I'm oldschool.
I've had my own domains and mail servers for the past 3 decades and will maintain them for as long as I live.
And these days, all but the storage runs of Pi3, so it's barely using any power either.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
I'm oldschool.
I've had my own domains and mail servers for the past 3 decades and will maintain them for as long as I live.
And these days, all but the storage runs of Pi3, so it's barely using any power either.
How is your deliverability? I've heard private servers are often blocked outright by the big providers but don't have any first hand experience with it myself.
Never had any big issues, as there have always been providers here that stood by having an open network for its subscribers, even in the dialup age.
And because they existed, the major providers don't tend to do that either (at least not anymore).
Most ludicrous thing is that the one time I DID have issues with port blocks (port 21/53/80/443 aka ftp/dns/http/https) was the first time I switched from a domestic line to a business one with one of the largest providers here. They did that as a default unless you called them to unblock everything.
But in the past decade, on fiber, never had an issue, the providers that were first to deliver fiber were new ones that broke from two of the major ISPs respectively owning ALL the coax and ALL the copper in the country, which allowed them to set their own rules.
And their competitive edge wasn't on price, but on giving you a ludicrously fast and stable connection with the only limitation being what the fiber could carry, although now, when the major ISPs are also finally providing fiber, their pricing compared to my own ISP is kinda ludicrous.
My current ISPs advertised philosophy is "security is your responsibility, a stable fast connection ours". And so far, they've held true to that.
Besides that, almost as long, I first rented and now own a box at a datacenter, which among its secondary tasks runs a backup NS and backup MX as I had the box anyway. To this date, the only times that backup had to do anything was when I was moving and when there are announced network maintenance or other works (of which the longest I can remember was 1 hour and only happen 2 times per year).
I get that if I lived in the US, this would not be quite as practical to achieve.
I worked for a US ISP in the early 00's, was looking to provide WIFI in rural Texas areas. Setup the hardware and backend for them. Became quickly apparent from what they were demanding from the backend, that their focus wasn't particularly to bring access to rural areas, but to milk the shit out of providing WIFI to rural areas.
Don't get me wrong tho, I still have several Gmail addresses that are as old as the service itself is. I rather use a gmail address to sign up to sites and have them deal with the subsequent deluge of spam, than to have that shit tax my own system :P
I was actually referring to big email providers treating private email servers as spammy solely by virtue of the fact that they're not sufficiently known to them. I had just read somewhere that it's an increasing problem that may become self fulfilling. What I read might have been hyperbolic :)
Thanks for the read, I'm always interested to hear about people's experiences with self hosting.
Email providers of every size don't just blanket block unknown servers, that's just asking for problems and loads of additional work.
They block known problems and detect likely problems.
Tools like ASSP (the spam filter I've used for a long ass time and used to install anywhere corporate filters weren't in the budget) use advanced heuristics in combination with every form of blacklists/whitelist/greylist filtering you can think of (both on DNS and snmp levels), to look at the contents of the mail in combination with how "normal" the DNS registration and responses of the mailserver are. Add to that the default of checking that an @microsoft.com email actually comes from a known Microsoft server. There's scores of public white and blacklists, generated by spam filters by receiving mail correctly from sources, which makes them go on whitelists and by detecting spam, which makes them go on blacklists. These lists have been around for decades by now and are constantly updated (mostly automatically).
You don't do email security and spam filtering by being an ass to everyone you don't explicitly know. You do it be looking for any suspicious signs and user feedback. Just blocking by default is a far bigger headache than letting your tools do their work and then going in manually when they miss something.
Google goes one step further and outright receives ALL mail, including spam, and just puts what is detected as spam in a spam folder.
First company I got to that had no spam filtering deployed at all, went from 3 million emails received per day to just over 50K. Most people in that company ran a (pirated) Outlook plugin that did desktop level spam filtering and still had to manually filter more than 90% of the mail they received and then every week or so, deleted their spam folder.
After I installed ASSP there, as I said, it went down to receiving only 50K emails per day, of which about 30K were still spam. After 2 weeks, it was down to 20K (a combination of me using the reporting tools from mail that landed in my own mailbox and the spam filter heuristics engine getting smarter from learning from the spam it received) and then I had a meeting with the whole company to teach them how to report spam (and whitelist known senders and false positives).
