All this new excitement with Lemmy and federation has got me thinking that maybe I should learn to run my own instance. What always comes up though is how email is the orginal federated technology.

I am looking at proxmox and see that is has a built in email server, so now I am wondering if it is time to role my own.

I stopped using gmail a long time ago, and right now I use ProtonMail, but I am super frustrated with the dumb limitation of only having a single account for the app. I get why they do it, and I am willing to pay, but it is pricey and I don’t know if that is my best option. I guess it is worth it since ProtonVPN is included. It looks like they are expanding their suite.

Is it worth it? Can I make it secure? Is it stupid to run it off a local computer on my home network?

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      arrow-up
      0
      ·
      2 years ago

      Could you share you solution? You don’t have to! I am just curious how you do it since a lot of people seem to hate it, compared to self-hosting everything else.

      • anders@rytter.me
        link
        fedilink
        arrow-up
        0
        arrow-down
        1
        ·
        2 years ago

        @DidacticDumbass But yeah you’re right. It’s a mess nowadays with email hosting because Google for example just rejects everything except the other big services even if you comply with DKIM etc. Fuck them honestly

  • amd@lem.amd.im
    link
    fedilink
    English
    arrow-up
    4
    ·
    1 year ago

    It’s a great learning exercise but challenging to get right and ensure your deliverability and basically impossible from a residential-grade IP address (if you have a business class static IP at home you could pull it off).

    I ran an email server for decades but gave in and pay to host my email now.

    If google decides you’re a bad guy it’s such a pain to crawl back from that and I prefer my email to just work.

  • Ronon Dex@mlem.a-smol-cat.fr
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    Hosting a mail server is really easy. Making sure Hotmail, Gmail and others accept your emails is a nightmare.

    I don’t host my own email, I just delegate my email management to a small provider.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I am learning this is the case. I think I may be better off running a Nextcloud instance, or similar suite using better applications for stuff like file sharing, which is more important.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I am learning this is the case. I think I may be better off running a Nextcloud instance, or similar suite using better applications for stuff like file sharing, which is more important.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I am learning this is the case. I think I may be better off running a Nextcloud instance, or similar suite using better applications for stuff like file sharing, which is more important.

  • eursec@lemmy.anymore.nl
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    I host my own mailserver, and to be honest it’s pretty painless. Usually I just let it run without giving it any thought. It’s on rare occasions that I need to put a bit of work into improving the inbound spam scanning.

    Selfhosting does need quite some knowledge of the software stack and several additional protocols to set them up correctly to get your outgoing email delivered. Also, like already mentioned in another comment, you absolutely need an IP address from a non-blacklisted subnet (I think most VPS providers will be okay, residential definitely not).

    My software stack: Arch Linux (soon NixOS), Postfix, Dovecot, rspamd, opendkim, opendmarc.

    Additional techniques configured: SPF, DKIM, DMARC, DNSSEC.

    As you can see it’s quite a lot, and I’ve been doing for more than 20 years now, so my opinion can be a bit skewed. I’d say go for it if selfhosting is a hobby.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      I have been learning about it, and what really has motivated was seeing my current provider ProtonMail have an anniversary sale, and just having the least affordable pricing just to get a couple features I need. I have never been a fan of cloud storage, I have never needed an online service to handle my calendars or whatever else.

      I need to do do this out of principle.

      You are right, that is a lot of software in use. However, I have been given a lot of recommendations. I got my own domain name. I am almost ready. I just need to setup a few more things. I am taking a long time to do this, I got distracted with other self-hosted applications, but I do want to try running a mailserver.

  • NochMehrG@feddit.de
    link
    fedilink
    English
    arrow-up
    0
    ·
    2 years ago

    I don’t. But I do have my domain and use a hosted solution, so I’m kind of independent and own my data.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 years ago

      That sounds like the right middle ground for me. I know for sure my home network is not as secure as it could be, especially since I live with people who need everything online to work without obstacles. I can’t even install PiHole.

      But, hosting is probably more affordable in a year than the amount I might spend on coffee in a week. And I typically make my own coffee.

  • Sascamooch@lemmy.sascamooch.com
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 years ago

    As much as I enjoy self hosting my own services, email just seems like more trouble than it’s worth. I let Protonmail take care of that for me.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 years ago

      Yeah. I am getting great suggestions, but also a lot of hard truths. I think a basic paid email is probably less than I would ever pay to get the setup right.

