Timo N
5fe9de0500
[API] Removed api_blueprint docs and use swagger ( #3595 )
...
* [NGINX] Removed api docs location
* [WEB] Removed api_blueprint api docs
* [WEB] Added openapi/swagger api viewer
* [WEB] Added openapi.yaml with api docs
* [WEB] Added request body for create app password endpoint
* [Web] Updated types in openapi.yaml
* [Web] Only define API docs auth header once
* [Web] Added 401 api response to docs
2020-06-07 20:46:17 +02:00
andryyy
75f4b77bc2
[Postfix] Remove smtpd_tls_CAfile, fixes #3589
2020-06-04 16:23:41 +02:00
andryyy
115c6540e2
[Rspamd] Consistent LOCAL_CONFDIR
2020-06-03 08:34:24 +02:00
andryyy
702f221a2d
[Rspamd] More bulk headers
2020-06-01 09:55:45 +02:00
andryyy
b208037b49
[Rspamd] Do not exclude fwd hosts from dmarc checks
2020-05-23 20:32:56 +02:00
andryyy
4881f617a5
[Rspamd] Changes to WHITELISTED_FWD_HOST composite handling
2020-05-23 12:20:57 +02:00
andryyy
615ef47f27
[Rspamd] More excludes for fwd hosts, minor fix to FORGED_W_BAD_POLICY
2020-05-23 11:16:33 +02:00
andryyy
6a95d217b4
[Postfix] Remove obsolete comment
2020-05-21 21:55:43 +02:00
Dmitriy Alekseev
d5ed0c0368
Update anonymize_headers.pcre ( #3563 )
...
Added anonymization for Sieve and changed regex for Rspamd to look same as new Sieve regex
2020-05-21 20:04:03 +02:00
Igor Scheller
16b2a2c055
[Postfix] Set smtp_address_preference to any ( #3561 )
...
Closes https://github.com/mailcow/mailcow-dockerized/issues/3560
2020-05-21 19:28:35 +02:00
andryyy
8260fb5baf
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-05-20 12:20:42 +02:00
andryyy
347e65736e
[Rspamd] IP WL is no more a prefilter to prevent unsigned mail
2020-05-20 12:15:33 +02:00
Dmitriy Alekseev
4b22bd1dea
Update anonymize_headers.pcre ( #3553 )
...
* Update anonymize_headers.pcre
Change Received by for Rspamd with Dmarc Reporting module enabled.
* Update anonymize_headers.pcre
Co-authored-by: André Peters <andre.peters@debinux.de>
2020-05-20 11:51:00 +02:00
Florian Lindner
4519f460b4
Remove obsolete setting smtpd_use_tls. ( #3548 )
...
See http://www.postfix.org/postconf.5.html#smtpd_use_tls . It is
controlled by smtpd_tls_security_level, which is set to may.
Co-authored-by: Florian Lindner <florian.lindner@ipvs.uni-stuttgart.de>
2020-05-18 14:22:21 +02:00
andryyy
ed49ea7b41
[PHP-FPM] Increase timeouts
2020-05-12 18:29:54 +02:00
andryyy
857fa0314b
[Rspamd] Further increase bounce rl
2020-05-08 14:01:16 +02:00
andryyy
b5c59046ed
[Rspamd] Score spoofed senders higher
2020-05-06 20:15:18 +02:00
andryyy
84d205d728
[Nginx] Drop X-Powered-By via fastcgi_hide_header
2020-05-06 20:14:34 +02:00
Aaron
1f00887f91
Fix inconsistent spacing in dovecot/dovecot.conf and postfix/main.cf ( #3511 )
...
* Fix inconsistent spacing in dovecot.conf
* Fix inconsistent spacing in main.cf
2020-04-30 18:22:21 +02:00
andryyy
bba9adaa6e
[Rspamd] Set bounce RL to 20 / 1h ; Fix BAZAR (test)
2020-04-29 21:08:33 +02:00
andryyy
e7a5c98704
[Rspamd] Disable upstream checks for SIEVE_HOST
2020-04-27 20:48:12 +02:00
andryyy
d392257289
[Web] Some changes
...
