<stringname="app_welcome">FairEmail és una aplicació de correu electrònic de codi obert centrada en la privadesa i la seguretat. Per aquesta raó, algunes funcions poden funcionar de manera diferent a la que estàs acostumat.</string>
<stringname="app_welcome">FairEmail és una aplicació de correu electrònic de codi obert centrada en la privadesa i la seguretat. Per aquesta raó, algunes funcions poden funcionar de manera diferent a la que estàs acostumat.</string>
<stringname="app_crash">FairMail no és compatible en aquest dispositiu perquè els errors a Android causen bloqueigs</string>
<stringname="app_crash">FairMail no és compatible en aquest dispositiu perquè els errors a Android causen bloqueigs</string>
<stringname="app_exit">Premeu «Enrere» novament per sortir</string>
<stringname="app_exit">Premeu «Enrere» novament per sortir</string>
<stringname="channel_notification_description">Nova notificació de missatge</string>
<pluralsname="page_conversation">
<pluralsname="page_conversation">
<itemquantity="one">Conversa</item>
<itemquantity="one">Conversa</item>
<itemquantity="other">Conversa</item>
<itemquantity="other">Conversa</item>
@ -66,6 +70,7 @@
<stringname="title_block_domain">Bloquejar el domini complet del remitent</string>
<stringname="title_block_domain">Bloquejar el domini complet del remitent</string>
<stringname="title_block_sender_hint">Si bloqueges un remitent, es crearà una regla per traslladar automàticament els missatges futurs a la carpeta de correu brossa.
<stringname="title_block_sender_hint">Si bloqueges un remitent, es crearà una regla per traslladar automàticament els missatges futurs a la carpeta de correu brossa.
La creació i l\'ús de regles és una característica professional. </string>
La creació i l\'ús de regles és una característica professional. </string>
<stringname="title_junk_filter">Utilitza el filtre local d\'SPAM</string>
<stringname="title_setup_gmail_support">Com que Android comprova les firmes dels aplicatius, es podran autoritzar comptes de Google des des les versions oficials</string>
<stringname="title_setup_gmail_support">Com que Android comprova les firmes dels aplicatius, es podran autoritzar comptes de Google des des les versions oficials</string>
<stringname="title_setup_gmail_rationale">Doneu permís per seleccionar un compte i llegir el vostre nom</string>
<stringname="title_setup_gmail_rationale">Doneu permís per seleccionar un compte i llegir el vostre nom</string>
<stringname="title_setup_gmail_permissions">Google sol·licitarà permisos per llegir, compondre, enviar i suprimir tot el vostre correu electrònic. FairEmail mai suprimirà els vostres missatges sense el vostre consentiment explícit.</string>
<stringname="title_setup_gmail_permissions">Google sol·licitarà permisos per llegir, compondre, enviar i suprimir tot el vostre correu electrònic. FairEmail mai suprimirà els vostres missatges sense el vostre consentiment explícit.</string>
@ -119,22 +131,26 @@ La creació i l\'ús de regles és una característica professional. </string
<stringname="title_setup_no_settings">No s\'ha trobat cap configuració pel domini \'%1$s\'</string>
<stringname="title_setup_no_settings">No s\'ha trobat cap configuració pel domini \'%1$s\'</string>
<stringname="title_setup_no_auth_hint">Comproveu la vostra adreça de correu electrònic i la contrasenya i assegureu-vos que l’accés extern (IMAP/SMTP) estigui habilitat per al vostre compte</string>
<stringname="title_setup_no_auth_hint">Comproveu la vostra adreça de correu electrònic i la contrasenya i assegureu-vos que l’accés extern (IMAP/SMTP) estigui habilitat per al vostre compte</string>
<stringname="title_setup_app_password_hint">Aquest proveïdor necessita una contrasenya de l’aplicació en lloc de la contrasenya del compte, consulteu les instruccions del proveïdor</string>
<stringname="title_setup_app_password_hint">Aquest proveïdor necessita una contrasenya de l’aplicació en lloc de la contrasenya del compte, consulteu les instruccions del proveïdor</string>
<stringname="title_setup_no_inbox">No s\'ha trobat la bustia</string>
<stringname="title_setup_permissions_remark">Per accedir informació de contacte (opcional)</string>
<stringname="title_setup_permissions_remark">Per accedir informació de contacte (opcional)</string>
<stringname="title_setup_doze">Inhabilita les optimitzacions de bateria</string>
<stringname="title_setup_doze_instructions">En el següent diàleg, selecciona \"totes les apps\" a dalt, selecciona aquesta aplicació i polsa i confirma «no optimitzis la bateria»</string>
<stringname="title_setup_doze_instructions">En el següent diàleg, selecciona \"totes les apps\" a dalt, selecciona aquesta aplicació i polsa i confirma «no optimitzis la bateria»</string>
<stringname="title_setup_doze_battery">Ús de bateria elevat?</string>
<stringname="title_setup_doze_battery">Ús de bateria elevat?</string>
<stringname="title_setup_doze_stopped">S\'ha aturat la sincronització?</string>
<stringname="title_setup_doze_stopped">S\'ha aturat la sincronització?</string>
<stringname="title_setup_data">L\'estalvi de dades està activat</string>
<stringname="title_setup_data">L\'estalvi de dades està activat</string>
<stringname="title_setup_advanced_options">Mostra les opcions avançades</string>
<stringname="title_setup_advanced_options">Mostra les opcions avançades</string>
<stringname="title_setup_inbox">Vés a la Safata d\'Entrada</string>
<stringname="title_setup_go">Vés-hi</string>
