It would be trivial for protonmail to modify their webclient to send the seed to their servers, even on an ad-hoc basis, so unless you check every time, there is the risk you are transmitting your seed over the internet. Proton does accept Bitcoin (not any shitcoins) payments for their pro features so it's no surprise they have some bitcoiners in their team. I don't know how safe that is because proton is probably holding the same recovery words, and I can't find more explanation about this. This is very cool and it means that you could use your email address and your bitcoin wallet addresses derived from the same BIP39 words.
Then I went to see the source code and surprisingly enough they seem to have adopted the bitcoin proposal to encode their entropy (for recovering email). So I got curious and checked the words and surprisingly they are all in BIP39 list and the checksum is valid. There appears to be a new option to create a recovery phrase in your Proton-Mail that will give you 12 words to write down.
0 kommentar(er)
