we appear to be the first to write up the outrage coherently too. much thanks to the illustrious @self
Right after this I spot the announcement post on my front page, in [email protected]. I’m surprised just how positive the comments are.
Same, tbh. I went on their subreddit expecting a shitstorm but the announcement sits at like 85% upvotes with mostly positive replies.
What kind of bizarro world have I stumbled into?
At least the top-level comments seem to be split.
between that thread’s activity pattern and how hard they tried to fudge the numbers on their own survey to make this feature look popular: boy there’s a lot of stank on this one
but hey here’s some worrying shit straight from the Proton team:
Our business audience was the most interested in a writing assistant, this is why we started gradually rolling it out starting with Business and Visionary plans. We will look into making it available to more users at a later date!
so there’s something utterly fucking obvious for the “it’s only for business users” posters to consider; they’re doing the same frog boiling shit that all LLM fuckheads do.
I’m tempted to crosspost David’s article and my mastodon thread to that community, since Proton hasn’t really replied otherwise, and they seem plenty active there answering softball questions and removing posts. I don’t look forward to the Kagi-level shitstorm in my inbox afterwards though
the thing about this is a “writing assistant” doesn’t have to be integrated into the email product. It could be a product in itself. If the “business audience(?) was the most interested in a writing assistant” you’ve got a fucken great standalone product opportunity on your hands. A Proton-certified LLM writing assistant that is magically better and more secure than anything else out there is not something you coyly slip into the email client and nudge everyone to use.
It doesn’t matter what reasons they have for doing this. Their method of deployment says more than enough to me. They know it’s off-script and they know they want their fucken “audience” to do the marketing for them.
Reddit content is paid/generated content. It is literally part of their commercial offering to customers that they can expertly deceive their users. It is an advertising platform and you use it to try and force a public image.
Honestly I have to recommend against using Proton!
I’ve been unable to access some of my calendars lately, which are essential for my work. It doesn’t even display an error - I’ve just noticed that events are missing. If it was down for a few hours that’d be acceptable, but this isn’t.
I’ve also had numerous issues with their email, the worst being that it has pretended to send emails that it hasn’t, the consequences of which I had to bear. Again no error message.
And I keep hearing about them adding new features I don’t need. How about spending some of that money on proper QA?
Save yourself the headache and find another provider and consider carrying a paper agenda instead. I’d also recommend using different companies for different services, as any issues will only apply to one service. It’s best to have your own domain for your email so it doesn’t depend on anyone.
Apparently I am free next week:
i hate proton because they store ips and give them to the police even if they wouldn’t need to
Rhaa fk, enshitification… I don’t want to host my emails…
Mistral isn’t trained on copy righted data. It’s based off selective databases that were open use. This article in general is full of false information. But I suppose most people only read the headlines.
was this incorrect? https://www.patronus.ai/blog/introducing-copyright-catcher
if you’re not gonna read the fucken thing then fuck off.
I did read the thing, then provided an article explaining why detecting copyrighted material / determining if something is written by AI is very inaccurate.
Perhaps take your own advice to “read the fucken thing” next time instead of making yourself look like an idiot. Though I doubt you’ve ever heard of “better to stay silent and let them think you the fool than to speak and remove all doubt”.
Btw, I even recall that Ars specifically covered the company you linked to in a separate article as well. I’d be glad to provide it once you’ve come to your senses and want to discuss things like an adult.
Mistral’s Mixtral-8x7B-Instruct-v0.1 produced copyrighted content on 22% of the prompts.
did you know that a lesser-known side effect of the infinite monkeys approach is that they will produce whole sections of copyright content abso-dupo-lutely by accident? wild, I know! totes coinkeedink!
I’d be glad to provide it once you’ve come to your senses and want to discuss things like an adult
jesus fucking christ you must be a fucking terrible person to work with
I’ve seen toddlers throw more mature tantrums
she wrote harry potter with an llm, didn’t she?