[SOGo] Allow to not spawn SOGo but an idling shell
[Rspamd] Remove X-CSA-Complaints from bulk headers...
2020-04-27 20:47:28 +02:00
Lukáš Matula
ca48bc9c34
[Web] Update slovak translation ( #3491 )
...
Update lang.sk.json + sorting in dovecot
2020-04-18 22:26:09 +02:00
andryyy
35d3586950
[Rspamd] Pushover: Fixes
2020-04-16 22:29:01 +02:00
andryyy
47a15c21aa
[Rspamd] Pushover, check sender by regex
2020-04-16 21:58:30 +02:00
andryyy
6efe0d5aab
[Rspamd] Moore Pushover fixes
2020-04-16 15:42:10 +02:00
andryyy
fec0f688b1
[Rspamd] More Pushover fixes
2020-04-16 13:38:19 +02:00
andryyy
1be3ca3fb9
[Rspamd] Pushover fixes
2020-04-16 12:23:27 +02:00
andryyy
c67bb75071
[Rspamd] More pushover options
2020-04-16 11:32:53 +02:00
andryyy
5d37f2af4f
[Rspamd] Fix maps #2
2020-04-14 21:14:21 +02:00
andryyy
960fe1fdba
[Rspamd] Fix maps
2020-04-14 21:13:53 +02:00
andryyy
d883bb246b
[Rspamd] Increase bulk header score
2020-04-14 10:34:09 +02:00
andryyy
b25a842e5d
[Rspamd] Block more promio spam crap
2020-04-14 10:31:53 +02:00
andryyy
59a2ea0959
[Web, Dovecot] Show last IMAP and POP3 logins, toggle via vars.inc.php SHOW_LAST_LOGIN
2020-04-13 20:34:39 +02:00
andryyy
ce6d6a01f3
[Rspamd] Remove policy checks from SPOOFED_UNAUTH, since SPF can be valid in envelope from, while forging the header from field
2020-04-12 21:13:31 +02:00
andryyy
dc3eb44544
[Rspamd] Add more bulk headers
2020-04-12 13:07:51 +02:00
andryyy
f38be3a8b0
[Rspamd] Slightly reduce BAD REP POL score
2020-04-11 08:27:11 +02:00
andryyy
cb599db61e
[Rspamd] Fix quarantine and pushover notifications
2020-04-11 08:02:15 +02:00
andryyy
ccdb7fcd26
[Rspamd] Add metadata exporter for unauthed mail
2020-04-10 20:55:49 +02:00
andryyy
eeea1b393c
[Rspamd] Remove upstream spam check results from mail by fwd hosts
2020-04-10 20:54:26 +02:00
andryyy
65aa7b0a92
[Rspamd] Use empty-env-from@localhost as placeholder for empty env from senders in quarantine
2020-04-08 21:55:17 +02:00
andryyy
ef0b40085b
[Postfix] Allow to relay only non-local mailboxes
2020-04-03 20:39:53 +02:00
Michael Kuron
ca4c7c51dc
[rspamd] Restore add header forced action ( #3440 )
...
Revert 0474de88b1
. Fixed since c3a4c6d311
.