A month or two into the deployment, people were used to using the reporting button and they were down to receiving maybe 1 or 2 spam emails per day (which often were still detected as questionable, but not definitely spam) as they (the email senders) were completely new to the system.
This because spam outfits are relatively quickly detected, so they often have to change IPs, domains and methods and because of that, they perpetually exist on greylists which get scrutinized more heavily by filters.
A domain like mine, that has been running and sending/receiving email for decades, mostly to completely official destinations like banks, corporate clients, governments and other established instances, without ever even hinting at sending spam, will rarely have any issue delivering its mail to its target as it is already known on black/whitelists generators as a good sender.
Internet is cheap and reliable where I live (US). Not all places are bad it just depends on how much competition there is
We use cPanel emails at work... don't ask, please 😭😂. Since we've got off a couple of large website hosting platforms it appears to be smooth sailing.
We're currently hosting our emails with a small web hosting provider, 'only 250k' websites are hosted with them. They apparently use SSDs for customer data and boy oh boy is that apparent. Emails are sync'd, sent, and received faster than any other cPanel emails we've been on. We've only been with them for about 1-1.5 years, so something might come up one day.
I know it's not quite self hosting, but it's quite close to it.
Oh god, I bet that UI looks at least ten years old D:
The speed sounds good though!
Though with 250k sites their IPs would at least have a sizable reputation, I was referring more to private email servers that aren't big enough to generate much of a reputation being auto-blocked by the Gmails and Outlooks of the world. Again I don't have experience with this, I'd just read somewhere that it's a growing problem with the big providers only granting any trust to email services above a certain size and therefore reputation.
I still use email clients. Not sure if that's now considered the old school way of doing things? So the UI doesn't come into it at all.
I'm not sure how much impact the IP address/server of the mail server has on reputation. I know the domain name and its DNS records have somewhat of an impact.
RE email clients, I think in the personal space it's much more common to use the web app these days. I find the inverse is true for the business space. What desktop client do you use, out of interest? I've been a long time commercial Google user but want to move away and will likely switch to a desktop client along with that change
IP address and domain name can both be used for email reputation purposes. If you self host on a cloud provider that isn't strict enough on outbound spam, for example, then you might find your sending IP gets blacklisted by virtue of being in an IP range with spammers.
I use Outlook at work, Mailbird at home, and Nine on my mobile devices.
Proton (free - 1GB storage, 500MB before doing 4 "tasks") for family, friends, and business types uses, although I'd rather have an integrated calendar (instead of it being a separate app).
Tutanota (free - 1GB storage) for bills, purchases, etc., basically everything else, because I'm never going to say "my email is xxxxx@TUTAmail.com" to anyone I know, especially business acquaintances. So far, I like Tutanota more than Proton, especially the integrated calendar, but that name...... sounds like something my mother or grandparents were scammed into using.
On desktop, I'm currently using Thunderbird (TB) for a couple of older gmail accounts (in the process of transitioning away from), although I hate the recent update to TB. Haven't tried the Tutanota desktop app yet, but web version of email & calendar work adequately. Maybe I'll transition from TB now, after their recent changes.
Considered mailbox.org, but I'm not going to pay for it (no free version), especially when they don't at least have a cell app. Skiff may be worth looking at. Can't recall why I didn't try them.
EDIT: I've now installed Skiff (free - 10GB) as well and liking it so far. Using webmail seems easy and straight forward, cell app looks about the same (but haven't spent too much time on it yet). REALLY like that you basically get 4 email accounts (1 main and 3 alias account names), which is different than Tutanota and Proton. With the different aliases, this gives me an option to use Skiff for everything (if I choose to "put everything in one basket" at some point). Skiff sounds a little better than "Tuta" for business acquaintances as well, but not by much. No integrated calendar, but significantly larger storage is a plus.
Any email with cock in the name will trigger filtering. It also has the side effect of making me unemployable
$10/year.
Every provider out there encrypts mail at rest. You're exchanging emails with Gmail, Yahoo or Hotmail anyway. Pretending like your email is any safer with Proton or clones is a waste of money imho.
This is why I like posteo. They are cheap and easy
That's actually really expensive. 2GB is not a lot unless you're starting from scratch. My 50gb account would cost me ~15€/mo with aliases and extra storage fees.
