FreddleSpl0it
a310493485
[Dovecot] fix repl_health.sh
2024-02-02 16:52:41 +01:00
Patrick Schult
087481ac12
Merge pull request #5696 from mailcow/fix/netfilter
...
[Netfilter] add mailcow isolation rule to MAILCOW chain
2024-02-02 14:33:01 +01:00
FreddleSpl0it
c941e802d4
[Netfilter] only perform cleanup at exit if SIGTERM was recieved
2024-02-02 12:57:21 +01:00
FreddleSpl0it
39589bd441
[Netfilter] only perform cleanup at exit if SIGTERM was recieved
2024-02-02 12:46:50 +01:00
FreddleSpl0it
2072301d89
[Netfilter] only perform cleanup at exit if SIGTERM was recieved
2024-02-02 11:08:44 +01:00
FreddleSpl0it
b236fd3ac6
[Netfilter] add mailcow isolation rule to MAILCOW chain
...
[Netfilter] add mailcow rule to docker-user chain
[Netfilter] add mailcow isolation rule to MAILCOW chain
[Netfilter] add mailcow isolation rule to MAILCOW chain
[Netfilter] set mailcow isolation rule before redis
[Netfilter] clear bans in redis after connecting
[Netfilter] simplify mailcow isolation rule for compatibility with iptables-nft
[Netfilter] stop container after mariadb, redis, dovecot, solr
[Netfilter] simplify mailcow isolation rule for compatibility with iptables-nft
[Netfilter] add exception for mailcow isolation rule for HA setups
[Netfilter] add exception for mailcow isolation rule for HA setups
[Netfilter] add DISABLE_NETFILTER_ISOLATION_RULE
[Netfilter] fix wrong var name
[Netfilter] add DISABLE_NETFILTER_ISOLATION_RULE to update and generate_config sh
2024-02-02 10:10:11 +01:00
DerLinkman
93e4d58606
sogo: fix ACL allow authenticated users + rebuild on Bookworm
2024-02-01 08:41:11 +01:00
DerLinkman
a0613e4b10
fix: rollback of Alpine 3.19 were possible
2024-01-22 11:26:26 +01:00
Niklas Meyer
68989f0a45
Merge pull request #5647 from Candinya/patch-1
...
fix: watchdog webhook body variables injector
2024-01-22 10:34:06 +01:00
Nya Candy
6e7a0eb662
fix: watchdog webhook body variables injector
2024-01-22 10:32:01 +01:00
KagurazakaNyaa
b89d71e6e4
change variable name
2024-01-18 23:48:59 +08:00
KagurazakaNyaa
ed493f9c3a
Allow user skip unbound healthcheck
2024-01-18 23:28:03 +08:00
DerLinkman
cb3bc207b9
unbound: increased healthcheck timeout
2024-01-18 11:55:01 +01:00
DerLinkman
accedf0280
Updated mailcow Components to be ARM64 compatible
2024-01-17 10:14:36 +01:00
DerLinkman
b29dc37991
unbound: rewrote healthcheck to be more detailed
...
unbound: added comments to rewritten healthcheck
2024-01-15 15:17:28 +01:00
Niklas Meyer
b4eeb0ffae
Merge pull request #5522 from mailcow/renovate/krakjoe-apcu-5.x
...
chore(deps): update dependency krakjoe/apcu to v5.1.23
2024-01-09 12:06:12 +01:00
Niklas Meyer
48549ead7f
Merge pull request #5549 from mailcow/renovate/phpredis-phpredis-6.x
...
chore(deps): update dependency phpredis/phpredis to v6.0.2
2024-01-09 12:04:41 +01:00
Niklas Meyer
01b0ad0fd9
Merge pull request #5550 from mailcow/renovate/tianon-gosu-1.x
...
chore(deps): update dependency tianon/gosu to v1.17
2024-01-09 12:04:21 +01:00
Niklas Meyer
2b21501450
Merge pull request #5581 from mailcow/renovate/composer-composer-2.x
...
