• bbbhltz@beehaw.orgOP
      link
      fedilink
      arrow-up
      27
      ·
      1 year ago

      There are no perfect desktop email clients, but Thunderbird is pretty great.

      It’s a little too powerful for my needs, so I stick to Claws.

      • Pete Hahnloser@beehaw.org
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        I moved away from a desktop client for several years because of Thunderbird staying stuck in the 2010s, but the redesign brought me back into the fold. It’s certainly overkill for scanning through subject lines, but compared to having five tabs open …

          • dan@upvote.au
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            Mailspring doesn’t handle folders well. When I was testing it, it synced my inbox fine, but none of the folders worked. I even set up a dev environment to try and fix it myself, but couldn’t get things working properly.

        • jcarax@beehaw.org
          link
          fedilink
          arrow-up
          3
          ·
          1 year ago

          Correct me if I’m wrong, I very well might be, but doesn’t Bluemail do the same thing as the new Outlook for their “instant push” feature? I don’t see how else they’d accomplish that.

      • bitwolf@lemmy.one
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Ain’t that the truth.

        Geary is so close to perfect but they depend on Gnome Online accounts which doesn’t support O365 so I can use it for everything but my university email.

    • k_rol
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      I must say I’m quite pleased with it too. The previous time I tried it was in 2005 and it was just ok. I also recently found out about the Owl add-on. Really makes it a good alternative

  • nem@sopuli.xyz
    link
    fedilink
    arrow-up
    57
    ·
    1 year ago

    What a clickbaity article. I’m all for exposing bad stuff but this article presents zero proof of it transferring passwords. It also fails to highlight the manner of how data voluntarily synced to MS is handled. All in all it doesn’t do anything but trying to steer users to it’s own services.

    • DeltaTangoLima@reddrefuge.com
      link
      fedilink
      English
      arrow-up
      18
      ·
      1 year ago

      I know, right? Jesus I hate bullshit tech “reporting” like this. This particular comment just smacks of outrage “journalism”:

      Microsoft gets full access to mails, calendars and contacts!

      • jcarax@beehaw.org
        link
        fedilink
        arrow-up
        26
        ·
        1 year ago

        To be fair, they aren’t journalists. They’re a privacy-centric mail provider that is warning their customers.

    • kbal@fedia.io
      link
      fedilink
      arrow-up
      11
      ·
      1 year ago

      It is very easy to find other sources making the same claim, such as this one which includes an image of allegedly posted json including passwords.

        • kbal@fedia.io
          link
          fedilink
          arrow-up
          10
          ·
          1 year ago

          Nice timing. I don’t see how warning you that your email passwords will be kept remotely by Microsoft would be “redundant.” Many people will assume from that message that it would only send them all your mail, and the even more carelessly optimistic among us might guess that it would be end-to-end encrypted as it obviously should be.

          • nem@sopuli.xyz
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            It is end to end encrypted as the data is sent through a tls tunnel. And well, they could spell it out sure. But if that was the only thing the article was complaining about then there wouldn’t be many clicks ;)

            • kbal@fedia.io
              link
              fedilink
              arrow-up
              4
              ·
              edit-2
              1 year ago

              That is not what “end-to-end” means in this context. In fact, finding out yesterday that Outlook sync is not end-to-end encypted prompted me to look up OneDrive to see if it at least has that feature. It does not, and someone who doesn’t know a thing or two about how cryptography works would have a hard time finding out that it does not, because the search results are polluted with people misunderstanding the concept exactly as you do.

              Microsoft’s own web site goes to great lengths to explain how all your data is encrypted in transit, and encrypted at rest. Their internal security and access control systems are elaborated on in impressive style. You’d think that if they’re going to go to all that trouble, and want people to trust them, they would indeed provide end-to-end encryption where it’s appropriate. But no, they carefully avoid mentioning the concept. They are unwilling to acknowledge that it might be a thing people expect these days, but they do not go out of their way to correct people who imagine that they already have it.

