Can Dovecot reject unencrypted mail?

Aki Tuomi aki.tuomi at dovecot.fi
Wed Jan 10 21:17:02 EET 2018


> On January 10, 2018 at 2:08 PM David Seaward <dseaward925 at gmail.com> wrote:
> 
> 
> Hi,
> 
> Is it possible to configure Dovecot to reject mail that is not
> encrypted. In other words:
> 
> 1. If the user tries to send an unencrypted message from their MUA,
> the server rejects it.
> 
> 2. If a third-party tries to send an unencrypted message to the user,
> the server rejects it.
> 
> The end result would be that no mail stored on the server can be
> decrypted by the administrator.
> 
> I am aware that:
> 
> * "Encrypted" could mean a lot of things. I'm imagining GPG
> encryption, but am open to other supported methods.
> 
> * This configuration would not suit everyone, e.g. someone posting to
> a public mailing list :)
> 
> Regards,
> David

You can make a global Sieve script that will e.g. pipe your email to some verification script. Or you can use some header based checks. This is probably not very simple thing to do.

Aki


More information about the dovecot mailing list