This guide explains how to block / blacklist email addresses or entire domains‍ so that you are no longer bothered by specific unwanted emails in your Infomaniak mailbox.

You will also learn how to allow / whitelist addresses to bypass the anti-spam filter‍ of your Infomaniak mailbox.

Preamble

• In addition to the Infomaniak anti-spam filter which eliminates the majority of unwanted emails over time, Infomaniak offers two distinct lists that you can fill out as you wish:
  1. blocked senders:
     • blocked emails and domains are then directly treated as spam
  2. authorized senders (authorized to bypass the anti-spam filter):
     • authorized senders and domains will no longer be filtered by the anti-spam filter
     • the list of authorized senders is only active on the original recipient of each message; if the message is sent to an address abc@domain.xyz and then redirected to def@domain.xyz, the anti-spam filter and the list of authorized senders must be configured for the address abc.
• These lists are specific to the email address on which the operation is performed.
• A Mail Service administrator can also apply these lists to the entire Mail Service, via the Global Configuration of a Mail Service (refer to this other guide).

A. Address/domain formats that can be used

As indicated in points 5 & 6 below, you can enter email addresses and/or domain names that will then be blocked or allowed on your mailbox.

To refine the precision of your filtering requests, the system supports partial searches using wildcard characters * and ?. These characters will automatically substitute any sequence of characters at their position, allowing for flexible matches on incomplete strings.

Here are some examples of how to enter addresses, for which you should replace the example domain (the-spam-domain.xyz) with the one that is bothering you:

Block all email addresses from a domain name

*@the-spam-domain.xyz or toto*@the-spam-domain.com …

Block a domain and all its subdomains

*@*the-spam-domain.xyz or *@*the-spam-domain* …

B. Manage blocking‍ or allowances‍ from the Infomaniak Web Mail app

Prerequisites

• Having permission to manage security: if you had been invited to the Web app Mail Infomaniak (online service mail.infomaniak.com) to manage your address, it is possible that the Service Mail manager has removed this right from their admin account.

To block‍ or allow‍ senders from the Web app Mail Infomaniak (online service mail.infomaniak.com):

1. Click here to access the Web app Mail Infomaniak (online service mail.infomaniak.com).
2. Click on the Settings icon ‍  at the top right.
3. Check or select the relevant email address from the dropdown menu in the left sidebar.
4. Click on Security:
   
5. To add a blocked sender (blacklisted), click the Add address button in the Blocked address box:
   
6. To add an authorized sender (whitelisted), click the Add an address button in the Approved Address box:
   
7. Fill in the fields as desired and/or according to the format indicated in point A above.

You can also block a sender directly from the received email‍:

1. Click here to access the Mail Infomaniak web app (online service mail.infomaniak.com).
2. Open the message from the unwanted sender.
3. Click on the ⋮ icon at the top right of the opened message.
4. Choose Block sender‍ to add them directly to the blocked addresses list:
   
   
   

If necessary, remove the address by going back to the Security tab.

C. Manage blocks‍ or authorizations‍ from Service Mail

To block‍ or allow‍ senders from a Mail Service:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on the email address concerned.
4. Click on the Security tab or on Security from the left sidebar:
   
5. To add a blocked sender, click the Add address button in the Blocked address box.
6. To add an authorized sender, click the Add an address button in the Approved Address box.
7. Fill in the fields as desired and/or according to the format indicated in point A above.

Alternatively

To manage your incoming mail, you can also use mail filters.

This guide explains how to import emails contained in a MBOX format archive into an Infomaniak mail address.

Prerequisites

• Have a valid and functional email address with Infomaniak.
• Have an archive of your previous email in .mbox format.

Importing emails in MBOX format...

… with Thunderbird

Install Thunderbird and configure the Infomaniak address in IMAP. Then, to add support for importing MBOX files:

1. Open Thunderbird.
2. Click on the Tools menu.
3. Click on Add-ons and Themes.
4. Search for the extension ImportExportTools:
   
5. Click the button to install the extension ImportExportTools NG.
6. Confirm the addition of the extension on Thunderbird:
   
7. Create a new folder by right-clicking in the local part of your account's folder structure:
   
8. Right-click on this new folder and choose to import a mbox file from the new menu of the ImportExportTools NG extension:
   
9. Select the .mbox file from your hard drive and import it.
10. The import of your emails is done in the local folder.
11. This local folder can be moved to the main directory to be synchronized with the Infomaniak server via IMAP:
    
12. Emails are sent to the server and you can find your content if you check your mailbox from another system, such as the Web app **Mail** Infomaniak (online service mail.infomaniak.com) for example (or even Apple Mail or Microsoft Outlook - read below):
    

… with Outlook

There is no free solution available to convert a .mbox file to a .pst Outlook file for example. However, by following the solution above, which is entirely free, you will be able to access your emails from the .mbox archive on your Infomaniak address.