2020-03-31 19:21:03 +02:00
andryyy
e491b835e5
[Rspamd] And even more spam headers
2020-03-21 20:39:07 +01:00
andryyy
6a523fc497
[Rspamd] Moooore spam crap
2020-03-21 20:34:55 +01:00
andryyy
d460061e7a
[Rspamd] More spam headers
2020-03-21 20:19:58 +01:00
andryyy
b0ff2ddb50
[Rspamd] Add more bulk headers (feel free to contribute)
2020-03-21 20:13:44 +01:00
andryyy
0474de88b1
[Rspamd] Forced action add header seems to be broken atm, switching to rewrite subject until fixed
2020-03-10 07:20:18 +01:00
andryyy
1d0e8a9497
[Postfix] Remove default rcpt count limit
2020-03-09 13:26:52 +01:00
andryyy
537b7dad14
[Rspamd] Add fuzzy hashes to headers, if matched
2020-03-08 12:24:42 +01:00
andryyy
fc460fd806
[Rspamd] Reduce CSA crap to 2.0
2020-03-06 18:16:54 +01:00
andryyy
f532422726
[Rspamd, Web] Escape monitoring hosts, add regex maps to vars file
2020-03-06 08:38:01 +01:00
andryyy
bbd53d7f4f
[Rspamd] Add X-CSA to bulk headers
2020-03-06 08:33:00 +01:00
andryyy
d248bb660c
[Rspamd] Reduce Sorbs recent score
...
[Rspamd] Add annoying CSA to bulk symbols and score then with 3.2
[Rspamd] Update to 2.4
2020-03-06 07:14:06 +01:00
André Peters
c7d278384a
[Web] Add slovak language ( #3387 )
2020-03-05 07:22:44 +01:00
andryyy
c9f455a2b1
[Rspamd] Move monitoring hosts to monitoring_nolog.map file
2020-03-04 11:53:07 +01:00
Ry3nlNaToR
93965fdc30
Added mailflowmonitoring.com to no log Rspamd ( #3384 )
2020-03-04 06:08:54 +01:00
andryyy
580b700eec
[Rspamd] Quarantine: Set sender to null@localhost when sender is missing
2020-03-03 19:10:28 +01:00
andryyy
c1907063e1
[Dovecot] Remove auto subs
2020-02-27 10:44:57 +01:00
Victor Nyberg
998c9515a2
Swedish language translation for Mailcow ( #3366 )
2020-02-27 06:50:03 +01:00
andryyy
49d4f6f897
[Rspamd] Set fixed name for fuzzy store
2020-02-26 14:30:44 +01:00
andryyy
e1f165b9dc
[Rspamd] Add mailcow fuzzy hash store
2020-02-26 14:24:19 +01:00
andryyy
c785c8f700
[Dovecot] Show last mail (pop3, imap) login in web interface
2020-02-25 19:38:20 +01:00
andryyy
c9a4715dfc
[Rspamd] Disable 304 until SOGO_CONTACT triggers an update, needs rework
2020-02-25 11:14:59 +01:00
andryyy
09d15ee380
[ClamAV] Add specific db mirrors
2020-02-21 11:21:42 +01:00
andryyy
b9d7519ec2
[Postfix] Set empty HELO restrictions for quarantine smtpd
2020-02-21 08:53:23 +01:00
andryyy
a4e5400f67
[Nginx] Add proxy_send_timeout and proxy_read_timeout of 300 to /SOGo
2020-02-19 21:40:45 +01:00
andryyy
b5c844d704
[Postfix] IMPORTANT: Disabling TLS 1.0 and 1.1 for submission and smtps
2020-02-12 10:36:54 +01:00
andryyy
77d922c05a
[Dovecot] IMPORTANT: Disabling TLS 1.0 and 1.2 - welcome to 2020
2020-02-12 09:12:24 +01:00
andryyy
9d04d0ee4a
[Rspamd] Add X-Last-TLS-Session-Version header
2020-02-09 19:08:28 +01:00
andryyy
82c094c77c
[Postfix] Added custom_postscreen_whitelist.cidr for a custom Postscreen wl, fixes #3313
2020-02-06 08:28:05 +01:00
andryyy
8a3fc802c5
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-02-06 07:04:31 +01:00
andryyy
a71f8ed5af
[PHP-FPM] Do not use Redis for session handling
2020-02-05 11:04:34 +01:00
andryyy
ad55dd8f05
[Rspamd] Use redis master for RL operations in pipe_rl
2020-02-05 11:02:31 +01:00
andryyy
23cf8995df
[Dovecot] Set replicator options by default - unused, no support or docs as of today
2020-02-05 11:01:50 +01:00
Michael Kuron
3cdbe7b73c
Reduce Rspamd DNSBL false positives ( #3311 )
...