chore(deps): update dependency composer/composer to v2.6.6
2024-01-09 12:03:08 +01:00
DerLinkman
25007b1963
dockerapi: implemented lifespan function
2024-01-09 11:50:22 +01:00
DerLinkman
f442378377
dockerfiles: updated maintainer
2024-01-09 11:18:55 +01:00
DerLinkman
333b7ebc0c
Fix Alpine 3.19 dependencies
2024-01-09 11:17:52 +01:00
Peter
5896766fc3
Update to Alpine 3.19
2024-01-09 11:17:51 +01:00
Patrick Schult
96a5891ce7
Merge branch 'staging' into watchdog-no-notify-on-startup
2023-12-12 11:14:29 +01:00
Patrick Schult
7f4e9c1ad4
Merge branch 'staging' into staging
2023-12-11 16:28:05 +01:00
FreddleSpl0it
218ba69501
[Watchdog] add curl verbose & use | as sed delimiter
2023-12-11 15:44:11 +01:00
FreddleSpl0it
3e40bbc603
Merge remote-tracking branch 'origin/staging' into feat/f2b-banlist
2023-12-11 12:27:14 +01:00
Patrick Schult
3498d4b9c5
Merge pull request #5585 from mailcow/feat/nftables
...
[Netfilter] add nftables support
2023-12-11 11:54:01 +01:00
FreddleSpl0it
f4b838cad8
[Netfilter] update image & delete old server.py
2023-12-11 11:51:28 +01:00
FreddleSpl0it
86fa8634ee
[Netfilter] do not ignore RETRY_WINDOW
2023-12-11 11:38:48 +01:00
renovate[bot]
40fdf99a55
Update dependency composer/composer to v2.6.6
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-12-08 20:07:11 +00:00
FreddleSpl0it
d2e3867893
[Web][Rspamd] implement custom mailbox attributes and improve domain wide footer
2023-11-23 16:12:43 +01:00
renovate[bot]
d4dd1e37ce
Update dependency tianon/gosu to v1.17
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-11-21 09:03:09 +00:00
renovate[bot]
a8dfa95126
Update dependency phpredis/phpredis to v6.0.2
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-11-21 09:03:02 +00:00
Niklas Meyer
8f1ae0f099
Merge pull request #5530 from Quiwy/staging
...
fix: support utf-8 in password synchronization
2023-11-16 11:21:27 +01:00
Niklas Meyer
c8bee57732
Merge pull request #5521 from raph-topo/fix/impasync-options
...
Add `--dry` IMAPsync Parameter as Button to select for SyncJobs
2023-11-16 11:19:47 +01:00
DerLinkman
547d2ca308
Add Dry Mode Option for ImapSyncs (Button)
2023-11-15 16:18:18 +01:00
Quiwy
46b995f9e3
fix: support utf-8 in password synchronization
2023-11-14 10:11:25 +01:00
renovate[bot]
4f109c1a94
Update dependency krakjoe/apcu to v5.1.23
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-11-12 17:28:57 +00:00
Peter
5ec9c4c750
Fix renovate regex
2023-11-12 18:00:20 +01:00
FreddleSpl0it
f39005b72d
[Netfilter] add nftables support
2023-10-30 11:54:14 +01:00
Sebastian Marsching
5425cca47e
Allow suppressing watchdog start notification.
...
The default behavior is still the old one (send a notifcation when the
watchdog is started), but this notification can now be suppressed by
setting WATCHDOG_NOTIFY_START=n.
2023-10-12 18:34:55 +02:00
DerLinkman
907912046f
Fix Clamd Version image in compose
2023-10-12 15:18:19 +02:00
Niklas Meyer
f1c93fa337
Merge pull request #5253 from mailcow/renovate/composer-composer-2.x
...
Update dependency composer/composer to v2.6.5
2023-10-12 11:39:22 +02:00
Niklas Meyer
a94a29a6ac
Merge pull request #5442 from mailcow/renovate/php-pecl-mail-mailparse-3.x
...
Update dependency php/pecl-mail-mailparse to v3.1.6
2023-10-12 11:38:47 +02:00
Niklas Meyer
7e3d736ee1
Merge pull request #5413 from mailcow/renovate/phpredis-phpredis-6.x
...
