Domains and Privacy

May 22nd, 2015  |  Published in News

From time to time we get asked why Runbox uses runbox.com as our primary email domain rather than our runbox.no domain.

Data Routing

The reason we are asked this is because some people assume that by using a .com domain all the Internet traffic to and from our servers is routed via the Unites States, and could be subject to US government eavesdropping.

This concern usually arises because .com domains are often associated with the US whereas other top level domains (TLDs) such as .no, .de and .uk are associated with Norway, Germany and the United Kingdom respectively.

The reality surrounding which TLDs are used by which countries and to what extent those countries protect the right to use those TLDs for their own residents and business is complex. However, one thing is true in all cases, and this is that data is not routed according to whether your domain ends with .com or .no but by which servers need to contact each other.

We have a help article about this, and you can read more detail about domains and how data is routed by reading How Do Internet Domains Work for Email?

Domain Registration and Registration Details

Increasingly people are using their own domains, and at Runbox we encourage this. By using your own domain you have your own unique identity on the Internet, and an email address you can move from one email provider to another as needed without having to give all your contacts a new address.

When registering a domain some people are rightly concerned about who Runbox will share their details with. For most domains Runbox acts as a reseller of domain registration services. In any domain registration with us there is the reseller (Runbox), the registrar (the organisation that registers the domain) and the registry (which maintains the records of all domains under its jurisdiction).

Even though you might register a domain with a registry in Sweden (for example), you could find the registrar is based in a different country.

You can find out more about how your data is used when registering a domain by reading Domains: How Your Details are Used.

If you have any questions about domains and privacy, please don’t hesitate to get in touch with us through our Support Centre.

Outlook for iOS – Privacy Issues

May 6th, 2015  |  Published in News

Email Apps and Privacy

Back in May 2014 we reported on our investigations in to two smartphone/tablet apps that had been launched. We were worried to find that the apps did not use our outgoing SMTP servers directly, and instead sent email through non-Runbox servers. This made for much easier set up of accounts, but we didn’t like that it wasn’t obvious to the user what was going on.

Those apps were myMail and Evomail (the later is no longer available).

Outlook and Privacy

Outlook now has IMAP compatibility and is able to work with Runbox accounts, however, like myMail and Evomail it doesn’t connect directly to the Runbox SMTP servers for outgoing mail. In fact, we don’t know if it retrieves email directly from our servers either. We do know that it stores some details of your account on servers that are part of Amazon Web Services.

If this doesn’t bother you, then that’s fine as Outlook is turning in to a nice email app that sits nicely alongside the other Microsoft offerings for iOS and Android.

Using Email Apps that Connect Directly to the Runbox Service

We believe that for maximum security and privacy email apps should be connecting directly to the Runbox service and not connecting via other servers, or storing account details anywhere other than in the app on the device.

Usually if you have to enter the server details for incoming and outgoing mail then the app is likely to connect to those services directly. If you have any doubts about an app, please get in touch with Runbox Support and we will investigate how it behaves.

[Resolved] Disrupted service 16.04.2015

April 16th, 2015  |  Published in Status  |  1 Comment

We had 2 hours of downtime today that was caused by electrical problems that took out our Top of the Rack switches.

The problem was between 14:00 and 16:00 and was fixed by an electrician at the data center.

We are very sorry about the problems this caused for our users and we will be looking at ways to avoid any similar event in the future.

You can follow us on Twitter for more instant updates: https://twitter.com/runbox

UPDATE: After the power outage one of the spam filter servers did not restart as it should have, causing some spam to not be caught. The server is being restarted now and spam filtering should return to normal shortly.

New front page design

March 9th, 2015  |  Published in News  |  10 Comments

As you may have noticed we have upgraded our front page to better convey Runbox’ offering and our values. We hope you like it!

If you would like a simpler login screen, just click the “Simple Login” link underneath the login area (which you can then bookmark in your browser).

Tags:

Network issues to runbox.com

February 19th, 2015  |  Published in Status

There are currently network issues between Runbox and a number of locations in the US, Asia, and Europe:

http://www.host-tracker.com/InstantCheck/ResultComplete/9e7cfdaa-80b8-e411-80bf-00155d368c3c

We are working with our ISP to find out what this is caused by and will keep you updated.

Tags:

Phishing warning

January 26th, 2015  |  Published in Status

If you receive a message with the subject “Dear Runbox User” or “RUNBOX.COM” (or similar) which asks you for your Runbox username and password, or asks you to click on a suspicious link, then please delete the message. We are deleting all the instances of this message we can find in Runbox accounts, but we might miss some.

