awesome-repositories.com
Blog
awesome-repositories.com

Descoperă cele mai bune repository-uri open source cu căutare AI.

ExploreazăCăutări recomandateAlternative open-sourceSoftware self-hostedBlogHartă site
ProiectDespreCum realizăm clasamentulPresăServer MCP
LegalConfidențialitateTermeni
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
foxcpp avatar

foxcpp/maddy

0
View on GitHub↗
5,853 stele·309 fork-uri·Go·gpl-3.0·3 vizualizărimaddy.email↗

Maddy

Maddy is a modular mail server that assembles a complete email system by connecting small, single-purpose modules through a declarative configuration file. Rather than a monolithic stack, it lets operators compose message processing, storage, authentication, and security enforcement from interchangeable building blocks, with each module handling a specific function like receiving SMTP connections, verifying credentials, or applying policy checks.

The server distinguishes itself through its flexible authentication and security architecture. It delegates user verification to external systems including Dovecot, LDAP, PAM, SQL databases, and remote IMAP servers via the SASL framework, while also supporting local password files and SQL-backed credential stores. Security enforcement is comprehensive, applying DKIM, SPF, DMARC, DANE, and MTA-STS checks to both inbound and outbound messages, with configurable actions for policy violations. TLS certificate management is fully automated through the ACME protocol, supporting DNS-01 challenges for domain validation without exposing a public HTTP endpoint.

Message handling follows a pipeline model where each incoming message passes through a configurable sequence of checks and delivery steps, with exit codes mapping to actions like accept, reject, or quarantine. Storage backends support SQLite, PostgreSQL, or CockroachDB for IMAP indexes and metadata, while message bodies can be stored in a filesystem or blob store with optional LZ4 or Zstd compression. The server handles multi-domain mailbox management with options for shared credentials, domain isolation, or unified mailboxes, and supports IMAP access with standard extensions including IDLE and MOVE.

Deployment options include Docker containers, prebuilt binaries, source compilation, and tarball installations, with DNS record publication for MX, SPF, DKIM, and DMARC. The server exposes an OpenMetrics endpoint for monitoring and supports integration with external tools like rspamd for spam filtering and milter-based mail filters.

