IMAP and SMTP submission now require TLS — both via STARTTLS on the standard plaintext ports (143, 587) and via Implicit TLS on the dedicated TLS ports (993, 465). Plaintext authentication is refused everywhere. Most modern clients default to the Implicit-TLS ports; either flavour works.
First version of the docs is live at /docs. Covers what’s shipped today: setting up DNS, sending and reading mail in the webmail, connecting IMAP and SMTP clients, managing domains, mailboxes, and aliases from the admin console, and how DKIM, SPF, and DMARC fit together. Available in English and Russian.
Every outgoing message is DKIM-signed with a per-domain 2048-bit RSA key (relaxed/relaxed canonicalisation, RFC 6376) and delivered straight to the recipient’s MX over STARTTLS — no relay in between. Subject lines and filenames with non-ASCII characters are encoded per RFC 2047 so they arrive intact.
Adding a domain generates a DKIM keypair on the spot — the public half appears in the DNS instructions immediately. The Verify button runs live DNS lookups against public resolvers with a 3-second timeout; each record turns green as it resolves correctly, and you can re-run as many times as you need. SPF guidance uses include:_spf.atpigeon.com so future IP rotations don’t require DNS edits on your side.
Compose accepts attachments — 25 MB per file, 50 MB per message. Incoming HTML is sanitised: scripts, iframes, and forms are stripped, but inline images and safe inline styles render normally. Plain-text-only messages render as preformatted text. All text parts are decoded into Unicode regardless of the source character set.
AtPigeon is live. A focused mail product on your own domain: calm webmail, full IMAP/SMTP, and an admin console for domains, mailboxes, and aliases. Hosted in the EU.