[https://github.com/i2p/i2p.i2p-bote I2P-Bote] is a serverless, encrypted email plugin that uses [[I2P|I2P]] for anonymity. Messages are stored in the [https://en.wikipedia.org/wiki/Distributed_hash_table distributed hash table (DHT)] for 100 days, during which the recipient is able to download them. To back up I2P-Bote data, copy the i2pbote folder inside the I2P config directory. On Unix systems the relevant directory is ''~/.i2p/i2pbote'', or ''/var/lib/i2p/i2p-config'' if running it as a daemon. Compartmentalize activities and only use the I2P-Bote/Susimail VM snapshot for this purpose. Generally speaking, applications that run with a browser interface are vulnerable to a whole class of bugs, including [https://en.wikipedia.org/wiki/Cross-site_request_forgery cross-site request forgery (CSRF)]. <ref> * broken link: <nowiki>https://chaoswebs.net/blog/2016/12/01/Exploiting-I2P-Bote/</nowiki> * broken link: <nowiki>https://chaoswebs.net/blog/2016/10/15/Stealing-Your-I2P-Email/</nowiki> </ref> === Features === <div style="column-count:2;-moz-column-count:2;-webkit-column-count:2"> * themeable webmail interface * user interface translated into many languages * one-click creation of email accounts (called email identities) * emails can be sent under a sender identity, or anonymously * ElGamal, Elliptic Curve, and NTRU encryption * encryption and signing is transparent, without the need to know about PGP * delivery confirmation * basic support for short recipient names * IMAP / SMTP </div>