Update dependency phpredis/phpredis to v6
2023-10-12 11:38:34 +02:00
Niklas Meyer
437534556e
Merge pull request #5372 from Habetdin:staging
...
[Postfix] fix extra.cf updating
2023-10-12 11:25:32 +02:00
DerLinkman
eb3be80286
[Unbound] Added Healthcheck (nslookup)
2023-10-11 15:48:25 +02:00
DerLinkman
a02bd4beff
[Dovecot] Update to 2.3.21
2023-10-11 12:14:47 +02:00
Peter
87e3c91c26
Update Dockerfile
2023-10-08 11:41:39 +02:00
renovate[bot]
3d8f45db43
Update dependency composer/composer to v2.6.5
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-10-06 09:17:46 +00:00
renovate[bot]
115d0681a7
Update dependency php/pecl-mail-mailparse to v3.1.6
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-10-05 15:20:24 +00:00
renovate[bot]
0c0ec7be58
Update dependency phpredis/phpredis to v6
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-10-05 14:08:31 +00:00
Niklas Meyer
a72b3689b0
Merge pull request #5436 from mailcow/fix-renovate
...
Fix renovate to allow version extracts for Dockerfiles
2023-10-05 16:08:06 +02:00
Niklas Meyer
c4c76e0945
Merge pull request #5438 from accolon/master
...
Update ClamAV to latest LTS version 1.0.3
2023-10-05 16:04:46 +02:00
Florian Hillebrand
3f2a9b6973
Update ClamAV to latest LTS version 1.0.3
2023-10-03 20:54:45 +02:00
Peter
ed365c35e7
Fix renovate.json to allow version extracts
2023-10-02 20:22:08 +02:00
Michael Stilkerich
930473a980
Set asyncio timeout to 0 for yielding
2023-08-12 07:20:56 +02:00
Michael Stilkerich
533bd36572
Fix CPU load of dockerapi container
...
Previously the handle_pubsub_messages() loop was executing every 10ms
when there was no message available. Now reading from the redis network
socket will block (the coroutine) for up to 30s before it returns when
no message is available.
Using channel.listen() would be even better, but it lacks the
ignore_subscribe_messages option and I could not figure out how to
filter the returned messages.
2023-08-05 20:58:34 +02:00
Habetdin
5bf29e6ac1
[Postfix] fix extra.cf updating
2023-08-05 00:25:19 +03:00
FreddleSpl0it
b050cb9864
[Postfix] remove dnsbl_reply.map if not required
2023-08-03 09:00:08 +02:00
DocFraggle
8f9ed9e0df
Merge branch 'staging' into staging
2023-08-02 20:20:18 +02:00
FreddleSpl0it
003eecf131
[Postfix] remove spamhaus dbl and zrd from postscreen_dnsbl_sites
2023-08-02 17:08:55 +02:00
FreddleSpl0it
5d3491c801
[Postfix] only apply DNSBL if dns_blocklists.cf is not empty
2023-08-02 16:48:22 +02:00
FreddleSpl0it
c45684b986
[Postfix] rework dns_blocklists.cf generation
2023-08-02 16:36:59 +02:00
Christian Hailer
9f39af46aa
Add postscreen_dnsbl_reply_map to avoid disclosure of DQS key with Spamhaus setup
2023-08-01 16:12:44 +02:00
Sébastien RICCIO
7cda9f063f
Fix for fix
...
I did not paid attention to the "User overrides" sed/q
2023-08-01 13:59:23 +02:00
Sébastien RICCIO
5e7583c5e6
Fix main.cf merging order
...
Now the dnsbl files are merged before extra.cf
2023-08-01 10:49:26 +02:00
Hailer, Christian
3000da6b88
Fix spamhaus query domains (.net only)
2023-07-31 13:50:36 +02:00
DerLinkman
0f337971ff
Reimplemented option for custom dnsbls
2023-07-31 12:03:07 +02:00
Niklas Meyer
dabf9104ed
Merge pull request #5342 from DocFraggle/mailcow_spamhaus
...