              • nem@sopuli.xyz
                link
                fedilink
                arrow-up
                1
                ·
                1 year ago

                Could you elaborate on what I misunderstood so I can learn please? They claim tls encrypted tunnel, which is an end-to-end encryption isnt it? Do you mean that the data itself is not encrypted? What is the significance of this compared to a tls tunnel? If it somehow got mitm attacked they could snoop the unencrypted data?

                I seriously curious so please explain.

    • 𝒎𝒂𝒏𝒊𝒆𝒍@lemmy.ml
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      As for third party accounts you can only select IMAP, no pop3, sand it warns you’d be logged in thorough Microsoft servers, they don’t even try to hide it

    • sadreality@kbin.social
      link
      fedilink
      arrow-up
      9
      ·
      edit-2
      1 year ago

      Best decision of my life… After initial set up, it works better than microshit whore OS. You pay but it does not love you.

      • Bloodyhog@lemm.ee
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        What an analogy! Summarises my experience with Win vs linux. Still on “early dates” with linux, but it does get better and better, while MS seemingly deliberately tries to alienate me with every new update. Won’t be a returning customer!

    • dan@upvote.au
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Outlook has nothing to do with the OS though? You can get the same Outlook app on MacOS too.

    • aes@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      I went on a trawl on email security and privacy.

      It doesn’t fucking exist.

      Regular mails w/e sure

      But I’m never talking to someone via email again.

    • jcarax@beehaw.org
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      1 year ago

      Agreed, but unfortunately, unless they implement VJOURNAL in their caldav implementation, I’ll probably switch to Fastmail when my prepay is up.

      • Laser@feddit.de
        link
        fedilink
        arrow-up
        4
        ·
        1 year ago

        Fastmail is a great provider, very happy customers, but with them being in a five eyes country, I don’t trust them. But it’s only email which is a nightmare protocol regarding privacy anyways so I don’t really care.

    • dan@upvote.au
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Privacy-focused email doesn’t truly exist, since it’s likely 90%+ of people you email are probably using Gmail, Hotmail/Outlook, or Yahoo. Companies like Gmail/Google could still build a profile of you if they wanted to, by collecting all the threads you’re a participant in.

      The best you can do is self-host your mailbox (e.g. Using Mailcow) with an encrypted file system (e.g. using LUKS), but you’d still need to use an SMTP gateway to ensure deliverability, so it’s going to be relayed through, and ultimately end up at, some third-party you have no control over. Some third-parties don’t even have TLS enabled for their email servers.

      You shouldn’t think of email as a private or secure communication mechanism unless you’re encrypting your emails.

  • yojimbo@sopuli.xyz
    link
    fedilink
    arrow-up
    17
    ·
    1 year ago

    I don’t know about sharing passwords, but I know that if you have an Exchange server on premises (meaning you have mailserver on your own infrastructure maybe somewhere in the building) because you don’t want to have your data in the cloud - Outlook for mobile (both iOS and Android versions) has been sending all your data through M$ servers anyway, don’t know for how long - quick search returned a 3 year old reference - imo much longer. There are “benefits” that I may be too dumb to understand:

    On iOS you can go around and use the default “Mail.app”. On Android I haven’t found a good app that would work with EWS - I’m using K-9 over IMAP which isn’t great.

    • IndefiniteBen@leminal.space
      link
      fedilink
      arrow-up
      4
      ·
      1 year ago

      Have you tried Nine mail? https://www.9folders.com/en/index.html

      It costs some money to continue using it/unlock all features, but that’s a one time fee (assuming that it hasn’t changed).

      I can’t use it anymore as IT has disabled all support for 3rd party mail apps. Was the best exchange mail app I ever found (it actually supports the categories using which I’ve organised my mail).

      I (and my colleagues on iOS) have no choice but to use outlook mobile as the Apple mail app and everything else is blocked due to GDPR.

      • yojimbo@sopuli.xyz
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Thank you for this. I’ve been testing the Nine app for a week now and I am sold 👍 Some users do complain that the app “isn’t as good as it used to be” - but luckily for me I don’t know - and it’s the best one I’ve seen anyway.

    • dan@upvote.au
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      On Android I haven’t found a good app that would work with EWS - I’m using K-9 over IMAP which isn’t great.

