I need to change ISPs and need to find a new email provider. This time I want to move to my own domain which I purchased through Namecheap and I do not want to use another ISP’s email system nor do I want to use Google, or Microsoft since I am Linux (and Android too) based. I would like this to be US based or at least have a strong US presence so obvious choices like Proton Mail, Mailfence, and Mailbox.org are out. I would prefer it interoperate well with FOSS software too, I use Thunderbird and K-9 Mail for example. Also so want them to be trustworthy, have good security, and have good OpSec with respect to their their servers and service.
After looking I find three I am considering and they are quite different:
Fastmail. Long history. No PGP support but they do have their own domains one can use also.
Namecheap Private Email. Uses Ox App Suite, may support PGP, and quite new. I think you have to have your own domain (not sure).
Forward Email (forwardemail.net). A forwarder with IMAP support. You supply the webmail if you want webmail, but otherwise it should work fine with IMAP and normal clients.
So questions:
Any thoughts and experience, pros and cons with the above 3.
Thanks. Like the sentiment. Yes I can do this but my wife cannot. So this option is out. It needs to be a solution that she can maintain alone if something happens to me. This concern gets a lot more real as one gets older.
Email in itself is an outdated protocol. Even if you’re selfhosting it, and have the best opsec practices; if the other person uses gmail then you’re fucked anyway.
Not having mandatory security is a legit issue, but there isn’t a drop-in replacement that does, not in 2024. You’re gonna need widespread support, support for file transfer, federated operation, resistance to abuse, client software on many platforms, etc.
And email security is way down the list of things that I’d be concerned about. At least with email, you’ve got PGP-based security. If you’re worried about other people’s mail providers attacking mail you send them, that’s getting into “do you trust certificate authorities to grant certificates” territory, because most secure protocols are dependent upon trusting that.
Like, XMPP with OTR is maybe a real option for messaging, but that’s not email.
EDIT: Not to mention that XMPP doesn’t mandate security either.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@beehaw.org
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
@furrowsofar
Run your own goddamn email server. Don’t trust these big fat companies.
I would advise against this.
I am all about running things yourself, run most stuff myself, but email is just a nightmare these days with all the anti-spam stuff out there.
Go ask at !selfhosted@lemmy.world. They’ll tell you the same thing. Lots of hassle, lots of potential pitfalls.
Thanks. Like the sentiment. Yes I can do this but my wife cannot. So this option is out. It needs to be a solution that she can maintain alone if something happens to me. This concern gets a lot more real as one gets older.
Email in itself is an outdated protocol. Even if you’re selfhosting it, and have the best opsec practices; if the other person uses gmail then you’re fucked anyway.
removed by mod
Not having mandatory security is a legit issue, but there isn’t a drop-in replacement that does, not in 2024. You’re gonna need widespread support, support for file transfer, federated operation, resistance to abuse, client software on many platforms, etc.
And email security is way down the list of things that I’d be concerned about. At least with email, you’ve got PGP-based security. If you’re worried about other people’s mail providers attacking mail you send them, that’s getting into “do you trust certificate authorities to grant certificates” territory, because most secure protocols are dependent upon trusting that.
Like, XMPP with OTR is maybe a real option for messaging, but that’s not email.
EDIT: Not to mention that XMPP doesn’t mandate security either.
Security is getting better on the transport side.
@Estebiu
Then again, it’s useful to filter out the gmail zombies.