Dovecot + Postfix + SpamExperts
this post was submitted on 07 Feb 2025
194 points (96.2% liked)
Open Source
32771 readers
522 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon from opensource.org, but we are not affiliated with them.
founded 5 years ago
MODERATORS
+1 for postfix.
If you do this it's good to use something like mxroute as an SMTP server so deliverability is their problem.
Can I ask what client you prefer?
I dislike thunderbird and roundcube.
The Spam Experts inbound filter is quite efficient at preventing spam and allows you to manage which domains have permission to send emails to your domains. As for the client, I usually check emails from my mobile phone, and since I have Android, I use K9-Mail, which for me is the best option available. There's also FairEmail if you're interested in trying it. For desktop computers, I generally use Roundcube; I think it's fine for basic needs. Occasionally, I also use the email integration from Nextcloud, though I can't remember the client's name. Thunderbird has improved significantly in recent years, and I think it's a good alternative. I have also used Mailspring, which is open-source, although there was a part of it that I wasn't completely satisfied with.
purelymail, or if one guy running email by himself makes you feel uncomfortable, migadu
Migadu is like two guys running email? 😂 no 2FA support
two guys running email?
Is it? I can't tell from the about me. It says "In 2014, two of us, Michael Bruderer and Dejan Strbac, started...", but nothing else on the page talks about the size of the company. It started as two people, but is it currently two people? Anyone know?
no 2FA support
The webmail client does have 2FA, but when connecting via client there is no 2FA. Although, not sure what this would look like. Would you enter a TOTP every time you want to connect to the IMAP server? Or do you mean more like an OAuth2 flow, like Gmail, and that asks for your TOTP?
I actually haven't gotten around to playing with purelymail. Not sure if they handle this differently. What service are you thinking about?
Imap doesnt support 2fa.
IMAP protocol as well email clients do not support second factor authentication for the mailboxes. Even if they did, IMAP connections are made way too often which would make authentication unusable. Imagine needing to enter your TOTP token every few minutes. We could enable 2FA on the webmail, but IMAP/POP/SMTP accesses remain unprotected which beats the purpose. We are working on solution here which will allow sand-boxing a username/password pair to a webmail use only. We do offer so called App-specific passwords via mailbox identities though. These are commonly touted by email providers as 2FA. They are not.
My problem is the whole change of address thing. Unfortunately google had perfect timing when they offered a decent amount of storage. It was early enough that changing email was no big deal and late enough that soon it would be. I very much don't like this because if google like just went dark all of a sudden it would be a bad day. Yeah I know its unlikely to the xtreme but still. I know privacy people do not like this idea but I really would like the government to run an email where all citizens are guaranteed one. To me this would make it much easier to have an official one and other emails. I don't get why folks are ok with corporations doing it and trust that they will use safeguards but don't trust the government would. The US postal service is a good example. Laws were well made to protect mail to the point where one way of safeguarding things from police searches was to put it in a stamped envelope. Man I wish our current society and government would be doing things like that again.
load more comments
(7 replies)