<stringname="title_setup_go">Vés-hi</string>
<stringname="title_setup_to_do">Per fer</string>
<stringname="title_setup_to_do">Per fer</string>
<stringname="title_setup_done">Fet</string>
<stringname="title_setup_done">Fet</string>
<stringname="title_setup_still">Encara queda per fer</string>
<stringname="title_setup_still">Encara queda per fer</string>
<stringname="title_setup_error">Error</string>
<stringname="title_setup_error">Error</string>
<stringname="title_setup_configuring">Configurant compte …</string>
<stringname="title_setup_export">Exporta la configuració</string>
<stringname="title_setup_export">Exporta la configuració</string>
<stringname="title_setup_import">Importa una configuració</string>
<stringname="title_setup_import">Importa una configuració</string>
<stringname="title_setup_import_do">Els comptes importats s’afegiran sense sobreescriure els ja existents</string>
<stringname="title_setup_import_do">Els comptes importats s’afegiran sense sobreescriure els ja existents</string>
@ -161,16 +177,20 @@ La creació i l\'ús de regles és una característica professional. </string
@ -421,6 +447,7 @@ La creació i l\'ús de regles és una característica professional. </string
<stringname="title_advanced_cleanup_attachments_hint">Si es neteja manualment, s\'eliminen els fitxers adjunts dels missatges que ja no es sincronitzen</string>
<stringname="title_advanced_cleanup_attachments_hint">Si es neteja manualment, s\'eliminen els fitxers adjunts dels missatges que ja no es sincronitzen</string>
<stringname="title_advanced_cleanup_hint">S\'eliminaran tots els fitxers temporals</string>
<stringname="title_advanced_cleanup_hint">S\'eliminaran tots els fitxers temporals</string>
<stringname="title_advanced_edit_name">Edita el nom</string>
<stringname="title_advanced_swipe_actions">Estableix accions de lliscament</string>
<stringname="title_advanced_swipe_actions">Estableix accions de lliscament</string>
<stringname="title_advanced_swipe_actions_hint">D’aquesta manera, establireu l’acció lliscant cap a l’esquerra i la dreta per a tots els comptes IMAP</string>
<stringname="title_advanced_swipe_actions_hint">D’aquesta manera, establireu l’acció lliscant cap a l’esquerra i la dreta per a tots els comptes IMAP</string>
<stringname="title_ask_show_html">Si es mostra el missatge original es pot filtrar informació sensible a la privadesa</string>
<stringname="title_ask_show_html">Si es mostra el missatge original es pot filtrar informació sensible a la privadesa</string>
<stringname="title_ask_show_html_dark">Utilitza un tema fosc</string>
<stringname="title_ask_show_html_remark">No es pot mostrar el missatge original amb un fons fosc perquè pot provocar imatges i textos foscos invisibles</string>
<stringname="title_ask_show_html_remark">No es pot mostrar el missatge original amb un fons fosc perquè pot provocar imatges i textos foscos invisibles</string>
<stringname="title_ask_show_html_images">Mostrar sempre les imatges al mostrar els missatges originals</string>
<stringname="title_ask_show_html_images">Mostrar sempre les imatges al mostrar els missatges originals</string>
<stringname="title_ask_show_image">Si es mostra imatges, es pot filtrar informació sensible a la privadesa</string>
<stringname="title_ask_show_image">Si es mostra imatges, es pot filtrar informació sensible a la privadesa</string>
@ -707,6 +739,11 @@ La creació i l\'ús de regles és una característica professional. </string
<stringname="title_setup_theme_system_hint">Podporuje-li to Android, motiv „podle systému“ se ve dne/noci automaticky přepne na světlé/tmavé zobrazení</string>
<stringname="title_setup_theme_system_hint">Podporuje-li to Android, motiv „podle systému“ se ve dne/noci automaticky přepne na světlé/tmavé zobrazení</string>
<stringname="title_setup_theme_more_colors">Chci více barev</string>
<stringname="title_advanced_preview_issue">Je-li počet řádků větší než jeden, může být posouvání pomalé díky chybě v některých verzích Androidu</string>
<stringname="title_advanced_preview_issue">Je-li počet řádků větší než jeden, může být posouvání pomalé díky chybě v některých verzích Androidu</string>
<stringname="title_advanced_overview_mode_hint">Může mít za následek velmi malé písmo</string>
<stringname="title_advanced_overview_mode_hint">Může mít za následek velmi malé písmo</string>
<stringname="title_advanced_placeholders_hint">Platí pouze pro přeformátované zprávy</string>
<stringname="title_advanced_placeholders_hint">Platí pouze pro přeformátované zprávy</string>
<stringname="title_no_junk_folder">Pro tento účet není zvolena žádná složka pro nevyžádanou poštu</string>
<stringname="title_no_junk_folder">Pro tento účet není zvolena žádná složka pro nevyžádanou poštu</string>
<stringname="title_default_composable">Výchozí e-mailová adresa je určena výchozí identitou hlavního účtu</string>
<stringname="title_no_composable">Odesílání e-mailů vyžaduje nastavenou identitu a zvolit složku pro koncepty v nastavení účtu</string>
<stringname="title_no_composable">Odesílání e-mailů vyžaduje nastavenou identitu a zvolit složku pro koncepty v nastavení účtu</string>
<stringname="title_no_standard">Tento poskytovatel používá proprietární e-mailový protokol, a proto není možné použít e-mailové klienty třetích stran</string>
<stringname="title_no_standard">Tento poskytovatel používá proprietární e-mailový protokol, a proto není možné použít e-mailové klienty třetích stran</string>
