Phishing message alert

September 2nd, 2015  |  Published in Security, Status

If you receive messages with the subject “ATTN: RUNBOX ACCOUNT USER” that appears to have been sent from “RUNBOX HELPDESK“, please delete them.

We are deleting all the instances of these messages we can find on the Runbox servers, but we might miss some.

These messages are not sent from Runbox staff and are an attempt to trick Runbox customers into entering their login information at malicious websites.

For more information about phishing, please see the Phishing section of this article.


Runbox is running faster

August 29th, 2015  |  Published in News  |  5 Comments

After doing some tuning to our central database yesterday we have been able to increase the speed of all our email services significantly.

This is especially noticeable when using the Webmail, but email clients using IMAP and POP should also be faster.

This was made possible because Runbox is a database accelerated email system, where all basic message data is stored in a central database. This means that our various services don’t have to open any actual files on the storage units to display folder contents. Only when a message is opened do the services access the message files themselves.

We’d be interested in hearing if Runbox is running faster for you. Meanwhile we’ll continue working to improve the performance of our services!

Tags: ,

New IMAP Server Software

August 26th, 2015  |  Published in News  |  2 Comments

We are pleased to announce the official launch of our new IMAP server software.

We’ve been extensively testing and improving the new Dovecot-based software in an open beta phase for several months. We are now very happy with how it’s performing, and it resolves several issues with our current IMAP software (see below).

We will therefore be moving to the new software and will retire our existing Courier-based IMAP servers. Since the new software uses a more standardized configuration, all IMAP users will need to change their settings by December 1, 2015.

Note: If you have already changed your email client’s settings as part of the open beta phase you don’t need to do anything.

Read the rest of this entry »

Tags: ,

Scheduled maintenance and downtime

August 12th, 2015  |  Published in Status  |  2 Comments

Due to necessary reorganization of our email server infrastructure, all Runbox email services will be inaccessible for a short period on Monday 17.08 at around 06:00 CEST (04:00 GMT, 0:00 EDT).

The downtime should last less than 5 minutes.

We apologize for any inconvenience caused.


Phishing message alert

June 20th, 2015  |  Published in Security, Status

If you receive messages with the subject “Pending message” that appears to have been sent from “Runbox Admin” <>


Subject “Account Update” that appears to come from “MEMBERSHIP SERVICE” <>, please delete them.

We are deleting all the instances of these messages we can find on the Runbox servers, but we might miss some.

These messages are not sent from Runbox staff and are an attempt to trick Runbox customers into entering their login information at malicious websites.

For more information about phishing, please see the Phishing section of this article.

New IMAP Server Software in Open Beta Test

June 16th, 2015  |  Published in News

We are pleased to announce the start of the Open Beta Testing Phase of our new Dovecot IMAP servers.

We are introducing new IMAP servers to resolve errors that have been experienced by many customers, to simplify the set up in email clients and to improve IMAP performance.

We expect that customers using Apple Mail (OS X) and the native Mail app (iOS) on iPhones and iPads will see the most benefit from our new servers, but performance and reliability will be improved for all customers.

Problems we believe will be resolved are:

  • Read/Unread synchronisation issues
  • Moving messages from one folder to another resulted in a copy in the new and old locations
  • Error messages of the kind “Cannot connect to server”
  • With iOS the native Mail app would fail to update and would continue to show a date in the past

At some future date the current servers will be retired, and all customers will need to use the new IMAP servers.

If you would like to switch to the new servers now, and take part in our Beta testing phase, please see the information on the Open Beta Phase page (the previous link now directs to the official launch details). Please note that although the software is already thoroughly tested and performing well, changes and disruptions may occur as we continue improving it.

If you have any questions about these changes, please contact Runbox Support.


Terms of Service and Privacy Policy updates

May 31st, 2015  |  Published in News

On July 1st, 2015 Runbox will introduce updated Terms of Service and a more detailed Privacy Policy.

We strongly recommend that you review the documents as they comprise the contract between you and Runbox. They also form the backbone of legal protection of your data, anchored in strong Norwegian privacy regulations.

We have worked hard to make the documents clear, balanced, and easy to understand, and we think you will agree upon reviewing them.

Please note that the changes apply to all current and future Runbox accounts, and that by continuing to use Runbox you in effect accept the updated terms and policies.

