self-hosted/docker-mailserver
1
0
Fork 0
mirror of https://github.com/docker-mailserver/docker-mailserver.git synced 2025-08-08 23:06:49 +02:00
Code Issues Releases Activity
1,184 Commits 9 Branches 30 Tags
432f96b3a61cd02cdcf6a34aeec8fe7cced8195b
Commit Graph

1184 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sascha Scandella
858facb790 hint: keyword _SCORE_ for SA_SPAM_SUBJECT 2020-05-31 22:06:31 +02:00
Erik Wramner
b99bce1c2e Nonsense commit to trigger rebuild 2020-05-21 08:13:10 +02:00
Erik Wramner
c6a535c8cb Merge pull request #1514 from gmasse/fix-1507 
Fix #1507 - Do not try to reload freshclam daemon after log rotation
 2020-05-19 11:45:55 +02:00
Germain Masse
452fe3609f Do not try to reload freshclam daemon after log rotation 2020-05-18 10:10:37 +02:00
Erik Wramner
f19fb9abc6 Merge pull request #1509 from neuralp/master 
Letsencrypt check domain name in addition to host name
 2020-05-15 08:38:12 +02:00
Nicholas Pepper
1b659a5574 Modified letsencrypt support to add domain name checking in addition to 
hostname checking.  Added necessary tests and renamed original manual
ssl test to a name that supports adding the other SSL tests.
 2020-05-15 04:52:26 +00:00
Erik Wramner
f0defda2a1 Merge pull request #1506 from youtous/fix-postfix-information-banner 
Show only host name in Postfix information banner
 2020-05-11 09:14:35 +02:00
youtous
04059cd618 MAIL-8818 - Postfix information leakage 
To prevent announcing software or version to malicious people or scripts, it is advised to hide such information.


This information is provided as part of the Lynis community project. It is related to Lynis control MAIL-8818 and should be considered as-is and without guarantees.

https://cisofy.com/lynis/controls/MAIL-8818/
 2020-05-10 16:04:53 +02:00
Erik Wramner
356fb0793e Merge pull request #1505 from youtous/test-postfix-inet 
test postfix inet
 2020-05-10 08:32:08 +02:00
youtous
c65ffb44a1 test postfix inet 2020-05-09 22:42:56 +02:00
Erik Wramner
5859c8b0e3 Merge pull request #1495 from youtous/update-issue-template 
new issue format
 2020-05-07 18:58:47 +02:00
youtous
6b071c5c26 new issue format 2020-05-07 10:19:29 +02:00
Erik Wramner
43621e744e Merge pull request #1494 from youtous/fix-comments-configs 
support comments in .cf files
 2020-05-07 08:32:40 +02:00
youtous
d0f7257333 support comments in .cf files 2020-05-06 22:59:55 +02:00
Erik Wramner
b6bc3bc073 Merge pull request #1491 from youtous/fix-global-sieve 
Fix sieve scripts not loaded
 2020-05-05 07:47:23 +02:00
youtous
32d16084ec sieve scripts using alphabetical order 2020-05-04 16:13:47 +02:00
youtous
92414b7eba sieve after/before use folder instead of individual listing 
Loading sieve scripts using a directory scheme permits to handle multi scripts wtihout defining individual sieve_before/sieve_after
 2020-05-04 00:27:29 +02:00
Erik Wramner
a12cd9a26d Merge pull request #1485 from youtous/feature-spam-to-junk 
Feature: Spam to Junk folder
 2020-05-03 12:56:02 +02:00
youtous
30262128f4 raise a warning when SPAMASSASSIN_SPAM_TO_INBOX isn't explicitly defined 2020-05-03 10:33:50 +02:00
youtous
a37049b3fe updating default env values 2020-05-03 10:33:50 +02:00
youtous
578d6c528f Update SPAMASSASSIN_SPAM_TO_INBOX doc 2020-05-03 10:33:28 +02:00
youtous
15dd63d566 add test case no move to Junk 2020-05-03 10:33:28 +02:00
youtous
d829905cf7 init spams to junk 2020-05-03 10:33:28 +02:00
Erik Wramner
7eacb4cfc0 Merge pull request #1488 from VanVan/patch-2 
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
 2020-05-03 09:12:45 +02:00
VanVan
df55196d69 SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user 
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
 2020-05-02 21:13:54 +02:00
Erik Wramner
23eb7c42ab Merge pull request #1481 from youtous/fix-sieve-folder 
Prevent sieve symlink to be evaluated as a directory by dovecot
 2020-05-02 08:09:09 +02:00
Erik Wramner
0537c6f046 Merge pull request #1482 from youtous/feature-quota-optional 
Feature quota optional.
 2020-05-02 08:07:38 +02:00
Erik Wramner
2aa857ab6d Merge pull request #1483 from youtous/sec-resource-exhaustion-attack 
Reduce potential CPU exhaustion attack with `NO_RENEGOTIATION`
 2020-05-02 08:03:48 +02:00
youtous
a2104d0802 update README.md / dovecot introduction 2020-05-02 00:47:32 +02:00
youtous
16cd4f9d2d Reduce opportunities for a potential CPU exhaustion attack with NO_RENEGOTIATION 
See https://en.wikipedia.org/wiki/Resource_exhaustion_attack
 2020-05-02 00:04:05 +02:00
youtous
0c838706d0 Option to disable dovecot quota 2020-05-01 23:42:21 +02:00
youtous
e8581be2d3 Prevent sieve symlink to be evaluated as a directory by dovecot 2020-05-01 23:20:15 +02:00
Erik Wramner
46c50f93ad Merge pull request #1479 from youtous/fix-ldap-quotas 
fix 1478
 2020-04-30 16:54:55 +02:00
youtous
3aeacef125 remove start-mailserver nested conditions dovecot quota 2020-04-30 16:11:45 +02:00
youtous
d45e6b1c22 #fix 1478 2020-04-30 12:47:12 +02:00
Erik Wramner
35f473ad12 Merge pull request #1474 from polarathene/chore/remove-obsolete-param-usetls 
chore: Remove obsolete postfix parameter `smtpd_use_tls`
 2020-04-30 08:02:11 +02:00
Brennan Kinney
76594c21c4 Add note about tls_ssl_options = NO_COMPRESSION 
[Postfix docs](http://www.postfix.org/postconf.5.html#tls_ssl_options):

