det.social

Adrian Offermanop SIDN.nl: Vier moderne mail-systemen voor self-hosting -- Beveiligingsstandaarden voor mail universeel ondersteund <a href="https://www.sidn.nl/nieuws-en-blogs/vier-moderne-mailsystemen-voor-self-hosting" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.sidn.nl/nieuws-en-blogs/vier-moderne-mailsystemen-voor-self-hosting</a>Inmiddels zijn er meerdere software-pakketten beschikbaar die én alle beveiligingsstandaarden out-of-the-box ondersteunen én makkelijk op te zetten zijn. In dit artikel bespreken we vier moderne open-source mail-pakketten voor self-hosting: <a href="https://mastodon.offerman.com/tags/Mox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mox</a>, <a href="https://mastodon.offerman.com/tags/Chasquid" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chasquid</a>, <a href="https://mastodon.offerman.com/tags/Stalwart" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Stalwart</a> en <a href="https://mastodon.offerman.com/tags/Maddy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Maddy</a>.<a href="https://mastodon.offerman.com/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://mastodon.offerman.com/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.offerman.com/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.offerman.com/tags/DANE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DANE</a> <a href="https://mastodon.offerman.com/tags/STARTTLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#STARTTLS</a> <a href="https://mastodon.offerman.com/tags/MTA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MTA</a>-STS <a href="https://mastodon.offerman.com/tags/InternetSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InternetSecurity</a><a href="https://mastodon.social/@stalwartlabs" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@stalwartlabs</a>

EMDiscussions<a href="https://social.stefanberger.net/@stefan" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@stefan</a> The easiest way I know to check an XML report:<a href="https://us.dmarcian.com/xml-to-human-converter/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://us.dmarcian.com/xml-to-human-converter/</a><a href="https://mastodon.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://mastodon.social/tags/dmarc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dmarc</a> <a href="https://mastodon.social/tags/dkim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dkim</a> <a href="https://mastodon.social/tags/spf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spf</a>

Stefan :veritrek:Interesting. Got my first <a href="https://social.stefanberger.net/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> report today.. from Google. Never got something like this before. Think it’s related to my changed DNS settings when I switched to <a href="https://social.mailbox.org/@mailbox_org" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mailbox_org</a>Looks good I guess with all the *pass* for DKIM and SPF. There is a link in the xml to this URL <a href="https://support.google.com/a/answer/2466580" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://support.google.com/a/answer/2466580</a>Will check how to read to xml..

The New Oil<a href="https://mastodon.thenewoil.org/tags/Phishers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Phishers</a> abuse <a href="https://mastodon.thenewoil.org/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://mastodon.thenewoil.org/tags/OAuth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OAuth</a> to spoof Google in <a href="https://mastodon.thenewoil.org/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> replay attack<a href="https://www.bleepingcomputer.com/news/security/phishers-abuse-google-oauth-to-spoof-google-in-dkim-replay-attack/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/phishers-abuse-google-oauth-to-spoof-google-in-dkim-replay-attack/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Efani⚠️ Phishers have found a clever way to spoof Google — and their emails pass all security checks.A new DKIM replay phishing attack abuses Google’s own OAuth infrastructure to send fake messages that look 100% legitimate, including passing DKIM authentication.What happened: - A phishing email was sent from “no-reply@google.com” - It appeared in the user’s inbox alongside real Google security alerts - The message linked to a fake support portal hosted on sites[dot]google[dot]com — a Google-owned domain - The attacker used Google OAuth to trigger a real security alert to their inbox, then forwarded it to victims Why this matters: - DKIM only verifies the headers, not the envelope — allowing this spoof to work - The phishing site was nearly indistinguishable from Google’s actual login portal - Because the message was signed by Google and hosted on a Google domain, it bypassed most users’ suspicions - Similar tricks have been used with PayPal and other platforms, raising broader concerns Google has since acknowledged the issue and is working on a fix. But this attack is a reminder:Even the most secure-looking emails can be fraudulent. Even Google-signed emails can be weaponized.🛡️ At <a href="https://infosec.exchange/@Efani" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@Efani</a>, we advocate for layered defense — because no one layer is ever enough.<a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/Phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Phishing</a> <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://infosec.exchange/tags/OAuth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OAuth</a> <a href="https://infosec.exchange/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://infosec.exchange/tags/EmailSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EmailSecurity</a> <a href="https://infosec.exchange/tags/EfaniSecure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EfaniSecure</a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatIntel</a>

The DefendOps DiariesImagine getting a Google alert that's anything but real. Hackers are reusing DKIM-signed emails via Google OAuth to bypass security—are our inboxes truly safe? Read on to uncover how this crafty loophole is exploited.<a href="https://thedefendopsdiaries.com/exploiting-google-oauth-the-dkim-replay-attack-threat/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thedefendopsdiaries.com/exploiting-google-oauth-the-dkim-replay-attack-threat/</a><a href="https://infosec.exchange/tags/dkim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dkim</a> <a href="https://infosec.exchange/tags/emailsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#emailsecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/googleoauth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#googleoauth</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