Features

  • Modular Mail Server Assemblies - Assembles a complete email server by connecting small, single-purpose modules through a declarative configuration file.
  • Declarative Module Assemblies - Assembles a complete mail server by connecting small modules through a declarative configuration file.
  • Check Failure Quarantines - Marks a flagged message as quarantined so storage backends place it in a junk mailbox and remote delivery is refused.
  • Check Failure Rejections - Rejects the message at connection time when a check module flags it as bad, preventing delivery without generating a bounce.
  • Email and Messaging - Parses and generates email messages following RFC 2822, MIME, and internationalized header standards.
  • SQL-Backed Message Stores - Stores IMAP indexes and message metadata in SQLite, PostgreSQL, or CockroachDB while keeping message bodies in a separate blob store.
  • Message Body Storage - Stores message bodies in a file system directory, creating the directory if it does not exist.
  • Mail Delivery Agents - Delivers accepted messages to the destination mail exchange server for the recipient's domain.
  • SPF Verifications - Checks whether the connecting IP is authorized to send mail for the domain in the MAIL FROM address, then maps the result to a configurable action.
  • Message Routing Pipelines - Processes each incoming message through a configurable pipeline of checks and delivery rules.
  • Internationalized Email Handlers - Implements full Unicode support for email addresses, headers, and bodies per internationalization standards.
  • IMAP Mailbox Managers - Provides remote mailbox access using IMAP4rev1 with IDLE, MOVE, and TLS extensions.
  • Mail Servers - Ships a complete mail server that can be deployed inside a Docker container with mounted volumes.
  • IMAP Services - Holds received messages in mailboxes and provides client access through the IMAP protocol.
  • Outbound Mail Relays - Forwards messages from an external submission service to a dedicated SMTP endpoint for outbound delivery.
  • Message Delivery Pipelines - Processes incoming messages through configurable pipelines of checks and delivery steps.
  • SMTP Sending - Delivers outgoing messages to other mail servers using the SMTP protocol, acting as a Mail Transfer Agent.
  • SMTP Transfers - Sends and receives email using the SMTP protocol with extensions for pipelining, authentication, and internationalization.
  • SASL Implementations - Verifies user identities during connection using the Simple Authentication and Security Layer framework.
  • SASL Delegation Architectures - Delegates user authentication to external services like Dovecot, LDAP, and PAM via SASL.
  • IMAP Credential Delegations - Forwards authentication requests from the submission service to an external IMAP server using the SASL protocol, so users authenticate against the existing mail store.
  • ACME Implementations - Automates TLS certificate lifecycle via the ACME protocol with DNS-01 challenge support.
  • Certificate Renewal Managers - Automatically obtains and renews TLS certificates via the ACME protocol without manual intervention.
  • Email Signing - Signs outgoing messages using DKIM with key selection based on SMTP envelope sender.
  • DANE and MTA-STS Verifiers - Verifies recipient TLS certificates via DANE and enforces MTA-STS policies for secure mail delivery.
  • Email Sender Authentication - Applies DKIM, SPF, DMARC, DANE, and MTA-STS checks to authenticate senders and prevent spoofing.
  • Outgoing Email Authenticators - Applies DKIM, SPF, DMARC, DANE, and MTA-STS checks to messages to prevent spoofing and improve deliverability.
  • External Authentication - Delegates user credential verification to Dovecot SASL, LDAP, PAM, SQL databases, or remote IMAP servers.
  • TLS Certificate Management - Automatically fetches and renews TLS certificates from a CA using the ACME protocol.
  • Global Default Configurations - Sets a default TLS certificate and cipher suite for all endpoints, with per-module override support.
  • SMTP Reception - Accepts email messages through SMTP, LMTP, or Submission protocols, optionally verifying sender credentials before processing.
  • Email - Applies DKIM, SPF, DMARC, DANE, and MTA-STS checks with configurable violation actions.
  • Outbound Delivery Security Enforcers - Ranks each outbound connection by MX and TLS security levels and rejects delivery when the connection falls below the required policy.
  • Automated Certificate Management - Automatically obtains and renews TLS certificates via the ACME protocol without manual intervention.
  • Signature Verification Tools - Checks incoming messages for valid DKIM signatures to confirm sender domain and integrity.
  • Inbound TLS Requirements - Checks that the source server connected over TLS and rejects messages from unencrypted connections.
  • Inbound Configurations - Loads TLS certificates from files or ACME providers to secure incoming mail connections with optional SNI support.
  • IMAP Connection Authentications - Requires an authentication module to verify user credentials before granting access to the mail store.
  • Mailbox Account Allocations - Allocates local mailbox storage accounts so users can receive and store email on the server.
  • Quarantine Rejections - Refuses to deliver messages that checks have marked as quarantined, preventing their transmission to remote servers.
  • LMTP Message Receptions - Accepts incoming messages from an external SMTP server through a local LMTP socket for IMAP storage.
  • Message Preprocessings - Validates and normalizes header fields (From, To, Cc, Bcc, Reply-To, Message-ID, Date) on incoming messages.