These messages are not sent from Runbox staff and is an attempt to trick Runbox customers into entering their login information at a malicious website.

When Runbox contacts you we will always address you by your name, and we will never ask you for your login details.

For more information about phishing, please see the Phishing section of this article.

Tags:

Notice to Apple Mail users regarding APOP

January 8th, 2015  |  Published in News

Today we disabled SSL 3.0 for POPS (Secure POP) and changed how we terminate POP connections to make it more secure.

Some Apple Mail users are using the server address apop.runbox.com and/or the authentication setting: Authenticated POP (APOP) in Apple Mail.

To change the account settings, please follow these instructions:

  1. Mail => Preferences to open the Accounts dialog.
  2. Select your Runbox account in the left pane.
  3. In “Incoming Mail Server”, enter: secure.runbox.com
  4. Click the Advanced button.
  5. Make sure the port is set to: 995
  6. Under “Authentication”, select: Password (Previously Authenticated POP)
  7. Click the red button in the top left corner to close Accounts.
  8. Click Save.

We added a Apple Mail compatible setup on the 13th of February 2013 after an update to Mail from Apple broke authentication for many users.

The new settings is a more secure way of using POP and will make sure your connection with our servers always use TLS (Transport Layer Security) or it will fail.

SSLv3 disabled on POP connections

January 8th, 2015  |  Published in Security, Status  |  2 Comments

For security reasons we have turned off SSLv3 on POP connections (port 995) today. That means we now only allow TLS 1.0, TLS 1.1 and TLS 1.2 on POP connections.

As a Runbox user you should not have to do anything — your email program should already support TLS and use it automatically. If not, please make sure your email program is up-to-date.

Apple Mail users: Please see our notice regarding APOP.

If you do experience any problems, please contact Runbox Support.

Tags:

Special Holiday/New Year offer from Runbox

December 23rd, 2014  |  Published in News  |  13 Comments

Gift BoxTo celebrate a great year and to further the cause of secure and private communication, we would like to give all our customers:

A free Sub-Account for one year
…if you subscribe or renew your main account by Jan 15th!

A Runbox account is a great gift to someone you know who cares about secure and private communication — and of course a fully featured, professional email service.

Just proceed to payment now to get your free sub-account!

And make sure you lock in our current great prices by taking advantage of our 3 years for the price of 2 offer on the Medium subscription plan!

Please contact us after you have completed your payment to let us know you want to take advantage of this offer so that we can add the sub-account slot to your main account.

You will then be able to set up the sub-account by going to Account > Sub-Accounts.

Note that whenever you renew your main account the additional time will simply be added to the end of your subscription, so you won’t lose any subscription time by renewing early.

Happy Holidays from everyone at Runbox, with our best wishes for the new year!

Terms of this offer:

  • The free sub-account will be of the same type as your main subscription (Micro, Mini, Medium, or Max).
  • The offer is for an additional free account and cannot be used to renew an existing sub-account.
  • The offer can be combined with the 2 years for the price of 1 offer upon subscribing to a new main account within 24 hours of signing up, and the 3 years for the price of 2 years offer which is available to everyone.

Tags:

Projects in the pipeline 2015

December 23rd, 2014  |  Published in News  |  27 Comments

We have worked hard on upgrading our email server park to accommodate all our new customers — and things will only get better: Based on our recent success, our shareholders decided to invest fresh capital to start several new projects that will take Runbox to the next level.

To boost IMAP performance and improve the experience especially for iPhone and iPad users we will soon deploy new Dovecot-based IMAP software.

We have started implementing an SSD (Solid-state Drive) based storage strategy to dramatically improve the performance of our email storage units. SSDs are up to 100 times faster than regular, rotating disks, so this will improve the speed of our IMAP services.

We are also expanding our server park with new servers and upgrades to continue improving reliability and overall performance.

Projects planned for 2015

We will continue working hard to ensure the privacy and security of your data, and have the following projects lined up for next year:

  • Implementation of two-factor authentication for improved login security.
  • Integration of PGP email encryption with our Webmail in order to make PGP easier to use with Runbox (note that you can already use PGP in your email client).
  • Improvements and upgrades to our spam servers and software to keep up with the ever-present spam challenge.
  • Implementation of a CalDAV server for calendar synchronization.

We look forward to continue providing great email services in the year to come.

Tags: ,