Hi, and thanks for a great project! I just installed vaultwarden using the vaultwarden/server docker image. I sent two emails from vaultwarden to verify my SMTP server settings and invite a user. The emails I received both contained suspicious looking links that begin with https://0llnh.mjt.lu/lnk/ followed by a lot of random characters. I would have expected any links generated by vaultwarden to point back to my own server. Furthermore, a quick search through github (Search · 0llnh.mjt.lu · GitHub) for that domain turns up nothing. This all appears pretty suspicious, especially for software with critical security implications, and makes me wonder whether the docker image I’m using has been compromised in some way. Can anyone explain why these links point to 0llnh.mjt.lu, and what their purpose is?
This has nothing to do with Vaultwarden, but with the mail server you are using it looks like.
If i go to that link http://0llnh.mjt.lu/, it tells me it is a mail platform and that it shortens links.
I’m not sure what kind of mail server you are using but it looks like it is using mailjet.
1 Like
Ah, yeah, you’re right! I just started using mailjet and didn’t even consider the possibility that the mail server itself might modify the links. Thanks!