You can then choose to stop using Thunderbird and continue with Microsoft Outlook via IMAP since all your messages will have been stored on the Infomaniak servers.

Following the update of Infomaniak's mail infrastructures in recent months, compatibility with old security standards was temporarily maintained.

Outdated software, such as Outlook 2007, is no longer compatible. Infomaniak supports modern solutions such as Office 365, Outlook 2016 and later versions, as well as the old Windows Mail client and of course, Thunderbird.

The use of unsupported software exposes you to major security risks. It is therefore recommended to update your tools promptly to ensure the protection and continuity of your services.

This guide is about the DMARC policy and optional security reports sent by email that can be activated or deactivated on demand.

Optional DMARC Reports

DMARC reports are optional and provide the following information:

1. Third-party senders or servers that send emails on behalf of your domain.
2. The percentage of messages from your domain that pass the DMARC verification process.
3. The servers or services that send emails failing DMARC checks.
4. The DMARC actions performed by the receiving server for unauthenticated messages from your domain (none, quarantine, or reject).

When the reports indicate that most of the emails pass the DMARC checks successfully, it is recommended to strengthen your DMARC settings by imposing stricter measures. This will enhance the protection of your domain against spoofing.

The written report is sent by email to the address you specify in the configuration, and will come from dmarc@infomaniak.com or other providers such as Microsoft, Google, Yahoo, etc. It is delivered as a zip archive containing the report in XML format:

It is also possible to receive copies of problematic emails.

Analyze a DMARC report

Infomaniak is neither able to analyze your potential DMARC reports and records, nor to comment on the validity or compliance of these, as this is entirely your responsibility.

It is recommended to use an external service to analyze DMARC reports, such as for example https://dmarcadvisor.com/dmarc-analyzer/.

Disabling a DMARC report...

… from a Mail Service

To disable the sending of a DMARC report if you still have a Service Mail (otherwise, read below):

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the product in question.
3. Click on Global Security in the left sidebar.
4. Click on Edit (in the DMARC section).
5. Remove the registered addresses and Apply the changes:
   
   

... from the DNS zone of a domain

If the Mail Service is no longer active but you continue to receive email reports, you must act directly on the domain name and delete the dmarc record from its DNS zone:

This guide concerns the steps to follow when you are healthcare professionals, Infomaniak clients and wish to comply with the HIN system.

Preamble

• The acronym HIN stands for "Health Insurance Network".
• A HIN email address is an address used to send confidential and sensitive messages, such as medical records or test results, between healthcare professionals who have been authorized to use them.
• These addresses are protected by additional security measures to ensure that sensitive information does not fall into the wrong hands.

Get an encrypted HIN email address

To make your Infomaniak email address HIN-compatible:

1. Click here to access the page of services offered by HIN and subscribe to their offer.
2. Contact Infomaniak support in writing as soon as a contract is concluded, clearly stating the address(es) involved (pay particular attention to the domain name and its extension .com, .ch etc.).
3. Wait for HIN to notify Infomaniak and for the solution to be implemented (several hours or days).

This guide helps you find the public IP address of your device, which can be useful for certain support requests, among other things.

Display the public IP address on the connected device

Click here to obtain the public IP address of your device in IPv4 and IPv6 format.

Alternative methods

Visit ipinfo.io or ifconfig.me.

... on macOS

1. From a terminal application (command line interface, CLI) on your device, run the command curl ifconfig.me and press enter.
2. The displayed address is the public IP address of the computer.

To automate the search for the public IP address, use commands or scripts that query services such as api.ipify.org ...

This guide explains how to allow a user (friend, colleague, client, family member, etc.) to use an email address that you have created within a Service Mail Infomaniak as the administrator of the relevant Organization.

Preamble

• In most cases, no password should be transmitted to them.
• The email address will be automatically added to the user's Mail Infomaniak interface after they accept the invitation.
• Refer to this other guide if you are looking for additional information about creating a simple email address for yourself.