<stringname="title_no_idle">Tento poskytovatel nepodporuje okamžité zprávy. Následkem bude opožděný příjem nových zpráv a zvýšená spotřeba baterie.</string>
<stringname="title_no_idle">Tento poskytovatel nepodporuje okamžité zprávy. Následkem bude opožděný příjem nových zpráv a zvýšená spotřeba baterie.</string>
@ -727,7 +732,6 @@
<stringname="title_duplicate_in">Duplikát zprávy v %1$s</string>
<stringname="title_duplicate_in">Duplikát zprávy v %1$s</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Arkivér besvarede beskeder</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Beantwortete Nachricht archivieren</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Beantwortete Nachricht archivieren</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Beantwortete Nachricht archivieren</string>
<stringname="title_send_at">Αποστολή στις …</string>
<stringname="title_send_at">Αποστολή στις …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Αρχειοθέτηση απαντημένου μηνύματος</string>
<stringname="title_send_at">Enviar a …</string>
<stringname="title_send_at">Enviar a …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archivar mensaje respondido</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Arkistoi vastattu viesti</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archiver un message avec réponse</string>
<stringname="title_send_auto_archive">Archiver un message avec réponse</string>
<stringname="title_subject_reminder">L’objet est vide</string>
<stringname="title_subject_reminder">L’objet est vide</string>
<stringname="title_text_reminder">Le message est vide</string>
<stringname="title_text_reminder">Le message est vide</string>
<stringname="title_attachment_keywords">joint,jointe,joints,jointes,ci-joint,ci-jointe,ci-joints,ci-jointes,attaché,attachés,attachée,attachées,lettre de motivation,cv</string>
<stringname="title_attachment_keywords">joint,jointe,joints,jointes,ci-joint,ci-jointe,ci-joints,ci-jointes,attaché,attachés,attachée,attachées,lettre de motivation,cv</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archiver un message avec réponse</string>
<stringname="title_send_auto_archive">Archiver un message avec réponse</string>
<stringname="title_subject_reminder">L\'objet est vide</string>
<stringname="title_subject_reminder">L\'objet est vide</string>
<stringname="title_text_reminder">Le message est vide</string>
<stringname="title_text_reminder">Le message est vide</string>
<stringname="title_attachment_keywords">joint,jointe,joints,jointes,ci-joint,ci-jointe,ci-joints,ci-jointes,attaché,attachés,attachée,attachées,lettre de motivation,cv</string>
<stringname="title_attachment_keywords">joint,jointe,joints,jointes,ci-joint,ci-jointe,ci-joints,ci-jointes,attaché,attachés,attachée,attachées,lettre de motivation,cv</string>
<stringname="title_send_at">Invia alle …</string>
<stringname="title_send_at">Invia alle …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archivia il messaggio con risposta</string>
<stringname="title_send_auto_archive">Archivia il messaggio con risposta</string>
<stringname="title_send_at">Verzenden om …</string>
<stringname="title_send_at">Verzenden om …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archiveer beantwoord bericht</string>
<stringname="title_send_at">Wysłać o …</string>
<stringname="title_send_at">Wysłać o …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Archiwizuj wysłaną odpowiedź</string>
<stringname="title_send_at">Trimite la …</string>
<stringname="title_send_at">Trimite la …</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Arhivează mesajul citit</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Архивировать исходное сообщение</string>
<stringname="app_welcome">FairEmail je opensource aplikácia zameraná na súkromie a bezpečnosť. Z toho dôvodu môžu niektoré vlastnosti fungovať inak, ako ste zvyknutí.</string>
<stringname="app_welcome">FairEmail je opensource aplikácia zameraná na súkromie a bezpečnosť. Z toho dôvodu môžu niektoré vlastnosti fungovať inak, ako ste zvyknutí.</string>
<stringname="app_limitations">Napríklad, správy sú implicitne preformátované aby sa odstránili nebezpečné elementy a zvýšila čitateľnosť, a otváranie odkazov je potrebné potvrdiť kvôli bezpečnosti. Obe nastavenia sa dajú podľa potreby vypnúť.</string>
<stringname="app_crash">FairEmail nie je podporovaný na tomto zariadení, pretože chyby v systéme spôsobujú pády</string>
<stringname="app_crash">FairEmail nie je podporovaný na tomto zariadení, pretože chyby v systéme spôsobujú pády</string>
<stringname="app_exit">Znova stlačte \"Späť\" pre ukončenie</string>
<stringname="app_exit">Znova stlačte \"Späť\" pre ukončenie</string>
<stringname="app_cake">Nedostatok voľného miesta na úložisku</string>
<stringname="app_cake">Nedostatok voľného miesta na úložisku</string>
<stringname="title_setup_account_identity_hint">Môžete nastaviť meno, farbu a akcie pre potiahnutie v nastaveniach konta, a nastaviť podpis v nastaveniach totožnosti</string>
<stringname="title_setup_oauth_permission">Poskytovateľ služby e-mail povolil autorizáciu použitím OAuth len pre oficiálne zostavenia aplikácii</string>
<stringname="title_setup_oauth_permission">Poskytovateľ služby e-mail povolil autorizáciu použitím OAuth len pre oficiálne zostavenia aplikácii</string>
<stringname="title_setup_instructions">Pokyny pre nastavenie</string>
<stringname="title_setup_instructions">Pokyny pre nastavenie</string>
