Mailu: Feature: (optionally) include Dovecot encryption plugin / MailCrypt

Created on 5 Jun 2019  ·  9Comments  ·  Source: Mailu/Mailu

I just stumbled over this Dovecot encryption plugin which allows to have encrypted mailboxes.
As @paulolieuthier mentioned, there's also MailCrypt (which is officially created and maintained by the Dovecot folks and there are already some GUIs like userli that could be used as a reference or even integrated).

MailCrypt has different modes. The global mode is probably much easier to implement for now but of course the user mode (i.e. in combination with Userli) is security wise even better. So if someone considers working on it, it might be better to split this issue up in

  1. "global encryption" for now and
  2. "user encryption" for later or so.

There are various tutorials howto setup MailCrypt and maybe it would make sense to take a look on the implementation of mailcow (1791).

This feature might be especially useful for the folks that focuses on security. Issues like #391, #506 and #703 show that there is some interest in encryption in general.

backlog typfeature
Source
picture alexanderadam
👍2

Most helpful comment

Hi There,

The Mailu-Project is currently in a bit of a bind! We are short on man-power, and we need to judge if it is possible for us to put in some work on this issue.

To help with that, we are currently trying to find out which issues are actively keeping users from using Mailu, which issues have someone who want to work on them — and which issues may be less important. These a less important ones could be discarded for the time being, until the project is in a more stable and regular state once again.

In order for us to better assess this, it would be helpful if you could put a reaction on this post (use the :smiley: icon to the top-right).

  • 👍️ if you need this to be able to use Mailu. Ideally, you’d also be able to test this on your installation, and provide feedback …
  • 🎉 if you find it a nice bonus, but no deal-breaker
  • 🚀 if you want to work on it yourself!
    We want to keep this voting open for 2 weeks from now, so please help out!
picture Nebukadneza on 18 Aug 2020
👍2 🚀1 🎉1

All 9 comments

May I ask your opinion in using this plugin vs. an encrypted maildata share (like Cryptsetup LUKS)?

blinkeye picture blinkeye on 30 Jun 2019

Sure: if I understood this correctly, the Dovecot encryption plugin encrypts the mailbox for each user individually. Meaning: even admins or hoster aren't able to read any email from another user.

Using just an encrypted mountpoint (like LUKS) however doesn't provides this at all, because admins can naturally access all data on it.

alexanderadam picture alexanderadam on 1 Jul 2019
👍4

There's also MailCrypt.

paulolieuthier picture paulolieuthier on 11 Jul 2019
👍1

There's also MailCrypt.

nice. I wouldn't care which variant would be integrated. Both sound suitable :+1:

alexanderadam picture alexanderadam on 11 Jul 2019
👍2

Hey,

Maybe we can also suggest Zeyple? See: https://github.com/infertux/zeyple

It was suggested by one of our user.

Angedestenebres picture Angedestenebres on 11 Jul 2019

@Angedestenebres this is something different though: Zeyple is about _outgoing_ emails whereas Dovecot encryption / MailCrypt are about _stored_ emails.

I agree that those might be used together but I guess this should be a separate ticket.

alexanderadam picture alexanderadam on 12 Jul 2019
👍2

After some discussion, zeyple is deemed both useless and possibly largely insecure.

MailCrypt might still be included if someone wishes to make a PR.

kaiyou picture kaiyou on 7 Feb 2020
👍1

Hi There,

The Mailu-Project is currently in a bit of a bind! We are short on man-power, and we need to judge if it is possible for us to put in some work on this issue.

To help with that, we are currently trying to find out which issues are actively keeping users from using Mailu, which issues have someone who want to work on them — and which issues may be less important. These a less important ones could be discarded for the time being, until the project is in a more stable and regular state once again.

In order for us to better assess this, it would be helpful if you could put a reaction on this post (use the :smiley: icon to the top-right).

  • 👍️ if you need this to be able to use Mailu. Ideally, you’d also be able to test this on your installation, and provide feedback …
  • 🎉 if you find it a nice bonus, but no deal-breaker
  • 🚀 if you want to work on it yourself!
    We want to keep this voting open for 2 weeks from now, so please help out!
Nebukadneza picture Nebukadneza on 18 Aug 2020
👍2 🚀1 🎉1

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

stale[bot] picture stale[bot] on 23 Sep 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

styxlab picture styxlab  ·  4Comments
v1ru535 picture v1ru535  ·  4Comments
SJS28092018 picture SJS28092018  ·  3Comments
c-holtermann picture c-holtermann  ·  3Comments
githtz picture githtz  ·  4Comments