But most importantly they don't support bringing your own domains which makes it a non-starter for most people looking for custom email solution.
second
I use Fastmail - not too expensive, really good webmail client, has working shared calendar that isn't OWA, and isn't advertising scraping my e-mail. I would have liked a more private service, but back when I moved from self hosted to a service, that was about the best I could get that also had calendaring.
I also switched to Fastmail. iirc they are not the best privacy wise as they are based in Australia. They do however have a no-nonsense IMAP connection (unlike Protonmail) and they allow multiple custom domains without extra pay. The IMAP connection however is not available on the lowest tier.
So far I've not regretted the switch, and it also integrates nicely with 1Password masked mails.
I tried Proton, even paid for a year. But hot damn the Android app is garbage. So I've moved to Fastmail and I like it a lot. The app is snappy and I love that it has calendar, contacts, mail, notes, and files storage all in the same app. I used a custom domain with Proton so wasn't hard to switch to a different provider. Just wish I would've known how bad the mobile app was before I plunked down the money.
They are rewriting android app from scratch rn
I've heard that. Boy does it need it. But I'll admit I don't like that their focus seems to be on introducing new products instead of making their existing lineup more reliable/performant. And not making many strides in the Linux world.
Fastmail here as well. I don't need super privacy. The phone app is great. Was easy to setup my personal domain.
I use protonmail, simplelogin (for email aliases) and tutanota.
Tutanota. I used to use Proton, but they don’t encrypt folder names, which is a deal breaker. Tutanota does, and they’re also a privacy respecting, reputable, decent service.
Is that true? They don't encrypt labels on proton?
Sadly, yes. A Proton team member on Reddit confirmed it a couple years back:
Folder/label names are visible to the server (for filters and other reasons) as are email metadata. Message and attachment contents are encrypted and not visible to the server.
Do note that this is ONLY true for Mail. Calendar, and Drive does encrypt folders/label names.
Subject lines are also not encrypted, unlike Tutanota.
How would that work? Email doesn't have a subject line encryption standard.
They implemented their own way of doing this. They don‘t use PGP. I don‘t know how it exactly works, but it‘s open source, so you can look at it yourself.
The problem is it doesn't work unless everyone does it the same way. Pgp isn't perfect but at least its a standard.
I'm in the process of migrating to Proton from Gmail and Outlook. All 4 mailboxes imported, now just the tedious job of updating credentials on all the websites remains...
Protonmail, but not really because of encryption. I just liked their Android client and webmail the most. I've had sensitive backups on Proton Drive for a long time, so that also played a role in the choice.
I hosted my own server for quite a few years, but the SMTP clients (Thunderbird, Evolution, K9 mail) all doing things slightly differently made me give up. Biggest push was that K9 mail didn't really move deleted mail to trash. These were probably dovecot configuration issues, but I got tired of searching for solutions. Never had any deliverability issues.
Selfhosted mail-in-a-box solution. Easy to maintain and configure.
any competently run service that gets you away from the tech conglomerates will work
fuck proton mail, bring your own encryption
I switched to hosting my own inbound mail. I mostly switched because after trying a few providers they almost all dropped some email that I wanted (not Spam, completely dropped) so I set up my own. It is quite nice to have full control over configuration, filtering, backups and whatever else.
Right now I am using a paid rely to send, but maybe I'll see how my IP's reputation at some point.
Paid Proton Mail with my own domain name and own PGP keypair. Although it now has a way to securely search mail, I use the bridge service to allow Betterbird mail to sync my mail to my PC for searching.
If I remember correctly cock.li is also hosting some really bad Nazi domains and has apparently no problem with that...
Dealers choice on emails imo. Doesn't really matter because you can't verify that they aren't scanning your emails for advertising.
Gmail actually isn't too bad if you use an email forwarder like simple login that kets you pgp encrypt your mail before it gets to google.
Haven't seen his answer here yet, but I use Zoho. It has a free tier IIRC and supports custom domain.
Not sure how private it is, tho.
Migadu they are super affordable. Great service. Privacy focused.
I use disroot.
They now require non free software to create an account which is a deal breaker for me
Honestly, gmail for bills and that kinds of stuff. iCloud for personal stuff. I do not really use email that much other than getting spam. I imagine that is true for most people. I do not understand why the privacy community is so obsessed with private email. Are you really using it for stuff that needs to be so private?
I just want to use a email provider who I can trust
gmail, protonmail and tutanota also i will eventually get a posteo.de account
I could invite you.
This would be nice