Looks like some decent improvements.
I tried mailbox.org a while back, but found the general interface and overall experience to be mediocre.
I’ll have another look to see how the experience is in 2025.
Finally! The previous 2FA solution was really outdated and user-unfriendly.
Now with App passwords and the new 2FA I think they cover pretty much all recommended/necessary security feature for an email provider.
Or am I missing something?
They are still not respecting DMARC
What consequences/risks does this bring?
if true that they’re not respecting dmarc, this does have an effect on how other email providers treat it, for the most part your mailbox email would go to spam.
There are no consequences for how other email providers treat your emails from mailbox.org. Their DMARC record and other settings for outgoing mail are set appropriately.
It’s their incoming spam filters which don’t 100% respect DMARC records, meaning you could receive spoofed emails in your inbox that aren’t blocked or marked as spam.
how can i detect spoofed email, if its not filtered by mailbox🤔. sorry i am not aware all email security terms.
it will be a daunting task you would have to compare the sender of the email with the dns records manually. It will simply not work imho.