Solved Secure Mail Service

[alenetwork]

I need to change email, because i dont like anymore mail service like google,outlook,yahoo ecc...
I found a site (www.cock.li) it have funny mails, its secure and i like the service but i dont want to have an email and maybe tomorrow lose that (maybe for no funds or many another problems...) so im searching a stable and secure email service, i searched on internet and i found protonmail, tutanota ecc....
What do you recommend? @Asphyxia and above all I'm asking you, what do you recommend?

 

[Supervisor]

Although I am not Asphyxia,
I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc

And the strongest argument, I use it myself.

 

[alenetwork]

Although I am not Asphyxia

This does not matter, all opinions are important, but the @Asphyxia answer is the one that interests me most.

I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc
And the strongest argument, I use it myself.

I searched a little of Protonmail and i really like it, but i want to see what other people says, not only for me but for all the R4P3.net community so people can think for change gmail and others shitty mail service (for privacy) xD

 

[dino94]

You dont need any other, like @Supervisor said, protonmail is the best. When they launched it, i've got my email login acces on the second wave!

 

[Asphyxia]

Personally I recommend hosting your own email server(s) taking into consideration all the important aspects of securing your private mail server/service --- this is no easy task, do not do this thinking you can just click install and be done, this will require research/studying server hardening and how email systems work with a deep security understanding of all aspects of emails/domains/networking. There are so many security considerations to think about though. To name a few:
TLS/SSL --- https://www.yahoo.com/tech/explained-how-tls-keeps-your-email-secure-88310223169.html
http://its.yale.edu/secure-computin...afe-mobile-computing/secure-web-email-ssl-tls
Without proper protections, emails may be intercepted via MitM also.

If you want something to add some extra protection on top of your emails consider the use of PGP (Pretty Good Privacy), read: http://lifehacker.com/180878/how-to-encrypt-your-email

Of course you must also consider all points of CIA (Confidentiality, Integrity and Availability) --- can anyone else possibly hijack/intercept the email(s)? Think of all types of poisoning and hijacking, there are so many elements. What if someone hijacks the domain which emails are being sent to, then they simply change the MX? Ouch, you just got fucked really hardcore. Now all updates from Twitter, Facebook and possibly bank information come trickling into the now hijacked domain MX record(s) which put all emails into the hands of the hacker(s). Now they can simply do an email reset on your accounts and steal your audience or deface your social media walls. Imagine them getting your social media accounts deleted or suspended? That would surely put a dent into your social media campaign(s).

What about antivirus or anti-spam protections? Imagine someone starts trying to phish and infect all of your email accounts?

Consider all of the unnecessary services running on the system(s) involved. Fuck --- yeah, here is a starter guide to system hardening (a nice checklist): https://www.sans.org/media/score/checklists/linuxchecklist.pdf

So.. if you want to setup your own service for anonymity/privacy concerns, investigate/research security. Then apply the best possible security to your server(s) to have a secure personal email service. This ensures your email is yours. Understand that the Internet is not a very secure place though. When you connect your system to other systems, right away you're opening yourself to many risks. Your goal is to mitigate the most risks you possibly can.

http://prxbx.com/email/ offers many options for email providers, but if you want to run your own I would consider looking into this project: https://www.zimbra.com/open-source-email-overview/

I would additionally consider anyone interested to check out this "secure" client which lists some self-hosted email options: https://www.mailpile.is/download/
Here are the listed options:

• http://www.iredmail.org/
  
• https://mailinabox.email/

I have not tested all of the above mentioned services/options, research them and use them at your own risk. I do highly encourage someone to figure out how to setup a secure email delivery/reception system and explain or make a tutorial on how to do this.

 

[VANKO]

Secure mail service ? - put in on your own server. Just install dovecot + postfix (using TLS with self-signed cert of course) and for security something to filter spam and viruses - amavis (with spamassassin libraries) + clamav (antivirus). Just know how to set it up and voilà.
To manage mailbox you can use roundcube or squirrelmail.

Oh, and I forgot about DNS. Using bind you shoul set DKIM key + DMARC + SPF records. That would help you make your mails not going to spam folders.

 

[Qraktzyl]

Although I am not Asphyxia,
I really recommend Protonmail. It is a swiss based Email Provider. They encrypt your mailbox on their servers. They also dont have the password, so if you forget your mailbox password - your mail is actually lost. There is no recovery via email etc

And the strongest argument, I use it myself.

There actually has recovery by an external e-mail address.

 

[Asphyxia]

One last thing, I also recommend using a service by the name of Zoho. You just need a domain (or not) and then sign up here: https://www.zoho.com/ --- another favorite option of mine is https://mail.yandex.com/ +PGP ( see http://askubuntu.com/questions/186805/difference-between-pgp-and-gpg ) --- if you don't like either of those, then tough luck. Refer back to http://prxbx.com/email/ for a full list of providers.

 

[alenetwork]

Personally I recommend hosting your own email server(s) taking into consideration all the important aspects of securing your private mail server/service --- this is no easy task, do not do this thinking you can just click install and be done, this will require research/studying server hardening and how email systems work with a deep security understanding of all aspects of emails/domains/networking. There are so many security considerations to think about though. To name a few:
TLS/SSL --- https://www.yahoo.com/tech/explained-how-tls-keeps-your-email-secure-88310223169.html
http://its.yale.edu/secure-computin...afe-mobile-computing/secure-web-email-ssl-tls
Without proper protections, emails may be intercepted via MitM also.

If you want something to add some extra protection on top of your emails consider the use of PGP (Pretty Good Privacy), read: http://lifehacker.com/180878/how-to-encrypt-your-email

I was thinking too for doing my own mail servce for stay more secure but i dont have so much time for doing test and fix problems just for an address xD
But i appreciated your response and saved it because in a near future i will do something like this

Secure mail service ? - put in on your own server. Just install dovecot + postfix (using TLS with self-signed cert of course) and for security something to filter spam and viruses - amavis (with spamassassin libraries) + clamav (antivirus). Just know how to set it up and voilà.
To manage mailbox you can use roundcube or squirrelmail.

Oh, and I forgot about DNS. Using bind you shoul set DKIM key + DMARC + SPF records. That would help you make your mails not going to spam folders.

Thanks you too for this mini-tutorial this could help me for the future

One last thing, I also recommend using a service by the name of Zoho. You just need a domain (or not) and then sign up here: https://www.zoho.com/ --- another favorite option of mine is https://mail.yandex.com/ +PGP ( see http://askubuntu.com/questions/186805/difference-between-pgp-and-gpg ) --- if you don't like either of those, then tough luck. Refer back to http://prxbx.com/email/ for a full list of providers.

I tried yandex + pgp, but it does not seem much safer than gmail and outlook, but i will retry

You dont need any other, like @Supervisor said, protonmail is the best. When they launched it, i've got my email login acces on the second wave!

You are wrong xD, just see the other reply, but thanks you too

I think you can close this
@Supervisor @Asphyxia @Qraktzyl

 

[Derp]

You are wrong xD, just see the other reply, but thanks you too

Actually he's pretty right! I mean, you can go ahead and configure a mailserver to do all the stuff protonmail would do, But as you might've noticed that's not that simple. If you're looking for a quick/secure solution then I suggest you use protonmail.

Protonmail IS the best!