John Goerzen<a href="https://mastodon.social/@jeremiah_" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jeremiah_</a> <a href="https://social.sdf.org/@elb" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@elb</a> <a href="https://floss.social/tags/NNCPNET" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NNCPNET</a>, the new <a href="https://floss.social/tags/NNCP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NNCP</a>-based email network, now has a bidirectional, opt-in, Internet <a href="https://floss.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> bridge! <a href="https://salsa.debian.org/jgoerzen/docker-nncpnet-mailnode/-/wikis/bridge/intro" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://salsa.debian.org/jgoerzen/docker-nncpnet-mailnode/-/wikis/bridge/intro</a>This gates Internet email to/from NNCP. The bridge is off by default. It is a full participant in <a href="https://floss.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a>, <a href="https://floss.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a>, <a href="https://floss.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>, and <a href="https://floss.social/tags/TLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TLS</a> in both directions.Yes, now you can get Internet email straight to your <a href="https://floss.social/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RaspberryPi</a> ! (And even without this, your Pis can email each other!)

Erik van Straten<a href="https://troet.cafe/@patrickbenkoetter" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@patrickbenkoetter</a> : SPF, DKIM und DMARC funktionieren nicht.Impersonitation ist zu einfach und zu viel wird kaputt gemacht.<a href="https://infosec.exchange/tags/Impersonation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Impersonation</a> <a href="https://infosec.exchange/tags/Spam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Spam</a> <a href="https://infosec.exchange/tags/SpamBox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SpamBox</a> <a href="https://infosec.exchange/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://infosec.exchange/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://infosec.exchange/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>

Jan SchaumannSystem AdministrationWeek 8, The Simple Mail Transfer Protocol, Part IIIIn this video, we look at ways to combat Spam. In the process, we learn about email headers, the Sender Policy Framework (<a href="https://mstdn.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a>), DomainKeys Identified Mail (<a href="https://mstdn.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a>), and Domain-based Message Authentication, Reporting and Conformance (<a href="https://mstdn.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>). <a href="https://mstdn.social/tags/SMTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SMTP</a> doesn't seem quite so simple any more...<a href="https://youtu.be/KwCmv3GHGfc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://youtu.be/KwCmv3GHGfc</a><a href="https://mstdn.social/tags/SysAdmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SysAdmin</a> <a href="https://mstdn.social/tags/SRE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SRE</a> <a href="https://mstdn.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevOps</a>

lAt least <a href="https://fosstodon.org/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> is an authentication mechanism designed to prevent email address spoofing, i.e. using a domain that you don't own in the From field that you send. It is not designed to prevent spam and it is clear from the specification that authors are aware of it: <a href="https://www.rfc-editor.org/rfc/rfc6376#section-8.6" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.rfc-editor.org/rfc/rfc6376#section-8.6</a>

N-gated Hacker NewsWow, who knew <a href="https://mastodon.social/tags/spammers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spammers</a> were the real email security ninjas? 🤦‍♂️ Apparently, their <a href="https://mastodon.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a>, <a href="https://mastodon.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a>, and <a href="https://mastodon.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> game is on point, while the rest of us are still trying to figure out why we can't open <a href="https://mastodon.social/tags/Mastodon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mastodon</a> without JavaScript. 🐢💻 <a href="https://toad.social/@grumpybozo/114213600922816869" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://toad.social/@grumpybozo/114213600922816869</a> <a href="https://mastodon.social/tags/emailsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#emailsecurity</a> <a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/ngated" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ngated</a>

Hacker NewsSpammers are better at SPF, DKIM, and DMARC than everyone else<a href="https://toad.social/@grumpybozo/114213600922816869" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://toad.social/@grumpybozo/114213600922816869</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/Spammers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Spammers</a> <a href="https://mastodon.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://mastodon.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Erik van Straten<a href="https://toad.social/@grumpybozo" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@grumpybozo</a> : I definitely am not angry with you (I very much agree).Unfortunately many admins treat security solutions like they're a religion.Some time age there was a hefty debate on a Dutch "mostly admins" site (<a href="https://tweakers.net" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://tweakers.net</a>, I'd have to look up the exact thread) about the "correct" sending and receiving MTA configurations. There was no agreement.Microsoft even used to ignore SPF/DKIM/DMARC if the sender was in the "safe senders" list (which the user's address book defaults to). What could possibly go wrong (later MS corrected that).The screenshot below is from part of <a href="https://www.security.nl/posting/766069/DMARC+bypass+%28Outlook+only%3F%29#posting767981" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.security.nl/posting/766069/DMARC+bypass+%28Outlook+only%3F%29#posting767981</a> (I wrote that Sept. 14, 2022).Edited 23:36 UTC to add: { <a href="https://arxiv.org/abs/2302.07287" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arxiv.org/abs/2302.07287</a> Forward Pass: On the Security Implications of Email Forwarding Mechanism and Policy Enze Liu, Gautam Akiwate, Mattijs Jonker, Ariana Mirian, Grant Ho, Geoffrey M. Voelker, Stefan Savage }<a href="https://infosec.exchange/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://infosec.exchange/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://infosec.exchange/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://infosec.exchange/tags/Arc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Arc</a> <a href="https://infosec.exchange/tags/WhatEver" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WhatEver</a>

