andryyy
2efd27e40e
[Olefy] A new container is born, thanks to @c-rosenberg
...
[ACME] Autoconfig is back (re-added to SAN list by default for all mail domains)
[Rspamd] Added comment to composite
2019-06-25 18:52:05 +02:00
andryyy
71c6c59f1c
[Dovecot] Fix cleanup of old quarantine items, fixes #2721
2019-06-22 23:12:23 +02:00
andryyy
f2d1a56104
[Rspamd] Increase OLEFY_MACRO score
2019-06-20 10:18:43 +02:00
andryyy
f35bc07a30
[Web] Generate readable passwords
2019-06-20 10:18:09 +02:00
andryyy
39f95b8284
[Compose] Add olefy container, new Postfix iamge and new ClamAV image
2019-06-16 17:37:25 +02:00
andryyy
aea957e949
[Olefy] New container and image
2019-06-16 17:36:32 +02:00
andryyy
04940429ba
[Rspamd] Add oletools via olefy, big thanks to @c-rosenberg
2019-06-16 17:35:58 +02:00
andryyy
6f99f06c6d
[Rspamd] Add OLEFY_MACRO symbol
2019-06-16 17:35:24 +02:00
andryyy
9c347e36fc
[Rspamd] Less aggressive bayes
2019-06-16 17:34:58 +02:00
andryyy
c7a85fc520
[Web] Fix BCC error message
2019-06-16 16:00:41 +02:00
andryyy
59798357f7
[Web] Fix SPF link
2019-06-16 16:00:14 +02:00
andryyy
090e14ee8d
[Netfilter] Keep musl-dev, update pip
2019-06-13 21:10:49 +02:00
andryyy
8984240e44
[Watchdog, Config] Added WATCHDOG_NOTIFY_BAN to disable IP ban notifications
...
[Netfilter] Remove unused files after installation
[Compose] Some new images and a new option for watchdog: WATCHDOG_NOTIFY_BAN - defaults to y
2019-06-13 19:38:53 +02:00
andryyy
e43951331c
[Rspamd] Sign ARC inbonud, thanks to @Kraeutergarten
2019-06-11 11:41:59 +02:00
andryyy
7145c380b0
[Watchdog] Minor text changes and send whois report of banned IP
2019-06-10 22:40:21 +02:00
andryyy
7f6acdb791
[Watchdog] Fix for fix for wrong mails
2019-06-10 21:53:44 +02:00
andryyy
0d7681d0a5
[Watchdog] Fix broken mail with more than one rcpt in some cases
2019-06-10 20:20:41 +02:00
andryyy
c257724cd0
[PHP-FPM] Add exif module
2019-06-10 13:39:53 +02:00
andryyy
dcd0bfc13e
[Watchdog] Send mail when IP was banned
2019-06-10 10:57:38 +02:00
andryyy
ffb008f72a
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2019-06-09 16:50:04 +02:00
andryyy
e25e9c7b40
[Postfix] Create resource maps
2019-06-09 16:49:38 +02:00
andryyy
5ce6688c78
[Web] Show resource alias
2019-06-09 16:49:17 +02:00
andryyy
de3a89ac7a
[Postfix] Remove duplicate proxy read maps, add resource maps
2019-06-09 16:49:02 +02:00
Aiko Appeldorn
1634a486fc
[web] increased db version
2019-06-09 12:08:23 +02:00
Timo N
9325bb6f4e
Merge pull request #2594 from FELDSAM-INC/domain-default-mailbox-quota
...
Default quota for mailbox
2019-06-09 10:49:43 +02:00
dofl
fa4c4b138e
Update main.cf
...
Added the delay_warning_time (http://www.postfix.org/postconf.5.html#delay_warning_time ) with 4 hours as setting. Postfix will inform the user that the e-mail has not been delivered, but that it will try for the next 5 days.