> Disable SSL compression even if supported by the OpenSSL library. Compression is CPU-intensive, and compression before encryption does not always improve security.

[Postfix mailing list discussion](http://postfix.1071664.n5.nabble.com/patch-mitigate-CRIME-attack-td57978.html):

> The CRIME attack does not apply to SMTP, because unlike SMTP, there is no javascript in SMTP clients that makes them send thousands of email messages with chosen plaintext compressed together in the same packet with SASL credentials or other sensitive data.
> The auditor completely failed to take the context into account.

[Mailing list discussion of potential compression CRIME-like attack](https://lists.cert.at/pipermail/ach/2014-December/001660.html)

> keeping compression disabled is a good idea.

If you need a good test score, PCI compliance will likely flag compression despite not having any known risk with non-HTTP TLS.
 2020-04-29 19:41:08 +12:00
Erik Wramner
41ea52847c Merge pull request #1473 from polarathene/chore/docs/clarify-port-descriptions 
chore: Clarify exposed ports section on README
 2020-04-29 08:21:03 +02:00
Erik Wramner
4a1cbd705b Merge pull request #1463 from youtous/pr-fix-dhe 
Fix issue #1461- use a recommended dh group instead of a self-generated one
 2020-04-29 08:00:16 +02:00
Brennan Kinney
e7de9bceaf chore: Remove obsolete postfix parameter smtpd_use_tls 
See: http://www.postfix.org/postconf.5.html#smtpd_tls_security_level

> this overrides the obsolete parameters `smtpd_use_tls` and `smtpd_enforce_tls`.
 2020-04-27 23:24:26 +12:00
youtous
80bd3a8c85 Update test/mail_dhparams_manual_not_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:47 +02:00
youtous
3e3f5d557b Update test/mail_dhparams_manual_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:39 +02:00
youtous
27cbdeeb6a Update test/mail_dhparams_default.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:24 +02:00
youtous
e680c349b1 test wait setup for // containers 2020-04-27 10:28:24 +02:00
youtous
149a10272c improve dhe tests documentation 2020-04-27 09:57:36 +02:00
Brennan Kinney
9882fc54f7 chore: Clarify exposed ports section on README 2020-04-27 18:23:32 +12:00
youtous
dff7355fa9 fix #1459 2020-04-26 23:07:34 +02:00
youtous
4d031f73e3 test dhparams ONE_DIR both cases 2020-04-26 22:25:48 +02:00
youtous
03b8f87ffc update dovecot conf comment 2020-04-26 22:23:51 +02:00
youtous
47fac2706f use ffdhe4096 for DHE params 
use by default ffdhe4096 for DHE params 


use by default ffdhe4096 for DHE params
 2020-04-26 22:23:51 +02:00