Erik van Straten<a href="https://infosec.exchange/@deepthoughts10" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@deepthoughts10</a> wrote: "email authentication like DMARC/SPF does one thing: it prevents impersonation of a specific domain (assuming policies are configured for reject or quarantine.)"It does not even do that on my iPhone.P.S. SPF was invented to prevent Joe Jobs (<a href="https://en.wikipedia.org/wiki/Joe_job" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://en.wikipedia.org/wiki/Joe_job</a>). Marketing idiots (including Bill Gates) said that it would kill spam. It killed forwarding instead.<a href="https://toad.social/@grumpybozo" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@grumpybozo</a> <a href="https://mastodon.social/@jwz" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jwz</a> <a href="https://infosec.exchange/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://infosec.exchange/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://infosec.exchange/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://infosec.exchange/tags/ARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ARC</a> <a href="https://infosec.exchange/tags/WhatEver" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WhatEver</a>

CybsoMein Mailserver macht jetzt endlich auch <a href="https://osna.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> und hat einen <a href="https://osna.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>-Eintrag. Hab das viel zu lange vor mir her geschoben, aber weil das nun auch für den betrieblichen Mailserver gefordert war, musste mein privater als Übungsobjekt herhalten 😊War gar nicht so schwierig wie befürchtet.

Éric V.For <a href="https://mamot.fr/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> configuration and <a href="https://mamot.fr/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> check, the European Commission provides a great tool: MECSA <a href="https://mecsa.jrc.ec.europa.eu/en/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://mecsa.jrc.ec.europa.eu/en/</a> conclusion: I still have some improvements to implement on my own server <a href="https://mamot.fr/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://mamot.fr/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mamot.fr/tags/postfix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#postfix</a> <a href="https://mamot.fr/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mamot.fr/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mamot.fr/tags/DNSSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNSSEC</a> <a href="https://mamot.fr/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosting</a>

Martin Schmitt<a href="https://mastodon.online/tags/Datev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Datev</a> hat Probleme, <a href="https://mastodon.online/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> eines Kunden von mir zu validieren. Es steht die Vermutung im Raum, dass das daran liegen könnte, dass einer meiner authoritativen Nameserver auch <a href="https://mastodon.online/tags/Tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tor</a>-Relay (ohne Exit) ist. Wir testen deshalb jetzt mal 4 Wochen ohne ihn. Welche Gründe könnte es geben, auf Enterprise-Ebene die Firewall mit irgendwelchen Just-because-I-can-RBLs von Hobbyisten zu betanken? BITTE NUR FALSCHE ANTWORTEN.

Delta Chat<a href="https://jura.social/@mathilde" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mathilde</a> <a href="https://chaos.social/tags/chatmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chatmail</a> server users don't have these problems because they don't even need to know their password or email address. Messages in delta chat are stored locally and the server only stores them for a limited time, up to 20 days by default, so all devices have a chance to download the message. Blocklists are also not used, the only requirements are <a href="https://chaos.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> signature and <a href="https://chaos.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPGP</a> encryption.

Roman Schaller<a href="https://jawsome.nevy.xyz/@nev" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@nev</a> Same here. <a href="https://stalw.art/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://stalw.art/</a> was my choice. Works so far. But be careful with <a href="https://mastodon.green/tags/spf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spf</a> and <a href="https://mastodon.green/tags/dkim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dkim</a>. It is important to set those up correctly. Otherwise your mails will be marked as spam.

Julien RiouI've Got Mail <a href="https://bonesmoses.org/2025/ive-got-mail/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://bonesmoses.org/2025/ive-got-mail/</a><a href="https://hachyderm.io/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://hachyderm.io/tags/postfix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#postfix</a> <a href="https://hachyderm.io/tags/postgrey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#postgrey</a> <a href="https://hachyderm.io/tags/dovecot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dovecot</a> <a href="https://hachyderm.io/tags/roundcube" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#roundcube</a> <a href="https://hachyderm.io/tags/dns" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dns</a> <a href="https://hachyderm.io/tags/dkim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dkim</a> <a href="https://hachyderm.io/tags/dmarc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dmarc</a> <a href="https://hachyderm.io/tags/mailinabox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mailinabox</a> <a href="https://hachyderm.io/tags/mailu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mailu</a> <a href="https://hachyderm.io/tags/mailcow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mailcow</a> <a href="https://hachyderm.io/tags/stalwart" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#stalwart</a> <a href="https://hachyderm.io/tags/protonmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#protonmail</a> <a href="https://hachyderm.io/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a>

Recent searches

Search options

Administered by:

Server stats:

#dkim