mailcow

Currently mailcow is used in the Email Node by default in your Private Cyberspace (assuming you are an average home user).

Your application integrator should have your Email Node set up with usable defaults, so you should NOT need to touch it unless you are not satisfy with the result.

Usage

Receiving Emails in Cloud Services

Cloud Services can send legitimate incoming emails to junk or spam email folders. Some of the following tricks might help in whitelisting those emails.

1. Add the FROM email address into your address book to indicate that you know about the sender.
2. Move email into your PRIMARY inbox.

Versions

It is best practise try to go to the latest stable version of any software. The Mailcow versions are listed here:

• Tags · mailcow/mailcow-dockerized · GitHub

If you cannot keep to the latest, then at least have the following version or later installed:

• 2025-03a

SOGo

Mailcow comes with a builtin webmail so there is no need to install email clients on your devices in most cases.

Release

Mailcow normally bundles the latest release of SOGo.

Privileges

SOGo optionally allows external access to contacts and calendars by the use of Confidentiality Levels.

Confidentiality Levels:
"Public", "Confidential" and "Private".

1 to 4 Privileges can be assigned to each of the above Confidentiality Levels:
"DAndTViewer", "Viewer", "Responder" or "Modifier"

• "DAndTViewer"
  Can see date and time an event is scheduled, but nothing more.

• "Viewer"
  Can see date and time and subject and notes and attached
  links for events.

• "Responder"
  Can see date and time and subject and notes and
  attached links for events and can accept/decline invitations.

• "Modifier"
  Can see date and time and subject and notes and
  attached links for events and can accept/decline invitations and can
  modify all attributes of events.

If Privileges are not set, then it is none.

Encryption

SOGo S/MIME limitations:

• SOGo can only store one certificate at a time. Therefore you can not read old encrypted emails (== encrypted with an expired certificate).

• SOGo stores the private key unencrypted in its database.

• SOGo memorizes public keys only for addresses which exist in the personal addressbook (== used for sending encrypted emails).

With the other open source web based email client SnappyMail going out of maintenance (as of 2025-07-01), if you want good open source email with encryption support you should use Thunderbird.

Rspamd DNSBL

As of 2024-11-01, the following Domain Name System Blocklist (DNSBLs) are used by Mailcow:

1. bip.virusfree.cz
2. bl.blocklist.de
3. bl.ipv6.spameatingmonkey.net
4. bl.spameatingmonkey.net
5. dbl.spamhaus.org
6. dwl.dnswl.org
7. ebl.msbl.org
8. email.rspamd.com
9. fresh15.spameatingmonkey.net
10. hashbl.surbl.org
11. ix.dnsbl.manitu.net
12. list.dnswl.org
13. multi.surbl.org
14. multi.uribl.com
15. rbl.interserver.net
16. rbluri.interserver.net
17. rep.mailspike.net
18. score.senderscore.com
19. uribl.rspamd.com
20. uribl.spameatingmonkey.net
21. zen.spamhaus.org

Rspamd Modules

As of 2024-11-01, the following Rspamd Modules are loaded by default:

1. antivirus.lua
2. arc.lua
3. asn.lua
4. aws_s3.lua
5. bayes_expiry.lua
6. bimi.lua
7. clickhouse.lua
8. clustering.lua
9. dcc.lua
10. dkim_signing.lua
11. dmarc.lua
12. dynamic_conf.lua
13. elastic.lua
14. emails.lua
15. external_relay.lua
16. external_services.lua
17. force_actions.lua
18. forged_recipients.lua
19. fuzzy_collect.lua
20. gpt.lua
21. greylist.lua
22. hfilter.lua
23. history_redis.lua
24. http_headers.lua
25. ip_score.lua
26. known_senders.lua
27. maillist.lua
28. maps_stats.lua
29. metadata_exporter.lua
30. metric_exporter.lua
31. mid.lua
32. milter_headers.lua
33. mime_types.lua
34. multimap.lua
35. mx_check.lua
36. neural.lua
37. once_received.lua
38. p0f.lua
39. phishing.lua
40. ratelimit.lua
41. rbl.lua
42. replies.lua
43. reputation.lua
44. rspamd_update.lua
45. settings.lua
46. spamassassin.lua
47. spamtrap.lua
48. spf.lua
49. trie.lua
50. url_redirector.lua
51. whitelist.lua