  • Admiral Patrick@dubvee.org
    link
    fedilink
    English
    arrow-up
    3
    ·
    edit-2
    2 years ago

    Yes, I still run my own email server. It is not for the faint of heart, but once it’s configured and your IP reputation is clean, it’s mostly smooth sailing. I have not had any deliverability problems to date, initial setup/learning period notwithstanding.

    If you’re not scared away yet, here are some specific challenges you’ll face:

    • SMTP ports are typically blocked by many providers as a spam prevention measure. Hosting on a residential connection is often a complete non-starter and is becoming more difficult on business class connections as well (at least in the US, anyway).
    • If you plan to host in a VPS, good luck getting a clean IPv4 address. Most are on one or more public blacklists and likely several company-specific ones (cough Microsoft cough). I spent about 2 weeks getting my new VPS’s IP reputation cleaned up before I migrated from the old VPS.
    • Uptime: You need to have a reliable hosting solution with minimal power/server/network downtime.
    • Learning Curve: Email is not just one technology; it’s several that work together. So in a very basic email server, you will have Postfix as your MTA, Dovecot as your MDA, some kind of spam detection and filtering (e.g. SpamAssassin), some kind of antivirus to scan messages/attachments (e.g. Clamd), message signing (DKIM), user administration/management, webmail, etc. You’ll need to get all of these configured and operating in harmony.
    • Spam prevention standards: You’ll need to know how to work with DNS and create/manage all of the appropriate records on your domain (MX, SPF, DMARC, DKIM records, etc). All of these are pretty much required in 2023 in order for messages from your server to reach your recipient.
    • Keeping your IP reputation clean: This is an ongoing challenge if you host for a lot of people. It can only take one or two compromised accounts to send a LOT of spam and land your IP/IP block on a blacklist.
    • Keeping up with new standards: When I set my mail server up, DMARC and DKIM weren’t required by most recipient servers. Around 2016, I had to bolt on OpenDKIM to my email stack otherwise my messages ended up in the recipient’s spam folder. -Contingency Plan: One day you may just wake up and decide it’s too much to keep managing your own email server. I’m not there yet, but I’ve already got a plan in place to let a bigger player take over when the time comes.
    • phase_change@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      Yep. I’ve hosted my own mail server since the early oughts. One additional hurdle I’d add to you list is rDNS. If you can’t get that set up, you’ll have a hard time reaching many mail servers. Besides port blocking, that’s one of the many reason it’s a non-starter on consumer ISP.

      I actually started on a static ISDN line when rDNS wasn’t an issue for running a mail server. Moved to business class dsl, and Ameritech actually delegated rDNS to me for my /29. When I moved to Comcast business, they wouldn’t delegate the rDNS for the IPv4. They did create rDNS entries for me, and they did delegate the rDNS for the IPv6 block. Though the way they deal with the /56 IPv6 block means only the first /64 is useable for rDNS.

      But, everything you list has been things I’ve needed to deal with over the years.

      • Admiral Patrick@dubvee.org
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        2 years ago

        Yeah, I totally forgot about reverse DNS. Good catch. I probably left out a few other things what with the repressed trauma of it all. lol.

        I had to deal with Suddenlink business, and they were (somehow) surprisingly worse than what you described for Comcast (I didn’t know that was possible, TBH). Suddenlink wouldn’t even unblock the SMTP ports at all let alone delegate rDNS to our static.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      arrow-up
      1
      ·
      2 years ago

      That was a sobering read. We all feel victorious when we see big tech fail after they wronged their users, but fundamental technologies that actually run the world have already been lost, and may never be recoverable for egalitarian use.

  • FluffyPotato@lemm.ee
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 years ago

    I used to run my own mail server about 2 years ago but unfortunately the spam got so bad I didn’t have the time to manage all the filters. I moved over to ProtonMail since I can still use my own domain there. So I guess I would say it’s not really worth it also it really sucks if your power is out and not having access to sent your power company a strongly worded email.

  • neutron@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    2 years ago

    I did for a couple years, but moved to mailbox.org a while ago. The effort was much to high to save a few bucks and there is no real upside to it. E-Mail is a troublesome mixture of different protocols from the internet stone age held together by chewing gum (SMTP, POP3, IMAP, DNS, database or file storage, maybe ActiveSync, Web-Mailer, …)

    Even when everything is up and running there is always maintenance to keep your SSL certificates up to date, update your incoming spam filter technique, keep other mail providers assured that you are not spamming (DKIM, etc.), keep all the different system services (see above) up to date and interoperable, etc. and every few years when you want to move to a new server, provider or Linux distro you start it all over again.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      Damn, it is so bizarre that email of all things would be the least operable by tech savvy individuals. Someone linked an article that explains it, and it truly is depressing. Like, it makes me not want to even have email… which is not really possible if I want to be employed. Eh, it’s not like I DON’T already have free email accounts, I just don’t always like the decision my provider makes.

