Hi rfg, What did I mean by cloud-based postfix:
—> When you said “…"to some VM in the cloud someplace…”, I did presume you meant a Postfix server in the cloud…like on an AWS VM or similar… Security: —> With some VMs, you will have complete root-level rights on the server and can do what you wish in terms of server security. In terms of NW security, that will depend of course on the cloud\hosting provider that you happen to use. I use AWS which gives me a lot of NW control…for example, I have a low-cost FW on the front end of my Postfix box and then I also do a few things locally on the actual server all coming together to provide security for my email infrastructure. In terms of a accessing my email, I just configure IMAP on my client and point it to my Postfix + Dovecot server. This is very similar to many email accounts one might setup using IMAP. No local Postfix server or fetchmail required. Also, you do have the option of keeping the mail in the cloud or transfer it to your local machine. In the latter case however, one thing you would lose is being able to access that mail from any device you wish. I understand - and share - your concerns re: cloud-based mail security but those issues are manageable if proper infosec is implemented… > On Jun 9, 2019, at 2:29 PM, Ronald F. Guilmette <r...@tristatelogic.com> > wrote: > > > In message > <0100016b3e069855-f95cf3e2-9649-4a55-8290-24a9d44f80cc-000000@email. > amazonses.com>, Antonio Leding <t...@leding.net> wrote: > >> Just curious any reason to not use use the could-based Postfix >> server + something like Dovecot and then have your clients access that >> directly? I have this now for at least 20 domains and it works awesome. > > Firstly, I have no idea what you mean by "could-based Postfix". Was that > a typo? What did you mean, actually? > > Secondly, in answer to what I think your question was... security. I'm > not keen to have -any- of my mail piling up for any lenth of time on some > cloud server that I don't have complete and -physical- control over. > Paranoid? You bet. > > My plan... if I can figure out a way to do it... will be to have a Postfix > instance running on some cloud VM someplace (with static IP, of course) > and use that for inbound and outbound (smarthost), and meanwhile set up > something like fetchmail here on my home system to pull down all of the > pending inbound message for all of my domains, say, every 120 seconds > or so. That way nothing will actually stay on the cloud server for very > long, and if anyone manages to break into that, they won't find much in > the way of my confidential emails, because the lifetime of each (stored) > message there will typically be very very short. (Maybe Hillary Clinton > should have been so careful! :-) > >> I'm not understanding why the need to relay the mail to your >> local Postifix instance I'm sure there is a good reason >> but I'm just not seeing as yet > > I have tried to explain my thought process. > > Now that I have done so, I feel sure that someone will explain to me, very > logically, why I am a blithering idiot. That's OK, as long as I learn > something in the process. > > > Regards, > rfg
