NeoMail is designed for self-hosted, trusted deployments.
- NeoMail behind a reverse proxy
- HTTPS at the edge
PUBLIC_URLset correctly- dedicated runtime directory on persistent storage
- Set
SESSION_SECRET - Set
NEOMAIL_ENCRYPTION_KEY - Configure service email if you want password reset and confirmations
- Configure the AI provider from
/admin - Back up the runtime directory
- Restrict host access with firewall rules
Production-ready here means production-ready for a self-hosted operator who controls the box and trusts the tenant set. It does not mean hostile multi-tenant SaaS hardening.