dns_blocklists.cf isn't appended to main.cf and therefore ineffective…
2023-07-30 19:02:01 +02:00
Christian Hailer
952ddb18fd
dns_blocklists.cf isn't appended to main.cf and therefore ineffective #5340
2023-07-30 18:56:52 +02:00
DerLinkman
34d990a800
Removed obsolete whois package
2023-07-28 20:35:28 +02:00
DerLinkman
525364ba65
Implemented remote Bad AS lookup
2023-07-28 20:27:38 +02:00
DerLinkman
815572f200
Merge branch 'feat/spamhaus-dqs-asn' into staging
2023-07-28 10:33:34 +02:00
DerLinkman
ec8d298c36
Update postfix.sh to include pbl for dqs
2023-07-13 16:42:59 +02:00
FreddleSpl0it
1537fb39c0
[Web] add manage f2b external option
2023-07-11 10:19:32 +02:00
FreddleSpl0it
65cbc478b8
[Web] add manage f2b external option
2023-07-11 10:13:00 +02:00
FreddleSpl0it
e2e8fbe313
[Web] add f2b_banlist endpoint
2023-07-10 13:54:23 +02:00
FreddleSpl0it
0f0d43b253
[Dockerapi] add missing import os
2023-07-07 11:32:28 +02:00
DerLinkman
7b645303d6
Added Colorful Outputs for the Spamhaus info in PF
2023-06-23 15:54:49 +02:00
DerLinkman
408381bddb
Update Postfix image to 1.69 + improvements
2023-06-23 15:48:13 +02:00
DerLinkman
03b7a8d639
Implemented Postfix Blocklist generation
2023-06-23 14:25:07 +02:00
FreddleSpl0it
06cce79806
[Dockerapi] add pubsub handler for broadcasting in ha setup
2023-06-12 16:37:48 +02:00
FreddleSpl0it
67510adb9e
[Dovecot] remove pass return in Dovecot lua auth
2023-05-30 16:47:03 +02:00
DerLinkman
70aab7568e
Changed maintainers to tinc (Dockerfiles)
2023-05-30 16:20:35 +02:00
FreddleSpl0it
f80940efdc
[Dovecot] remove pass return in Dovecot lua auth
2023-05-30 09:09:41 +02:00
Patrick Schult
73d6a29ae1
Merge pull request #5205 from mailcow/clean_sasl_log
...
Clean up old entries from sasl_log
2023-05-09 09:49:40 +02:00
Patrick Schult
3c68a53170
Merge pull request #5201 from mailcow/fix/sieve-print
...
[Dockerapi] Fix typo in dockerapi sieve print
2023-05-08 16:00:22 +02:00
DerLinkman
b5acf56e20
Added Platform Information on Status Page
2023-05-02 18:11:10 +02:00
Michael Kuron
856b3b62f2
Clean up old sasl_log entries
2023-04-22 14:16:42 +02:00
FreddleSpl0it
6e79c48640
[Dockerapi] Fix typo in dockerapi sieve print
2023-04-21 16:15:16 +02:00
FreddleSpl0it
be2286c11c
[Dockerapi] fix maildir cleanup for domains
2023-04-20 13:41:11 +02:00
Patrick Schult
fd0205aafd
Merge pull request #5127 from th-joerger/feature/bantime-increment
...
[Netfilter] Implemented exponentially incrementing bantime
2023-03-30 07:53:33 +02:00
Patrick Schult
e367a8ce24
Merge pull request #5153 from mailcow/fix/del-vmail-index
...
[Dockerapi] delete vmail_index on maildir cleanup
2023-03-30 07:52:00 +02:00
Thorbjörn Jörger
096e2a41e9
Push verified options to redis after each check
2023-03-29 17:09:25 +02:00
Thorbjörn Jörger
e010f08143
verify options after loading them, set defaults if options are missing or invalid
2023-03-29 15:24:14 +02:00
Patrick Schult
3d2483ca37
Merge pull request #5093 from brunoleon/fix_snat
...
Fix SNAT never being added because of exception
2023-03-29 08:13:11 +02:00
FreddleSpl0it
4021613059
delete vmail_index when mbox is deleted
2023-03-28 10:59:08 +02:00
Niklas Meyer
e891bf8411
Merge pull request #5138 from th-joerger/feature/pubsub-exception
...
