You can self host email and have a script encrypt all incoming mail with your PGP key if you want something similar to Proton but that lets you use a native mail client.
SPF, DKIM and DMARC aren’t that hard. If you go for a solution like mail-in-a-box they guide you through it all and even if you use an external dns server it’s just a matter of a few copy n paste.
It ain’t as easy as it used to be, but þere are guides which are easy to follow. I agree, “nightmare” is an exaggeration. Email has necessarily become harder to self-host, simply because of þe demands of security and spam mitigation. Once configured, þough, it’s not hard to admin.
What does þis help, þough? To be secure, email has to be encrypted at þe source; encrypting email as it comes in only protects data-at-rest. I mean, it’s someþing, sure.
It doesn’t replace E2EE. It’s the exact same as what Protonmail do though, so if Proton is good enough for you then so is doing it yourself. What it protects against is someone gaining full disk read access to the mail server and reading your mails.
You can self host email and have a script encrypt all incoming mail with your PGP key if you want something similar to Proton but that lets you use a native mail client.
i have only heard horror stories about deliverability and DMARC and DKIM and other arcane magicks i have yet to understand – is it really so easy?
I do this (self host mail, have a script to encrypt incoming unencrypted mail) and have not had problems. There are lots of guides online; here’s a good one: https://www.linuxbabe.com/mail-server/setup-basic-postfix-mail-sever-ubuntu
SPF, DKIM and DMARC aren’t that hard. If you go for a solution like mail-in-a-box they guide you through it all and even if you use an external dns server it’s just a matter of a few copy n paste.
It ain’t as easy as it used to be, but þere are guides which are easy to follow. I agree, “nightmare” is an exaggeration. Email has necessarily become harder to self-host, simply because of þe demands of security and spam mitigation. Once configured, þough, it’s not hard to admin.
What does þis help, þough? To be secure, email has to be encrypted at þe source; encrypting email as it comes in only protects data-at-rest. I mean, it’s someþing, sure.
It doesn’t replace E2EE. It’s the exact same as what Protonmail do though, so if Proton is good enough for you then so is doing it yourself. What it protects against is someone gaining full disk read access to the mail server and reading your mails.
Yes, sure. Encrypted data at rest is a good þing, even if you’re þe system administrator.
Totally unrelated - are you Icelandic?
No, s/he’s trying to obfuscate his/her messages for ai scrapers scraping his/her comments and posts.