Comments (14)
Depends if you control completely the server, e.g. if it's in your home on your hardware.
from hydroxide.
No, a plain TLS proxy should work as well. Just need to configure your email clients to use TLS instead of STARTTLS.
from hydroxide.
wouldn't this completely kill the privacy and security benefits from using a service like Protonmail?
from hydroxide.
I would like to have a bridge that I can access over a VPN connection. So I can use a different mail client on my iPhone and iPad rather than the protonmail app.
So far I get SMTP to work but not IMAP.
Neither with Hydroxide or the original bridge.
I tried doing a reverse SSH tunnel mapping the port to the VPN server that way... for SMTP this works but IMAP does not.
from hydroxide.
+1 on this
from hydroxide.
Besides the TLS/StartTLS, I thought deploying it on a server to be remotely accessed was already a possibility.
from hydroxide.
Yes, this already works. But right now you'll need to setup a proxy to wrap connections with TLS if you want to access the server remotely.
from hydroxide.
Oh, thanks! This would be why I'm having issues connecting remotely.
from hydroxide.
Re the reverse proxy offload of TLS - I think it can only be one that supports STARTTLS or has some kind of advanced features. I've been digging around trying to get Traefik to work and it seems only Nginx is capable of reverse proxy for IMAP and SMTP.
from hydroxide.
How does one use such a plain TLS proxy? I'm looking to route a sourcehut smtp through hydroxide, but sourcehut expects a STARTTLS response. Running on the same server so nothing fancy.
from hydroxide.
How does one use such a plain TLS proxy? I'm looking to route a sourcehut smtp through hydroxide, but sourcehut expects a STARTTLS response. Running on the same server so nothing fancy.
If they're on the same server and you're confident it's secure then you don't need TLS. TLS on the same host is only to protect from other applications snooping on your messages. If it's not routing through the open web it's not exposed. Are you saying sourcehut doesn't support plain SMTP (no TLS)? If that's the case then you'll need a STARTTLS-capable reverse proxy.
from hydroxide.
smtplib.SMTPNotSupportedError: STARTTLS extension not supported by server.
It uses smtplib of python and part of the initial connection to the smtp mail server is smtp.starttls()
https://git.sr.ht/~sircmpwn/core.sr.ht/tree/master/item/srht/email.py#L118
from hydroxide.
Looks like you are going to need a reverse proxy running TCP TLS termination. These look pretty on point
- https://docs.nginx.com/nginx/admin-guide/security-controls/terminating-ssl-tcp/
- https://docs.nginx.com/nginx/admin-guide/mail-proxy/mail-proxy/
from hydroxide.
Thanks! I'll check them out.
from hydroxide.
Related Issues (20)
- Unable to install Hydroxide HOT 1
- `auth` fails with "This webpage is out of date" HOT 6
- Please update hydroxide in AUR HOT 1
- "This web page is out of date, please refresh the page to continue using it" HOT 1
- unknown sender address (in reply to end of DATA command)) whenever from address is blank HOT 1
- auth command returns 403 token scope issue HOT 1
- Unable to login to ProtonMail via hydroxide HOT 3
- Can't login to proton account on thunderbird HOT 25
- SMTP Banner wrong - eMail Server Setup Problem
- Unable to connect after reboot HOT 4
- Provide auth.json example HOT 2
- unable to log in from local client HOT 1
- For OpenWrt users HOT 2
- Subfolders? HOT 9
- 554 5.0.0 Error: transaction failed, blame it on the weather: cannot upload attachment: [2001] Invalid input
- Cannot log in to Proton Mail in Thunderbird with Hydroxide running as a service HOT 2
- A period in the mail address produce a dysfunctional access password HOT 2
- [Feature request] Setup guides
- Tor stream isolation support HOT 1
- How to bypass the CAPTCHA, please? HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hydroxide.