The list on dismail.de is partially outdated, and – more importantly – it is a list of arbitrary security features without any in-depth explanation on why all of these features are essential and how they protect the end user. Some of the features only apply when you access web servers; others only apply when you access mail servers. Then, features like CAA do not directly protect end users. We wrote about limitations of the online assessment tools they used, so an “A+” vs. a “B” doesn’t really mean that something is more or less secure.
Besides, Dismail is on the list. So, Dismail defined criteria to rate mail server providers and itself. Is this reliable or just self-marketing?
Regarding politics in general:
It is really hard to reliably check whether somebody is left or right. We saw this with the messenger Session. Another question is: Does everybody have to check the political background of people when talking about products or services they provide? If yes, then shouldn’t this include the complete supply chain? What about a recommended project made by “good” people, but they use a software library created by alleged “nazis”?
The endless spiral continues when people demand that we check if all creators of a project are vegans (to protect animals), do not own a car (to protect the environment), and donate money to people (for a good cause). Then, what about accessibility of services or the usability experience for average users? There is an endless list of things that could be checked, but this doesn’t mean that we can check this or must check this.