Invite to use the email…

… from the Service Mail

To allow an already active user to access the email address you want to share:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on the email address in question in the table that appears.
4. Click on Invite at the top of the table (table of users currently having the address concerned on Mail):
   
5. Choose to generate a share link (or invite an existing user in the organization).
6. Optionally, set restrictions among the permissions‍ that can be assigned to the user.
7. Click on the blue button:
   
8. Enter the email password.
9. Copy the link to share with the invited Mail user.
10. Change the language of the invitation if necessary.
11. Enable email/SMS sending if necessary:
    
     

… from the Web Mail Infomaniak app

To access the same process as above but from the Web app Mail Infomaniak (online service mail.infomaniak.com):

1. Click here to access the Web Mail Infomaniak app (online service mail.infomaniak.com).
2. Click on the action menu ⋮ to the right of the relevant email address.
3. Click on the Settings of the email address:
   
4. Click on Invite:
   

Accept the invitation

To view the email address to which he has been invited, the user opens the link he received in his browser:

1. A first window tells him who invited him, and which email address he will be able to access after creating the user account (or logging in to his existing user account).
2. The invited user logs into the account.
3. His app Mail Infomaniak directly displays the new address that he can now use.

In case of trouble

If the Invite button (point 6 above) is not visible or remains grayed out, check that:

• your user account has sufficient permissions to administer the product in question
• The email address in question does not yet exist as a login identifier for an Infomaniak Organization
• The table below the button does not list a user with an email address identical to the email address in question

Example: you want to invite someone to view the address anna.a@domain.xyz but the button is grayed out because a user anna.a@domain.xyz is listed in the table.

Solution: to be able to invite a new user to view the address in question, completely delete the user account with the email address in question as the login address.

This guide explains how to block (or allow) email senders globally on an entire Service Mail. Refer to this other guide if you are looking for information on how blocked‍ and allowed‍ sender lists work.

Managing Security in Global Configuration

An administrator of Service Mail can add email addresses or even entire domains to the lists of approved or rejected senders, and these lists will be applied to all email addresses of a Service Mail (without modifying the existing settings on each of the email addresses):

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on Global Configuration in the left sidebar.
4. Click on the Security tab.
5. Click on the Add an address button in the Blocked address box to block an email from an unauthorized sender.
6. Do the same for the approved senders in the other box:
   ‍
7. Click on Validate to activate these lists on all email addresses in the domain.

This guide explains how to add or modify one or more SRV type records in the DNS zone (of a domain name) managed on the Manager Infomaniak.

Introduction

• This type of record indicates which services are available for a domain.
• They are often used for the XMPP, LDAP protocols or to configure Microsoft Office 365.

Modify the DNS zone

Refer to this other guide to manage this type of record in a DNS zone.

This guide details the specific rules to follow when using a password containing the "dollar" character $ to send an email via the SMTP Infomaniak in a script (PowerShell, Python, etc.).

Preamble

• If you encounter an authentication error (for example auth failed, invalid login or password) when sending an email via SMTP, even though the password is correct and works in software like Outlook, the issue may be due to the handling of the character $ in your script or configuration file.
• To ensure reliable execution of your SMTP scripts, it is strongly advised to avoid any special character with syntactic meaning, particularly $, in passwords used in scripts and configuration files.
• The issue may also occur when connecting to databases.

Rules to follow

The character $ is a special symbol in many languages and environments. When it is used in a password in a script or configuration file, it can be mistakenly interpreted as a variable or control character.

Here are frequent cases where you should not use the character $ in a password:

• PowerShell: $ is used to declare variables. A password containing $ can cause syntax errors or be truncated.
• Bash / Shell (Linux): $ is also a variable prefix. It can trigger unexpected substitutions.
• YAML files (for example Home Assistant, GitHub Actions, Docker Compose) : $ can be interpreted as an environment variable.
• Files .env, .ini, or other configuration files: the tools that read these files may attempt to interpret the variables.
• Commands or URLs with authentication: a password containing $ may be improperly encoded or fail during parsing.

To correct or prevent this type of error:

• Avoid using the character $ in passwords intended for use in scripts or automated systems.
• If you absolutely must use it, always enclose the password string correctly according to the language:
  • In PowerShell: use single quotes 'password$Test' if possible.
  • In Python: ensure the string is well enclosed in single or double quotes, without interpretation.
  • In Bash: escape the $ with a backslash \$.