  • Envelope Recipient Rewritings - Replaces the recipient address in the SMTP envelope using a table-defined mapping, supporting 1:N expansions for mailing lists.
  • Header Injections from Commands - Prepends a valid RFC 5322 header produced by an external command to the message header.
  • Mailbox Size Restrictions - Rejects new messages exceeding a configurable size limit to control storage consumption.
  • SMTP Pipeline Command Executions - Runs a user-supplied command at a configurable stage of SMTP processing and uses its exit code to accept, reject, or quarantine the message.
  • Email Authentication Record Publication - Creates MX, SPF, DKIM, and DMARC DNS records so other servers can deliver and verify mail.
  • Sender Domain MX Validations - Checks that the domain in the MAIL FROM command has a valid MX record and quarantines messages from domains without one.
  • Email Address Mapping Tables - Transforms email addresses through chainable file, SQL, and regex lookup modules.
  • Address Mappings - Transforms recipient email addresses using a configurable table and normalization function before delivery.
  • IMAP Flag Assignments - Runs a custom command during message delivery to set IMAP keywords and override the target folder based on command output.
  • LMTP Delivery Integrations - Routes incoming messages to an external IMAP server's LMTP endpoint for local mailbox storage.
  • Custom Delivery Logics - Applies user-defined code late in the delivery pipeline to change the destination IMAP folder and add flags.
  • Multi-Domain Mailbox Isolations - Creates separate or shared authentication and storage accounts across multiple domains with independent or unified mailboxes.
  • Unified Mailboxes - Maps multiple domain-specific email addresses to a single shared username for both authentication and IMAP storage, merging mailboxes.
  • Rspamd Integrations - Contacts a rspamd server over HTTP to evaluate incoming messages and apply spam-filtering decisions.
  • PAM Credential Validators - Validates user credentials against the system's Pluggable Authentication Modules (PAM) stack, commonly used for local system logins.
  • Group-Based Access Controls - Requires that authenticated entities belong to a specified NetAuth group before granting service access.
  • Outbound TLS Customizations - Adjusts TLS version ranges, cipher suites, and client authentication settings for outbound connections.
  • Dovecot SASL Integrations - Verifies user credentials by delegating to an existing Dovecot server via SASL.
  • Domainless Logins - Accepts usernames without a domain part during authentication and storage operations for convenience.
  • Credential Managers - Manages password hashes and user credentials through a dedicated CLI command.
  • CLI-Managed Credential Stores - Provides a CLI tool for managing user password hashes in mutable table modules.
  • Policy Hosting - Hosts a policy file at a well-known HTTPS URL that tells compatible senders to always use authenticated TLS.
  • Domain Ownership Verification - Proves domain control by placing a DNS record, enabling certificate issuance without exposing a public HTTP endpoint.
  • Envelope Sender Rewritings - Replaces the sender address in the SMTP envelope using a table-defined mapping, supporting 1:N expansions for mailing lists.
  • DMARC Policy Deference - Skips SPF enforcement when the sender domain has a DMARC record with a quarantine or reject policy, letting DMARC handle the final action.
  • Email Spam Filtering - Integrates with the rspamd HTTP API to scan incoming messages for spam, replacing the need for a milter proxy.
  • SASL Endpoint Exposures - Exposes a Dovecot SASL authentication endpoint so an external SMTP server can verify user credentials for message submission.
  • Domain-Shared Credentials - Maps multiple domain-specific email addresses to a single shared username for authentication while keeping mailboxes separate.
  • Multi-Domain Expansions - Appends one or more domains to a local part, expanding a single address into multiple email addresses across different domains.
  • Remote LDAP Authentications - Verifies credentials by binding to a remote LDAP directory service using the provided username and password.
  • Domain Mapping - Creates separate authentication and storage accounts for each domain, keeping users fully isolated.
  • Local File Authentications - Checks usernames and passwords against a static file (e.g., passwd or shadow format) stored on the server.
  • SQL Credential Verifications - Verifies credentials by querying a relational database table that stores usernames and hashed passwords.
  • Table-Backed Password Verifiers - Looks up a password hash from a table module (file or SQL) to verify user credentials during login.
  • Outbound TLS Configurations - Specifies TLS options for outgoing connections, including cipher suites and protocol versions.
  • Multi-Provider Credential Verifications - Looks up usernames in a table then verifies passwords against one or more authentication providers.
  • Remote IMAP Authentications - Validates a user's login by attempting to authenticate against a remote IMAP mailbox server.
  • Exit Code Pipeline Mappings - Maps each exit code of an external command to a specific pipeline action such as reject, quarantine, or ignore.
  • DNSBL Sender Reputation Checks - Queries one or more DNS-based blackhole lists using the connecting IP or hostname and rejects messages listed on any configured blocklist.
  • Milter Protocol Connectors - Connects external software via the milter protocol to inspect or modify messages during SMTP delivery.
  • Email - All-in-one email server.
  • Email Servers - Composable, all-in-one mail server written in Go.
  • Email Services - Modern, all-in-one mail server.
  • Email Solutions - All-in-one mail server daemon.