<stringname="title_setup_no_settings">Neboli nájdené žiadne nastavenia pre doménu \"%1$s\"</string>
<stringname="title_setup_no_settings">Neboli nájdené žiadne nastavenia pre doménu \"%1$s\"</string>
<stringname="title_setup_no_settings_hint">Skúste nastaviť účet ručne použitím nastavení poskytnutých vašim emailovým poskytovateľom</string>
<stringname="title_setup_no_auth_hint">Dvakrát skontrolujte vašu e-mailovú adresu a heslo a uistite sa, že v účte máte povolený externý prístup (protokoly IMAP a SMTP)</string>
<stringname="title_setup_no_auth_hint">Dvakrát skontrolujte vašu e-mailovú adresu a heslo a uistite sa, že v účte máte povolený externý prístup (protokoly IMAP a SMTP)</string>
<stringname="title_setup_app_password_hint">Tento poskytovateľ si vyžaduje použitie hesla aplikácie namiesto hesla účtu, skontrolujte pokyny vášho poskytovateľa</string>
<stringname="title_setup_app_password_hint">Tento poskytovateľ si vyžaduje použitie hesla aplikácie namiesto hesla účtu, skontrolujte pokyny vášho poskytovateľa</string>
<stringname="title_setup_no_inbox">Priečinok s doručenou poštou nebol nájdený</string>
<stringname="title_setup_no_inbox">Priečinok s doručenou poštou nebol nájdený</string>
<stringname="title_setup_advanced_protection">Ak využívate program rozšírenej ochrany Google, nie je možné používať emailových klientov tretích strán. Toto je obmedzenie stanovené samotným Googlom.</string>
<stringname="title_setup_advanced_protection">Ak využívate program rozšírenej ochrany Google, nie je možné používať emailových klientov tretích strán. Toto je obmedzenie stanovené samotným Googlom.</string>
<stringname="title_setup_quick_success">Účet bol úspešne pridaný</string>
<stringname="title_setup_doze_hint">Môže sa zdať, že opak je pravdou, no vypnutím optimalizácie batérie ušetríte využitie pri napájaní z batérie</string>
<stringname="title_setup_doze_hint">Môže sa zdať, že opak je pravdou, no vypnutím optimalizácie batérie ušetríte využitie pri napájaní z batérie</string>
<stringname="title_setup_doze_instructions">V nasledujúcom dialógovom okne zvoľte \"Všetky aplikácie\" navrchu, vyberte túto aplikáciu a potvrďte \"Neoptimalizovať\"</string>
<stringname="title_setup_doze_instructions">V nasledujúcom dialógovom okne zvoľte \"Všetky aplikácie\" navrchu, vyberte túto aplikáciu a potvrďte \"Neoptimalizovať\"</string>
@ -178,6 +191,7 @@
<stringname="title_setup_doze_stopped">Zastavila sa synchronizácia?</string>
<stringname="title_setup_doze_stopped">Zastavila sa synchronizácia?</string>
<stringname="title_setup_data">Šetrenie údajov je povolené</string>
<stringname="title_setup_data">Šetrenie údajov je povolené</string>
<stringname="title_setup_advanced_options">Zobraziť rozšírené možnosti</string>
<stringname="title_setup_advanced_options">Zobraziť rozšírené možnosti</string>
<stringname="title_setup_inbox">Prejsť do schránky</string>
<stringname="title_setup_go">Spustiť</string>
<stringname="title_setup_go">Spustiť</string>
<stringname="title_setup_to_do">Dokončiť</string>
<stringname="title_setup_to_do">Dokončiť</string>
<stringname="title_setup_done">Hotovo</string>
<stringname="title_setup_done">Hotovo</string>
@ -217,6 +231,7 @@
<stringname="title_setup_theme_system">Prispôsobiť sa systému</string>
<stringname="title_setup_theme_system">Prispôsobiť sa systému</string>
<stringname="title_setup_theme_system_hint">Táto možnosť automaticky prepne na svetlý alebo tmavý motív podľa toho, či je zariadenie v dennom alebo nočnom režime, ak sú podporované systémom</string>
<stringname="title_setup_theme_system_hint">Táto možnosť automaticky prepne na svetlý alebo tmavý motív podľa toho, či je zariadenie v dennom alebo nočnom režime, ak sú podporované systémom</string>
<stringname="title_setup_theme_more_colors">Chcem viac farieb</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">Архівувати повідомлення з відповіддю</string>
<stringname="title_send_auto_archive">Архівувати повідомлення з відповіддю</string>
<stringname="title_send_auto_archive"comment="title_send_auto_archive Title for checkbox to move replied to message to the archive folder on sending the reply. ">存档回复消息</string>
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
* [(44) Můžete zobrazit fotografie kontaktů / identikony v odeslané složce?](#user-content-faq44)
* [(44) Můžete zobrazit fotografie kontaktů / identikony v odeslané složce?](#user-content-faq44)
* [(45) Jak mohu opravit 'tento klíč není k dispozici. Abyste jej mohli použít, musíte ho importovat jako jeden z vlastní!" ?](#user-content-faq45)
* [(45) Jak mohu opravit „This key is not available. To use it, you must import it as one of your own!“ ?](#user-content-faq45)
* [(46) Proč se seznam zpráv stále obnovuje?](#user-content-faq46)
* [(46) Proč se seznam zpráv stále obnovuje?](#user-content-faq46)
* [(47) Jak vyřeším chybu 'Žádný primární účet nebo žádná složka konceptů' ?](#user-content-faq47)
* [(47) Jak vyřeším chybu „Žádný hlavní účet nebo žádná složka konceptů“ ?](#user-content-faq47)
* [~~(48) Jak vyřeším chybu 'Žádný primární účet nebo žádná složka konceptů' ?~~](#user-content-faq48)
* [~~(48) Jak vyřeším chybu „Žádný hlavní účet nebo žádná složka konceptů“ ?~~](#user-content-faq48)
* [(49) How do I fix 'An outdated app sent a file path instead of a file stream' ?](#user-content-faq49)
* [(49) How do I fix 'An outdated app sent a file path instead of a file stream' ?](#user-content-faq49)
