mirror of
https://we.phorge.it/source/phorge.git
synced 2024-09-19 16:58:48 +02:00
Document Mailgun as discouraged, and update Postmark remote address blocks
Summary: Ref T13669. See that task for discussion. Based on a disheartening interaction in June 2020, discourage use of Mailgun. Also update the default Postmark inbound address list, since they've added a new address. Test Plan: Read documentation, grepped for "mailgun". Maniphest Tasks: T13669 Differential Revision: https://secure.phabricator.com/D21738
This commit is contained in:
parent
8103d36177
commit
dc705cea7f
3 changed files with 26 additions and 17 deletions
|
@ -33,10 +33,11 @@ final class PhabricatorMailPostmarkAdapter
|
||||||
//
|
//
|
||||||
// "Configuring Outbound Email" should be updated if this changes.
|
// "Configuring Outbound Email" should be updated if this changes.
|
||||||
//
|
//
|
||||||
// These addresses were last updated in January 2019.
|
// These addresses were last updated in December 2021.
|
||||||
'50.31.156.6/32',
|
'50.31.156.6/32',
|
||||||
'50.31.156.77/32',
|
'50.31.156.77/32',
|
||||||
'18.217.206.57/32',
|
'18.217.206.57/32',
|
||||||
|
'3.134.147.250/32',
|
||||||
),
|
),
|
||||||
);
|
);
|
||||||
}
|
}
|
||||||
|
|
|
@ -42,9 +42,9 @@ Some available approaches for delivering mail to Phabricator are:
|
||||||
|
|
||||||
| Receive Mail With | Setup | Cost | Notes |
|
| Receive Mail With | Setup | Cost | Notes |
|
||||||
|--------|-------|------|-------|
|
|--------|-------|------|-------|
|
||||||
| Mailgun | Easy | Cheap | Recommended |
|
|
||||||
| Postmark | Easy | Cheap | Recommended |
|
| Postmark | Easy | Cheap | Recommended |
|
||||||
| SendGrid | Easy | Cheap | |
|
| SendGrid | Easy | Cheap | |
|
||||||
|
| Mailgun | Easy | Cheap | Discouraged |
|
||||||
| Local MTA | Difficult | Free | Discouraged |
|
| Local MTA | Difficult | Free | Discouraged |
|
||||||
|
|
||||||
The remainder of this document walks through configuring Phabricator to
|
The remainder of this document walks through configuring Phabricator to
|
||||||
|
@ -183,6 +183,9 @@ like this:
|
||||||
example domain with your actual domain.
|
example domain with your actual domain.
|
||||||
- Configure a mailer in `cluster.mailers` with your Mailgun API key.
|
- Configure a mailer in `cluster.mailers` with your Mailgun API key.
|
||||||
|
|
||||||
|
Use of Mailgun is discouraged because of concerns that they may not be a
|
||||||
|
trustworthy custodian of sensitive data. See <https://phurl.io/u/mailgun> for
|
||||||
|
discussion and context.
|
||||||
|
|
||||||
Postmark Setup
|
Postmark Setup
|
||||||
==============
|
==============
|
||||||
|
|
|
@ -17,7 +17,6 @@ including a local mailer or various third-party services. Options include:
|
||||||
| Send Mail With | Setup | Cost | Inbound | Media | Notes |
|
| Send Mail With | Setup | Cost | Inbound | Media | Notes |
|
||||||
|----------------|-------|------|---------|-------|-------|
|
|----------------|-------|------|---------|-------|-------|
|
||||||
| Postmark | Easy | Cheap | Yes | Email | Recommended |
|
| Postmark | Easy | Cheap | Yes | Email | Recommended |
|
||||||
| Mailgun | Easy | Cheap | Yes | Email | Recommended |
|
|
||||||
| Amazon SES | Easy | Cheap | No | Email | |
|
| Amazon SES | Easy | Cheap | No | Email | |
|
||||||
| SendGrid | Medium | Cheap | Yes | Email | |
|
| SendGrid | Medium | Cheap | Yes | Email | |
|
||||||
| Twilio | Easy | Cheap | No | SMS | Recommended |
|
| Twilio | Easy | Cheap | No | SMS | Recommended |
|
||||||
|
@ -26,14 +25,15 @@ including a local mailer or various third-party services. Options include:
|
||||||
| Local SMTP | Hard | Free | No | Email | sendmail, postfix, etc |
|
| Local SMTP | Hard | Free | No | Email | sendmail, postfix, etc |
|
||||||
| Custom | Hard | Free | No | All | Write a custom mailer. |
|
| Custom | Hard | Free | No | All | Write a custom mailer. |
|
||||||
| Drop in a Hole | Easy | Free | No | All | Drops mail in a deep, dark hole. |
|
| Drop in a Hole | Easy | Free | No | All | Drops mail in a deep, dark hole. |
|
||||||
|
| Mailgun | Easy | Cheap | Yes | Email | Discouraged |
|
||||||
|
|
||||||
See below for details on how to select and configure mail delivery for each
|
See below for details on how to select and configure mail delivery for each
|
||||||
mailer.
|
mailer.
|
||||||
|
|
||||||
For email, Postmark or Mailgun are recommended because they make it easy to
|
For email, Postmark is recommended because it makes it easy to set up inbound
|
||||||
set up inbound and outbound mail and have good track records in our production
|
and outbound mail and has a good track record in our production services. Other
|
||||||
services. Other services will also generally work well, but they may be more
|
services will also generally work well, but they may be more difficult to set
|
||||||
difficult to set up.
|
up.
|
||||||
|
|
||||||
For SMS, Twilio or SNS are recommended. They're also your only upstream
|
For SMS, Twilio or SNS are recommended. They're also your only upstream
|
||||||
options.