There is also a setting called confirm_delay_cleared (http://www.postfix.org/postconf.5.html#confirm_delay_cleared ), but according to the Postfix this can lead to a sudden burst of notifications at the end of a prolonged network outage.
2019-06-09 07:39:36 +02:00
dofl
d5eeb3e8af
Update main.cf
...
I was looking into creating a backup mx server for a high availability mailcow setup. It seems that this is not easily done. While researching to find out how long an average SMTP server keeps trying to send to a server that is down I found that RFC 5321 advises at least 4 to 5 days. Mailcow has a custom setup of 1 day, which is very short. The user will be unaware for 5 days that his mail has not been delivered, which can be negative. But I still would like to follow the advice of the RFC.
RFC 5321, in section 4.5.4.1, has this to say:
Retries continue until the message is transmitted or the sender up; the give-up time generally needs to be at least 4-5 days. It MAY be appropriate to set a shorter maximum number of retries for non-delivery notifications and equivalent error messages than for standard messages.
Postfix default is also 5 days: http://www.postfix.org/postconf.5.html
https://tools.ietf.org/html/rfc5321#section-4.5.4
2019-06-08 15:10:46 +02:00
andryyy
53bda04848
[PHP-FPM] Update PHP and some modules
2019-06-05 06:56:58 +02:00
andryyy
af46a93e76
[Postfix] Remove authed user from header
2019-06-01 22:14:48 +02:00
andryyy
de03e4178a
[Dovecot] Run cronjob at 4:15 AM to remove max aged quarantine items (default: 365 days)
2019-06-01 21:23:43 +02:00
andryyy
d9361a6263
[PHP-FPM] Add Q_MAX_AGE key and set to 365 days if missing
2019-06-01 21:22:58 +02:00
andryyy
176f2a3f34
[Web] Allow to set max_age for quarantine items
2019-06-01 21:22:14 +02:00
andryyy
5f8dd69a2d
[Web] Fix lang strings for sieve pathes and sieve flow
2019-06-01 14:10:01 +02:00
andryyy
dcacf85a5d
[Dovecot] Rename sieve_after to global_sieve_after and create a global_sieve_before file
2019-06-01 13:53:24 +02:00
andryyy
aaf0d521a2
[Postfix] Add UA header check, not enabled by default
2019-06-01 08:29:53 +02:00
andryyy
cc16f60826
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2019-05-30 08:36:56 +02:00
André Peters
69fb7f7a7c
[ClamAV] Update to 0.101.2
2019-05-30 08:36:39 +02:00
Timo N
15b2ca6eaa
[ClamAV] Updated to version 0.101.2
2019-05-30 06:41:21 +02:00
andryyy
395f0f7a3d
[Rspamd] Remove authenticated user from auth results header
...
[Dovecot] Fix permissions of console
[Compose] New Dovecot image
2019-05-29 18:02:14 +02:00
andryyy
8537767443
[Web] Show error when connection to redis fails (instead of 5xx)
2019-05-28 15:18:27 +02:00
Thomas Sänger
e24ba8e2d8
fix typo that prevented trimming watchdog logs
2019-05-27 23:09:25 +02:00
andryyy
7d7ecbe591
[Dovecot] Removed quota recalc job (too intensive on larger systems)
2019-05-27 20:29:55 +02:00
andryyy
1da3145d13
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2019-05-27 19:34:30 +02:00
André Peters
856c37ef7b
[DockerAPI] Python3 - big thanks to @christianbur
2019-05-27 19:33:59 +02:00
andryyy
2757c6b5fe
[Postfix] Do not allow DSN for postscreen
2019-05-27 19:32:41 +02:00
andryyy
2508ee5b69
[Web] Delete from sender_acl when deleting an alias
2019-05-26 09:39:04 +02:00
andryyy
6fffda5def
[Web] Remove file
2019-05-26 09:24:50 +02:00
andryyy
d5612cf60f
[Web] More fixes for alias as sender_acl
2019-05-26 09:22:06 +02:00
andryyy
5087d5ce96
[Web] Allow aliases as send-as
2019-05-26 08:29:10 +02:00
andryyy
57d65535c9
[Dovecot] Trim watchdog logs
2019-05-25 10:29:17 +02:00
andryyy
db0ec130f5
[Web] Lang updates
...