* [(50) Can you add an option to synchronize all messages?](#user-content-faq50)
* [(50) Can you add an option to synchronize all messages?](#user-content-faq50)
* [(51) Jak jsou složky řazeny?](#user-content-faq51)
* [(51) Jak jsou složky řazeny?](#user-content-faq51)
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
* [(163) Hvad er beskedklassificering?](#user-content-faq163)
* [(163) Hvad er beskedklassificering?](#user-content-faq163)
* [(164) Kan der blive tilføjet tilpasselige temaer?](#user-content-faq164)
* [(164) Kan der blive tilføjet tilpasselige temaer?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[Har et andet spørgsmål.](#user-content-support)
[Har et andet spørgsmål.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -864,7 +871,7 @@ There are general errors and errors specific to Gmail accounts (see below).
**General errors**
**General errors**
<aname="authfailed"></a>
<aname="authfailed"></a>
Fejlen*... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error*... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
@ -874,11 +881,11 @@ The errors *... invalid greeting ...*, *... requires valid address ...* and *...
Fejlen *... Couldn't connect to host ...* means that there was no response from the email server within a reasonable time (20 seconds by default). Mostly this indicates internet connectivity issues, possibly caused by a VPN or by a firewall app. You can try to increase the connection timeout in the connection settings of FairEmail, for when the email server is really slow.
Fejlen *... Couldn't connect to host ...* means that there was no response from the email server within a reasonable time (20 seconds by default). Mostly this indicates internet connectivity issues, possibly caused by a VPN or by a firewall app. You can try to increase the connection timeout in the connection settings of FairEmail, for when the email server is really slow.
Fejlen*... Connection refused ...* means that the email server or something between the email server and the app, like a firewall, actively refused the connection.
The error*... Connection refused ...* means that the email server or something between the email server and the app, like a firewall, actively refused the connection.
Fejlen*... Network unreachable ...* means that the email server was not reachable via the current internet connection, for example because internet traffic is restricted to local traffic only.
The error*... Network unreachable ...* means that the email server was not reachable via the current internet connection, for example because internet traffic is restricted to local traffic only.
Fejlen*... Host is unresolved ...*, *... Unable to resolve host ...* or *... No address associated with hostname ...* means that the address of the email server could not be resolved into an IP address. This might be caused by a VPN, ad blocking or an unreachable or not properly working (local) [DNS](https://en.wikipedia.org/wiki/Domain_Name_System) server.
The error*... Host is unresolved ...*, *... Unable to resolve host ...* or *... No address associated with hostname ...* means that the address of the email server could not be resolved into an IP address. This might be caused by a VPN, ad blocking or an unreachable or not properly working (local) [DNS](https://en.wikipedia.org/wiki/Domain_Name_System) server.
The error *... Software caused connection abort ...* means that the email server or something between FairEmail and the email server actively terminated an existing connection. This can for example happen when connectivity was abruptly lost. A typical example is turning on flight mode.
The error *... Software caused connection abort ...* means that the email server or something between FairEmail and the email server actively terminated an existing connection. This can for example happen when connectivity was abruptly lost. A typical example is turning on flight mode.
@ -889,7 +896,7 @@ The error *... Connection closed by peer ...* might be caused by a not updated E
The errors *... Read error ...*, *... Write error ...*, *... Read timed out ...*, *... Broken pipe ...* mean that the email server is not responding anymore or that the internet connection is bad.
The errors *... Read error ...*, *... Write error ...*, *... Read timed out ...*, *... Broken pipe ...* mean that the email server is not responding anymore or that the internet connection is bad.
<aname="connectiondropped"></a>
<aname="connectiondropped"></a>
Fejlen*... Connection dropped by server? ...* means that the email server unexpectedly terminated the connection. This sometimes happen when there were too many connections in a too short time or when a wrong password was used for too many times. In this case, please make sure your password is correct and disable receiving in the receive settings for about 30 minutes and try again. If needed, see [this FAQ](#user-content-faq23) about how you can reduce the number of connections.
The error*... Connection dropped by server? ...* means that the email server unexpectedly terminated the connection. This sometimes happen when there were too many connections in a too short time or when a wrong password was used for too many times. In this case, please make sure your password is correct and disable receiving in the receive settings for about 30 minutes and try again. If needed, see [this FAQ](#user-content-faq23) about how you can reduce the number of connections.