      On Android, I use FairEmail which is a fantastic open-source app. However, it doesn’t support any proprietary Microsoft stuff. For my work email, I use Nine, which works well.

  • utg@mander.xyz
    link
    fedilink
    arrow-up
    10
    ·
    1 year ago

    The old outlook was just perfect, the new one is positively abhorrent. I swear if they force one more app to me I’m going to purposefully stop using it altogether

  • ram@feddit.nl
    link
    fedilink
    arrow-up
    6
    ·
    1 year ago

    I don’t see how this is any different from adding another e-mail account on gmail.

    • redcalcium@lemmy.institute
      link
      fedilink
      arrow-up
      13
      ·
      edit-2
      1 year ago

      The program it replaced didn’t do this, hence the surprise. You could be using the old program, and one day windows update it with this new program, and suddenly your passwords are uploaded to Microsoft cloud service when you launched it. People would similarly surprised if K-9 mail upcoming replacement, Thunderbird mobile, suddenly store your password in the cloud.

      • rgb3x3@beehaw.org
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Why is someone using Outlook to sync a different email address?

        Why not keep the apps separate? Or use the Mail app built into Windows?

        Seriously, someone explain the use case here because I don’t understand. If you’re using an outlook account, MS already has all that stuff. And if you don’t have an Outlook account, why are you using Outlook?

        • dan@upvote.au
          link
          fedilink
          arrow-up
          5
          ·
          1 year ago

          Why is someone using Outlook to sync a different email address?

          Outlook is an email client. It can work with any email provider. The fact that they started calling the server-side “Outlook” as well has made things super confusing.

        • redcalcium@lemmy.institute
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Or use the Mail app built into Windows?

          So the gist is the default mail app is being “upgraded” by Microsoft to Outlook for Windows app, so your account credentials previously stored in the mail app now got uploaded into the cloud.

  • Meganium97@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    1 year ago

    | Creates account with service provider

    | Surprised when megically, service provider has password

    I don’t get it.

    • bbbhltz@beehaw.orgOP
      link
      fedilink
      arrow-up
      17
      ·
      1 year ago

      Using the Outlook client with a none-Outlook email shares the data with Microsoft. So, a bit surprising.

    • ѕєχυαℓ ρσℓутσρє@lemmy.sdf.org
      link
      fedilink
      arrow-up
      8
      ·
      edit-2
      1 year ago

      Service providers aren’t actually supposed to know your password. Passwords should always be sent after hashing on client side. Only the hashes are matched on server side.

      Edit: Not accurate, read replies.

      • voxel@sopuli.xyz
        link
        fedilink
        arrow-up
        8
        ·
        1 year ago

        nope hashing is usually done server-side.
        also counter-intuitively server-side hashing is considered more secure than client side (in case of client side hashing hash becomes the password)

        • I’m not an expert in this, and I did look around after reading your comment. Looks like the password is usually sent as-is, then hashed server side, and matched against hashes in the database. So, the hashes are what’s stored in their database. So, ideally, the server shouldn’t know your password. Also, it can be hashed from client side too, but that becomes redundant since everything is tls encrypted anyway.

      • jcarax@beehaw.org
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        They block countries that originate a lot of spam from signup, which includes the US @[email protected]. You can use a VPN to signup, though I did have to reach out to support at one point very early on to finalize some provisioning. I don’t know if it was related to the geo-blocking, it’s been awhile. But I’ve had no problems since.

      • smokedclover@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        “We apologize, but for maintenance work the registration of new accounts is currently blocked. Please check back later.” But it still says that so there probably is some maintenance going (wr)on(g).

  • Cyborganism
    link
    fedilink
    arrow-up
    4
    ·
    1 year ago

    Aw fuck. I accidentally opened it and it automatically upgraded to the new one. I barely ever use it though

        • dan@upvote.au
          link
          fedilink
          arrow-up
          2
          ·
          edit-2
          1 year ago

          Because this post is about the Outlook client. Using a different client avoids ‘features’ in the Outlook client.

          Microsoft have made things super confusing by using “Outlook” to refer to both the client and the server, when they’re separate things. The client works with any email provider, and Hotmail / Outlook / Office 365 / whatever email accounts can be used with most clients.