self-hosted/Mailu
1
0
Fork 0
mirror of https://github.com/Mailu/Mailu.git synced 2025-03-03 14:52:36 +02:00
Code Issues Releases Activity

Merge #3102

Browse Source 
3102: Prevent SMTP smuggling r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Prevent SMTP smuggling; see https://www.mail-archive.com/postfix-users@postfix.org/msg100901.html and https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/

### Related issue(s)


## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
This commit is contained in:
bors-mailu[bot] 2023-12-22 08:33:28 +00:00 committed by GitHub
commit e43212aec5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
core/postfix/conf/main.cf
View File

@ -25,6 +25,8 @@ podop = socketmap:unix:/tmp/podop.socket:
postscreen_upstream_proxy_protocol = haproxy
compatibility_level=3.6
# see https://www.mail-archive.com/postfix-users@postfix.org/msg100901.html
smtpd_forbid_unauth_pipelining=yes
# Only accept virtual emails
mydestination =

1
towncrier/newsfragments/3101.bugfix Normal file
View File

@ -0,0 +1 @@
Prevent SMTP smuggling; see https://www.mail-archive.com/postfix-users@postfix.org/msg100901.html