[ACME] Typo
2019-05-22 23:47:45 +02:00
André Peters
522a304181
Merge pull request #2629 from christianbur/acme_v3
...
acme-tiny with python3
2019-05-22 23:36:23 +02:00
Christian Burmeister
a8e96c57b1
fix typo - container_post__exec__maildir__cleanup
2019-05-22 23:05:07 +02:00
André Peters
9a114845d7
[Netfilter] Reworked by @Kraeutergarten
2019-05-22 22:49:40 +02:00
Christian Burmeister
cd71935001
Remove pyOpenSSL
2019-05-21 19:58:18 +02:00
Christian Burmeister
7032ea00d0
add "--virtual .build-dependencies"
2019-05-21 19:51:03 +02:00
Christian Burmeister
8327aac700
Update phpfpm baseimage from alpine 3.8 to 3.9
2019-05-20 23:23:04 +02:00
Christian Burmeister
bfbd4c1240
acme-tiny with python3
2019-05-20 21:32:04 +02:00
Christian Burmeister
9afa2730ac
Update server.py
2019-05-20 21:30:40 +02:00
Christian Burmeister
07d15cf035
Update Dockerfile
2019-05-20 21:27:47 +02:00
André Peters
003b244544
Merge pull request #2623 from Arlon1/acme/cert_renewal_threshold
...
acme: changed the threshold for certificate renewal
2019-05-20 19:51:03 +02:00
Evangelos Foutras
e1a3313660
[Web] Fix showing domain with disabled sender check
...
If a mailbox is allowed to send as any address under its domain (+ alias
domains) and the domain itself has no aliases configured, no information
about this fact is shown to the user. That is to say, the "Do not check
sender access for the following domain(s) and its alias domains" field
under mailbox details is empty.
The above is happening because the second GROUP_CONCAT() returns NULL
making the enclosing CONCAT() return NULL as well. Fix this by using
CONCAT_WS() which correctly handles the case of zero domain aliases.
Furthermore, move the IFNULL() to the first GROUP_CONCAT() because
CONCAT_WS() returns an empty string when both GROUP_CONCAT()'s are
NULL. We can be certain that when the first GROUP_CONCAT() is NULL
the second one will be as well, so it's safe to use IFNULL() there.
2019-05-20 18:08:45 +03:00
andryyy
ba14f0f113
[Rspamd] Fix spoofing detection
2019-05-20 15:14:42 +02:00
Kraeutergarten
b862ce2bfb
Add hostnames for blacklist.
2019-05-20 09:02:40 +02:00
Kraeutergarten
e6de9c299d
Fix wrong python version.
2019-05-20 07:02:42 +02:00
Kraeutergarten
9b02c9272e
clear whitelist, if it gets cleard.
2019-05-19 10:55:11 +02:00
Kraeutergarten
5af250398c
Redo complete logging.
...
Do some other fixes caused by python3
2019-05-19 10:36:16 +02:00
Kraeutergarten
d6af494789
update to python3
2019-05-19 09:55:49 +02:00
Kraeutergarten
5ed113c47f
resolving whitelist every minute
2019-05-19 09:48:10 +02:00
andryyy
1f365f5cff
[Dovecot] Remove shared namespace
2019-05-18 23:01:23 +02:00
andryyy
922a8db7a5
[Dovecot] Auto-generate shared namespace
2019-05-18 23:01:05 +02:00
andryyy
5e36018864
[Rspamd] Auto-generate SIEVE_HOST map and add dnsutils
2019-05-18 22:44:30 +02:00
andryyy
3ffa7e1f33
[Rspamd] Add SIEVE_HOST map and skip spoof check for these IPs
2019-05-18 22:44:06 +02:00
andryyy
5bb23a2664
[Web] Fix null ua in debug.js - fixes #2615
2019-05-18 15:35:00 +02:00
Kraeutergarten
51f5f66c91
low response timeout
...
add ipv6 support
add multiple record support
2019-05-18 12:04:11 +02:00
andryyy
45359bb6cf
[Rspamd] Do not apply SPOOFED_UNAUTH on ARC_ALLOW
...