|
options.
|
||||||
|
@ -87,8 +87,8 @@ A valid `cluster.mailers` configuration looks something like this:
|
||||||
```lang=json
|
```lang=json
|
||||||
[
|
[
|
||||||
{
|
{
|
||||||
"key": "mycompany-mailgun",
|
"key": "mycompany-postmark",
|
||||||
"type": "mailgun",
|
"type": "postmark",
|
||||||
"options": {
|
"options": {
|
||||||
"domain": "mycompany.com",
|
"domain": "mycompany.com",
|
||||||
"api-key": "..."
|
"api-key": "..."
|
||||||
|
@ -118,12 +118,12 @@ The supported keys for each mailer are:
|
||||||
|
|
||||||
The `type` field can be used to select these mailer services:
|
The `type` field can be used to select these mailer services:
|
||||||
|
|
||||||
- `mailgun`: Use Mailgun.
|
|
||||||
- `ses`: Use Amazon SES.
|
- `ses`: Use Amazon SES.
|
||||||
- `sendgrid`: Use SendGrid.
|
- `sendgrid`: Use SendGrid.
|
||||||
- `postmark`: Use Postmark.
|
- `postmark`: Use Postmark.
|
||||||
- `twilio`: Use Twilio.
|
- `twilio`: Use Twilio.
|
||||||
- `sns`: Use Amazon SNS.
|
- `sns`: Use Amazon SNS.
|
||||||
|
- `mailgun`: Use Mailgun.
|
||||||
|
|
||||||
It also supports these local mailers:
|
It also supports these local mailers:
|
||||||
|
|
||||||
|
@ -204,11 +204,12 @@ The option accepts a list of CIDR ranges, like `1.2.3.4/16` (IPv4) or
|
||||||
[
|
[
|
||||||
"50.31.156.6/32",
|
"50.31.156.6/32",
|
||||||
"50.31.156.77/32",
|
"50.31.156.77/32",
|
||||||
"18.217.206.57/32"
|
"18.217.206.57/32",
|
||||||
|
"3.134.147.250/32"
|
||||||
]
|
]
|
||||||
```
|
```
|
||||||
|
|
||||||
The default address ranges were last updated in January 2019, and were
|
The default address ranges were last updated in December 2021, and were
|
||||||
documented at: <https://postmarkapp.com/support/article/800-ips-for-firewalls>
|
documented at: <https://postmarkapp.com/support/article/800-ips-for-firewalls>
|
||||||
|
|
||||||
|
|
||||||
|
@ -220,6 +221,10 @@ Mailer: Mailgun
|
||||||
| Inbound | Yes
|
| Inbound | Yes
|
||||||
|---------|
|
|---------|
|
||||||
|
|
||||||
|
Use of Mailgun is discouraged because of concerns that they may not be a
|
||||||
|
trustworthy custodian of sensitive data. See <https://phurl.io/u/mailgun> for
|
||||||
|
discussion and context.
|
||||||
|
|
||||||
Mailgun is a third-party email delivery service. You can learn more at
|
Mailgun is a third-party email delivery service. You can learn more at
|
||||||
<https://www.mailgun.com>. Mailgun is easy to configure and works well.
|
<https://www.mailgun.com>. Mailgun is easy to configure and works well.
|
||||||
|
|
||||||
|
@ -339,7 +344,7 @@ Since you'll be sending the mail yourself, you are subject to things like SPF
|
||||||
rules, blackholes, and MTA configuration which are beyond the scope of this
|
rules, blackholes, and MTA configuration which are beyond the scope of this
|
||||||
document. If you can already send outbound email from the command line or know
|
document. If you can already send outbound email from the command line or know
|
||||||
how to configure it, this option is straightforward. If you have no idea how to
|
how to configure it, this option is straightforward. If you have no idea how to
|
||||||
do any of this, strongly consider using Postmark or Mailgun instead.
|
do any of this, strongly consider using Postmark instead.
|
||||||
|
|
||||||
To use this mailer, set `type` to `sendmail`, then configure these `options`:
|
To use this mailer, set `type` to `sendmail`, then configure these `options`:
|
||||||
|
|
||||||
|
@ -416,7 +421,7 @@ highest priority group and go through them randomly, then fall back to the
|
||||||
next group.
|
next group.
|
||||||
|
|
||||||
For example, if you have two SMTP servers and you want to balance requests
|
For example, if you have two SMTP servers and you want to balance requests
|
||||||
between them and then fall back to Mailgun if both fail, configure priorities
|
between them and then fall back to Postmark if both fail, configure priorities
|
||||||
like this:
|
like this:
|
||||||
|
|
||||||
```lang=json
|
```lang=json
|
||||||
|
@ -434,8 +439,8 @@ like this:
|
||||||
"options": "..."
|
"options": "..."
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"key": "mailgun-fallback",
|
"key": "postmark-fallback",
|
||||||
"type": "mailgun",
|
"type": "postmark",
|
||||||
"options": "..."
|
"options": "..."
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
@ -450,7 +455,7 @@ example, there are no other priority groups.
|
||||||
|
|
||||||
If it still hasn't sent the mail, Phabricator will try servers which are not
|
If it still hasn't sent the mail, Phabricator will try servers which are not
|
||||||
in any priority group, in the configured order. In this example there is
|
in any priority group, in the configured order. In this example there is
|
||||||
only one such server, so it will try to send via Mailgun.
|
only one such server, so it will try to send via Postmark.
|
||||||
|
|
||||||
|
|
||||||
Message-ID Headers
|
Message-ID Headers
|
||||||
|
|
Loading…
Reference in a new issue