Some of you may have heard of
nomx, a box that you plug in to act as a local email server. It can talk directly to other nomx boxes, bypassing the usual relay servers in the cloud. It's also supposed to be able to talk to standard email servers if the person you are sending to doesn't have a nomx.
Well, it's not what it's cracked up to be. Inside the nomx is a plain old raspberry pi. If you have physical access to the box, you can easily open it and do what you like with it. Worse still, it runs Raspbian Wheezy, so all the software is way out of date.
And if an unskilled person tries to use it, they won't be able to receive mail from any cloud email server because those all use port 25 for smtp and nomx, by default, doesn't. It gets worse: most email servers won't accept outgoing email from any would-be server that has a dynamic ip address. You get put straight on the Spamhaus list. So you can't send and you mostly can't receive either -- except when talking to other nomx users. Not much fun, hey?
I got this from the BBC's Click program, but you can read a full rundown on
https://arstechnica.com/information-...ions-protocol/