The error *... Unexpected end of zlib input stream ...* means that not all data was received, possibly due to a bad or interrupted connection.
The error *... Unexpected end of zlib input stream ...* means that not all data was received, possibly due to a bad or interrupted connection.
@ -949,11 +956,11 @@ The authorization of Gmail accounts setup with the quick wizard needs to be peri
In case of errors it is possible to authorize/restore a Gmail account again via the Gmail quick setup wizard.
In case of errors it is possible to authorize/restore a Gmail account again via the Gmail quick setup wizard.
The error *... Godkendelse mislykkedes... Account not found ...* means that a previously authorized Gmail account was removed from the device.
The error *... Authentication failed ... Account not found ...* means that a previously authorized Gmail account was removed from the device.
The errors *... Authentication failed ... No token ...* means that the Android account manager failed to refresh the authorization of a Gmail account.
The errors *... Authentication failed ... No token ...* means that the Android account manager failed to refresh the authorization of a Gmail account.
Fejlen*... Authentication failed ... network error ...* means that the Android account manager was not able to refresh the authorization of a Gmail account due to problems with the internet connection
The error*... Authentication failed ... network error ...* means that the Android account manager was not able to refresh the authorization of a Gmail account due to problems with the internet connection
The error *... Authentication failed ... Invalid credentials ...* could be caused by changing the account password or by having revoked the required account/contacts permissions. In case the account password was changed, you'll need to authenticate the Google account in the Android account settings again. In case the permissions were revoked, you can start the Gmail quick setup wizard to grant the required permissions again (you don't need to setup the account again).
The error *... Authentication failed ... Invalid credentials ...* could be caused by changing the account password or by having revoked the required account/contacts permissions. In case the account password was changed, you'll need to authenticate the Google account in the Android account settings again. In case the permissions were revoked, you can start the Gmail quick setup wizard to grant the required permissions again (you don't need to setup the account again).
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(162) Wird IMAP NOTIFY unterstützt?](#user-content-faq162)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(163) Was ist Nachrichtenklassifizierung?](#user-content-faq163)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(164) Können Sie anpassbare Designs hinzufügen?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) ¿Se admite el sistema IMAP NOTIFY?](#user-content-faq162)
* [(162) ¿Se admite el sistema IMAP NOTIFY?](#user-content-faq162)
* [(163) ¿Qué es la clasificación de mensajes?](#user-content-faq163)
* [(163) ¿Qué es la clasificación de mensajes?](#user-content-faq163)
* [(164) ¿Puedes añadir temas personalizables?](#user-content-faq164)
* [(164) ¿Puedes añadir temas personalizables?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -864,7 +871,7 @@ There are general errors and errors specific to Gmail accounts (see below).
**General errors**
**General errors**
<aname="authfailed"></a>
<aname="authfailed"></a>
El error *... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error *... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
@ -872,11 +879,11 @@ The message *... +OK ...* likely means that a POP3 port (usually port number 995
The errors *... invalid greeting ...*, *... requires valid address ...* and *... Parameter to HELO does not conform to RFC syntax ...* can likely be solved by changing the advanced identity setting *Use local IP address instead of host name*.
The errors *... invalid greeting ...*, *... requires valid address ...* and *... Parameter to HELO does not conform to RFC syntax ...* can likely be solved by changing the advanced identity setting *Use local IP address instead of host name*.
El error *... Couldn't connect to host ...* means that there was no response from the email server within a reasonable time (20 seconds by default). Mostly this indicates internet connectivity issues, possibly caused by a VPN or by a firewall app. You can try to increase the connection timeout in the connection settings of FairEmail, for when the email server is really slow.
The error *... Couldn't connect to host ...* means that there was no response from the email server within a reasonable time (20 seconds by default). Mostly this indicates internet connectivity issues, possibly caused by a VPN or by a firewall app. You can try to increase the connection timeout in the connection settings of FairEmail, for when the email server is really slow.
The error *... Connection refused ...* means that the email server or something between the email server and the app, like a firewall, actively refused the connection.
The error *... Connection refused ...* means that the email server or something between the email server and the app, like a firewall, actively refused the connection.
El error *... Network unreachable ...* means that the email server was not reachable via the current internet connection, for example because internet traffic is restricted to local traffic only.
The error *... Network unreachable ...* means that the email server was not reachable via the current internet connection, for example because internet traffic is restricted to local traffic only.
The error *... Host is unresolved ...*, *... Unable to resolve host ...* or *... No address associated with hostname ...* means that the address of the email server could not be resolved into an IP address. This might be caused by a VPN, ad blocking or an unreachable or not properly working (local) [DNS](https://en.wikipedia.org/wiki/Domain_Name_System) server.
