1
0
mirror of https://github.com/Mailu/Mailu.git synced 2024-12-16 10:59:53 +02:00
Commit Graph

4777 Commits

Author SHA1 Message Date
Florent Daigniere
58b1738d8c api 2024-03-11 11:15:15 +01:00
Florent Daigniere
0171c6d0f8 review 2024-03-11 11:12:53 +01:00
Florent Daigniere
b2d37c4323 Make it clear that there may be more than one 2024-03-11 10:26:38 +01:00
Florent Daigniere
7089cfea48 Ensure we also pin ISRG X2 in TLSA 2024-03-11 10:21:54 +01:00
bors-mailu[bot]
d76e543b2d
Merge #3189
3189: Bump tika version to 2.9.1 r=mergify[bot] a=nextgens

## What type of PR?

enhancement

## What does this PR do?

Bump tika version to 2.9.1
Bump alpine to 3.9.1

### Related issue(s)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-10 15:46:20 +00:00
Florent Daigniere
851c4f8403 Alpine 3.19.1 2024-03-10 16:44:18 +01:00
Florent Daigniere
df4d817329 Bump tika version to 2.9.1 2024-03-10 16:44:03 +01:00
bors-mailu[bot]
2dad43a207
Merge #3188
3188: Ensure we always send an ISRG root for DANE r=nextgens a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure we always send an ISRG root for DANE. Rebuild the x509 cert chain ourselves to ensure it's valid.

It's fairly obvious that we can't trust letsencrypt to keep things sane (they are now planning to sign from random intermediaries) nor certbot to be consistent.

### Related issue(s)
- close #3187
- #2138

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-10 15:37:15 +00:00
Florent Daigniere
494147eedf Need newer cryptography 2024-03-10 16:17:49 +01:00
Florent Daigniere
8c842ff3aa Create a fake husky to fix the CI 2024-03-10 15:52:59 +01:00
Florent Daigniere
86adf07461 Ensure we always send an ISRG root for DANE 2024-03-10 12:19:40 +01:00
AJ Jordan
9f304c0013
Remove redundant variable assignment 2024-03-07 00:40:02 -05:00
bors-mailu[bot]
a7cf68163a
Merge #3181
3181: Ensure that nginx and dovecot are reloaded r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure that nginx and dovecot are reloaded.
For some reason here the PID files have disappeared and the reload doesn't work.

### Related issue(s)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-05 10:21:51 +00:00
Florent Daigniere
dec5fecdb4 Ensure that nginx and dovecot are reloaded 2024-03-05 10:12:45 +01:00
bors-mailu[bot]
1612b11e62
Merge #3138
3138: Update dependencies and re-enable flask toolbar r=nextgens a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

Update python dependencies to versions without known security vulnerabilities.
Also re-enable flask debug toolbar which was disabled earlier.

werkzeug < 2.3.8: CVE-2023-46136
aiohttp < 3.9.0: CVE-2023-49081 CVE-2023-49082
cryptography >= 3.1 < 41.0.6: CVE-2023-49083
jinja2 < 3.1.3: CVE-2024-22195

Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2024-02-29 17:45:16 +00:00
bors-mailu[bot]
d752e96805
Merge #3178
3178: Fix ooo/sieve when proxy protocol is in use r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Fix ooo/sieve when proxy protocol is in use; If it is enabled we shouldn't talk to front but to the proxy.

I am not proposing to backport this; it will be a 2.1 thing.

### Related issue(s)
- close #3172
- close #3159

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-02-29 16:56:53 +00:00
Florent Daigniere
2afa9dca51 Fix ooo/sieve when proxy protocol is in use 2024-02-29 13:06:15 +01:00
bors-mailu[bot]
3d21ff18e9
Merge #3175
3175: update Simplified Chinese translation r=mergify[bot] a=darkclip

## What type of PR?

bugfix for localization

## What does this PR do?

update Simplified Chinese (zh) translation

### Related issue(s)

None

## Prerequisites
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: darkclip <darkclip@users.noreply.github.com>
2024-02-22 20:02:23 +00:00
darkclip
dba60c1c59 add changelog 2024-02-22 14:47:11 +08:00
darkclip
1ce76f92cb update zh translation 2024-02-22 14:38:20 +08:00
migs35323
26a8c2b6bb
correction: config-export had wrong example.
fixing the example command flag.
2024-02-12 15:58:01 +00:00
bors-mailu[bot]
9d0325fa15
Merge #3150
3150: Add trailing semicolon for DMARC authorisation record r=mergify[bot] a=su-ex

## What type of PR?

bug-fix

## What does this PR do?

Add trailing semicolon for DMARC authorisation records, which seems to be necessary: https://stackoverflow.com/a/72463456
I ran into this when testing my domain with internet.nl.


Co-authored-by: su-ex <codeworks@supercable.onl>
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-02-05 17:36:59 +00:00
Florent Daigniere
98a6bab0ca towncrier 2024-02-05 18:33:48 +01:00
su-ex
324b723efa
Add trailing semicolon for DMARC authorisation record
This seems to be necessary: https://stackoverflow.com/a/72463456
2024-01-26 12:59:44 +01:00
Dimitri Huisman
6627dd2924
API: Create user did not handle exception of duplicate user 2024-01-24 10:57:30 +00:00
Dimitri Huisman
8f86ffc6fd
Fix #3113. RESTful API was not correctly documented. 2024-01-22 10:44:30 +00:00
bors-mailu[bot]
e0c5dc5fe5
Merge #3137
3137: Update run_dev.sh r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

Make `run_dev.sh` more resilient by using sed instead of awk.
Clarify on how to update the python dependencies.


Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2024-01-21 18:02:28 +00:00
Alexander Graf
a1e395c581
Update dependencies and re-enable flask toolbar 2024-01-21 18:42:51 +01:00
Alexander Graf
40f26f1ce3
Define copy msg more precisely 2024-01-21 18:38:33 +01:00
Alexander Graf
4213da1ce1
Replace awk with sed 2024-01-21 17:26:27 +01:00
Alexander Graf
b706a16e6b
Improve usage message 2024-01-21 16:03:47 +01:00
bors-mailu[bot]
ed3542a52d
Merge #3136
3136: Roundcube 1.6.6 r=mergify[bot] a=ctrl-i

## What type of PR?

Roundcube has been updated to version 1.6.6 which contains various small fixes and improvements.

See [release notes](https://github.com/roundcube/roundcubemail/releases/tag/1.6.6)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [X] In case of feature or enhancement: documentation updated accordingly
- [X] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: ctrl-i <1422608+ctrl-i@users.noreply.github.com>
2024-01-21 12:59:32 +00:00
ctrl-i
3e187206ac
Create 3130.misc
Updated roundcube to 1.6.6
2024-01-21 09:34:00 +00:00
ctrl-i
8c848d4926
Update Dockerfile
Updated roundcube to the latest version 1.6.6
2024-01-21 09:32:39 +00:00
bors-mailu[bot]
b67979a6c6
Merge #3132
3132: Fix 3129, thanks to Games-Crack r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Add required quotes to traefik-certdumper to ensure that shell characters are usable.

### Related issue(s)
- close #3129

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-01-18 20:30:21 +00:00
Florent Daigniere
bbfde0badc Fix 3129, thanks to Games-Crack 2024-01-18 17:30:01 +01:00
bors-mailu[bot]
5fcbe7a2fe
Merge #3097
3097: Upgrade alpine and node r=mergify[bot] a=nextgens

## What type of PR?

enhancement

## What does this PR do?

Upgrade alpine to 3.19.0 and node to node 21

That's php 8.3 and snappymail 2.31.0

### Related issue(s)


## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-01-10 16:41:32 +00:00
bors-mailu[bot]
d31f4f41f2
Merge #3120
3120: Update the traefik doc r=mergify[bot] a=nextgens

## What type of PR?

documentation

## What does this PR do?

Update the traefik doc

### Related issue(s)
- #2903
- #3052 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-01-05 09:25:46 +00:00
Florent Daigniere
cd7651ad7f Update the traefik doc 2024-01-04 08:47:55 +01:00
bors-mailu[bot]
cc59be41e1
Merge #3109
3109: Long term fix against SMTP smuggling r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Long term fix against SMTP smuggling, see https://www.postfix.org/smtp-smuggling.html

This can't be hot-patched, you need postfix 3.8.4-r0 (which is now available in alpine 3.18)
https://git.alpinelinux.org/aports/commit/?id=19fa7e7fb3208bea9aded961f07b7ad2bb6493dc

### Related issue(s)
- closes #3108
- #3102 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2023-12-28 11:18:49 +00:00
Florent Daigniere
ec7dbc6a90 Add url 2023-12-28 09:04:44 +01:00
Florent Daigniere
bc863b4bbc Long term fix against SMTP smuggling 2023-12-28 08:51:50 +01:00
bors-mailu[bot]
df5b48a52d
Merge #3100
3100: Do not block webmail when we have a valid SSO session r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure we do not block webmail when we have a valid SSO session

### Related issue(s)
- close  #3094

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2023-12-22 08:43:12 +00:00
bors-mailu[bot]
e43212aec5
Merge #3102
3102: Prevent SMTP smuggling r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Prevent SMTP smuggling; see https://www.mail-archive.com/postfix-users@postfix.org/msg100901.html and https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/

### Related issue(s)


## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2023-12-22 08:33:28 +00:00
Florent Daigniere
64d83d061e Prevent SMTP smuggling 2023-12-21 18:17:29 +01:00
Florent Daigniere
325aa5452b Do not block webmail when we have a valid SSO sess 2023-12-21 12:37:08 +01:00
Florent Daigniere
0e522fceb7 Upgrade alpine, node, PHP and snappymail 2023-12-20 14:08:49 +01:00
bors-mailu[bot]
774dfa4da8
Merge #3096
3096: Fix 3095: fix the form validator of forwarding addresses r=nextgens a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Fix the form validator of forwarding addresses (allow uppercase).

I don't think this warrants a backport but if you think it does add the label.

### Related issue(s)
- closes #3095

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2023-12-20 11:25:20 +00:00
Florent Daigniere
98848b45c7 Do the minimum to solve the problem at hand 2023-12-20 12:06:44 +01:00
Florent Daigniere
30574445e4 Better regexp 2023-12-20 11:41:45 +01:00