2017-04-03 20:06:49 +02:00
|
|
|
FROM debian:stretch-slim
|
2017-05-13 15:33:32 +02:00
|
|
|
LABEL maintainer "Andre Peters <andre.peters@servercow.de>"
|
2017-03-02 11:23:23 +01:00
|
|
|
|
2017-05-13 16:29:18 +02:00
|
|
|
ARG DEBIAN_FRONTEND=noninteractive
|
2017-03-02 11:23:23 +01:00
|
|
|
ENV LC_ALL C
|
2018-11-26 09:44:41 +01:00
|
|
|
ENV DOVECOT_VERSION 2.3.4
|
|
|
|
ENV PIGEONHOLE_VERSION 0.5.4
|
2018-01-14 10:44:06 +01:00
|
|
|
|
2018-01-08 22:00:54 +01:00
|
|
|
RUN apt-get update && apt-get -y --no-install-recommends install \
|
2018-01-14 10:44:06 +01:00
|
|
|
automake \
|
|
|
|
autotools-dev \
|
|
|
|
build-essential \
|
|
|
|
ca-certificates \
|
|
|
|
cpanminus \
|
|
|
|
curl \
|
|
|
|
default-libmysqlclient-dev \
|
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
|
|
|
dnsutils \
|
2018-11-26 09:11:22 +01:00
|
|
|
gettext \
|
2018-11-12 09:49:23 +01:00
|
|
|
jq \
|
2017-12-17 17:45:05 +01:00
|
|
|
libjson-webtoken-perl \
|
|
|
|
libcgi-pm-perl \
|
|
|
|
libcrypt-openssl-rsa-perl \
|
|
|
|
libdata-uniqid-perl \
|
|
|
|
libhtml-parser-perl \
|
|
|
|
libmail-imapclient-perl \
|
|
|
|
libparse-recdescent-perl \
|
|
|
|
libsys-meminfo-perl \
|
|
|
|
libtest-mockobject-perl \
|
|
|
|
libwww-perl \
|
2018-01-14 10:44:06 +01:00
|
|
|
libauthen-ntlm-perl \
|
|
|
|
libbz2-dev \
|
|
|
|
libcrypt-ssleay-perl \
|
2018-04-26 12:36:13 +02:00
|
|
|
libcurl4-openssl-dev \
|
2018-01-14 10:44:06 +01:00
|
|
|
libdbd-mysql-perl \
|
|
|
|
libdbi-perl \
|
|
|
|
libdigest-hmac-perl \
|
2018-04-26 12:36:13 +02:00
|
|
|
libexpat1-dev \
|
2018-01-14 10:44:06 +01:00
|
|
|
libfile-copy-recursive-perl \
|
|
|
|
libio-compress-perl \
|
|
|
|
libio-socket-inet6-perl \
|
|
|
|
libio-socket-ssl-perl \
|
|
|
|
libio-tee-perl \
|
|
|
|
libipc-run-perl \
|
2018-11-26 09:11:22 +01:00
|
|
|
libldap2-dev \
|
2018-01-14 10:44:06 +01:00
|
|
|
liblockfile-simple-perl \
|
|
|
|
liblz-dev \
|
|
|
|
liblz4-dev \
|
|
|
|
liblzma-dev \
|
|
|
|
libmodule-scandeps-perl \
|
|
|
|
libnet-ssleay-perl \
|
|
|
|
libpam-dev \
|
|
|
|
libpar-packer-perl \
|
|
|
|
libreadonly-perl \
|
|
|
|
libssl-dev \
|
|
|
|
libterm-readkey-perl \
|
|
|
|
libtest-pod-perl \
|
|
|
|
libtest-simple-perl \
|
2018-07-27 22:19:14 +02:00
|
|
|
libtry-tiny-perl \
|
2018-01-14 10:44:06 +01:00
|
|
|
libunicode-string-perl \
|
2017-11-03 20:25:38 +01:00
|
|
|
libproc-processtable-perl \
|
2018-08-02 12:14:13 +02:00
|
|
|
libtest-nowarnings-perl \
|
|
|
|
libtest-deep-perl \
|
|
|
|
libtest-warn-perl \
|
|
|
|
libregexp-common-perl \
|
2018-01-14 10:44:06 +01:00
|
|
|
liburi-perl \
|
|
|
|
lzma-dev \
|
|
|