The error *... Host is unresolved ...*, *... Unable to resolve host ...* or *... No address associated with hostname ...* means that the address of the email server could not be resolved into an IP address. This might be caused by a VPN, ad blocking or an unreachable or not properly working (local) [DNS](https://en.wikipedia.org/wiki/Domain_Name_System) server.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ La conception est basée sur de nombreuses discussions et si vous le souhaitez,
* [(162) L'IMAP NOTIFY est-il pris en charge ?](#user-content-faq162)
* [(162) L'IMAP NOTIFY est-il pris en charge ?](#user-content-faq162)
* [(163) Qu'est-ce que la classification des messages ?](#user-content-faq163)
* [(163) Qu'est-ce que la classification des messages ?](#user-content-faq163)
* [(164) Pouvez-vous ajouter des thèmes personnalisables ?](#user-content-faq164)
* [(164) Pouvez-vous ajouter des thèmes personnalisables ?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[J’ai une autre question.](#user-content-support)
[J’ai une autre question.](#user-content-support)
@ -530,8 +531,12 @@ Certains fournisseurs ne gardent pas de trace des messages envoyés ou le serveu
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ La conception est basée sur de nombreuses discussions et si vous le souhaitez,
* [(162) L'IMAP NOTIFY est-il pris en charge ?](#user-content-faq162)
* [(162) L'IMAP NOTIFY est-il pris en charge ?](#user-content-faq162)
* [(163) Qu'est-ce que la classification des messages ?](#user-content-faq163)
* [(163) Qu'est-ce que la classification des messages ?](#user-content-faq163)
* [(164) Pouvez-vous ajouter des thèmes personnalisables ?](#user-content-faq164)
* [(164) Pouvez-vous ajouter des thèmes personnalisables ?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[J’ai une autre question.](#user-content-support)
[J’ai une autre question.](#user-content-support)
@ -530,8 +531,12 @@ Certains fournisseurs ne gardent pas de trace des messages envoyés ou le serveu
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -864,7 +871,7 @@ There are general errors and errors specific to Gmail accounts (see below).
**General errors**
**General errors**
<aname="authfailed"></a>
<aname="authfailed"></a>
L'errore*... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error*... Authentication failed ...* or *... AUTHENTICATE failed ...* likely means that your username or password was incorrect. Some providers expect as username just *username* and others your full email address *username@example.com*. When copying/pasting to enter a username or password, invisible characters might be copied, which could cause this problem as well. Some password managers are known to do this incorrectly too. The username might be case sensitive, so try lowercase characters only. The password is almost always case sensitive. Some providers require using an app password instead of the account password, so please check the documentation of the provider. Sometimes it is necessary to enable external access (IMAP/SMTP) on the website of the provider first. Other possible causes are that the account is blocked or that logging in has been administratively restricted in some way, for example by allowing to login from certain networks / IP addresses only.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
The error *... Too many bad auth attempts ...* likely means that you are using a Yahoo account password instead of an app password. Please see [this FAQ](#user-content-faq88) about how to set up a Yahoo account.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) Что такое классификация сообщений?](#user-content-faq163)
* [(163) Что такое классификация сообщений?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
If you have a question, please check the following frequently asked questions first. [At the bottom](https://github.com/M66B/FairEmail/blob/master/FAQ.md#user-content-get-support), you can find out how to ask other questions, request features, and report bugs.
If you have a question, please check the following frequently asked questions first. [At the bottom](https://github.com/M66B/FairEmail/blob/master/FAQ.md#user-content-get-support), you can find out how to ask other questions, request features, and report bugs.
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options:
@ -285,6 +285,7 @@ The design is based on many discussions and if you like you can discuss about it
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(162) Is IMAP NOTIFY supported?](#user-content-faq162)
* [(163) What is message classification?](#user-content-faq163)
* [(163) What is message classification?](#user-content-faq163)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(164) Can you add customizable themes?](#user-content-faq164)
* [(165) Is Android Auto supported?](#user-content-faq165)
[I have another question.](#user-content-support)
[I have another question.](#user-content-support)
@ -530,8 +531,12 @@ Some providers do not keep track of sent messages or the used SMTP server might
<aname="faq8"></a>
<aname="faq8"></a>
**(8) Can I use a Microsoft Exchange account?**
**(8) Can I use a Microsoft Exchange account?**
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055). So, it makes little sense to add this protocol anymore.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
You can use a Microsoft Exchange account if it is accessible via IMAP, which is mostly the case. See [here](https://support.office.com/en-us/article/what-is-a-microsoft-exchange-account-47f000aa-c2bf-48ac-9bc2-83e5c6036793) for more information.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Please see [here](https://support.office.com/en-us/article/pop-imap-and-smtp-settings-for-outlook-com-d088b986-291d-42b8-9564-9c414e2aa040) for the Microsoft documentation about configuring an email client. There is also a section about common connection errors and solutions.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
Some older Exchange server versions have a bug causing empty message and corrupt attachments. Please see [this FAQ](#user-content-faq110) for a workaround.
@ -606,7 +611,7 @@ To verify a signature or to decrypt a received message, open the message and jus
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
The first time you send a signed/encrypted message you might be asked for a sign key. FairEmail will automatically store the selected sign key in the used identity for the next time. If you need to reset the sign key, just save the identity or long press the identity in the list of identities and select *Reset sign key*. The selected sign key is visible in the list of identities. If need to select a key on a case by case basis, you can create multiple identities for the same account with the same email address.
In the privacy settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
In the encryption settings you can select the default encryption method (PGP or S/MIME), enable *Sign by default*, *Encrypt by default* and *Automatically decrypt messages*, but be aware that automatic decryption is not possible if user interaction is required, like selecting a key or reading a security token.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
The to be encrypted message text/attachments and the decrypted message text/attachments are stored locally only and will never be added to the remote server. If you want to undo decryption, you can use the *resync* menu item in the three-dots menu of the message action bar.