[netfilter] add pubsub exception
2023-03-27 10:40:40 +02:00
Niklas Meyer
f7798d1aac
Merge pull request #5099 from mailcow/feat/phpfpm-8.2
...
Update to PHP 8.2
2023-03-27 10:13:42 +02:00
Peter
db2fb12837
Install sysvsem for Nextcloud 26
2023-03-24 16:08:19 +01:00
Peter
e808e595eb
Update dependency composer/composer to v2.5.5
2023-03-24 16:05:35 +01:00
Thorbjörn Jörger
5bc3d93545
log exception of redis pubsub subscription
2023-03-21 11:14:52 +01:00
Thorbjörn Jörger
1233613bea
implemented handling of max_bantime and ban_time_increment flag
2023-03-21 11:06:13 +01:00
Thorbjörn Jörger
0206e0886c
implemented exponentially incrementing bantime, removed active_window code that did nothing, cleanly initialized dictionary
2023-03-21 11:06:13 +01:00
FreddleSpl0it
04e46f9f5b
[Imapsync] Use pure perl code for XOAUTH2 authmech
2023-03-03 09:57:09 +01:00
Peter
a5b8f1b7f7
Update to PHP 8.2
2023-02-28 20:08:33 +01:00
Bruno Léon
f77c65411d
Fix SNAT never being added because of exception
...
Some firewall rule object (iptc) do not have a parameter
attribute, which results in an exception being triggered,
and the mailcow SNAT rule to never be created.
Firewall rules that trigger such exception are:
- -A POSTROUTING -s 192.168.122.0/24 -d 224.0.0.0/24 -j RETURN
This commit just verify attribute presence, and skip the rule
properly instead of triggering an exception.
2023-02-27 12:04:32 +01:00
FreddleSpl0it
04403aaf70
[Netfilter] fix setting SNAT Rule if chain is empty
2023-02-17 13:15:44 +01:00
Niklas Meyer
15bb331a7d
Merge pull request #5048 from mailcow/renovate/composer-composer-2.x
...
Update dependency composer/composer to v2.5.4
2023-02-16 17:03:45 +01:00
Niklas Meyer
63e92e0897
[CLAMAV] Update to 1.0.1
2023-02-16 14:56:56 +01:00
renovate[bot]
aa4d8b1f47
Update dependency composer/composer to v2.5.4
...
Signed-off-by: milkmaker <milkmaker@mailcow.de>
2023-02-15 13:51:12 +00:00
Niklas Meyer
05d1a974eb
Merge pull request #5003 from mailcow/feat/acme-skip-ip-check
...
[Acme] Implemented IP Check Bypass properly
2023-01-25 16:10:11 +01:00
FreddleSpl0it
b719982504
partial rollback of dockerapi
2023-01-25 09:31:22 +01:00
Niklas Meyer
f0d9948aee
Merge pull request #4991 from mailcow/feat/dovecot-2.3.20
...
[Dovecot] Update to 2.3.20
2023-01-19 11:31:59 +01:00
Peter
7626becb38
Add regex for matchstring line in Dockerfiles
2023-01-17 19:48:42 +01:00
Peter
5d5e959729
Add regex for matchstring line in Dockerfiles
...
Update composer to 2.5.1
2023-01-17 19:45:32 +01:00
DerLinkman
9279ee2e76
[Dovecot] Update to 2.3.20
2023-01-17 16:23:31 +01:00
DerLinkman
5c57df4669
[Acme] Implemented IP Check Bypass properly
2023-01-16 10:10:20 +01:00
Felix Kleinekathöfer
b6b399a590
Fixed POST to webhook
2023-01-07 16:00:17 +01:00
Felix Kleinekathöfer
b83841d253
Replace placeholders with sed
2023-01-07 15:44:29 +01:00
Felix Kleinekathöfer
3e69304f0f
Send webhook
2023-01-06 16:25:18 +01:00
Felix Kleinekathöfer
fe8131f743
Only sent mail if enabled
2023-01-06 15:52:36 +01:00
Felix Kleinekathöfer
9ef14a20d1
Centralized checking of enabled notifications
2023-01-06 15:43:43 +01:00
Felix Kleinekathöfer
5897b97065
Renamed mail notification method for watchdog to be more general
2023-01-06 15:35:06 +01:00
Peter
cb098df743
Update gosu to 1.16
...