I’m too old to discuss against bad faith arguments.
Especially with people who won’t read the information I provide them showing their initial information was wrong.
One is a company that has something to sell, the other an article with citations showing why it’s not easy to determine what percentage of a data set is infringing on copyright, or whether exact reproduction via “fishing expedition” prompting is a useful metric to determine if unauthorized copyright was used in training.
The dumbest take though is attacking Mistral of all LLMs, even though it’s on an Apache 2.0 license.
I’ve read the article you’ve posted:. it does not refute the fucking datapoint provided, it literally DOES NOT EVEN MENTION MISTRAL AT ALL.
so all I can tell you is to take your pearlclutching tantrum bullshit and please fuck off already
chatgpt gets it
you’re conflating “detecting ai text” with “detecting an ai trained on copyrighted material”
send the relevant article or shut up
Ignoring the logical inconsistency you just spouted for a moment (can’t tell if it’s written by AI but knows it used copyrighted material? Do you not hear yourself?), you do realize Mistral is released under the Apache 2.0 license, a highly permissive scheme that has no restrictions on use or reproduction beyond attribution, right?
I think it’s clear you’re arguing in bad faith however with no intention of changing your misinformed opinion at this point. Perhaps you’d enjoy an echo chamber like the “fuckai” Lemmy instance.
wait a minute… there’s another “fuck ai” instance and they’ve already told you to go fuck yourself?
I wonder if they want to be friends
holy shit you really are quite dumb. the fuck is wrong with you?
actually don’t answer that
You are quite dumb.
https://huggingface.co/mistralai/Mistral-7B-v0.1/discussions/8#6527a6fca6eaf92e6c26fa59
Unfortunately we’re unable to share details about the training and the datasets (extracted from the open Web) due to the highly competitive nature of the field.
The “open web” is full of copyrighted material.
We had a social contract!
but it’s apache2 sega! tooooootes freebies!
With Skiff going down at the end of the month and Proton gearing up to start data mining, there are very limited options for private email hosting. Basically Tuta and a few others now.
Great, just as I’ve decided to switch some services to Proton (mail and VPN).
Now I’ll have to reconsider this decision.
The fact that you never realized that you should’ve self hosted since all corporations will inevitably follow the money, and that politics will always be tied to money, therefore all corporations will make political decisions against your interests makes me lose hope in common sense.
don’t shame people for not having the capacity to run their own infra, jeez
Why?
because no-one likes a confidently wrong smug prick
(but seriously, “why?” - you really don’t get why? maybe go have a good think on it. on why people might not be in a position to do the thing you suggest them to do. you may become enlightened.)
what are you?
A meat Popsicle.
@BaroqueInMind @cordlesslamp You unironically use words like “windoze” don’t you?
it’s time for you to fuck off back to your self-hosted services that surely aren’t just a stack of constantly broken docker containers running on an old Dell in your closet
but wait, what’s this?
oh you poor fucking baby, you couldn’t figure out how to self-host lemmy! and it’s so easy compared with mail too! so much for common sense!
back to your self-hosted services that surely aren’t just a stack of constantly broken docker containers running on an old Dell in your closet
I feel personally attacked
Hey, it’s on a table in my office and it currently isn’t running shit because that hobby has been de-prioritized until the yard and shed have been dealt with!
the closet Dell hosting your services is a fine system (but do fix those broken docker containers, or see about going native). under no circumstances should it be your mail host, though.
I rescued an office spec HP desktop from a trash heap and upgraded it with second hand components from https://computerstoreberlin.de/?lang=eng. Its running Ubuntu server and I use it as a wordpress dev server and also my yt-dlp machine which dumps the files into a samba share. I’m very proud of it
yeah, you can get quite damn far with something like that. best other advice I can give you is to make sure your provisioning and backups are solid (because something will break sometime), and to keep an eye on power draw
not everything needs to be 902834098234 cores and distributed systems shit
the backups is good advice. I need to put in a second drive and work out how to make it keep a backup. I’m learning all that as I go.