      • neutron@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 years ago

        Well, there are plenty of providers out there there should be one that suits you. Having a domain of your own with DNS access and letting the provider doing the hosting is not (so) hard and gives you the flexibility to switch any time.

        • DidacticDumbass@lemmy.oneOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          2 years ago

          That is cool. Everytime I have created a new email account, it has been an island. Never learned to preserve emails… Well, except the one time I use Thunderbird. I should set that up again. Maybe it would solve my issue of multiple accounts??

          In any case I like consolidation and I don’t like logging into a website everytime if I can avoid it.

  • thekernel@lemmy.ml
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    2 years ago

    Not worth the hassle - best compromise is to get your own domain but use a provider like fastmail to host it.

    If they turn sour you can move your domain to another mail host.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      I think this is the solution I was thinking about in the first place. I was just musing about it being part of a home lab. I have to consider whether this solution is is better than just paying for secure email.

      • thekernel@lemmy.ml
        link
        fedilink
        English
        arrow-up
        0
        ·
        2 years ago

        There are advantages to having your own domain - you can use something like vendor8832@yourdomain.com so each site you sign up to gets their own unique “to” address, that way you can easily send their mail to trash when you dont’ need to deal with them anymore, and will also let you know what company had a data breach if that unique email address starts to get spam.

        • DidacticDumbass@lemmy.oneOP
          link
          fedilink
          English
          arrow-up
          0
          ·
          2 years ago

          This is what I want! I want that granular control of having an email address compartmentalized for specific kinds of communication. I mean, I know it is something provided by basically all email providers, but I don’t know, for sure there are limitations. A unique address for each website seems like such a smart thing to do, on top of being stingy with giving out my email address.

          • timbuck2themoon@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            1
            ·
            2 years ago

            Protonmail at certain levels gives you simple login with unlimited aliases. Something to look into. I love it and have been with them for years.

    • styraco@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 years ago

      Aren’t you afraid about some important email getting discarded without you knowing about it? Or about unnoticed downtime which results in missed mails?

  • leopardboy@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 years ago

    I used to run my own mail server many, many years ago (early 2000s), but today it’s a lot more difficult. I personally don’t think it’s worth it, but I do have my own domain that I can host anywhere I choose. At the moment, I’m using Fastmail. Lots of nice features, and no complaints.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      Yeah, I think getting my own domain is the first step I have never taken. Closest thing to web development I have done is a Neocities I have not messed with since getting an account.

      • leopardboy@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        2 years ago

        You definitely don’t need to worry about a web site if you want to just use the domain for email.

        Feel free to hit me up if you have any questions about it. Some providers make it pretty easy I think to setup and manage all of that together, while others require some manual work on your part.

        • DidacticDumbass@lemmy.oneOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          2 years ago

          Thank you for the offer! There seems to be a lot of packages that automate all the hard stuff, so I think the hardest part is actually getting my own domain and paying for a remote server.

          Any suggestions on that?

  • Number1@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    2 years ago

    I use Cloudflares email routing.

    Point my domains name servers to Cloudflares and enable email routing. I can then create any email address in that domain and have it forward to any of my email addresses. Works great when signing up for accounts. The only thing you can’t do is fire off email FROM said email address

    Edit: can to can’t

  • njaard@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 years ago

    Yes, and I love it.

    I use mailjet as a proxy on outgoing emails so that I get fewer of my sent messages rejected, which works.

    It was a pain to setup but it’s treating me very well.

    • DidacticDumbass@lemmy.oneOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      Neato! I was so concerned about the logistics of sending and receiving emails, it never occurred to me that I could get fancy and make nice looking emails. All I use is text, yet I can do so much better.

      • njaard@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        2 years ago

        No, I only write plain text emails, mailjet only has ip addresses that are generally not blocked by the big providers and they do all the DCIM stuff.

        • DidacticDumbass@lemmy.oneOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          2 years ago

          I get that, I will definitely need to choose a service that helps to not get sending blocked. Still, I was amused that templates were such a big selling point.