Commit Graph

829 Commits

Author SHA1 Message Date
Michael Kuron
e178ca36de Rspamd user settings: make regexes case-insensitive
This is necessary because the user web UI normalizes to lowercase
2017-08-27 14:19:28 +02:00
andryyy
66ae588445 [Web] Started work on ACL, fix notifications 2017-08-18 22:18:14 +02:00
andryyy
e47feeffd6 [Rspamd] Add custom directory for own files 2017-08-18 22:17:01 +02:00
andryyy
7a2c0f2ee7 [Acme] Skip backup mx domains 2017-08-18 09:57:25 +02:00
andryyy
e5faee9037 [Nginx] Disable client_max_body_size 2017-08-09 10:17:32 +02:00
André Peters
92eefc1288 Merge pull request #486 from mkuron/patch-1
Disable ClamAV phishing filter
2017-08-02 15:54:16 +02:00
Michael Kuron
dec64eef32 Disable ClamAV phishing filter
ClamAV has a phishing filter built in, but it generates too many false positives. We can disable it without risk because rspamd also checks for phishing itself.
2017-08-02 14:42:53 +02:00
andryyy
2eed7c05a1 [Dovecot] Push version, fix cronjob (fixes #310) 2017-08-01 14:02:00 +02:00
andryyy
d85352fa9a [Dovecot] Use listescape 2017-07-31 12:41:18 +02:00
andryyy
c7484434dd [Dovecot] Remove master.pid if not running; Check for active imapsync besides lock file; Reconnect MySQL connection in imapsync_cron.pl 2017-07-31 08:19:02 +02:00
andryyy
10b2ae09b9 [Web] Remove dev file 2017-07-30 21:40:40 +02:00
andryyy
aabcf65c69 [Nginx] Set server_names_hash_bucket_size 64 2017-07-30 21:39:35 +02:00
andryyy
66e06a0c0c [Web] Sync jobs can be created/viewed/edited by admins/domain admins; Various fixes or improvements 2017-07-29 10:32:17 +02:00
andryyy
9be3aa3334 [Rspamd] Disable monitored 2017-07-27 09:03:44 +02:00
andryyy
3bd7383bca [Web] Add relay host testing tool 2017-07-26 23:11:43 +02:00
andryyy
b4892f043f [Web] Edit relayhost 2017-07-26 23:11:08 +02:00
andryyy
45ef561ac0 [Web] Add default rcpt for relay testing tool to variables 2017-07-26 23:10:18 +02:00
andryyy
9bce8f0501 [Web] Fix session timeout 2017-07-26 23:09:50 +02:00
andryyy
5a49748dd5 [Web] Add graphs and stats to JSON api 2017-07-26 23:09:15 +02:00
andryyy
379933a333 [Web] Added PHPMailer for relayhost testing tool 2017-07-26 23:07:46 +02:00
andryyy
33bf9f5c5d [Rspamd] Push image version 1.5, Rspamd 1.6.3 2017-07-26 23:07:01 +02:00
andryyy
8da02378b1 [Rspamd] Use Nginx IP in settings map 2017-07-26 23:04:49 +02:00
andryyy
03c614f749 [Postfix] Use Nginx IP in whitelist_forwardinghosts.sh 2017-07-26 23:04:27 +02:00
andryyy
b629089ff8 [SOGo] Rename reconf-domains to bootstrap-sogo and exec sogod after a successful bootstrap; Wait for SOGo to die and free listener 2017-07-24 23:25:04 +02:00
andryyy
5d5646df0c [Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code 2017-07-24 22:53:23 +02:00
André Peters
0a6eef83bd Merge pull request #449 from mkuron/autoconfig
Autoconfig/Autodiscover unification
2017-07-24 12:58:53 +02:00
André Peters
1b719a8668 Update autoconfig.php 2017-07-24 12:37:02 +02:00
André Peters
27c169dbe1 Update mobileconfig.php 2017-07-24 12:35:56 +02:00
André Peters
bfa2e83803 Add more help text, remove obsolete variable 2017-07-24 12:35:04 +02:00
André Peters
b295bedf53 Update autoconfig.php 2017-07-24 12:28:48 +02:00
Phoenix Eve Aspacio
e26563d51e Enable Fail2ban in Autodiscover 2017-07-23 21:27:18 +08:00
Michael Kuron
53d44ed18d Merge branch 'dev' into autoconfig 2017-07-23 10:12:03 +02:00
andryyy
83d485dd94 [Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication) 2017-07-22 20:39:54 +02:00
Michael Kuron
8fcaf407e6 Client configuration link 2017-07-22 12:37:39 +02:00
andryyy
ed33cb5f57 [Rspamd] ARC: Disallow login/domain mismatch 2017-07-21 11:03:35 +02:00
andryyy
