external/mailinabox
1
0
Fork 0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2026-03-10 16:47:24 +01:00
Code Issues Releases Wiki Activity
520 Commits 6 Branches 88 Tags
39bca053edbcfa149a283e3be0cb770460d327e0
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Joshua Tauberer 39bca053ed add 2048 bits of DH params for nginx, postfix, dovecot 
nginx/postfix use a new pre-generated dh2048.pem file. dovecot generates the bits on its own.

ssllabs.com reports that TLS_DHE ciphers went from 1024 to 2048 bits as expected. The ECDHE ciphers remain at 256 bits --- no idea what that really means. (This tests nginx only. I haven't tested postfix/dovecot.)

see https://discourse.mailinabox.email/t/fips-ready-for-ssl-dhec-key-exchange/76/3
2014-09-26 22:09:22 +00:00
conf
add 2048 bits of DH params for nginx, postfix, dovecot
2014-09-26 22:09:22 +00:00
management
add strict SPF and DMARC records to any subdomains (including custom records) that do not have SPF/DMARC set
2014-09-26 14:01:03 +00:00
setup
add 2048 bits of DH params for nginx, postfix, dovecot
2014-09-26 22:09:22 +00:00
tests
update test_dns
2014-06-21 12:32:20 -04:00
tools
more readable bash
2014-09-21 16:05:11 -04:00
.gitignore
adding externals and .env to gitignore
2014-07-07 07:06:36 -04:00
CONTRIBUTING.md
adding CONTRIBUTING.md, see #23
2014-04-23 15:52:49 -04:00
LICENSE
add CC0 1.0 Universal in LICENSE
2014-04-23 15:49:23 -04:00
README.md
link to Modoboa in README
2014-09-26 08:20:13 -04:00
Vagrantfile
replace '-t 0' test with an environment variable since '-t 0' is false when standard input has been redirected and doesn't tell us whether or not we can use dialog for input, but Vagrant must be non-interactive
2014-08-25 07:54:11 -04:00

README.md

Mail-in-a-Box

By @JoshData and contributors.

Mail-in-a-Box helps individuals take back control of their email by defining a one-click, easy-to-deploy SMTP+everything else server: a mail server in a box.

Please see https://mailinabox.email for the project's website and setup guide!

I am trying to:

  • Make deploying a good mail server easy.
  • Promote decentralization, innovation, and privacy on the web.
  • Have automated, auditable, and idempotent configuration.
  • Not be a mail server that the NSA cannot hack.
  • Not be customizable by power users.

The long-term goal is to have this be a one-click email appliance with no user-configurable setup options.

For more background, see The Rationale.

This setup is what has been powering my own personal email since September 2013.

The Box

Mail-in-a-Box turns a fresh Ubuntu 14.04 LTS 64-bit machine into a working mail server, including SMTP (postfix), IMAP (dovecot), Exchange ActiveSync (z-push), webmail (Roundcube), spam filtering (spamassassin), greylisting (postgrey), CardDAV/CalDAV (ownCloud), DNS, SPF, DKIM (OpenDKIM), DMARC, DNSSEC, DANE TLSA, SSHFP, and basic system services like a firewall, intrusion protection, and setting the system clock.

The Acknowledgements

This project was inspired in part by the "NSA-proof your email in 2 hours" blog post by Drew Crawford, Sovereign by Alex Payne, and conversations with @shevski, @konklone, and @GregElin.

Mail-in-a-Box is similar to iRedMail and Modoboa.

The History

  • In 2007 I wrote a relatively popular Mozilla Thunderbird extension that added client-side SPF and DKIM checks to mail to warn users about possible phishing: add-on page, source.
  • Mail-in-a-Box was a semifinalist in the 2014 Knight News Challenge, but it was not selected as a winner.
  • Mail-in-a-Box hit the front page of Hacker News in April and September 2014.
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme CC0-1.0 46 MiB
Languages
Python 53.2%
Shell 26.2%
HTML 19.5%
PHP 1%
Handlebars 0.1%