this post was submitted on 30 Mar 2025
175 points (100.0% liked)

Selfhosted

60281 readers
544 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
 

What's up, what's down and what are you not sure about?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] tburkhol@lemmy.world 5 points 1 year ago (1 children)

It kind of amazes me that, in this day and age, email has turned out to be the lynchpin of security. Email as a 2FA endpoint. Email password reset systems. If email is compromised, everything else falls. They used to tell us not to put anything in email that you wouldn't put on a postcard...how did this happen?

[โ€“] dan@upvote.au 2 points 1 year ago

That and email protocols are outdated and aren't too secure. For example:

  • Neither SMTP nor IMAP have no way to use two factor authentication.
  • Spam blocking is so hard because SMTP was not designed with it in mind.
  • SMTP has no way to do end-to-end encryption which is why you need to layer things like GPG on top.

IMAP has a modern replacement in JMAP, but it's not widespread. SMTP is practically impossible to replace since it's how email servers communicate with each other.

The "solution" has been for companies to make their own proprietary protocols and apps, for example the Gmail and Outlook apps combined with a Gmail or Microsoft 365 account respectively.