The Email Security Geek

Ramblings, guides and more about email security

One of the questions I constantly see being asked in deliverability resource groups is What does this bounce mean? and a copy of the bounce.

While bounces come in all shapes, sizes, forms and some are more useful than others, this guide will try to help you troubleshoot them before you ask for help.

Learn how to use the 1Password CLI to feed secrets to dnscontrol securely without writing them to disk.

Manage your DNS records across multiple providers with a single file and streamlined deployment with GitHub actions.

ProtonMail is an end-to-end encrypted email provider based in Switzerland that aims to bring secure, encrypted services to the masses. Founded in 2013 by CERN researchers, it currently has around 20 million users.

Web Key Directory (WKD) allows hosting of public PGP keys without maintinaing a Web Key Server (WKS). This way, compatible services can automatically fetch a recipient's public PGP key and seamlessly encrypt messages without needing to ask the recipient for their key beforehand.

Part of deploying MTA-STS is having access to a web server that is secured by SSL. If you don't currently have access to one, it becomes a roadblock in the deployment process. This article will show you how to use GitHub Pages to host the MTA-STS policy if you don't have a web server available.