New Terms of Service

The Terms of Service only have minor modifications and clarifications made, mainly regarding what kind of services we offer, the registration of personal data, bulk mailing using Runbox, and reselling of our services.

New Terms of Service

New Privacy Policy

The new Privacy Policy contains much more detail about how Runbox protects your privacy. These updates are part of our long-term effort to strengthen the protection of our customers’ data and increase our compliancy with Norwegian and international standards for online privacy and security.

New Privacy Policy

If you have any questions about our new Terms of Service and Privacy Policy please contact Runbox Support.

You might also be interested in our new Company Values and About Runbox pages, as well as the Runbox Privacy Commitment.

Tags: ,

Domains and Privacy

May 22nd, 2015  |  Published in News, Security

From time to time we get asked why Runbox uses as our primary email domain rather than our domain.

Data Routing

The reason we are asked this is because some people assume that by using a .com domain all the Internet traffic to and from our servers is routed via the Unites States, and could be subject to US government eavesdropping.

This concern usually arises because .com domains are often associated with the US whereas other top level domains (TLDs) such as .no, .de and .uk are associated with Norway, Germany and the United Kingdom respectively.

The reality surrounding which TLDs are used by which countries and to what extent those countries protect the right to use those TLDs for their own residents and business is complex. However, one thing is true in all cases, and this is that data is not routed according to whether your domain ends with .com or .no but by which servers need to contact each other.

We have a help article about this, and you can read more detail about domains and how data is routed by reading How Do Internet Domains Work for Email?

Domain Registration and Registration Details

Increasingly people are using their own domains, and at Runbox we encourage this. By using your own domain you have your own unique identity on the Internet, and an email address you can move from one email provider to another as needed without having to give all your contacts a new address.

When registering a domain some people are rightly concerned about who Runbox will share their details with. For most domains Runbox acts as a reseller of domain registration services. In any domain registration with us there is the reseller (Runbox), the registrar (the organisation that registers the domain) and the registry (which maintains the records of all domains under its jurisdiction).

Even though you might register a domain with a registry in Sweden (for example), you could find the registrar is based in a different country.

You can find out more about how your data is used when registering a domain by reading Domains: How Your Details are Used.

If you have any questions about domains and privacy, please don’t hesitate to get in touch with us through our Support Centre.

Outlook for iOS – Privacy Issues

May 6th, 2015  |  Published in News, Security

Email Apps and Privacy

Back in May 2014 we reported on our investigations in to two smartphone/tablet apps that had been launched. We were worried to find that the apps did not use our outgoing SMTP servers directly, and instead sent email through non-Runbox servers. This made for much easier set up of accounts, but we didn’t like that it wasn’t obvious to the user what was going on.

Those apps were myMail and Evomail (the later is no longer available).

Outlook and Privacy

Outlook now has IMAP compatibility and is able to work with Runbox accounts, however, like myMail and Evomail it doesn’t connect directly to the Runbox SMTP servers for outgoing mail. In fact, we don’t know if it retrieves email directly from our servers either. We do know that it stores some details of your account on servers that are part of Amazon Web Services.

If this doesn’t bother you, then that’s fine as Outlook is turning in to a nice email app that sits nicely alongside the other Microsoft offerings for iOS and Android.

Using Email Apps that Connect Directly to the Runbox Service

We believe that for maximum security and privacy email apps should be connecting directly to the Runbox service and not connecting via other servers, or storing account details anywhere other than in the app on the device.

Usually if you have to enter the server details for incoming and outgoing mail then the app is likely to connect to those services directly. If you have any doubts about an app, please get in touch with Runbox Support and we will investigate how it behaves.

[Resolved] Disrupted service 16.04.2015

April 16th, 2015  |  Published in Status  |  1 Comment

We had 2 hours of downtime today that was caused by electrical problems that took out our Top of the Rack switches.

The problem was between 14:00 and 16:00 and was fixed by an electrician at the data center.

We are very sorry about the problems this caused for our users and we will be looking at ways to avoid any similar event in the future.

You can follow us on Twitter for more instant updates:

UPDATE: After the power outage one of the spam filter servers did not restart as it should have, causing some spam to not be caught. The server is being restarted now and spam filtering should return to normal shortly.