f4db3a7a00 [Web] Allow multiple sync jobs with same username, fixes #464 2017-07-17 22:36:34 +02:00
andryyy
84ad579437 [Web] Initial ratelimit support, more API actions 2017-07-16 11:03:28 +02:00
andryyy
256c9d86dd [Rspamd] Initial custom ratelimit support 2017-07-13 12:55:14 +02:00
andryyy
5f5872f78b [Rspamd] Initial custom ratelimit support 2017-07-13 12:54:53 +02:00
andryyy
e6727b1fd6 [ACME] Iterate alias domains, use hostname in subject field 2017-07-13 12:51:52 +02:00
andryyy
9e92c4a2ad [Dovecot] Do not keep persistent logs in a container 2017-07-11 17:09:31 +02:00
andryyy
f8ae5158cb [Postfix] Do not keep persistent logs in a container 2017-07-11 17:09:20 +02:00
andryyy
a31819fd6c [SOGo] Log to a pipe to not keep logs in a container 2017-07-11 17:08:06 +02:00
andryyy
08b99c8d74 [Dovecot] Add doveadm service 2017-07-10 21:30:45 +02:00
Michael Kuron
5abeb313ba Autoconfig harmonization
- use $autodiscover_config everywhere
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
- iOS mobileconfig generator
2017-07-10 20:52:51 +02:00
andryyy
c5d90b821a [Dovecot] Add extra.conf include to override Dovecot configuration changes 2017-07-10 09:19:12 +02:00
André Peters
f37405d9fd Merge pull request #446 from mailcow/revert-444-dns
Revert "DNS diagnostics page"
2017-07-10 08:46:32 +02:00
André Peters
beec3d47f7 Revert "Client configuration guides" 2017-07-10 08:46:20 +02:00
André Peters
4c1537c1c2 Revert "DNS diagnostics page" 2017-07-10 08:45:59 +02:00
André Peters
c5acdd70fb Merge pull request #427 from mkuron/clientconfig2
Client configuration guides
2017-07-10 08:03:28 +02:00
André Peters
b1dddd08e6 Merge pull request #444 from mkuron/dns
DNS diagnostics page
2017-07-10 07:53:29 +02:00
andryyy
51660589d4 [Rspamd] Push version 1.3 2017-07-09 22:28:36 +02:00
Michael Kuron
c1a1f98ee5 DNS diagnostics page 2017-07-09 10:01:27 +02:00
andryyy
fa2af1b286 [Web] Allow more bytes in concat queries, fixes #435 2017-07-06 17:34:51 +02:00
andryyy
a324b1a385 [Rspamd] Fix DKIM siging (base64 hash line folding) 2017-07-06 15:57:33 +02:00
Michael Kuron
8946d69274 Fix merge conflict 2017-07-05 20:11:07 +02:00
andryyy
69da02c144 [Dovecot] Important fix for Pigeonhole (downgrade) 2017-07-05 19:13:07 +02:00
andryyy
7f47af1d60 Fix destination hash 2017-07-05 12:31:52 +02:00
andryyy
87cc5f54ff [Postfix] Fix redis log destination hash 2017-07-05 12:03:12 +02:00
andryyy
2fadfee61a [SOGo] Remove thunderbird plugin generation, will move to docs 2017-07-05 10:22:48 +02:00
andryyy
de14d30e6b [ACME] Fix exit command (was using echo), fix for duplicate SAN (filter) 2017-07-04 21:32:58 +02:00
Michael Kuron
b88190988e Autodiscover: Strip bind addresses off of port environment variables 2017-07-04 19:58:30 +02:00
andryyy
dc463c3dda [Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver. 2017-07-04 18:08:20 +02:00
andryyy
ed11e7586e [Clamd] Add SKIP_CLAMD variable to disable Clamd start 2017-07-04 18:05:44 +02:00
andryyy
a2f1c09a84 [Web] Style changes to DKIM import section, push login errors to Redis channel 2017-07-04 18:05:04 +02:00
andryyy
ace247b3b9 [ACME] Unset name arrays before reusing them 2017-07-03 10:20:09 +02:00
andryyy
d4311a806b Fix Rspamd logs date 2017-07-03 08:10:11 +02:00
andryyy
2cf9f71613 [ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME 2017-07-02 20:18:22 +02:00
Michael Kuron
96ed94dedd Client configuration guides
- iOS mobileconfig generator
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
2017-07-02 16:29:42 +02:00
andryyy
56a652fbf3 [Rspamd] Set error_reporting to 0 2017-07-02 11:25:14 +02:00
andryyy
cf902854d7 Merge, conflict fixed 2017-07-02 11:22:35 +02:00
andryyy
