1
0
mirror of https://github.com/mailcow/mailcow-dockerized.git synced 2024-12-23 02:04:46 +02:00
Commit Graph

172 Commits

Author SHA1 Message Date
FreddleSpl0it
bdd8b4a5ab
[Web] Footer fix (#4500)
* Fix issue forms

* [GH-Actions][stale] Update to v5.0.0

* [Web] fix version footer

* [Web] fix footer - hard coded repo url

Co-authored-by: Peter <magic@kthx.at>
2022-03-05 23:27:36 +01:00
FreddleSpl0it
f3f6fb8908 [Web] add github version tag error handling 2022-03-02 16:57:07 +01:00
FreddleSpl0it
a1a96bfabb [Web] add github version tag 2022-03-02 16:57:07 +01:00
Niklas Meyer
c520f21d28
🐄 Moorch Update 2022 - ClamAV, Dovecot & Olefy Update (#4497)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag error handling

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

* Update clamav to 0.104.2

* Update clamav to 0.104.2

* Update dovecot to 2.3.18

Update gosu to 1.14
Use debian bullseye as base

* [Web] Updated lang.es.json [CI SKIP] (#4453)

Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Fijxu <fijxu@zzls.xyz>

* Fix broken documentation links (#4458)

* Fix broken documentation links

* Fix a few more broken documentation links

* Fix broken documentation links in translation files

* Fall back to empty string if WATCHDOG_NOTIFY_EMAIL undefined (#4457)

By default, `.env` (`mailcow.conf`) does not define `WATCHDOG_NOTIFY_EMAIL`.

Using it in `docker-compose.yml` without having it defined leads to Compose v2 displaying this warning on startup:

> WARNING: The WATCHDOG_NOTIFY_EMAIL variable is not set. Defaulting to a blank string.

Related to https://github.com/mailcow/mailcow-dockerized/issues/4315

* [Web] Updated lang.sk.json [CI SKIP] (#4461)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* oletools: disable template injection detection (#4464)

Seems to be causing a lot of false positives lately

* Fix minor typo in comment (#4466)

Correction of the comment, so that the explanation is correct and can be understood.

* Update issue templates to issue forms (#4465)

This PR updates the issue templates to GitHubs new issue forms

* [Web] Fix padding issue in UI admin panel (#4481)

* [Web] fix admin panel padding issue

* [Web] fix admin panel padding issue

* [Web] Updated lang.sk.json [CI SKIP] (#4489)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* increase opcache.interned_strings_buffer to 16 (#4487)

since version 23.0.2 Nextcloud recommends having a value greater than 8 for `opcache.interned_strings_buffer`. As this memory will be only used when needed this should have no impact on installations that are not using nextcloud.

related discussion: https://help.nextcloud.com/t/nextcloud-23-02-opcache-interned-strings-buffer/134007/19
related nextcloud issue: https://github.com/nextcloud/server/issues/31223

* nextcloud - add missing redirections (#4366)

adds missing location directives to the nginx configuration of nextcloud 22, to prevent warnings in nextcloud admin center of missing redirections

* Update imapsync to 2.178 (#4491)

* Update and fix oletools (#4479)

As noticed by @MAGICCC (#4464 (comment)), our olefy image does not work anymore if you rebuild it. This is because @HeinleinSupport recently updated their repository with the changes from @decalage2's repository, which renamed olvba3 to olevba. Since @HeinleinSupport does not recommend using its own patched branch and is very slow in pulling in changes from upstream (@decalage2), let's switch to the latter. This also allowed me to revert #4464.

Finally, a minor patch to rspamd is necessary. While the documentation says

In the extended mode the oletools module will not trigger on specific categories, but will always set a threat string with all found flags when at least a macro was found.

This is not actually true -- it only sets it when suspicious or autoexec threats were detected. But it's a one-line patch to make rspamd behave as documented and we should submit that patch to @rspamd too. With this patch, I have confirmed that Mailcow will reject any incoming, non-whitelisted message containing attachments with macros.

* [Web] Fix excluded domain list in quaratine view

Previously excluded domains from quarantine were not shown.