As for power draw, I only turn it on when I need it and it’s not connected to a display - just ssh-ing into it, so hopefully not wasting too much juice.
ur not my reel dad! [launches cyrus+qmail on a pi]
*looks at collection of automation and infrastructure for personal and business services, built with going on 20y of knowledge*boy it sure is easy to diyolo some qemu vms myself and not have to pay aws! I’m going to tell everyone else they’re doing it wrong!!!(I mean, it legitimately is fairly easy to do a lot of this, but gotta grok the shit and not having the grok is ofc alllll up in aws’ product suite)
they go to react conferences, too
they go to re:invent or whatever the one is where Amazon replaces your brain with a cloud, and they’re pretty sure Amplify is self-hosting because the guy with the headset on stage might have screamed it at them
have any of your coworkers come back from re:invent with the all of the symptoms of severe head trauma? you may be entitled to compensation
you may be entitled to promotion
the usefulness of any feature should be measured in how deep you can bury its “opt-in” option in the settings pages without hurting its adoption
tbf it’s only in the business plans and some of the legacy lifer type plans, but yeah, wildin
just a little violation of my trust for the company I pay for privacy and encryption services. as a treat.
Well, I was contemplating Protonmail…
I’m in the process of degoogling and dewindowing. I’ll be dammed if I’m going towards ANYthing even related to"artificial intelligence" if I can help it.
Feckin bullshit.
I’m pretty happy with Tutanota all things considered. There are some tradeoffs back and forth between the two, but I think it’s neat they run on renewable energy. And they’re very focussed on being open source which I also appreciate.
Maybe an option worth looking into. They’re also encrypted (though I wish either them or proton had an option not to be) and have a free tier)
Hope you find what you’re looking for!
Thanks
I’ve been using Mailbox.org. I tried Tutanota but the domain name was just awful.
Well it is just tuta now so there is that
I recommend you get your own domain, then you can’t ever lose your email.
sure. because domains can be bought, not only temporarily leased.
Not sure why that’s relevant. There are domains that have been in use by the same owner for 39 years now.
That’s longer than anything I’ve ever owned.so what happens with the domain when the owner dies?
I don’t know anyone who has “lost” a domain (besides incompetence). You can be pedantic if you like, but domain ownership allows you to transfer everything to wherever and no one in a realistic example can take it away from you.
sure. tell that to people who used the .af domains; or learn more about shenanigans with the various oceanian TLDs, or who owns the .io domain, and why.
the fact is that you don’t own the domain name, and it’s always one missed card payment (or registrar changing hands and losing your card data) from being lost, and then your best chance is arbitrage.
it’s one of these things that you have to understand when you start self-hosting anything.
or registrar changing hands
or registrar “forgetting” renewal settings… conveniently soon after they introduced new at-checkout products
you’ve never heard of a single example of anyone losing a domain due to legal maneuvering, trusting the wrong TLD (ie a bunch of lgbt folks losing their domains when the TLD’s administrating country decided not to give them service), or a plain ol registrar fuckup?
you’re far too inexperienced to be opining on self-hosting email, then
It’s not even in the consumer version. Also it’s a optional local LLM running in your browser for basic stuff
though to be honest, the fact that you think this is local-only and only affects business accounts perfectly demonstrates how fucking dangerous Proton’s marketing and design around this feature is
I’ll mention I went to Fastmail (mainly because they’re an Aus company as well as the privacy stuff), so far so good.
fastmail is viciously anti union however https://union.place/@fastmailunited/112672408714595554
ah fuck I wasn’t aware of this, thanks for mentioning
off the list they go
I ended up settling on Infomaniak’s kSuite after looking around. They’re a mid-sized registrar and hosting company.
They’re partially employee owned (and I believe in the process of becoming fully owned by employees). I’ll grant their privacy policy is just standard EU/Swiss boilerplate, though (stuff like no sharing your data, etc., that you always find in EU paid services like this). GDPR compliance was all I was looking for.
