The web app runs at /mail for historical reasons, but everything is modularized in the backend and we are very conscious of structuring services and code in a way that simplifies maintenance and expansion.
The reason the 2FA project took a long time was mainly that we needed to modify each standalone service (2 IMAP services, 2 POP services, SMTP, FTP, etc) to authenticate via one central authentication system. Now that this is done we are finally free to do all kinds of exciting things such as 2FA.
We are continuing to focus on security improvements, but we are also building a next generation webmail behind the scenes. This won't stop us from making incremental improvements to the current web interface, though.
Stay tuned.
- Geir
|