b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy
afc8c93c07 [Rspamd] Cleanup settings map 2017-07-01 23:14:27 +02:00
andryyy
60ce236738 [Web] Language strings for DKIM import tool 2017-07-01 23:12:14 +02:00
andryyy
744784cb62 [UI] Initial: Import private keys for DKIM/ARC 2017-06-30 21:50:21 +02:00
andryyy
ae5ce6568d [Dovecot] Dovecot 2.2.31, Pigeonhole 0.4.19 2017-06-30 20:30:30 +02:00
andryyy
5ab11c0c1e [ACME] Show err instead of empty var when IP lookup failed 2017-06-30 20:29:55 +02:00
andryyy
d2048ccf20 [ACME] Be more verbose about IP address 2017-06-29 21:22:01 +02:00
andryyy
a6b60aebb8 [Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match 2017-06-29 11:30:14 +02:00
andryyy
372da9b557 [Web] Move Fail2ban function, add lang strings 2017-06-29 10:30:25 +02:00
andryyy
6c64ffbd49 [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:29:56 +02:00
andryyy
9040d456ed [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:25:32 +02:00
andryyy
3d652dd3d0 Added more checks for acme-mailcow 2017-06-29 00:56:51 +02:00
andryyy
6d8438c01c - More checks for acme-mailcow (verify hashes)
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy
234baf1cb9 Readd 2017-06-28 18:59:15 +02:00
andryyy
aa5b03dd99 Merge branch 'dev'
Conflicts:
	data/web/autodiscover.php
2017-06-28 18:57:22 +02:00
andryyy
b0584c3622 Use , as IFS for additional san 2017-06-28 10:50:51 +02:00
andryyy
f7bce8b81a Copy dhparams if not found 2017-06-27 20:15:53 +02:00
andryyy
e9ea0712f2 Add SKIP_FAIL2BAN var 2017-06-27 10:26:48 +02:00
andryyy
433e0c8f9a Allow /0 to whitelist all, push f2b version in yml 2017-06-27 09:32:57 +02:00
andryyy
a6677983af Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-26 23:18:15 +02:00
andryyy
b9ffcf2bf8 Add whitelist function to Fail2ban 2017-06-26 23:18:05 +02:00
andryyy
6cd44b4136 Remove old code 2017-06-26 23:17:46 +02:00
Phoenix Eve Aspacio
0488c9a250 Update edit.css 2017-06-26 07:34:41 +08:00
Phoenix Eve Aspacio
38c74e5e24 Update mailbox.css 2017-06-26 07:34:21 +08:00
Phoenix Eve Aspacio
d4f4c0f0c9 Update user.css 2017-06-26 07:33:53 +08:00
Phoenix Eve Aspacio
a08ad04708 Update admin.css 2017-06-26 07:33:33 +08:00
Phoenix Eve Aspacio
48557a4de9 Update admin.css 2017-06-26 07:23:48 +08:00
Phoenix Eve Aspacio
c4f25b7dde Update mailbox.css 2017-06-26 07:23:17 +08:00
Phoenix Eve Aspacio
877bc74dbe Update user.css 2017-06-26 07:22:58 +08:00
Phoenix Eve Aspacio
2d7224e869 Update edit.css 2017-06-26 07:22:41 +08:00
andryyy
4f93bfd04f Initial commit: Set fail2ban parameters in UI 2017-06-25 21:33:26 +02:00
andryyy
468b74c860 Changes to syntax 2017-06-25 20:17:31 +02:00
andryyy
170e030dd6 Configure autodiscover in vars.inc.php 2017-06-25 18:10:29 +02:00
andryyy
b6bc1eaf0a Fix autodiscover, pass ports to phpfpm-mailcow for further features and autodiscover 2017-06-25 18:09:42 +02:00
Michael Kuron
18386125b6 Fix EAS autodiscover for certain Outlook variants 2017-06-25 14:19:44 +02:00
andryyy
cbb4f51a9d Fix Junk-E-Mail folder name 2017-06-25 11:32:21 +02:00
andryyy
8590cc577b Move folder names to match image names 2017-06-25 00:21:24 +02:00
andryyy
3be99d7f89 Set IPv6 network as secure_ip range in Rspamd 2017-06-24 22:07:26 +02:00
andryyy
47eb11338c Push fail2ban version to 1.2 2017-06-24 20:06:23 +02:00
andryyy
c4c1bdf477 Add a retry window for fail2ban-mailcow, add priority to logging, added window time to logging string" 2017-06-24 20:04:12 +02:00
andryyy
a2f8f5c908 Fix id 2017-06-24 10:32:24 +02:00
andryyy
1bf8cc13ba Fixes #398 2017-06-24 10:32:10 +02:00
andryyy
c75ce5124c Fixes: First line was missing in logs. Adds support for Fail2ban container 2017-06-24 00:07:53 +02:00