@ -626,6 +631,8 @@ You'll need to install and configure [OpenKeychain](https://f-droid.org/en/packa
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
FairEmail will send the [Autocrypt](https://autocrypt.org/) header for use by other email clients, but only for signed and encrypted messages because too many email servers have problems with the often long Autocrypt header. Note that the most secure way to start an encrypted email exchange is by sending signed messages first. Received Autocrypt headers will be sent to the OpenKeychain app for storage on verifying a signature or decrypting a message.
Although this shouldn't be necessary for most email clients, you can attach your public key to a message and if you use *.key* as extension, the mime type will correctly be *application/pgp-keys*.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
All key handling is delegated to the OpenKey chain app for security reasons. This also means that FairEmail does not store PGP keys.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
Inline encrypted PGP in received messages is supported, but inline PGP signatures and inline PGP in outgoing messages is not supported, see [here](https://josefsson.org/inline-openpgp-considered-harmful.html) about why not.
@ -647,7 +654,7 @@ Common errors:
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Encrypting a message requires the public key(s) of the recipient(s). Signing a message requires your private key.
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the privacy settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Private keys are stored by Android and can be imported via the Android advanced security settings. There is a shortcut (button) for this in the encryption settings. Android will ask you to set a PIN, pattern, or password if you didn't before. If you have a Nokia device with Android 9, please [read this first](https://nokiamob.net/2019/08/10/a-bug-prevents-nokia-1-owners-from-unlocking-their-screen-even-with-right-pin-pattern/).
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
Note that certificates can contains multiple keys for multiple purposes, for example for authentication, encryption and signing. Android only imports the first key, so to import all the keys, the certificate must first be split. This is not very trivial and you are advised to ask the certificate supplier for support.
@ -657,7 +664,7 @@ The default encryption method is PGP, but the last used encryption method will b
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
To allow different private keys for the same email address, FairEmail will always let you select a key when there are multiple identities with the same email address for the same account.
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the privacy settings (PEM or DER format).
Public keys are stored by FairEmail and can be imported when verifying a signature for the first time or via the encryption settings (PEM or DER format).
FairEmail verifies both the signature and the complete certificate chain.
FairEmail verifies both the signature and the complete certificate chain.
@ -1780,27 +1787,27 @@ Note that recent Android versions allow overriding DND (Do Not Disturb) per noti
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
For more complex schemes you could set one or more accounts to manual synchronization and send this command to FairEmail to check for new messages:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL
(adb shell) am start-foreground-service -a eu.faircode.email.POLL
```
```
For a specific account:
For a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.POLL --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.POLL --es account Gmail
```
```
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
You can also automate turning receiving messages on and off by sending these commands to FairEmail:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE
(adb shell) am startservice -a eu.faircode.email.DISABLE
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE
```
```
To enable/disable a specific account:
To enable/disable a specific account:
```
```
(adb shell) am startservice -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.ENABLE --es account Gmail
(adb shell) am startservice -a eu.faircode.email.DISABLE --es account Gmail
(adb shell) am start-foreground-service -a eu.faircode.email.DISABLE --es account Gmail
```
```
Note that disabling an account will hide the account and all associated folders and messages.
Note that disabling an account will hide the account and all associated folders and messages.
@ -2381,6 +2388,10 @@ For some background, see for [this Wikipedia article](https://en.wikipedia.org/w
<br/>
<br/>
*Background for unread messages*
<br/>
<aname="faq126"></a>
<aname="faq126"></a>
**(126) Can message previews be sent to my wearable?**
**(126) Can message previews be sent to my wearable?**
@ -2468,8 +2479,6 @@ Android might rate limit the notification sound, which can cause some new messag
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange ActiveSync protocol [is patented](https://en.wikipedia.org/wiki/Exchange_ActiveSync#Licensing) and can therefore not be supported. For this reason you won't find many, if any, other email clients supporting ActiveSync.
The Microsoft Exchange Web Services protocol [is being phased out](https://techcommunity.microsoft.com/t5/Exchange-Team-Blog/Upcoming-changes-to-Exchange-Web-Services-EWS-API-for-Office-365/ba-p/608055).
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
Note that the desciption of FairEmail starts with the remark that non-standard protocols, like Microsoft Exchange Web Services and Microsoft ActiveSync are not supported.
<br/>
<br/>
@ -2829,7 +2838,7 @@ Tracking images will not be recognized when the domain is classified as '*Conten
This command can be sent to FairEmail from an automation app to update the protection lists:
This command can be sent to FairEmail from an automation app to update the protection lists:
```
```
(adb shell) am startservice -a eu.faircode.email.DISCONNECT.ME
(adb shell) am start-foreground-service -a eu.faircode.email.DISCONNECT.ME
```
```
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
Updating once a week will probably be sufficient, please see [here](https://github.com/disconnectme/disconnect-tracking-protection/commits/master) for recent lists changes.
@ -2922,6 +2931,22 @@ The theme colors are based on the color circle of [Johannes Itten](https://en.wi
<br/>
<br/>
<aname="faq165"></a>
**(165) Is Android Auto supported?**
Yes, Android Auto is supported, but only with the GitHub version, please [see here](https://forum.xda-developers.com/t/app-5-0-fairemail-fully-featured-open-source-privacy-oriented-email-app.3824168/post-83801249) about why.
For notification (messaging) support you'll need to enable the following notification options: