🆕 Software Suggestion | p≡p

[acytious]

Basic Information

Name: p≡p Category: Mailclient for iOS (and other) URL: https://www.pep.security/en/ios/ Privacy Policy https://www.pep.security/en/privacy-policy/ Code owned by https://pep.foundation/

Description

Why I am making the suggestion:

I looked for an alternative Mail Client for iOS and on the privacytools website i only found Canary Mail. Its closed source and expensive if you want your entire family to switch. So canary wasn't for me. Someone with more experience could look at pep and decide if its good for iOS. Well, I'm pretty new to the privacy world, so im not able to check the software for myself. All I could do was look at the website and trust their words. But open source and based in swiss, encryption all that made me download the app.

My connection with the software

No, I don't know the author nor anyone on the team. - [x] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.

[timjamello]

Having two closed-source recommendations for iOS Mail Clients seems like a bit much.

[bcye]

If another suggestion adds value, I don't see why I it shouldn't be added.

[acytious]

@timjamello I don't undersand? Canary Mail is closed source and its recomendet at privacytools - p≡p on the other hand isn't in the recommendations and it's open source and code-audit are here: https://pep.foundation/docs/code-audits/ https://pep.software/media/uploads/formal_security_analysis_of_pep_by_unilux.pdf

So so for my testing p≡p felt short features, Canary has much more the Apple Mail feeling but p≡p is open source, encrypted and swiss based and for my understanding the privacy policy is accapteble.

I don't know i might communicated it wrong, but you can read everything on their website. So i don't understand the argument: "Having two closed-source recommendations for iOS Mail Clients seems like a bit much."

[freddy-m]

Canary Mail is closed source and its recomendet at privacytools

I am the member responsible the new email clients section, and we only added it because it had PGP, and there were no better options.

p≡p on the other hand isn't in the recommendations and it's open source and code-audit[s have been performed]

This is good to hear, and something we look for in any software. However, we would need to research it a little more before adding it.

[louis-lau]

Source code is here by the way: https://pep-security.ch/dev/repos/pEp_for_iOS/

They also have an Android client, which is a fork of K9 I think. May be worth a mention as well, as it looks nicer than K9.

[freddy-m]

We will compare the features of the two applications before removing Canary in favor of p≡p.

[ghost]

It seems to me that there is no push notification (and therefore no sound notification too), furthermore new mails cannot be fetch automatically (must be manually), so meaning of installing on iPhone/iPad becomes questionable. Source: https://pep.community/t/push-nicht-verfugbar/65/

[Inrumpo]

They say that it's a privacy feature to not offer push notifications: They do not run a server in the background to check if you got new mail. They do not collect this kind of user data.

This is not very convenient, but shouldn't rule it out as a recommendation for privacy focused users.

[louis-lau]

And they're right. Any third party email app on iOS that offers instant push notifications, is saving your credentials on their servers and accessing your inbox from those servers. The fact that instant push is not offered, is a good thing in the context of privacy.

Because of iOSes battery management, they can only check whenever iOS decides they can. From what I read in that thread, they're already doing that.

So yes, that shouldn't rule it out. In fact it should do the opposite of ruling it out.

[ghost]

Session already has non Apple push notification but they are planning better, see roadmap of Session: https://oxen.io/img/session-x.jpg Source: https://oxen.io/roadmap

[louis-lau]

I am not sure how that would apply to an email client.