* [Dovecot] Update syslogng Version to 3.28 (#4496)

Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>
Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: Max <mail@heavygale.de>
Co-authored-by: Michael Cramer <michael@bigmichi1.de>
Co-authored-by: Robert Christian <soulsymphonies@users.noreply.github.com>
Co-authored-by: André <andre.peters@debinux.de>
Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>
2022-03-02 16:32:17 +01:00
Niklas Meyer
89fdd1986d
Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
2022-02-01 15:26:48 +01:00
FreddleSpl0it
aaf5da240a
[WebAuthn] rename env var 2022-01-20 11:19:00 +01:00
FreddleSpl0it
7df2bb28f8
[WebAuthn] disable rootCA default 2022-01-19 21:35:21 +01:00
FreddleSpl0it
0244e945df
[WebAuthn] update mailcow.conf 2022-01-19 20:43:40 +01:00
FreddleSpl0it
a6ec68e80f
[WebAuthn] update mailcow.conf 2022-01-19 20:18:46 +01:00
andryyy
deb15d97b1
[Config] Fix link, fixes #4322 2021-11-15 12:16:59 +01:00
Peter
6bf70cf846
[Watchdog] Add Watchdog verbose logging (#4299)
* [Watchdog] Add verbose logging

* [Watchdog] More verbose debugging

* [Watchdog] Enable MX check for recipients

Co-authored-by: andryyy <andre.peters@debinux.de>
2021-10-29 06:48:49 +02:00
Ranoiaetep
d278f22438
[Update] Fix exit in generate_config.sh (#4274)
Line 16 made an exit without any output
2021-10-23 15:49:04 +00:00
andryyy
e98a8a533b
[Config] Add hint about http bind and https bind to generate_config 2021-07-28 21:43:27 +02:00
andryyy
56c4353edb
[Config] Remove ejabberd from compose 2021-06-30 10:14:49 +02:00
andryyy
0cbd4ec273
[Config, Update] Add ACME_CONTACT 2021-04-29 23:32:42 +02:00
Valentin Brandner
3255c08813
[Update, Config] Add subject for watchdog emails (#4027)
Co-authored-by: Valentin <vbrandner.itsb-b2018@fh-salzburg.ac.at>
2021-03-13 12:36:29 +01:00
Peter
7ea07d385e
Update generate_config.sh
Fix grammar
2021-03-06 19:14:13 +01:00
andryyy
b11764dff0
[Config] Add ADDITIONAL_SERVER_NAMES as optional config to define additional server_name parameters for mailcow UI 2021-02-16 16:38:28 +01:00
andryyy
8c6b512f05
[mailcow] Move ejabberd site to last available site 2021-02-12 19:26:49 +01:00
andryyy
5809e5b82e
[mailcow] Fix C22 -> C2S 2021-02-12 11:22:43 +01:00
andryyy
5203beda01
[Config] Add XMPP ports 2021-02-11 09:35:48 +01:00
andryyy
79f8a3c2b5
[Config] Remove 0.0.0.0 example 2021-01-07 16:51:05 +01:00
andryyy
64c12d50bc
[Config] Fix binding problems with IPv6 in newer Docker versions 2021-01-07 16:48:08 +01:00
Peter
79fa7973c0
[Config] Add Wikipedia link for TZ values (#3891) 2020-12-06 13:34:39 +01:00
bl-ue
4aa5718c7d
Fix typos: BusybBox -> BusyBox (#3868) 2020-11-21 22:28:53 +00:00
Lukas Schreiner
d96bf91a0d
Support of different default pass schemes + support of BLF-CRYPT (#3832)
* Introduce MAILCOW_PASS_SCHEME in order to support blowfish (cf. mailcow/mailcow-dockerized#1019)

* Furthermore added dovecot to support new environment varible for MAILCOW_PASS_SCHEME defaulted to SSHA256

* Revert changes regarding gitignore.

* Added fallback to SSHA256 if environment is not proper prepared.

* No fallback within management frontend, as it must match to other components.

* Unified and corrected alignment; implemented support of SSHA512

* Currently, password_hash of PHP is using by default bcrypt (BLF). As this might change later, we must ensure, that BLF is still used after PHP changes its default.

* Switched to BLF-CRYPT by default (even on update)

* Switched to BLF-CRYPT by default (even on update)

* Adding information in config generation / update with link to supported hash algorithm