|
make \
|
2018-06-03 19:22:44 +02:00
|
|
|
mysql-client \
|
2017-11-03 20:25:38 +01:00
|
|
|
procps \
|
2018-01-14 10:44:06 +01:00
|
|
|
supervisor \
|
2018-01-08 22:00:54 +01:00
|
|
|
cron \
|
2018-08-02 12:14:13 +02:00
|
|
|
redis-server \
|
2018-01-14 10:44:06 +01:00
|
|
|
syslog-ng \
|
|
|
|
syslog-ng-core \
|
|
|
|
syslog-ng-mod-redis \
|
|
|
|
&& rm -rf /var/lib/apt/lists/*
|
2017-03-02 11:23:23 +01:00
|
|
|
|
2018-04-26 12:36:13 +02:00
|
|
|
RUN curl https://www.dovecot.org/releases/2.3/dovecot-$DOVECOT_VERSION.tar.gz | tar xvz \
|
2018-01-14 10:44:06 +01:00
|
|
|
&& cd dovecot-$DOVECOT_VERSION \
|
2018-11-26 09:11:22 +01:00
|
|
|
&& ./configure --with-solr --with-mysql --with-ldap --with-lzma --with-lz4 --with-ssl=openssl --with-notify=inotify --with-storages=mdbox,sdbox,maildir,mbox,imapc,pop3c --with-bzlib --with-zlib --enable-hardening \
|
2018-01-14 10:44:06 +01:00
|
|
|
&& make -j3 \
|
|
|
|
&& make install \
|
|
|
|
&& make clean \
|
|
|
|
&& cd .. && rm -rf dovecot-$DOVECOT_VERSION \
|
2018-04-26 12:36:13 +02:00
|
|
|
&& curl https://pigeonhole.dovecot.org/releases/2.3/dovecot-2.3-pigeonhole-$PIGEONHOLE_VERSION.tar.gz | tar xvz \
|
|
|
|
&& cd dovecot-2.3-pigeonhole-$PIGEONHOLE_VERSION \
|
2018-01-14 10:44:06 +01:00
|
|
|
&& ./configure \
|
|
|
|
&& make -j3 \
|
|
|
|
&& make install \
|
|
|
|
&& make clean \
|
|
|
|
&& cd .. \
|
2018-04-26 12:36:13 +02:00
|
|
|
&& rm -rf dovecot-2.3-pigeonhole-$PIGEONHOLE_VERSION
|
2017-04-03 20:06:49 +02:00
|
|
|
|
2017-03-02 11:23:23 +01:00
|
|
|
RUN cpanm Data::Uniqid Mail::IMAPClient String::Util
|
2019-01-18 18:25:43 +01:00
|
|
|
RUN echo '* * * * * root /usr/local/bin/imapsync_cron.pl 2>&1 | /usr/bin/logger' > /etc/cron.d/imapsync
|
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
|
|
|
RUN echo '30 3 * * * vmail /usr/local/bin/doveadm quota recalc -A' > /etc/cron.d/dovecot-sync
|
2018-11-12 09:49:23 +01:00
|
|
|
RUN echo '* * * * * vmail /usr/local/bin/trim_logs.sh >> /dev/console 2>&1' > /etc/cron.d/trim_logs
|
|
|
|
RUN echo '25 * * * * vmail /usr/local/bin/maildir_gc.sh >> /dev/console 2>&1' > /etc/cron.d/maildir_gc
|
|
|
|
RUN echo '30 1 * * * root /usr/local/bin/sa-rules.sh >> /dev/console 2>&1' > /etc/cron.d/sa-rules
|
2019-01-16 10:50:34 +01:00
|
|
|
RUN echo '0 2 * * * root /usr/bin/curl http://solr:8983/solr/dovecot/update?optimize=true >> /dev/console 2>&1' > /etc/cron.d/solr-optimize
|
2018-08-02 12:14:13 +02:00
|
|
|
COPY trim_logs.sh /usr/local/bin/trim_logs.sh
|
2017-05-06 23:42:18 +02:00
|
|
|
COPY syslog-ng.conf /etc/syslog-ng/syslog-ng.conf
|
|
|
|