* rspamd: ignore Spamhaus XBL for Received headers
* rspamd: ignore SORBS RBL for forwarding hosts
* rspamd: ignore RBLs for forwarding hosts
2020-02-04 12:35:52 +01:00
André Peters
60fb5498ff
Update mime_types.conf
2020-02-04 12:06:20 +01:00
André Peters
96a507c927
Update mime_types.conf
2020-02-04 12:05:24 +01:00
andryyy
d83013667b
[Rspamd] Do not normalise domains to eSLD for ARC
2020-01-19 13:17:23 +01:00
andryyy
081602def9
[Postfix] Client rcpt rate limit set to 50
2020-01-18 16:32:41 +01:00
andryyy
57af5103c7
[Rspamd] Ratelimit for bounces reduced, max_rcpt for ratelimit increased
2020-01-18 16:32:27 +01:00
Michael Kuron
4c2e13009b
rspamd: More comprehensive attachment handling ( #3273 )
...
- block all Office documents with macros
- don’t just block all doc files
- mark some more Windows executable extensions as bad
2020-01-17 22:19:12 +01:00
andryyy
4e46d44e79
[Rspamd] Allow empty envfrom for system mails, add only Dovecot to sign_networks and sign by header when sign_networks fires.
...
ARC remains active for forwards. Result: fully signed and trusted forwards and signed rejects in sieve.
2020-01-12 12:21:21 +01:00
andryyy
791e0831ad
[Rspamd] Fix DKIM, fixes #3262
2020-01-12 11:39:53 +01:00
andryyy
5f73629493
[Rspamd] Set rspamd as trusted host, rspamd is not spoofing
2020-01-10 20:39:52 +01:00
andryyy
03cbed5002
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve)
2020-01-10 20:39:11 +01:00
andryyy
203dd12497
[Rspamd] Fix groups
2020-01-06 18:47:51 +01:00
andryyy
6d5677eb32
[Rspamd] Decrease weight of missed charset
2020-01-05 11:34:03 +01:00
andryyy
b098696b89
[Rspamd] Fix groups.conf syntax
2020-01-05 11:24:13 +01:00
andryyy
ad1f243667
[Postfix] Set CA path for smtpd
...
[Rspamd] Split deprecated metrics.conf to actions.conf and groups.conf
2020-01-05 11:21:04 +01:00
andryyy
9157993953
[Dovecot] Enable editheaders plugin in sieve for all users
2019-12-31 14:24:33 +01:00
andryyy
58a00cf7ea
[Web, Rspamd] Add bad language map, add map to mailcow UI
2019-12-22 18:57:28 +01:00
andryyy
5a0df09361
[Rspamd] Rate .doc with +10, decrease default bayes ham score
2019-12-20 15:44:58 +01:00
andryyy
57003a8215
[Postfix] Update Postscreen whitelist
2019-12-15 22:04:45 +01:00
andryyy
8c3ab0371a
[ClamAV] Copy productive whitelist.ign to exposed configuration folder, remove direct mount of whitelist file
2019-12-14 15:12:37 +01:00
andryyy
25c2bcc8b3
[ClamAV] Force add default whitelist.ign2
2019-12-14 15:04:09 +01:00
andryyy
6564944f7a
[Postfix] Add bl.suomispam.net
2019-12-06 16:15:04 +01:00
andryyy
309f90a9b3
[Dovecot] Change LUA path
2019-12-06 10:20:47 +01:00
andryyy
7e2aa42578
[IMPORTANT] If you run Ubuntu 16.04, upgrade your kernel to linux-generic-hwe-16.04
...