* Bump sogo version to 1.92

* Fallback to BLF-CRYPT in case password scheme is not proper defined for Mailcow administration.
2020-11-15 20:22:35 +01:00
andryyy
5f8e13f596 [Dovecot] Allow to define static master user (not recommended) 2020-10-20 15:43:05 +02:00
andryyy
7e169582ca
[Config] Generate self-signed certificates 2020-10-14 12:17:07 +02:00
andryyy
f03a4104e4
[Config] Change order of generate_config watchdog values 2020-10-08 16:50:45 +02:00
andryyy
034f70b393
[Config] New defaults: MAILDIR_GC_TIME=7200, WATCHDOG_NOTIFY_BAN=n 2020-09-23 11:21:50 +02:00
andryyy
003499200e
[Config] Watchdog is stable 2020-09-03 20:55:16 +02:00
andryyy
0b0aaf0705
[Config] Better safe than sorry: Add a hint to use lowercase project names 2020-08-27 20:42:41 +02:00
andryyy
317298edbf
[Config] Remove comment about cidr for api_allow 2020-07-15 07:27:39 +02:00
Peter
1cb5780e9c
Add hints for for private IP ranges (#3645) 2020-07-09 19:52:12 +02:00
andryyy
94c388bb9c
[Config] Minor: Move line to correct place 2020-07-04 19:31:28 +02:00
andryyy
066b23bb02
[Config] CIDR API_ALLOW_FROM only allowed via API 2020-05-04 07:50:59 +02:00
andryyy
200167458e
[Config] Allow to disable SOGo (unsupported, experimental) 2020-04-29 10:11:22 +02:00
andryyy
d392257289 [Web] Some changes
[SOGo] Allow to not spawn SOGo but an idling shell
[Rspamd] Remove X-CSA-Complaints from bulk headers...
2020-04-27 20:47:28 +02:00
andryyy
5e5642148c
[Config] Add API_KEY_READ_ONLY 2020-04-11 20:57:35 +02:00
andryyy
730fa16a69
[PHP-FPM, Config] API key generated via mailcow.conf as rw access 2020-04-10 21:21:11 +02:00
andryyy
a9947e990c
[Config] Add hint to not use some ports mentioned in the docs 2020-03-20 22:30:41 +01:00
andryyy
33dec1db21
[Update, Config] Add Redis to exposed hosts 2020-03-19 12:19:17 +01:00
Dmitriy Alekseev
f5522a809c
Add more info about watchdog notification (#3271)
* Add more info about watchdog notification

