Fullstack, security focused mailserver based on OpenSMTPD for OpenBSD using ansible
Excision Mail
Fullstack, security focused mailserver based on OpenSMTPD for OpenBSD using ansible
Installation
Go through the installation overview on the website: https://excision.bsd.ac/install/
Functionality highlights Full featured email server with modern encryption standards enforced
pop3s
, imaps
, smtps
.
smtp
and sieve
are STARTTLS with enforced TLS escalation.pop3
and imap
are disabled for additional security.mta-sts
for fully encrypted email transfer channels.managesieve
.user+tag@...
in both sending and receiving emails.
.
, -
or _
for additional privacy.Excision Mail aims to use as much of the base OpenBSD system and as few dependancies from ports as possible for maximum security.
Base system
Ports
imaps
, pop3s
and sieve
server to allow access from clients outside the server.gpg-wks-server
.mta-sts
and publishing public keys.Design goals
Be replicable and stable to build and upgrade.
There should be no differences between upgrading a previous install and starting an install from scratch, if using the same configurations for both pathways.
Be well documented. Every part of the setup should be clear and explained.
Excision Mail tries to follow OpenBSD philosophy of being well documented and explaining all the choices that have been made.
If it does not have good documentation, then it is still buggy
Requirements
OpenBSD 6.6 (may run on -current, but it will not be prioritized)
System requirements (good for about 50 users)
Contact and support
The primary mode of contact for reporting bugs and getting support is through GitHub.
Excision Mail has a matrix channel #excision-mail.
Twice a month we will interview people behind open source businesses. We will talk about how they are building a business on top of open source projects.
We'll never share your email with anyone else.