@ph00lt0 all good now!
Also we posted a comparison (with tests against other PG recommended email providers) at https://discuss.privacyguides.net/t/email-provider-security-tests/16033.
A few notes:
- DANE tested and verified working across all servers, ports, and alternate ports (e.g. SMTP, IMAP, POP3, API, Web). Note that we have both DANE and MTA-STS (with mode
enforce
). - GPG signed
security.txt
added at https://forwardemail.net/.well-known/security.txt and mirror at https://forwardemail.net/security.txt - Weโve also allowlisted (whitelisted) all the test tools (e.g. Internet.nl, Hardenize, Huque, MX Toolbox, etc). Some of them were previously getting greylisted, which affected DANE testing.
- New tests can be found at Email test: forwardemail.net (mail) and Website test: forwardemail.net (site). Also see Hardenize at Hardenize Report: forwardemail.net.
- Implemented a unique approach for ensuring CSP with Mermaid Diagrams, see https://github.com/mermaid-js/mermaid/issues/3650#issuecomment-1878524239.
- Note that Proton Mail scores below 90% for Internet.nl tests, see https://discuss.privacyguides.net/t/email-provider-security-tests/16033#proton-mail-closed-source-back-end-4.
- We also score 100% on Hardenize now and implemented CAA as well. See Hardenize Report: forwardemail.net for latest test.
- 115/100 A+ on Mozilla Observatory at https://observatory.mozilla.org/analyze/forwardemail.net
Weโre looking into the PGP encryption for forward-email
TXT records, but this shouldnโt be an issue for including us, as we are much more than just email aliases, and have met all the other criteria documented and exceed tests when compared to other providers currently listed by PG.
Let us know of anything else or other concerns you have? Thank you