Change ENV to ARG
Add matchstring line
2023-01-04 19:10:32 +01:00
moo
41d56a867a
Merge remote-tracking branch 'origin/feature/bootstrap5' into staging
2022-12-23 16:46:00 +01:00
moo
948d23f56d
[Clamd] Update to 1.0
2022-12-23 16:28:52 +01:00
Niklas Meyer
50e9a3ec8a
Merge pull request #4835 from VermiumSifell/master
...
✏️ Fixed invalid regexs for banning.
2022-12-23 16:10:32 +01:00
Niklas Meyer
125aaa5b7d
Merge pull request #4904 from mailcow/feature/alpine-3.17
...
Update Base Images to Alpine 3.17
2022-12-23 16:05:24 +01:00
Kristian Feldsam
802d304579
Revert "[Dovecot] Disable imapsync job, when auth details are wrong. Fixes #4276 ( #4540 )" Closes #4711
...
This reverts commit d4e829465b
.
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
# Conflicts:
# docker-compose.yml
2022-12-12 11:41:30 +01:00
DerLinkman
827cb00837
[DockerAPI] Tagged as 2.0 (rewrite)
2022-12-08 16:09:20 +01:00
DerLinkman
77f04d10c7
Update Base Images to Alpine 3.17
2022-12-01 23:02:03 +01:00
Niklas Meyer
a96b209e1b
Merge pull request #4870 from mailcow/staging
...
Automatic PR to nightly from 2022-11-23T12:47:06Z
2022-11-23 15:35:09 +01:00
FreddleSpl0it
da415e5c6b
[Dockerapi] define matched var before use
2022-11-15 16:12:07 +01:00
Michael Cramer
bc937ed2db
[PHP] Polish dockerfile
...
includes also #4839 because of --with-avif for gd configure command (is not available in 8.0)
contains the following adjustments:
- upgrade APCu to 5.1.22
- use PECL package for mailparse instead of git clone (3.1.4 is the latest one available and sice then no changes on master branch)
- split PECL commands into separate ones (according to https://hub.docker.com/_/php this is the recommended way)
- add missing configure options for gd extension to include webp, xpm and avif
- specify composer version to be installed
- cleanup more dev dependencies
2022-11-08 09:45:25 +01:00
DerLinkman
4dd1b97e38
[PHP] Update to 8.1
2022-11-06 15:52:30 +01:00
Vermium Sifell
a9871d05b2
✏️ Fixed invalid regexs for banning
2022-11-02 23:42:37 +01:00
DerLinkman
a2b31cb28d
Merge branch 'staging' into nightly
2022-10-25 12:25:34 +02:00
DerLinkman
8026b6c874
Swapped PIGZ instead of gzip
2022-10-19 11:15:12 +02:00
DerLinkman
51b80f6fa1
Merge branch 'feature/bootstrap5' into nightly
2022-10-18 14:20:55 +02:00
DerLinkman
75fdeb2843
Fixed queue message error
2022-10-18 14:19:51 +02:00
moo
b4a1b81aec
Merge branch 'feature/bootstrap5' into nightly
2022-10-12 15:12:58 +02:00
DerLinkman
b8656763ec
Merge branch 'staging' into nightly
2022-10-06 14:25:39 +02:00
Niklas Meyer
9fb346751c
Merge pull request #4724 from mnin/master
...
[Netfilter] Fix creating endless SNAT rules for ipv4
2022-10-06 12:18:23 +02:00
FreddleSpl0it
10e560c5b2
fix set rspamd worker password
2022-10-01 15:56:45 +02:00
DerLinkman
8c80cecdfb
Merge remote-tracking branch 'origin/staging' into nightly
2022-09-27 21:41:21 +02:00
Niklas Meyer
8e0b1d8aee
Merge pull request #4703 from devops-ansible/master
...
Improve send-as behaviour
2022-09-27 15:39:53 +02:00
Peter
852bf750ca
Use utf8mb4 charset and utf8mb4_general_ci collation
2022-09-19 19:29:55 +02:00