1
0
mirror of https://github.com/mailcow/mailcow-dockerized.git synced 2024-12-16 10:59:39 +02:00
Commit Graph

102 Commits

Author SHA1 Message Date
Niklas Meyer
c520f21d28
🐄 Moorch Update 2022 - ClamAV, Dovecot & Olefy Update (#4497)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag error handling

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

* Update clamav to 0.104.2

* Update clamav to 0.104.2

* Update dovecot to 2.3.18

Update gosu to 1.14
Use debian bullseye as base

* [Web] Updated lang.es.json [CI SKIP] (#4453)

Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Fijxu <fijxu@zzls.xyz>

* Fix broken documentation links (#4458)

* Fix broken documentation links

* Fix a few more broken documentation links

* Fix broken documentation links in translation files

* Fall back to empty string if WATCHDOG_NOTIFY_EMAIL undefined (#4457)

By default, `.env` (`mailcow.conf`) does not define `WATCHDOG_NOTIFY_EMAIL`.

Using it in `docker-compose.yml` without having it defined leads to Compose v2 displaying this warning on startup:

> WARNING: The WATCHDOG_NOTIFY_EMAIL variable is not set. Defaulting to a blank string.

Related to https://github.com/mailcow/mailcow-dockerized/issues/4315

* [Web] Updated lang.sk.json [CI SKIP] (#4461)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* oletools: disable template injection detection (#4464)

Seems to be causing a lot of false positives lately

* Fix minor typo in comment (#4466)

Correction of the comment, so that the explanation is correct and can be understood.

* Update issue templates to issue forms (#4465)

This PR updates the issue templates to GitHubs new issue forms

* [Web] Fix padding issue in UI admin panel (#4481)

* [Web] fix admin panel padding issue

* [Web] fix admin panel padding issue

* [Web] Updated lang.sk.json [CI SKIP] (#4489)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* increase opcache.interned_strings_buffer to 16 (#4487)

since version 23.0.2 Nextcloud recommends having a value greater than 8 for `opcache.interned_strings_buffer`. As this memory will be only used when needed this should have no impact on installations that are not using nextcloud.

related discussion: https://help.nextcloud.com/t/nextcloud-23-02-opcache-interned-strings-buffer/134007/19
related nextcloud issue: https://github.com/nextcloud/server/issues/31223

* nextcloud - add missing redirections (#4366)

adds missing location directives to the nginx configuration of nextcloud 22, to prevent warnings in nextcloud admin center of missing redirections

* Update imapsync to 2.178 (#4491)

* Update and fix oletools (#4479)

As noticed by @MAGICCC (#4464 (comment)), our olefy image does not work anymore if you rebuild it. This is because @HeinleinSupport recently updated their repository with the changes from @decalage2's repository, which renamed olvba3 to olevba. Since @HeinleinSupport does not recommend using its own patched branch and is very slow in pulling in changes from upstream (@decalage2), let's switch to the latter. This also allowed me to revert #4464.

Finally, a minor patch to rspamd is necessary. While the documentation says

In the extended mode the oletools module will not trigger on specific categories, but will always set a threat string with all found flags when at least a macro was found.

This is not actually true -- it only sets it when suspicious or autoexec threats were detected. But it's a one-line patch to make rspamd behave as documented and we should submit that patch to @rspamd too. With this patch, I have confirmed that Mailcow will reject any incoming, non-whitelisted message containing attachments with macros.

* [Web] Fix excluded domain list in quaratine view

Previously excluded domains from quarantine were not shown.

* [Dovecot] Update syslogng Version to 3.28 (#4496)

Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>
Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: Max <mail@heavygale.de>
Co-authored-by: Michael Cramer <michael@bigmichi1.de>
Co-authored-by: Robert Christian <soulsymphonies@users.noreply.github.com>
Co-authored-by: André <andre.peters@debinux.de>
Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>
2022-03-02 16:32:17 +01:00
andryyy
8ee997b1a3
[Rspamd] Base on bullseye; remove nullnull map to _perhaps_ prevent a memleak 2021-09-01 15:21:43 +02:00
andryyy
b8f7b00fff
[Rspamd] Add new bad header map 2021-05-24 11:09:46 +02:00
andryyy
d85241f518
[Rspamd] Temp. pre-add proposed upstream change in metadata exporter 2020-10-23 21:49:06 +02:00
andryyy
dd62030ce2
[Rspamd] 2.6 stable, switch repo 2020-10-03 11:12:12 +02:00
andryyy
a79d536867
[Rspamd] 2.6-0~git32~1c3e0910b~buster 2020-09-25 23:00:01 +02:00
andryyy
fd2d7d12a0
[Rspamd] Latest 2.5 2020-09-15 11:57:39 +02:00
andryyy
28041b1d97
[Rspamd] Encrypt fuzzy communication, switch to Rspamd 2.6 2020-09-15 11:01:20 +02:00
andryyy
6cb5d832d6
[Rspamd] Minor: Fix text 2020-09-09 10:49:08 +02:00
andryyy
655c9b4eba
[Rspamd] Minor fixes 2020-04-12 13:09:09 +02:00
andryyy
e03f9727f0
[Rspamd] v2.5 2020-04-01 21:16:55 +02:00
andryyy
c3a4c6d311
[Rspamd] Rolling release 2020-03-28 19:51:16 +01:00
andryyy
e290d6d869
[Rspamd] Fix neural.lua 2020-03-08 12:25:03 +01:00
andryyy
d248bb660c
[Rspamd] Reduce Sorbs recent score
[Rspamd] Add annoying CSA to bulk symbols and score then with 3.2
[Rspamd] Update to 2.4
2020-03-06 07:14:06 +01:00
andryyy
b889c70db8
[Rspamd] Set Redis slaveof if not master, adjust redis configs automatically 2020-02-05 10:58:52 +01:00
andryyy
37934fae03
[Rspamd] Add mailcow_networks map 2020-01-12 12:23:11 +01:00
andryyy
03cbed5002
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve) 2020-01-10 20:39:11 +01:00
andryyy
b63cad1dd5
[Compose] Update Rspamd image 2019-12-23 10:21:44 +01:00
andryyy
86d55c41db
[Rspamd] Touch bad lang map
[Rspamd] SA trivial converter (wip)
2019-12-23 10:20:41 +01:00
andryyy
27de9dbf92
[Rspamd] Slight changes to improve memory usage
[Web] Dirty hack to touch Rspamd maps a second time
2019-10-30 20:07:58 +01:00
andryyy
a1971f7af8
[Rspamd] Set correct parent permission 2019-10-30 14:40:00 +01:00
andryyy
59df735aa8
[Web] Filter duplicates when adding multiple transports 2019-10-30 14:37:44 +01:00
andryyy
02bb3a44a7
[Rspamd] Wait for PHP to not break inotify 2019-10-29 19:58:34 +01:00
andryyy
b52ee0a706
[Rspamd] Fix map permissions for www
[Web] Allow to manage global maps in UI (WIP)
2019-10-29 08:39:57 +01:00
andryyy
bdf56971d5
[Rspamd, PHP-FPM] Mount Rspamd maps, set correct permissions (WIP: edit in UI)
[PHP-FPM] Update image, fixes #3091
[Web] Netfilter: Do not auto restart netfilter-mailcow but add a small hint to restart netfilter-mailcow after adding a ban to perm bans
[Web] Remove unused js script parameter
2019-10-25 08:31:31 +02:00
andryyy
b0711db489
[Dockerfiles] Rename some files and create hook points 2019-10-18 12:01:47 +02:00
andryyy
bd469412ca
[SOGo] Do not modify UIxAclEditor 2019-08-25 16:03:57 +02:00
andryyy
b139e48eec
Add some hints to autogenerated files 2019-07-08 07:56:41 +02:00
andryyy
5e36018864
[Rspamd] Auto-generate SIEVE_HOST map and add dnsutils 2019-05-18 22:44:30 +02:00
andryyy
b20ff13e40 [Rspamd] Update to 1.9.2, minor entrypoint changes
[Compose] Update Rspamd to 1.9.2
2019-05-06 12:18:41 +02:00
andryyy
9482da211f
[Rspamd] Update to 1.9 stable repository
[Compose] Update Rspamd image
2019-03-12 23:39:34 +01:00
andryyy
8e42ad4f1f
[Rspamd] Use stable unstable :) 2019-03-07 00:09:07 +01:00
andryyy
e1ebacca27
[Rspamd] Drop rspamd.conf.local file 2019-03-06 15:06:51 +01:00
tha80
d365813997
Downgraded rspamd deb repository 2019-03-04 13:59:31 +01:00
andryyy
c4dfed8a96
[Compose, Rspamd] Downgrade Rspamd 2019-03-03 22:54:47 +01:00
andryyy
950ab30462
[Rspamd] Upgrade Rspamd
[Compose] New Rspamd image
2019-03-03 22:25:56 +01:00
andryyy
d6efc2fcd3
[Rspamd] Fix metadata_exporter
[Web] Show subjet in quarantine
[Compose] Update Rspamd image
2019-01-17 22:00:18 +01:00
andryyy
c4446b85f1 [Rspamd] Add ratelimit.lua (to be removed from Dockerfile with next Rspamd release) 2018-12-15 21:19:35 +01:00
andryyy
1404fc50f4 [Rspamd] Add stopsignal (testing) 2018-11-12 09:52:34 +01:00
André
7a7fafec87 [Compose] New Rspamd image (1.8.1)
[Rspamd] Upgrade base to Bionic
2018-10-17 22:41:39 +02:00
André
d7ca5579dc [Rspamd] Ignore custom files, but keep bad asn map 2018-09-30 18:55:35 +02:00
André
cdca603ff5 [Unbound] Fix logging, fixes #585
[Rspamd] Fix permissions of controller password file
[Unbound] Enable unbound-control
2018-09-30 14:43:18 +02:00
André
4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André
0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André
96c985abad [Rspamd] Move settings file to RSPAMD_CONF root, delete old lua scripts 2018-09-26 13:23:05 +02:00
André
85f83b1b71 [Rspamd] v1.7.9 (removed explicit ratelimit.lua) 2018-08-02 12:16:55 +02:00
André
853b924fe1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-07-15 11:56:26 +02:00
André
c372b01909 [Rspamd] Use old ratelimit LUA until custom rl is fixed
[Web] Updated settings preset: Ratelimit was NOT applied when preset for settings map was used (added "RATELIMIT_UPDATE", "RATELIMIT_CHECK" to symbols_enabled)
[Rspamd] v1.7.8
2018-07-13 11:40:37 +02:00
André
071024db4c Fix indentation 2018-06-26 07:49:14 +02:00
André Peters
004d262e41 [Rspamd] Create missing password include as placeholder 2018-02-08 22:57:17 +01:00