The web client looks nice and kDrive is affordably priced if you need a Google docs/photos/drive alternative.
Edits: clarity and me refreshing my memory on their privacy policy
Was hesitating between Proton and Ksuite.
I was already pouting toward them, but you finished to convince me to go to Infomaniak, thanks!
I’ve been using them for my domain and email for almost a year now and I have no complaints. I had to talk to customer support twice to fix a couple things that came up and they got back to me right away. Can’t say the same for the last service I used lol
I think it’s fair to point out they’re not designed around encryption like proton is. It’s not a factor in my threat model because I treat email as non-private communication, but it’s something you should know if you’re wanting proton for that reason.
kDrive is a heavily customized Nextcloud/OnlyOffice implementation with a pretty new and well-regarded file sync algorithm they implemented last year. I would recommend cryptomator to client side encrypt anything you want to protect. It’s at rest encrypted, but not end-to-end because there’s nothing client side.Here’s a list of WebDAV urls from the Cryptomator community to help you set it up. KDrive is on there.
Anyway, hope it works out for you!
It’s mostly for private/family matters so that seems perfect for my need.
Thanks a lot for taking the time to explain like you did, really appreciate it :)
Yeah I saw that, pretty shitty. I also didn’t even realise they had a US decision, given how they tout themselves as an Australian company.
The good news is I barely use Protonmail (or email at all, for that matter).
The bad news is I have a fucking Proton account. Fuck.
they’re still least worst, but “oh the fuck no” is the correct reaction
Glad I stuck with mailbox.org.
Removed by mod
It’s encrypted and based out of Germany (so, outside of five eyes). The ui is shit but if you use an app for email it’s great. They also offer anonymous payment methods if you’re into that.
they’re not end-to-end encrypted; their security model involves giving their server both your GPG private key and its passphrase, which makes your inbox and other data trivially able to be subpoenaed by German authorities.
I don’t think this is a replacement for Proton or Tutanota at all.
Removed by mod
Eamonn Maguire, author of the Proton Scribe announcement post, responded to my tweet with this: https://x.com/EamonnMagu14645/status/1814062340863651965
not sure how legit that account is, actually. It’s not the one I @'ed - this one was created in Jan 2024 - either it’s his low-key alt or a bot
perhaps his plausible deniability account.
do you get banned from twitter if you call him a fucking asshole?
I’m working on a more detailed reply on mastodon but to be honest, I’m pretty sure he didn’t read the original post
it all stinks so much. He calls it “opt-in” but the official description of that opt-in is:
If you try to use Proton Scribe, you will be prompted to chose between local and server-side. So, technically, it’s not active until you decide how, and if, you want to use it.
as you can see here: https://mastodon.social/@protonprivacy/112807462045101580
there is opt-in and then there is dangling an expired hotdog
holy fuck that’s worse than I thought
so going back to not being able to recommend Proton to anyone again: there’s now a button (and associated “tutorial” advertising modals trying to get the user to click the button, don’t pretend there won’t be) that when clicked gives the user a confusing choice between an option that might not work and one that exfiltrates their data and claims it doesn’t (if they even get this choice on a computer that doesn’t support the local LLM), and if they interact with that it just opts them into the feature in a state that may or may not (but by default does) expose the plaintext of their messages to Proton’s servers
and I’m supposed to recommend this horseshit to non-technical users? what’s that sound like, I wonder? “oh it’s a great privacy-oriented mail service you should pay for — but not for your business because you might fuck up and exfiltrate your data, and also there’s a chance they’ll enable the same feature for regular users at some unspecified time in the future so look out for that. oh and don’t get visionary either.” yeah fuck that
Once they activate the acausality module, you can write those responses before they even send the initial email!
Alright Eschaton
Most email providers already have this feature it’s called automatic out-of-office reply.