* Update generate_config.sh

* Update generate_config.sh

Co-authored-by: André Peters <andre.peters@debinux.de>
2020-01-30 18:09:22 +01:00
andryyy
f1aa306ff2
[Watchdog] Add external check for open relay, requires SAL 2020-01-25 18:26:56 +01:00
andryyy
af8ed1d33a
[Install] Ubuntu 16.04 with default kernel is also unsupported in gen_conf 2019-12-05 19:18:06 +01:00
Marcel Hofer
f702c67bdc [SSL] add new SNI config on updates / new installs 2019-10-19 13:00:01 +02:00
andryyy
0cbda0f297
[Compose] Change default Solr binding to 18983 2019-09-18 08:48:59 +02:00
andryyy
b178326736
[Compose] Expose Solr to 127.0.0.1 2019-09-17 20:10:30 +02:00
andryyy
1771970e42
[Config] Add hint about http bindings 2019-09-09 10:51:12 +02:00
andryyy
3cae2389a0
Ubuntu kernel 4.15.0-60-generic seems to be broken with Docker and --dns flags, do NOT use it! 2019-09-03 22:01:47 +02:00
andryyy
5e7466ac7f
[SOGo, Config, Update] Add SOGO_EXPIRE_SESSION to define default session timeout 2019-07-21 13:07:48 +02:00
andryyy
8984240e44
[Watchdog, Config] Added WATCHDOG_NOTIFY_BAN to disable IP ban notifications
[Netfilter] Remove unused files after installation
[Compose] Some new images and a new option for watchdog: WATCHDOG_NOTIFY_BAN - defaults to y
2019-06-13 19:38:53 +02:00
André Peters
5c78aa4711
Merge pull request #2145 from ThomDietrich/patch-1
Fix typo in generate_config.sh
2019-05-05 23:15:50 +02:00
andryyy
64382c7ece
[Config] Clarification about mailcow_hostname 2019-05-01 23:17:10 +02:00
André Peters
987e884407
Merge branch 'master' into admin-login 2019-03-31 15:49:18 +02:00
andryyy
c612f7ee4c
[Config] Add SKIP_HTTP_VERIFICATION 2019-03-29 07:48:31 +01:00
Marcel Hofer
7d2289c3a7 Merge branch 'master' into admin-login
# Conflicts:
#	data/web/js/site/mailbox.js
2019-03-23 21:17:02 +01:00
andryyy
22798a85e5
[Config] Add MAILDIR_SUB, "Maildir" for new setups by default
[Update] Add MAILDIR_SUB= for updated mailcows
[Dovecot] Read MAILDIR_SUB for mail_home
2019-03-18 14:09:32 +01:00
André Peters
3d8a46357b
Merge branch 'master' into admin-login 2019-03-18 02:03:59 +01:00
andryyy
5b8a983be2
[Update, Config] Set mode 600 for mailcow.conf 2019-03-12 23:23:38 +01:00
Marcel Hofer
cac67db203 add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins 2019-02-23 17:59:18 +01:00
andryyy
9bd1fcbede
[Config] Add hint to disable Solr if you do not want a readable index in solr-vol-1 2019-01-29 13:29:30 +01:00
andryyy
2507a8fd31 [Config] Use #!/usr/bin/env bash for scritps, fixes #2226, thanks to @cptMikky 2019-01-27 19:50:15 +01:00
andryyy
c3d67805a1 [Config] Add ACL_ANYONE to generate_config.sh 2019-01-26 19:31:01 +01:00
James Smith
be44ca019d
Fix hard-coded SKIP_CLAMD 2019-01-17 21:23:24 +00:00
andryyy
ae4e1358a2
[Solr] Refuse to start with RAM lt 2 GB
[Config/Update] Set limits and change descriptions for Solr
2019-01-17 20:25:38 +01:00
andryyy
d008b67111
[Config] Change some texts, lower RAM req. to 3.5 GB for Solr 2019-01-17 19:44:57 +01:00
André Peters
f3dfe346bf [Dovecot] Allow setting ACL_ANYONE in mailcow.conf 2019-01-16 19:08:19 +01:00
Thomas Dietrich
7cdd90ddea
Update generate_config.sh 2019-01-03 00:58:25 +01:00
Thomas Dietrich
52cd40aa35
Fix typo in generate_config.sh 2019-01-02 20:17:37 +01:00
Thomas Dietrich
5b17fb80cd
Fix misleading typo in generated mailcow.conf 2018-12-30 14:10:30 +01:00
andryyy
d14cef6ee2 [Config] Add info for sub.* records to generate_config.sh 2018-11-12 10:06:22 +01:00
andryyy
c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
André
143f6f0872 [Config] Add allowed chars for API key 2018-10-11 12:01:37 +02:00
André
62b27aeacb [Dovecot] Check garbage hourly
[Dovecot] Update SA rules once when container starts
2018-10-02 09:34:21 +02:00
André
0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André Peters
57191cd009
Update generate_config.sh 2018-07-18 08:47:53 +02:00
Guillaume Hain
c480a9787d
Updates generate_config.sh making it working on macOS 2018-07-13 06:48:38 +02:00
André
1e59816665 [Netfilter] Prevent crashes by locking threads
[Netfilter] SNAT6
2018-07-11 19:59:10 +02:00
André
0d9b474f69 Fix typo in generate_config.sh 2018-06-08 12:35:23 +02:00
André
6ded3dbd95 [API] Allow to set API options in mailcow.conf, fixes #1457 2018-06-08 09:11:03 +02:00
andryyy
a0d2e34433 Minor fix in generate_config.sh 2018-05-03 22:31:20 +02:00
Pascal Jufer
90db5a30cb Fix initial compose project name 2018-04-13 14:13:24 +02:00
André Peters
450c0e936d Fix generate_config script 2018-02-28 20:08:20 +01:00
André Peters
035b153445
Merge pull request #1048 from extremeshok/patch-7
Support for alpine linux (generate_config.sh)
2018-02-20 08:35:57 +01:00
André Peters
de04016996
Update generate_config.sh 2018-02-20 08:34:49 +01:00
eXtremeSHOK
40885b7fd6
Update generate_config.sh
exit on error and pipefail
minor fix " ; then" to ";then"
2018-02-20 00:39:53 +02:00
eXtremeSHOK
6e91504f6f
Update generate_config.sh
added --no-cache option, thanks
2018-02-20 00:28:59 +02:00
eXtremeSHOK
51b57320c2
Support for alpine linux
detects if cp and grep are the non BusyBox versions
2018-02-14 17:08:03 +02:00
André Peters
3e9ad820bf Make sure workercontrollerpassword exists 2018-02-08 23:53:06 +01:00
andre.peters
6118085890 [Compose] Expose SQL to 13306 on 127.0.0.1 2018-02-05 21:42:13 +01:00
andre.peters
6be0577638 [Compose] Allow to disable IPv6 2018-02-01 21:45:49 +01:00
andre.peters
90fe52cc72 [Update] Use correct subnet for IPv6, allow --ours parameter to merge by gits ours strategy
[Update/config] Allow to set SNAT_TO_SOURCE
2018-02-01 13:32:40 +01:00
andre.peters
0514a1463d Fix generate_config 2018-01-27 16:52:56 +01:00
andre.peters
1e9cae9084 [Compose] New images with LOG_LINES
[Update] Do not add empty line in each loop
2018-01-08 22:00:54 +01:00
André
b4cc5a9891 generate_config: Added hint for FQDN 2017-11-07 18:38:40 +01:00
andryyy
aa245cbda5 [Config] Add WATCHDOG_NOTIFY_EMAIL to gen_config, slightly better parameter descriptions 2017-10-08 22:48:56 +02:00
andryyy
a8fb1d3f4f Add experimental watchdog 2017-09-20 10:56:49 +02:00
andryyy
8741b5f3b1 [Compose] Enable some minimal inits, change or remove some health checks 2017-09-16 13:17:37 +02:00
andryyy
c80d605632 Add DOVEADM_PORT to generate_config.sh 2017-07-10 21:29:03 +02:00