Alexander Graf
842be9b7c3
Skip listen to v6 when SUBNET6 is not set
2023-01-28 19:40:23 +01:00
Alexander Graf
10562233ca
Add SUBNET6 to places where SUBNET is used
2023-01-24 12:15:36 +01:00
Alexander Graf
3b08b113bf
Fix ipv6 subnet for xclient_hosts
2023-01-12 15:15:52 +01:00
Florent Daigniere
ee6975b109
doh
2023-01-05 18:14:19 +01:00
Florent Daigniere
b263db72df
Restrict XHOST to where useful
2023-01-04 13:03:13 +01:00
Florent Daigniere
7a2d06401a
Tweak postfix logging
2022-12-28 16:55:24 +01:00
Florent Daigniere
55c1e55529
Same for front-smtp
...
This should enable postfix to have visibility on TLS usage and fix the
following: #1705
2022-12-28 15:40:35 +01:00
Florent Daigniere
4e3874b0c1
Enable dynamic resolution of hostnames
2022-12-08 13:00:50 +01:00
Florent Daigniere
3e51d15b03
Remove the strict anti-spoofing rule.
2022-10-18 15:58:53 +02:00
Vincent Kling
bab3f0f5a4
Remove POD_ADDRESS_RANGE
2022-09-01 15:08:26 +02:00
Florent Daigniere
7166e7d2b2
Implement #2213 : slow transports
2022-02-19 18:37:37 +01:00
Dimitri Huisman
53975684b8
Using Syslog is the new standard. It is not optional anymore.
2021-12-07 10:13:47 +00:00
Dimitri Huisman
567b5ef172
Merge branch 'master' into postfix-logging
2021-11-23 22:46:56 +01:00
Till Skrodzki
c48e00ee26
Do not call .split() on RELAYNETS if not specified
2021-11-09 12:22:53 +01:00
Florent Daigniere
8dad40f67c
doh
2021-11-01 12:48:48 +01:00
Florent Daigniere
9d474f32a6
RELAYNETS is comma separated!
2021-10-31 19:47:16 +01:00
Alexander Graf
b02ceab72f
handle DEFER_ON_TLS_ERROR as bool
...
use /conf/mta-sts-daemon.yml when override is missing
2021-09-09 18:00:48 +02:00
Florent Daigniere
489520f067
forgot about alpine/lmdb
2021-09-01 08:41:39 +02:00
Florent Daigniere
a1da4daa4c
Implement the DANE-only lookup policyd
...
https://github.com/Snawoot/postfix-mta-sts-resolver/issues/67 for
context
2021-08-31 20:24:06 +02:00
Florent Daigniere
67db72d774
Behave like documented
2021-08-30 17:00:12 +02:00
Florent Daigniere
a8142dabbe
Introduce DEFER_ON_TLS_ERROR
...
This will default to True and defer emails that fail even "loose"
validation of DANE or MTA-STS
It should work most of the time but if it doesn't and you would rather
see your emails delivered, you can turn it off.
2021-08-30 14:21:28 +02:00
Florent Daigniere
4f96e99144
MTA-STS (use rather than publish policies)
2021-08-29 17:40:37 +02:00
Florent Daigniere
65a27b1c7f
add additional options to make DANE easier
2021-08-20 14:18:07 +02:00
Florent Daigniere
fb8d52ceb2
Merge branch 'master' of https://github.com/Mailu/Mailu into tls_policy_map
2021-08-20 14:17:34 +02:00
bors[bot]
b57df78dac
Merge #1916
...
1916: Ratelimit outgoing emails per user r=mergify[bot] a=nextgens
## What type of PR?
Feature
## What does this PR do?
A conflict-free version of #1360 implementing per-user sender limits
### Related issue(s)
- close #1360
- close #1031
- close #1774
## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog ) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2021-08-18 19:28:28 +00:00
Florent Daigniere
b066a5e2ac
add a default tls_policy_map
2021-08-14 08:48:42 +02:00
Florent Daigniere
1df79f8132
give PFS a chance
2021-08-14 08:48:04 +02:00
Florent Daigniere
925105075c
this is required in fact
2021-08-13 20:35:40 +02:00
Florent Daigniere
2b05e72ce4
Revert "maybe fix the tests"
...
This reverts commit f971b47fb9
.
2021-08-10 08:51:55 +02:00
Florent Daigniere
f971b47fb9
maybe fix the tests
2021-08-10 08:22:23 +02:00
Florent Daigniere
4a871c0905
this causes trouble with the test
2021-08-09 23:29:17 +02:00
Florent Daigniere
55cdb1a534
be explicit about what we support
2021-08-09 17:42:33 +02:00
Florent Daigniere
ecadf46ac6
fix PFS
2021-08-09 17:39:15 +02:00
Florent Daigniere
de3620da4a
Don't send credentials in clear ever
2021-08-09 17:29:42 +02:00
Florent Daigniere
4535c42e70
This isn't required
2021-08-09 17:29:42 +02:00
Florent Daigniere
1101e401e8
Apply the restriction on the right port
2021-08-09 14:58:58 +02:00
Florent Daigniere
d6ce5d0c06
Remove a warning: limits don't apply to trusted hosts
2021-08-08 20:21:24 +02:00
Florent Daigniere
bcdc137677
Alpine has removed support for btree and hash
2021-08-08 19:18:33 +02:00
Florent Daigniere
1438253a06
Ratelimit outgoing emails per user
2021-08-08 09:21:14 +02:00
Michael Wyraz
ca6ea6465c
make syslog optional
2021-01-23 16:16:07 +01:00
Michael Wyraz
e979743226
Rsyslog logging for postfix, optional logging to file, no logging of test requests
2021-01-23 15:21:29 +01:00
Thomas Rehn
05ab244638
Ensure that the rendered file ends with newline in order to make postconf
work correctly
2020-10-04 16:36:37 +02:00
Michael Wyraz
e4454d776a
Allow to enforce TLS for outbound using OUTBOUND_TLS_LEVEL=encrypt (default is 'may')
2020-05-02 20:58:07 +02:00
SunMar
ac6b8d62dd
Remove reject_unverified_recipient
from smtpd_client_restrictions
...
Fix for #1292 , though I'm not sure if this is the right way to fix the issue. It was added in 175349a224
.
2020-03-18 22:22:11 +01:00
kaiyou
bd69b7a491
Add support for SRS, related to #328
2020-01-14 01:18:30 +01:00
Michael Wyraz
a907fe4cac
Split HOST_ANTISPAM in HOST_ANTISPAM_MILTER and HOST_ANTISPAM_WEBUI
2019-10-13 20:13:02 +02:00
Ionut Filip
075417bf90
Merged master and fixed conflicts
2019-08-21 20:35:24 +03:00
Dario Ernst
ce0c24e076
Merge branch 'master' into HorayNarea-feat-upgrade-alpine
2019-07-14 09:40:58 +00:00
Daniel Huber
515e95076a
Merge branch 'master' into feat-relay-auth
2019-06-26 19:52:54 +02:00
Dario Ernst
d155b2c533
Start postfix directly with stdout logging
2019-06-25 19:24:05 +00:00