Istoric stele

Graficul istoricului de stele pentru foxcpp/maddyGraficul istoricului de stele pentru foxcpp/maddy

Căutare AI

Explorează mai multe repository-uri excelente

Descrie ce ai nevoie în limbaj simplu — AI-ul sortează mii de proiecte open source selectate în funcție de relevanță.

Start searching with AI

Alternative open-source pentru Maddy

Proiecte open-source similare, clasificate după numărul de funcționalități comune cu Maddy.
  • mjl-/moxAvatar mjl-

    mjl-/mox

    5,713Vezi pe GitHub↗

    Mox is a self-hosted email server that runs as a single compiled Go binary, handling the full lifecycle of sending and receiving email through SMTP, IMAP4rev2, and a built-in webmail application. It is designed to be operated without external dependencies or runtime plugins, with all mail services — including spam filtering, queue management, and web interfaces for administration and account management — contained in one executable. The server distinguishes itself through automated TLS certificate management via ACME, DNS-based autoconfiguration for email clients, and file-based configuration

    Go
    Vezi pe GitHub↗5,713
  • docker-mailserver/docker-mailserverAvatar docker-mailserver

    docker-mailserver/docker-mailserver

    18,420Vezi pe GitHub↗

    This project provides a full-stack, containerized mail server platform designed for self-hosting. It functions as a complete mail transfer agent that bundles essential services—including SMTP, IMAP, and POP3—into a unified environment. By leveraging container orchestration, it enables the deployment of private email infrastructure that handles message transport, delivery, and user management within a single, manageable service. The platform distinguishes itself through deep integration with container runtimes and robust configuration flexibility. It supports granular customization via configu

    Shellantispamantiviruscontainer
    Vezi pe GitHub↗18,420
  • smallstep/certificatesAvatar smallstep

    smallstep/certificates

    8,245Vezi pe GitHub↗

    This project is a public key infrastructure management system designed to automate the issuance, renewal, and revocation of X.509, TLS, and SSH certificates. It functions as a machine identity provider and certificate authority, enabling the establishment of private PKI to secure inter-service communication and remote access. The system distinguishes itself through hardware-bound identity attestation, which ties cryptographic keys to physical device silicon or TPMs to prevent credential exfiltration. It supports a wide array of identity verification mechanisms, including OIDC, cloud-provider

    Goacmeacme-serverca
    Vezi pe GitHub↗8,245
  • neomutt/neomuttAvatar neomutt

    neomutt/neomutt

    3,659Vezi pe GitHub↗

    NeoMutt is a terminal-based electronic mail management system that provides a text-based user interface for reading and composing emails. It functions as a mail manager and client supporting IMAP, POP3, and SMTP protocols, as well as NNTP for newsgroup access. The project distinguishes itself through integrated support for PGP and S/MIME encryption, providing tools for signing and encrypting messages and managing cryptographic keys. It supports modern authentication via OAuth2 and offers specialized MIME-aware reading capabilities for decoding multipart messages and visualizing MIME structure

    Cccliemail
    Vezi pe GitHub↗3,659
Vezi toate cele 30 alternative pentru Maddy→

Întrebări frecvente

Ce face foxcpp/maddy?

Maddy is a modular mail server that assembles a complete email system by connecting small, single-purpose modules through a declarative configuration file. Rather than a monolithic stack, it lets operators compose message processing, storage, authentication, and security enforcement from interchangeable building blocks, with each module handling a specific function like receiving SMTP connections, verifying credentials, or applying policy checks.

Care sunt principalele funcționalități ale foxcpp/maddy?

Principalele funcționalități ale foxcpp/maddy sunt: Modular Mail Server Assemblies, Declarative Module Assemblies, Check Failure Quarantines, Check Failure Rejections, Email and Messaging, SQL-Backed Message Stores, Message Body Storage, Mail Delivery Agents.

Care sunt câteva alternative open-source pentru foxcpp/maddy?

Alternativele open-source pentru foxcpp/maddy includ: mjl-/mox — Mox is a self-hosted email server that runs as a single compiled Go binary, handling the full lifecycle of sending and… docker-mailserver/docker-mailserver — This project provides a full-stack, containerized mail server platform designed for self-hosting. It functions as a… smallstep/certificates — This project is a public key infrastructure management system designed to automate the issuance, renewal, and… neomutt/neomutt — NeoMutt is a terminal-based electronic mail management system that provides a text-based user interface for reading… stalwartlabs/stalwart — Stalwart is a self-hosted email and collaboration infrastructure that provides an integrated mail server supporting… haraka/haraka.