I use Proton as well and it’s been great, but setting up their bridge for IMAP access in a way that worked for my setup was needlessly annoying (run on a headless server and access it from other devices within the network and docker containers on said server).
I’ve been thinking about setting it up on my server to access it with several devices too, since I’m using their default client for now. Do they have a Docker image that’s easy to set up?
I wish I could access it from anywhere by exposing it on my domain name, but I’m pretty sure that’d not be the best security wise…
I would never expose it outside my network. The password used for authentication is too easy to brute force. If you really want to access it from anywhere, set it up for access within your network and then maybe use a VPN tunnel for devices outside the network. But anyway, setting up local access is problematic because it binds to localhost and gives you no option to change the binding address. There are several ways around this:
Set it up behind a reverse proxy (I didn’t want to bother with this)
Build the bridge from source after changing the binding address in the source code see https://github.com/ProtonMail/proton-bridge/pull/270 (seemed like the best option, but then I decided option 3 was better)
Easiest option in my opinion: Set up local port forwarding with a redirection tool like rinetd, bind it to 0.0.0.0, only allow local IPs (you’d need port forwarding to access from outside anyway, but…), and redirect traffic from a particular port to the IMAP/SMTP server ports, for example:0.0.0.01142 127.0.0.11143 (bindaddress bindport connectaddress connectport); last step was to set it up as a systemd service.
I went with the third option and it seemed like so much hassle for such a simple requirement, honestly. If you decide you want to do this, feel free to ask for my configuration files.
Yeah, the password is the one thing I was worried about. I already have a VPN set up so I might just go with that for external access.
Since I already have a reverse proxy I might go with option 1, seems like the easiest to set up! If it doesn’t work that well I’ll go with option 3! Thanks a lot!
Seconding fastmail, almost 10 years with them and very happy :) It’s one of the very few companies there are no negative comments about when something shows up on HackerNews ;)
Fastmail and proton mail are usually recommended when this question comes up among technical groups.
I use Proton as well and it’s been great, but setting up their bridge for IMAP access in a way that worked for my setup was needlessly annoying (run on a headless server and access it from other devices within the network and docker containers on said server).
I’ve been thinking about setting it up on my server to access it with several devices too, since I’m using their default client for now. Do they have a Docker image that’s easy to set up? I wish I could access it from anywhere by exposing it on my domain name, but I’m pretty sure that’d not be the best security wise…
I would never expose it outside my network. The password used for authentication is too easy to brute force. If you really want to access it from anywhere, set it up for access within your network and then maybe use a VPN tunnel for devices outside the network. But anyway, setting up local access is problematic because it binds to localhost and gives you no option to change the binding address. There are several ways around this:
0.0.0.0 1142 127.0.0.1 1143(bindaddress bindport connectaddress connectport); last step was to set it up as a systemd service.I went with the third option and it seemed like so much hassle for such a simple requirement, honestly. If you decide you want to do this, feel free to ask for my configuration files.
Yeah, the password is the one thing I was worried about. I already have a VPN set up so I might just go with that for external access.
Since I already have a reverse proxy I might go with option 1, seems like the easiest to set up! If it doesn’t work that well I’ll go with option 3! Thanks a lot!
Seconding fastmail, almost 10 years with them and very happy :) It’s one of the very few companies there are no negative comments about when something shows up on HackerNews ;)
Just switched the Mailserver for my domain to proton (they offer hosting on custom domains), the email service is pretty good after you set things up.
Sadly, their other cloud services Lack Integration.
Also using Proton, it’s been fine
I’ve had a fastmail account for many years and never had any issues. Fairly solid and reliable.