Catchall email alias monitor and verifier
Project description
Laelaps
Laelaps is an IMAP monitoring application that is capable of verifying signed aliases. This is particularly useful when using different catchall-based aliases. Catchall-based aliases are a convenient way to generate unique email addresses for online accounts and reduce the impact of potential data leaks. However with catchall mode turned on there is a risk of attracting lots of spam.
Laelaps solves this problem by verifying whether an alias is indeed generated by the user and not by some other random party such as a spammer. This is achieved without registering the known aliases by using cryptographic signatures within generated aliases themselves. In practice a user generates an alias using a private key and the TeumessianFox browser extension and Lealaps will separate spam from emails that are send to genuine aliases. This way the user can easily generate new aliases and still be in full control of messages send to her/his inbox.
As a bonus, albeit rather experimental, Laelaps can perform other checks on incoming email messages by analyzing the message headers, these checks include:
- Verifying whether SPF, DMARC and DKIM passed.
- Possibility to register an aliases for a specific domain that is allowed to send messages only to this specific alias.
- Check wether the email was send with TLS enabled
- Check wether the sending email address exists
Laelaps moves incoming messages either to an inbox folder for messages that passed validation or to a folder that failed validation.
Install
Run the following in your favorite python environment.
pip install laelaps
Configure
Create a config.toml with the following contents in your working directory:
[imap]
host = "your.imap.server.host"
user = "yourImapUserName"
password = "ImapPassword"
mailbox = "FolderToMonitor"
[encryption]
# Generate yourself and keep safe!
key = "32CharacterStringEncryptionKey00"
[user]
own_domains = [ "list.of", "catchall.domains"]
target_folder_verified = "FolderToForVerifiedEmails"
target_folder_failed_validation = "FolderToForFailedVerificationEmails"
Run
Start laelaps with:
python -m laelaps
Stop laelaps with ctrl+C
Run with podman-compose
Make sure you have installed Podman.
Start the laelaps container with (make sure there is a config.toml in the root of the project):
podman-compose up
Stop laelaps with ctrl+C
Clean up with:
podman-compose down
Develop
To install dev/test tools run (in the root directory)
pip install .[test]
Running linting and tests is done by running:
bash format.sh
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
