{"id":13552640,"url":"https://github.com/progmaticltd/homebox","last_synced_at":"2025-04-04T15:08:37.442Z","repository":{"id":53790747,"uuid":"84755322","full_name":"progmaticltd/homebox","owner":"progmaticltd","description":"A set of ansible scripts to build a personal mail server / private cloud / etc.","archived":false,"fork":false,"pushed_at":"2024-07-16T06:51:33.000Z","size":10614,"stargazers_count":478,"open_issues_count":3,"forks_count":52,"subscribers_count":25,"default_branch":"main","last_synced_at":"2024-12-06T22:22:36.690Z","etag":null,"topics":["ansible-scripts","calendar","debian","dkim","dnssec","dovecot","embedded-dns-server","grafana","imap","postfix","prometheus","rspamd","self-hosted","sieve","sogo","ssh-fingerprint","sshfp","webdav"],"latest_commit_sha":null,"homepage":"https://homebox.space/","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/progmaticltd.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-03-12T20:32:20.000Z","updated_at":"2024-11-28T17:10:56.000Z","dependencies_parsed_at":"2023-12-28T10:46:29.108Z","dependency_job_id":"4215d1d0-ef17-4819-a50e-9811520a7b09","html_url":"https://github.com/progmaticltd/homebox","commit_stats":{"total_commits":1989,"total_committers":13,"mean_commits":153.0,"dds":0.3278029160382101,"last_synced_commit":"bb816d7fe90960a6425124c2725184d9c9bec02b"},"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/progmaticltd%2Fhomebox","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/progmaticltd%2Fhomebox/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/progmaticltd%2Fhomebox/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/progmaticltd%2Fhomebox/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/progmaticltd","download_url":"https://codeload.github.com/progmaticltd/homebox/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247198445,"owners_count":20900079,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible-scripts","calendar","debian","dkim","dnssec","dovecot","embedded-dns-server","grafana","imap","postfix","prometheus","rspamd","self-hosted","sieve","sogo","ssh-fingerprint","sshfp","webdav"],"created_at":"2024-08-01T12:02:07.071Z","updated_at":"2025-04-04T15:08:37.420Z","avatar_url":"https://github.com/progmaticltd.png","language":"Shell","funding_links":[],"categories":["Shell","Software","Python","Communication systems"],"sub_categories":["Communication - Email - Complete Solutions","Email"],"readme":"\nA set of Ansible scripts to setup a secure email and personal files server. This project\nis for you if:\n\n- You are interested to host your emails yourself, for privacy, security or any other reason.\n- You want your server to be secure against both physical and remote intrusion.\n- You want a low maintenance box that keep itself updated automatically.\n- You trust the _Debian community_ to publish security updates.\n\n\n## Official documentation and user's guide\n\n- [Stable branch](http://homebox.readthedocs.io/main/)\n- [Development branch](http://homebox.readthedocs.io/dev/)\n\n## Following the development using RSS feeds\n\n- [Stable branch](https://github.com/progmaticltd/homebox/commits/main.atom)\n- [Development branch](https://github.com/progmaticltd/homebox/commits/dev.atom)\n\n## Mailing lists\n\nThanks to [Framasoft](https://framasoft.org/), two mailing lists have been created, one\nfor general questions, suggestions and support, and another one dedicated for development.\n\n- [General questions](https://framalistes.org/sympa/info/homebox-general).\n- [Development](https://framalistes.org/sympa/info/homebox-dev).\n\n\n## Current project status\n\n\n### System installation and features\n\n- Install packages only from Debian stable (Bookworm).\n- Automatic [letsencrypt](https://letsencrypt.org) certificates generation using DNS challenge.\n- Automatic security updates.\n- Centralised authentication with an LDAP users database and password policies.\n- AppArmor activated, with a profile for all daemons.\n- Random passwords generated and optionally saved using [pass](https://passwordstore.org).\n- Can be used at home, on a dedicated or virtual server hosted online.\n- Flexible IP address support: IPv4 only, IPv6 only, and IPv4+IPv4 or IPv4+IPv6.\n- Embedded DNS server, with CAA, DNSSEC and SSH fingerprint (SSHFP records).\n- All the http sites ranked **A+**, with HSTS implemented out of the box.\n- Automatic firewall rules for inbound, outbound and forwarding traffic, using nftables.\n- Filtered outbound traffic as well.\n- Automatic update of DNS servers and glue records on Gandi.\n- Automatic configuration of OpenPGP Web Key Directory.\n\n\n### Emails\n\n- Postfix configuration and installation, with LDAP lookups, internationalised email\n  aliases, fully SSL compliant.\n- Generate DKIM keys, SPF, DMARC and DANE DNS records. The DKIM keys are generated every\n  year.\n- Automatic copy of sent emails into the sent folder.\n- Automatic creation of the postmaster account and special associated email addresses\n  using [RFC 2142](https://tools.ietf.org/html/rfc2142) specifications.\n- Dovecot configuration, IMAPS, POP3S, Quotas, ManageSieve, simple spam and ham learning\n  by moving emails in and out the Junk folder, sieve and vacation scripts.\n- Virtual folders for server search: unread messages, conversations view, all messages,\n  flagged and messages labelled as \"important\".\n- Email addresses with recipient delimiter included, e.g. john.doe+lists@dbcooper.com.\n- Optional master user creation, e.g. for families with children or moderated communities.\n- Server side full text search inside emails, attached documents and files and compressed\n  archives.\n- Modern and responsive web access to emails, calendars and address books.\n- Powerful and light antispam system with [rspamd](https://rspamd.com/) and optional\n  access to the web interface.\n- Antivirus for inbound _and_ outbound emails with [clamav](https://www.clamav.net/).\n- Automatic configuration for Thunderbird and Outlook using published XML and other\n  clients with special DNS records ([RFC 6186](https://tools.ietf.org/html/rfc6186)).\n\n\n### Calendar and Address book\n\n- Install and configure a CalDAV / CardDAV server, with DNS based automatic discovery\n  ([RFC 6186](https://tools.ietf.org/html/rfc6764)).\n- Groupware functionality in a web interface, with [SOGo](https://sogo.nu/).\n- Recurring events, email alerts, shared address books and calendars.\n- Mobile devices compatibility: Android, Apple iOS, BlackBerry 10 and Windows mobile\n  through Microsoft ActiveSync.\n\n\n### Other optional features\n\n- Static web site skeleton configuration, with https certificates and A+ security grade.\n- Jabber server, using [ejabberd](https://www.ejabberd.im/), with LDAP authentication,\n  direct or offline file transfer and optional server to server communication.\n- Incremental backups, encrypted, on multiple destination (SFTP, S3, Samba share or USB\n  drive), with email and Jabber reporting.\n- Wireguard VPN server, with QR code generation, multiple configuration per clients, and\n  optional split tunnelling.\n- SSH certificates for users, with restricted commands, options and expiration date, with\n  configuration files sent by email automatically.\n- Small and secure git server per user, with automatic repository creation on the first\n  push.\n\n\n### Development\n\n- YAML files validation on each commit, using\n  [travis-ci](https://travis-ci.org/progmaticltd/homebox).\n- End to end integration tests for the majority of components.\n- Playbooks to facilitate the installation or removal of development packages.\n- Global debug flag to activate the debug mode of all components.\n- Fully open source Ansible scripts licensed under GPLv3.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprogmaticltd%2Fhomebox","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fprogmaticltd%2Fhomebox","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprogmaticltd%2Fhomebox/lists"}