espiv.net – Page 4 – κινιματικές υποδομές

Is it possible to automatically forward my emails to other accounts?

There is no way to forward emails to other email providers, there is no such possibility, nor is it a future plan.

At espiv we take the security and secrecy of communications very seriously, and we have implemented a series of features towards that direction and for the mail service that we provide, so we see no reason or usefulness in someone having an espiv email if the intend to forward it to somewhere else.

Generally, it isn’t a good practice to forward the emails that we receive to other servers, since, that way, we are sending data to a third person (especially when using commercial providers…).

Having an account at a provider that we trust is a basic step, but the way we ourselves use it is equally important.

New safe connection certificates for espiv.net and espivblogs.net

Hello!

In espiv.net we are using only encrypted TLS connections for all services.
The certificates issued for these services come with an expiration date and renewal is required.

As of today, 5 July 2015 all espiv services use the newly issued certificates, two wildcard certificates are being used one for the domain espiv.net and one for our blogs domain espivblogs.net.

Please make sure that you are using only safe connection protocols (such as HTTPS) with the following certificate fingerprints:

espivblogs.net (Common Name *.espivblogs.net)

SHA256 Fingerprint
B6:EE:9A:3E:9D:41:68:C9:06:FF:CA:85:0A:1E:7E:36:11:7F:DE:35:E0:37:A3:C7:E8:DF:A1:7C:43:2B:B6:DE

SHA1 Fingerprint
9D:64:5B:B0:4A:99:BE:34:CB:FF:8E:FC:89:80:2C:DE:45:3B:74:67

espiv.net (Common Name *.espiv.net)

SHA256 Fingerprint
C3:A6:30:4E:AC:61:C2:6E:73:BF:48:5B:D2:51:5B:EB:21:A2:96:8B:7C:19:4D:0E:88:16:65:40:E1:BD:85:F4

SHA1 Fingerprint
6C:32:01:E8:A5:9B:BC:F0:ED:C1:46:8B:3B:16:0F:69:D8:8E:78:39

This change will be active on all websites, blog, webmail, email, mailing lists, and forums that are administrated by espiv.

More information about espiv security can be found here: https://espiv.net/node/248

Is webmail safe to manage emails collectively?

If you are using IMAP to connect to the remote server you will have the same result by using webmail. Everyone will be able to view the same folders.

Webmail is not directly related to email security (On the contrary, one could say that webmail is a rather unsafe way to read emails).

Email security depends on the following factors:

1. Where emails are stored

2. What form they are in / who can read them

3. How emails travel through the internet

a)Using thunderbird or webmail doesn’t change something at this point.
Do you trust the team that manages the server? The company that hosts it?

b)It is almost certain that the emails you receive are not encrypted(GPG). Meaning they are in plaintext form on the internet.
That means that the management team of the server can read them. That also means that whoever can gain access in an irregular way to the server,will be able to read the emails aswell. Are the disks of the server encrypted? If the police or the employees of the company come and pull out the disks, will they be able to view their content? Webmail cannot add any type of security on these questions.

c)How do you connect to mailserver? Do you use encrypted connection SSL/TLS? That depends on whether the connection is encrypted between the email client and the remote server. If it is not encrypted then any person in between will be able to view your password and your emails as they are being downloaded to the email client. If you wish to use webmail you should be using HTTPS to connect to it.

At espiv we use roundcube for webmail but we encourage the users to use email clients like Thunderbird and download their emails locally on their computer. We also encourage the use of encryption of publickey, and Tor for anonymity.

At espiv we put effort into keeping the emails that we host as secure as possible. We use full disk encryption, we ourselves are managing the machines, that are accommodated in trusty locations. The use ofencrypted connection TLS is mandatory and we verify the encrypted communication between our server and other radical providers (Riseup,Autistici, aktivix, etc.). Especially when it comes to webmail, weare using different ways to try and seclude it, since any form of web application is often the weak point of a system.

Recovery of services update

Αs of 01/06/2015, espivblogs are up and running. The rest of the services that still require our care, will be unavailable for a little while:

all wordpress, joomla and drupal websites

file.espiv.net file sharing service

We’ll do our best to keep downtime period short and make our services again
accessible.

This maintenance did not affect:

espiv email service

espiv mailing lists

status.espiv.net

Thanks in advance for your understanding and support,

espiv.net collective

I forgot my forum login password, how can I get a new password?

Follow this link https://your_forum.espiv.net/index.php?action=reminder ,where your_forum is the name of your forum, and fill in your email. You will receive an email with instructions, simply follow them.