[ClamAV] Remove deprecated parameter
2019-12-05 14:29:04 +01:00
andryyy
afb43c9c5b
[Dovecot] Fix app passwds: allow multiple pass hashes by using LUA construct
2019-12-03 18:50:45 +01:00
andryyy
653c058e33
[Web] Feature: Allow app passwords for imap/smtp, allow to set acl permission for app passwords (domain admin [when logged in as user] and user)
2019-12-02 11:02:19 +01:00
andryyy
0e6dfdd0fe
[Nginx] Catch case-insensitive /sogo$ request and redirect to /SOGo
2019-12-02 10:55:17 +01:00
andryyy
7b4ed3bf64
[Rspamd] Lower map watch interval
2019-12-02 10:54:22 +01:00
andryyy
9257fa90d4
[Nginx] Fix 301 to SOGo
2019-11-28 19:14:23 +01:00
andryyy
ce15dda990
[Nginx] Redirect /S|sogo* to /SOGo
2019-11-28 15:08:11 +01:00
andryyy
8badb146e9
[Unbound] Disable ipsecmod
2019-11-26 21:08:47 +01:00
andryyy
d57e2b58c1
[Rspamd] Reduce ptr fail score
2019-11-24 16:09:59 +01:00
andryyy
19d0eedeba
[Rspamd] Add FORGED_W_BAD_POLICY
2019-11-24 16:08:58 +01:00
andryyy
eeda59e048
[Postfix] Add more service labels, thanks to @christianbur
2019-11-24 15:35:56 +01:00
andryyy
5d7e365592
[Postfix] Remove test var
2019-11-24 15:23:16 +01:00
andryyy
4a36eb014c
[Postfix] TLS protocols for submission and smtps can be overriden using extra.cf (submission_smtpd_tls_mandatory_protocols and smtps_smtpd_tls_mandatory_protocols), thanks to @christianbur
...
[Postfix] Show overriding warnings when starting Postfix, but hide them in syslog output
2019-11-24 14:18:27 +01:00
andryyy
79bcbe5a51
[MySQL] Some tweaks to lower RAM consumption, thanks to @Thomas2500
2019-11-21 19:41:50 +01:00
andryyy
e0535bedbb
[Rspamd] Set new last modified when changing Rspamd settings
2019-11-18 16:42:56 +01:00
andryyy
7a87c492ed
[Rspamd] Fix bad ASN map format
2019-11-18 13:26:16 +01:00
andryyy
d67e4e83c9
[Rspamd] Increase score for BAD_REP_POLICIES
2019-11-15 23:51:48 +01:00
andryyy
e439d52ff2
[SOGo] Minor config changes
2019-11-15 17:39:32 +01:00
andryyy
56ddc4bd26
[Rspamd] Add new default reject message
...
[Rspamd] Add Sorbs
2019-11-15 07:58:04 +01:00
andryyy
64f8ed2fbc
[Rspamd] Increase invalid PTR score
2019-11-14 10:17:58 +01:00
andryyy
2e972fb03b
[Rspamd, Postfix] Move PTR check to Postfix
2019-11-14 10:17:14 +01:00
andryyy
99326f81de
[Rspamd, Postfix] Move PTR check to Postfix
2019-11-14 10:16:51 +01:00
andryyy
c4656e00fd
[Postfix] Add hint for custom_transport.pcre
2019-11-12 20:50:21 +01:00
andryyy
e1fdbba0f7
[Postfix] Add custom_transport.pcre
2019-11-12 20:44:43 +01:00
andryyy
4ccad6b0c3
[MySQL] key_buffer_size it is
2019-11-11 23:20:01 +01:00
Michael Kuron
fbc7b7dce5
rspamd: Don't remove WHITELISTED_FWD_HOST if SOGO_CONTACT present ( #3084 )
2019-11-11 08:20:46 +01:00
andryyy
1d1a9a27c9
[MariaDB] Adjustments
2019-11-08 08:14:57 +01:00
andryyy
3235edea88
[MariaDB] Adjustments
2019-11-08 08:12:34 +01:00
andryyy
15f3a664cd
[MySQL] Disable query cache
2019-11-06 21:03:00 +01:00
andryyy
04ae2fadef
[MySQL] Reduce memory usage
2019-11-06 20:12:25 +01:00
andryyy
bcc28784f7
[Rspamd] CL is not a fishy tld
2019-11-02 12:02:49 +01:00
andryyy
7f8b13434d
[Rspamd, Dovecot] Do not use Schaal rules - probably too much for Rspamd 2.x to handle, mem leak?
