Solved Secure Mail Service

Status
Not open for further replies.

alenetwork

Member
Oct 10, 2015
7
1
35
I need to change email, because i dont like anymore mail service like google,outlook,yahoo ecc...
I found a site (www.cock.li) it have funny mails, its secure and i like the service but i dont want to have an email and maybe tomorrow lose that (maybe for no funds or many another problems...) so im searching a stable and secure email service, i searched on internet and i found protonmail, tutanota ecc....
What do you recommend? @Asphyxia and above all I'm asking you, what do you recommend?
 

Supervisor

Administrator
Apr 27, 2015
1,863
2,546
335
Although I am not Asphyxia,
I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc :p

And the strongest argument, I use it myself. :D
 

alenetwork

Member
Oct 10, 2015
7
1
35
Although I am not Asphyxia
This does not matter, all opinions are important, but the @Asphyxia answer is the one that interests me most.
I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc :p
And the strongest argument, I use it myself. :D
I searched a little of Protonmail and i really like it, but i want to see what other people says, not only for me but for all the R4P3.net community so people can think for change gmail and others shitty mail service (for privacy) xD
 

dino94

Member
Sep 20, 2015
55
25
50
You dont need any other, like @Supervisor said, protonmail is the best. When they launched it, i've got my email login acces on the second wave!
 

Asphyxia

Owner
Administrator
Apr 25, 2015
1,844
2
2,197
327
Personally I recommend hosting your own email server(s) taking into consideration all the important aspects of securing your private mail server/service --- this is no easy task, do not do this thinking you can just click install and be done, this will require research/studying server hardening and how email systems work with a deep security understanding of all aspects of emails/domains/networking. There are so many security considerations to think about though. To name a few:
TLS/SSL --- https://www.yahoo.com/tech/explained-how-tls-keeps-your-email-secure-88310223169.html
http://its.yale.edu/secure-computin...afe-mobile-computing/secure-web-email-ssl-tls
Without proper protections, emails may be intercepted via MitM also.

If you want something to add some extra protection on top of your emails consider the use of PGP (Pretty Good Privacy), read: http://lifehacker.com/180878/how-to-encrypt-your-email

Of course you must also consider all points of CIA (Confidentiality, Integrity and Availability) --- can anyone else possibly hijack/intercept the email(s)? Think of all types of poisoning and hijacking, there are so many elements. What if someone hijacks the domain which emails are being sent to, then they simply change the MX? Ouch, you just got fucked really hardcore. Now all updates from Twitter, Facebook and possibly bank information come trickling into the now hijacked domain MX record(s) which put all emails into the hands of the hacker(s). Now they can simply do an email reset on your accounts and steal your audience or deface your social media walls. Imagine them getting your social media accounts deleted or suspended? That would surely put a dent into your social media campaign(s).

What about antivirus or anti-spam protections? Imagine someone starts trying to phish and infect all of your email accounts?

Consider all of the unnecessary services running on the system(s) involved. Fuck --- yeah, here is a starter guide to system hardening (a nice checklist): https://www.sans.org/media/score/checklists/linuxchecklist.pdf

So.. if you want to setup your own service for anonymity/privacy concerns, investigate/research security. Then apply the best possible security to your server(s) to have a secure personal email service. This ensures your email is yours. Understand that the Internet is not a very secure place though. When you connect your system to other systems, right away you're opening yourself to many risks. Your goal is to mitigate the most risks you possibly can.

http://prxbx.com/email/ offers many options for email providers, but if you want to run your own I would consider looking into this project: https://www.zimbra.com/open-source-email-overview/

I would additionally consider anyone interested to check out this "secure" client which lists some self-hosted email options: https://www.mailpile.is/download/
Here are the listed options:
I have not tested all of the above mentioned services/options, research them and use them at your own risk. I do highly encourage someone to figure out how to setup a secure email delivery/reception system and explain or make a tutorial on how to do this. ;)
 
Last edited:

VANKO

Member
Oct 13, 2015
10
4
38
Secure mail service ? - put in on your own server. Just install dovecot + postfix (using TLS with self-signed cert of course) and for security something to filter spam and viruses - amavis (with spamassassin libraries) + clamav (antivirus). Just know how to set it up and voilà.
To manage mailbox you can use roundcube or squirrelmail.

Oh, and I forgot about DNS. Using bind you shoul set DKIM key + DMARC + SPF records. That would help you make your mails not going to spam folders.
 

Qraktzyl

Retired Staff
Contributor
Nov 2, 2015
997
728
161
Although I am not Asphyxia,
I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc :p

And the strongest argument, I use it myself. :D
There actually has recovery by an external e-mail address.
 

Asphyxia

Owner
Administrator
Apr 25, 2015
1,844
2
2,197
327

alenetwork

Member
Oct 10, 2015
7
1
35
Personally I recommend hosting your own email server(s) taking into consideration all the important aspects of securing your private mail server/service --- this is no easy task, do not do this thinking you can just click install and be done, this will require research/studying server hardening and how email systems work with a deep security understanding of all aspects of emails/domains/networking. There are so many security considerations to think about though. To name a few:
TLS/SSL --- https://www.yahoo.com/tech/explained-how-tls-keeps-your-email-secure-88310223169.html
http://its.yale.edu/secure-computin...afe-mobile-computing/secure-web-email-ssl-tls
Without proper protections, emails may be intercepted via MitM also.

If you want something to add some extra protection on top of your emails consider the use of PGP (Pretty Good Privacy), read: http://lifehacker.com/180878/how-to-encrypt-your-email

I was thinking too for doing my own mail servce for stay more secure but i dont have so much time for doing test and fix problems just for an address xD
But i appreciated your response and saved it because in a near future i will do something like this :)

Secure mail service ? - put in on your own server. Just install dovecot + postfix (using TLS with self-signed cert of course) and for security something to filter spam and viruses - amavis (with spamassassin libraries) + clamav (antivirus). Just know how to set it up and voilà.
To manage mailbox you can use roundcube or squirrelmail.

Oh, and I forgot about DNS. Using bind you shoul set DKIM key + DMARC + SPF records. That would help you make your mails not going to spam folders.
Thanks you too for this mini-tutorial this could help me for the future :D

One last thing, I also recommend using a service by the name of Zoho. You just need a domain (or not) and then sign up here: https://www.zoho.com/ --- another favorite option of mine is https://mail.yandex.com/ +PGP ( see http://askubuntu.com/questions/186805/difference-between-pgp-and-gpg ) --- if you don't like either of those, then tough luck. Refer back to http://prxbx.com/email/ for a full list of providers. :cool:
I tried yandex + pgp, but it does not seem much safer than gmail and outlook, but i will retry :D

You dont need any other, like @Supervisor said, protonmail is the best. When they launched it, i've got my email login acces on the second wave!
You are wrong xD, just see the other reply, but thanks you too

I think you can close this :)
@Supervisor @Asphyxia @Qraktzyl
 

Derp

Retired Staff
Contributor
Apr 30, 2015
933
1,017
217
You are wrong xD, just see the other reply, but thanks you too

Actually he's pretty right! I mean, you can go ahead and configure a mailserver to do all the stuff protonmail would do, But as you might've noticed that's not that simple. If you're looking for a quick/secure solution then I suggest you use protonmail.

Protonmail IS the best!
 
Status
Not open for further replies.
Top