COPY imapsync /usr/local/bin/imapsync
|
|
|
|
COPY postlogin.sh /usr/local/bin/postlogin.sh
|
|
|
|
COPY imapsync_cron.pl /usr/local/bin/imapsync_cron.pl
|
|
|
|
COPY report-spam.sieve /usr/local/lib/dovecot/sieve/report-spam.sieve
|
|
|
|
COPY report-ham.sieve /usr/local/lib/dovecot/sieve/report-ham.sieve
|
|
|
|
COPY rspamd-pipe-ham /usr/local/lib/dovecot/sieve/rspamd-pipe-ham
|
|
|
|
COPY rspamd-pipe-spam /usr/local/lib/dovecot/sieve/rspamd-pipe-spam
|
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
|
|
|
COPY sa-rules.sh /usr/local/bin/sa-rules.sh
|
|
|
|
COPY maildir_gc.sh /usr/local/bin/maildir_gc.sh
|
2017-05-06 23:42:18 +02:00
|
|
|
COPY docker-entrypoint.sh /
|
|
|
|
COPY supervisord.conf /etc/supervisor/supervisord.conf
|
2018-10-25 22:35:07 +02:00
|
|
|
COPY stop-supervisor.sh /usr/local/sbin/stop-supervisor.sh
|
2017-03-02 11:23:23 +01:00
|
|
|
|
2017-04-03 20:06:49 +02:00
|
|
|
RUN chmod +x /usr/local/lib/dovecot/sieve/rspamd-pipe-ham \
|
2018-01-14 10:44:06 +01:00
|
|
|
/usr/local/lib/dovecot/sieve/rspamd-pipe-spam \
|
|
|
|
/usr/local/bin/imapsync_cron.pl \
|
|
|
|
/usr/local/bin/postlogin.sh \
|
2018-08-02 12:14:13 +02:00
|
|
|
/usr/local/bin/imapsync \
|
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
|
|
|
/usr/local/bin/trim_logs.sh \
|
|
|
|
/usr/local/bin/sa-rules.sh \
|
2018-10-25 22:35:07 +02:00
|
|
|
/usr/local/bin/maildir_gc.sh \
|
|
|
|
/usr/local/sbin/stop-supervisor.sh
|
2017-03-02 11:23:23 +01:00
|
|
|
|
2017-04-03 20:06:49 +02:00
|
|
|
RUN groupadd -g 5000 vmail \
|
2018-01-14 10:44:06 +01:00
|
|
|
&& groupadd -g 401 dovecot \
|
|
|
|
&& groupadd -g 402 dovenull \
|
|
|
|
&& useradd -g vmail -u 5000 vmail -d /var/vmail \
|
|
|
|
&& useradd -c "Dovecot unprivileged user" -d /dev/null -u 401 -g dovecot -s /bin/false dovecot \
|
|
|
|
&& useradd -c "Dovecot login user" -d /dev/null -u 402 -g dovenull -s /bin/false dovenull
|
2017-03-02 11:23:23 +01:00
|
|
|
|
2017-05-06 23:42:18 +02:00
|
|
|
RUN touch /etc/default/locale
|
2018-07-11 19:07:26 +02:00
|
|
|
RUN apt-get purge -y build-essential automake autotools-dev default-libmysqlclient-dev libbz2-dev libcurl4-openssl-dev libexpat1-dev liblz-dev liblz4-dev liblzma-dev libpam-dev libssl-dev lzma-dev \
|
2018-01-14 10:44:06 +01:00
|
|
|
&& apt-get autoremove --purge -y
|
2017-05-06 23:42:18 +02:00
|
|
|
|
2017-03-02 11:23:23 +01:00
|
|
|
ENTRYPOINT ["/docker-entrypoint.sh"]
|
|
|
|
CMD exec /usr/bin/supervisord -c /etc/supervisor/supervisord.conf
|
|
|
|
|
2017-05-13 15:52:16 +02:00
|
|
|
RUN rm -rf \
|
2018-01-14 10:44:06 +01:00
|
|
|
/tmp/* \
|
|
|
|
/var/tmp/*
|
|
|
|
|