2019-10-31 20:43:07 +01:00
andryyy
50020bf1f0
[Rspamd] Remove neural, other gbc options
2019-10-31 19:55:42 +01:00
andryyy
6655ada308
[Rspamd] Remove unwanted options after talking to Vsevo
2019-10-31 19:03:20 +01:00
andryyy
573e62f181
[MySQL] Allow more connections
2019-10-31 06:38:12 +01:00
andryyy
59d966ab0f
[MySQL] Reduce max-connections, disallow performance_schema
2019-10-30 21:08:59 +01:00
andryyy
df3d78f03b
[Rspamd] Reset logging
2019-10-30 20:18:21 +01:00
andryyy
27de9dbf92
[Rspamd] Slight changes to improve memory usage
...
[Web] Dirty hack to touch Rspamd maps a second time
2019-10-30 20:07:58 +01:00
andryyy
c0f39e5cac
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2019-10-29 18:36:53 +01:00
andryyy
a71f590b1e
[Rspamd] Remove score from neural
2019-10-29 18:36:49 +01:00
andryyy
8683e4bd9a
[Rspamd] Use last-modified headers to not read unmodified settings map every 30 seconds
2019-10-29 14:21:58 +01:00
Michael Kuron
c63967f7be
Rspamd: increase redis timeout
2019-10-26 13:00:31 +02:00
andryyy
be4099182b
[Rspamd] Do not log watchdog mails
2019-10-21 20:42:43 +02:00
André Peters
de8cfbde03
Merge pull request #3072 from tinect/deliverCSSandJSfiles
...
deliver CSS and JS as external request
2019-10-21 11:18:49 +02:00
andryyy
d5ee7de66a
[Rspamd] Disable info logging, re-enable silent logging, only apply MILTER_HEADERS symbol to watchdog Rspamd settings map
2019-10-20 21:48:30 +02:00
tinect
cc1bf5d426
deliver CSS and JS as external request
2019-10-20 21:25:58 +02:00
Marcel Hofer
f2b552c00d
Fix custom http redirects with TLS-SNI
...
Disable http listener for SNI ssl hosts in nginx. This allows the use of the following config again:
https://mailcow.github.io/mailcow-dockerized-docs/u_e-80_to_443/
However that documentation page should still be updated: https://github.com/mailcow/mailcow-dockerized-docs/pull/175/commits
2019-10-20 20:24:16 +02:00
Marcel Hofer
05e7c95829
[SSL] fix wildcard compare for non-bash shell
2019-10-20 17:02:54 +02:00
Marcel Hofer
dcd50b2245
[SSL] restore old nginx templates. fix possible issues with custom nginx sites
2019-10-20 16:41:53 +02:00
Marcel Hofer
84c5f43438
[SSL] re-add nginx site.conf
2019-10-19 12:49:23 +02:00
Marcel Hofer
2e35da6816
[SSL] create individual domain certificates, add SNI configs for Postfix/Dovecot/Nginx
2019-10-19 12:48:56 +02:00
andryyy
a606f60b54
[Nginx] Modify site to catch failed logins to /rspamd
2019-10-12 13:16:49 +02:00