andryyy
b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy
112e056fda Add function to generate 3 1 1 TLSA digest 2017-06-23 14:23:12 +02:00
andryyy
2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy
59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
andryyy
18e52ab27d More debug output, keep key for TLSA 3 1 1, other minor changes 2017-06-23 08:33:07 +02:00
andryyy
85a9239ae9 Move account key 2017-06-22 21:44:10 +02:00
andryyy
0c07ff59c3 Fix skip le test... 2017-06-22 21:31:14 +02:00
Michael Kuron
1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy
4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy
856b05147c Skip LE with configuration parameter 2017-06-22 09:06:24 +02:00
andryyy
cbfe5e879e Fix error when adding alias with multiple alias addresses 2017-06-21 23:27:01 +02:00
NuVivo314
601f3b6947 Change select Priority
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy
578011c78c Move milter config, increase timeout for DNS 2017-06-21 10:18:52 +02:00
andryyy
05fc733091 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-20 20:07:30 +02:00
andryyy
c82c9524b0 Delete certificate if SANs were removed 2017-06-20 20:06:54 +02:00
andryyy
428140d34f Version update 2017-06-20 20:06:35 +02:00
andryyy
0e501acd7d Base on stretch 2017-06-20 20:06:24 +02:00
Michael Kuron
987d83e104 Make Thunderbird plugin download more resilient
- use specific GitHub API version
- use only-matching grep
- remove hard-coded version number
- use Mozilla Addons API
2017-06-19 20:48:56 +02:00
André Peters
beac3035f6 Merge pull request #372 from lazyfrosch/sync-password
data/web: Update syncjob password input to type password
2017-06-19 17:12:49 +02:00
Markus Frosch
4be67ccd64 dovecot/imapsync_cron: Use passfiles to hide passwords from ps 2017-06-19 11:43:07 +02:00
Markus Frosch
0f8bf53d9c data/web: Update syncjob password input to type password
So the password is not readable in clear text.
2017-06-19 11:22:19 +02:00
andryyy
036c51f053 Prefere ipv4 to fix problems on v4-only envs 2017-06-19 10:39:14 +02:00
andryyy
68d455e154 Just start reconf-sogo to also trigger SOGos restart after a successful reconfiguration 2017-06-19 10:30:11 +02:00
andryyy
fbf33e475a SOGo will be started after reconf script to prevent race conditions 2017-06-19 10:19:16 +02:00
andryyy
624e52e198 mysqladmin uses ping on static IPv4, supervisor does no more autostart SOGo 2017-06-19 10:18:53 +02:00
andryyy
5efe0b9a88 Ignore tar.gz 2017-06-19 10:17:37 +02:00
andryyy
10d83017e1 Declare correct arrays 2017-06-19 08:59:47 +02:00
André Peters
2d59e61c6b Merge pull request #370 from mkuron/patch-2
Autodiscovery for eM Client and Outlook 2007/2010
2017-06-19 08:54:59 +02:00
andryyy
2a845a0d21 Less verbose 2017-06-18 20:57:54 +02:00
andryyy
9117c499ef Do not break DNS replies.... 2017-06-18 20:57:26 +02:00
andryyy
6fa19a37d8 Unbound changes 2017-06-18 20:23:26 +02:00
Michael Kuron
08506f7c81 Autodiscovery: send display name to IMAP client 2017-06-18 16:07:56 +02:00
Michael Kuron
4a379d0540 Satisfy Microsoft Remote Connectivity Analyzer 2017-06-18 16:04:13 +02:00
Michael Kuron
b34d650f97 Autodiscovery for arbitrary clients. EAS only for Outlook 2013+
Mobile and Desktop clients can be differentiated based on the response scheme they request. Mobile clients and Outlook 2013+ get EAS, others get IMAP
2017-06-18 13:09:28 +02:00
Michael Kuron
646957efee Autodiscovery for eM Client
It can be identified by its lack of user agent header. Through additional Protocol tags, it can also have CalDAV and CardDAV configured.
2017-06-18 12:11:02 +02:00
andryyy
44c4074773 Add err priority to danger class 2017-06-17 20:57:23 +02:00