
So its over isn't it.
God fucking dammit
Why would they just sell out like this? The only people interested in encrypted mail service are going to demand more than having traffic routed through proxy for easy MITM attack. It sounds like a good way to go out of business desu. It would have been a better outcome if they just held on getting DoS'd for weeks, and not giving up or compromising their service's privacy in any way.
I guess Tutanota is next :^)
>>51310097
BUTTBLASTED
>>51309379
I'm sure the jews will enjoy those endless streams of unintelligible crypted data
Wow that was fast. I just got my two accounts opened with them two weeks ago.
Fuck.
What do we use now?
>>51309379
So am I missing something? Protonmail uses two passwords, one that retrieves your account then one you enter to decrypt your inbox (locally). So all that's passing through this Israeli firm is encrypted data.
That or I'm retarded
>>51311196
yes
>>51311208
Then please enlighten me
>>51311208
then how can they decrypt it?
>>51311234
>>51311316
You can only decrypt with your second password
>>51309379
So they are seeing encrypted traffic, so what are they going to do with that other than save it for no reason.
>>51311363
Yeah, so isn't proton mail still safe then? Proxy or not they just see a stream of encrypted data
>>51311545
still safe. but now much much easier to do metadata collection and correlation attack.
>>51309588
What IP address/domain? The article does not mention it.
mail.protonmail.ch contents are served by Limelight Networks CDN but I can't find any Israeli CDN (not that Limelight Networks is any better).
>>51309379
Fuck you and fuck your FUD!
>>51309379
>privacy firm is proxied by an Israeli firm for traffic analysis,
Fucking jews. Nice shilling btw
Good luck with cracking, Jews.
>>51309422
They just replied since people kept asking.
>A lot of mis-information about this, with people seemingly not understanding how BGP redirection and GRE tunnels work. All traffic that passes through Radware is encrypted. Both encryption layers (SSL and ProtonMail's OpenPGPjs) are intact in this solution. That's why we picked BGP redirection instead of something like Cloudflare where we would have to turn over SSL keys.
So Radware has access to no new information that your ISP wouldn't already have since they just see the encrypted packets
>>51316970
Thats wishful thinking.
There is a reason why they offered a way out.
>>51317114
If the data passes through this proxy still encrypted over SSL and encrypted with PGP it should be easy to actually prove it. So please explain, beyond metadata what could they be doing. The only thing they could be gathering
is limited to "this guy is sending/recieving email", they might even be able to see a message go up and come back, but the contents of the messages are safe. Not ideal but many times better than gmail, hotmail, and any other email service used by 99.99% of people.
>>51317228
you might as well pgp encrypt your mail and use gmail, if that's the case.