[Dovecot] Set sieve_redirect_envelope_from to rcpt
2019-05-18 09:18:00 +02:00
Kraeutergarten
4cc63ceeb7
Allow hostnames for fail2ban whitelist.
2019-05-17 19:38:34 +02:00
andryyy
885b79f06f
[Web] Add function to read F2B data via API
2019-05-17 11:21:25 +02:00
andryyy
03f0bac916
[Watchdog] Change error message for acme-mailcow
2019-05-16 19:44:39 +02:00
andryyy
389317e9e4
[Dovecot] Fix memory leak when quarantine sender has non-ascii chars in mail address
2019-05-16 19:44:14 +02:00
andryyy
6a8c4e332b
[ACME] Register error when no hostname could be validated
2019-05-16 19:43:08 +02:00
Arlon1
2d5add5a13
acme: changed the threshold for certificate renewal
...
The threshold for certificate renewal is changed to 30 days before
expiry date (was 14 days).
fixes #2607
2019-05-16 15:31:50 +02:00
Kraeutergarten
7417dd3a85
Check if domain value is undefined or null.
2019-05-16 10:15:37 +02:00
Kraeutergarten
84a78dbd0d
Adds only existing domains in table to the filter and removes additional ajax request.
2019-05-16 08:20:21 +02:00
andryyy
06193ca625
[Web] Write API logs when format is data binary
2019-05-12 15:22:00 +02:00
Kristián Feldsam
b8b6450753
Default quota for mailbox
...
Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2019-05-11 11:16:40 +02:00
André Peters
f0d29ba8ef
Merge pull request #2547 from FELDSAM-INC/feldsam/json-api
...
JSON API Consume json in request body.
2019-05-10 20:37:37 +02:00
andryyy
5c07cca529
[Rspamd] Change spoofed mail handling
2019-05-09 11:48:38 +02:00
andryyy
456e92c830
[Rspamd] Set to to_ip to_ip_from rate buckets to 100 / 1s
2019-05-09 11:32:16 +02:00
andryyy
bf3fb0c9d4
[Web] Fix some breakpoints
2019-05-09 11:30:14 +02:00
André Peters
2b6e486a11
[Dovecot] Update imapsync - thanks to @hunter-nl
2019-05-09 10:39:28 +02:00
andryyy
b20ff13e40
[Rspamd] Update to 1.9.2, minor entrypoint changes
...
[Compose] Update Rspamd to 1.9.2
2019-05-06 12:18:41 +02:00
André Peters
61433a4488
Merge pull request #2541 from sriccio/master
...
Allow to easily add custom plugins to rspamd
2019-05-05 22:33:32 +02:00
André Peters
6cf9a0354b
Trying to avoid non-distro packages
2019-05-05 22:30:11 +02:00
André Peters
081feca893
Replacing trim by function
...
https://perlmaven.com/trim
2019-05-05 22:28:55 +02:00
andryyy
cf4c5df427
[Web] Disable refresh button on reload, re-enable after table init
2019-05-05 20:59:59 +02:00
andryyy
acd8860efa
[Web] More minor css fixes
2019-05-05 20:49:13 +02:00
andryyy
9529b7a542
[Web] Various UI fixes
2019-05-05 20:44:29 +02:00
andryyy
05a2301ea6
[Web] Allow to rename alias to Alias
2019-05-05 20:01:53 +02:00
hunter-nl
4ebc871966
Added noreleasecheck parameter
2019-05-05 14:35:34 +02:00