Problem / Motivation
Running webmail like Roundcube is problematic, since it has to be updated constantly to avoid exploitable security vulnerabilities.
Using Bulwark doesn't solve that issue, since it is served by nodejs, which also runs on the server.
Proposed Solution
Since the heavy lifting is done by JMAP in Stalwart, I propose an option to deploy Bulwark as a static webpage.
Downloading it as a tar.gz and extracting it the root of a standart webserver (e.g. caddy or an S3 bucket) would greatly decrease the attack surface of the mailserver.
It would be:
Alternatives Considered
No response
Feature Area
Performance
Mockups / Examples
No response
Additional Context
No response
Problem / Motivation
Running webmail like Roundcube is problematic, since it has to be updated constantly to avoid exploitable security vulnerabilities.
Using Bulwark doesn't solve that issue, since it is served by nodejs, which also runs on the server.
Proposed Solution
Since the heavy lifting is done by JMAP in Stalwart, I propose an option to deploy Bulwark as a static webpage.
Downloading it as a tar.gz and extracting it the root of a standart webserver (e.g. caddy or an S3 bucket) would greatly decrease the attack surface of the mailserver.
It would be:
Alternatives Considered
No response
Feature Area
Performance
Mockups / Examples
No response
Additional Context
No response