this post was submitted on 11 Feb 2024
        
      
      332 points (98.0% liked)
      Technology
    76339 readers
  
      
      4155 users here now
      This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
        founded 2 years ago
      
      MODERATORS
      
    you are viewing a single comment's thread
view the rest of the comments
    view the rest of the comments
It’s a nice thought but if everyone were to manage their own email server (and other things) we would have SO much more security problems in general.
I spend a not insignificant amount of my work week now dealing with quarantined or bounced mail from other companies that can't or won't set up DKIM, SPF, and DMAC properly. Not individuals, companies, with IT departments.
You'll never get most people to properly manage their own email server.
Prolly cause their I.T. is Ian Trevor, a guy who knows how to boot up the mail server box.
This is true.
And it's a problem with email itself lacking a native security infrastructure.
I don't know what the answer is - maybe less reliance on email? But then it would have to be supplanted by something else.
Seems like we're still in the developing phase of all this stuff.
Email grew during a time when connectivity was sporadic. I'll check my email when I get connected. So store-and-forward.
We still need the store-and-forward capability, but we now rely on instant delivery.
Then there's the conversation vs letter idea, files/attachments, etc.
Corporate systems try to combine it all, which makes sense. No reason to move files about, instead have a repository and send coworkers links to the files since we're all part of the same infrastructure (it's a database after all).
If we look more abstractly at the major functions people use, there's largely messages (ad-hoc, one-off), conversations (something like messages, with group management, longer-term chains, etc), data sharing (files, images, video, preferably links so people retrieve as needed), meta-data (say contact info, business info, location data, etc), and who's know what else I'm missing. Designing system/s to manage all this while being extensible seems the big challenge.
To go full circle on this, even if everyone self-hosted this same repository/messaging platform, we'd need some kind of federation capability, with security and trust management.
It would be interesting to see any research on this from Microsoft (and other groups, universities, FB etc) - their R&D org really knows their stuff. I'd like to see the high-level, abstract, major categories of elements.
Look at systems like QNAP that allow you to host cloud features from your home. Email or text a link to your file hosted on your NAS! Photo sharing features. Very nice! That said, constant security issues. Now your NAS is pwned.
Yeah, not a good time when your NAS gets ransomware attacked beacuse the company who makes it has shit security practices. Build your own with TrueNAS or Unraid who at least have motivation to keep their software secure.
Oh, you can do something like this today, but not with a mature, security-focused, federated product.
I'm kind of building something like this for friends/family, but it won't be generally exposed to the world, it'll be isolated on a VLAN, with no access to my home net. And it'll have a secure front end accessible only via a VPN.
Not something for the average person to do.