Commit Graph

701 Commits

Author SHA1 Message Date
andryyy
b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy
112e056fda Add function to generate 3 1 1 TLSA digest 2017-06-23 14:23:12 +02:00
andryyy
2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy
59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
andryyy
18e52ab27d More debug output, keep key for TLSA 3 1 1, other minor changes 2017-06-23 08:33:07 +02:00
andryyy
85a9239ae9 Move account key 2017-06-22 21:44:10 +02:00
andryyy
0c07ff59c3 Fix skip le test... 2017-06-22 21:31:14 +02:00
Michael Kuron
1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy
4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy
856b05147c Skip LE with configuration parameter 2017-06-22 09:06:24 +02:00
andryyy
cbfe5e879e Fix error when adding alias with multiple alias addresses 2017-06-21 23:27:01 +02:00
NuVivo314
601f3b6947 Change select Priority
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy
578011c78c Move milter config, increase timeout for DNS 2017-06-21 10:18:52 +02:00
andryyy
05fc733091 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-20 20:07:30 +02:00
andryyy
c82c9524b0 Delete certificate if SANs were removed 2017-06-20 20:06:54 +02:00
andryyy
428140d34f Version update 2017-06-20 20:06:35 +02:00
andryyy
0e501acd7d Base on stretch 2017-06-20 20:06:24 +02:00
Michael Kuron
987d83e104 Make Thunderbird plugin download more resilient
- use specific GitHub API version
- use only-matching grep
- remove hard-coded version number
- use Mozilla Addons API
2017-06-19 20:48:56 +02:00
André Peters
beac3035f6 Merge pull request #372 from lazyfrosch/sync-password
data/web: Update syncjob password input to type password
2017-06-19 17:12:49 +02:00
Markus Frosch
4be67ccd64 dovecot/imapsync_cron: Use passfiles to hide passwords from ps 2017-06-19 11:43:07 +02:00
Markus Frosch
0f8bf53d9c data/web: Update syncjob password input to type password
So the password is not readable in clear text.
2017-06-19 11:22:19 +02:00
andryyy
036c51f053 Prefere ipv4 to fix problems on v4-only envs 2017-06-19 10:39:14 +02:00
andryyy
68d455e154 Just start reconf-sogo to also trigger SOGos restart after a successful reconfiguration 2017-06-19 10:30:11 +02:00
andryyy
fbf33e475a SOGo will be started after reconf script to prevent race conditions 2017-06-19 10:19:16 +02:00
andryyy
624e52e198 mysqladmin uses ping on static IPv4, supervisor does no more autostart SOGo 2017-06-19 10:18:53 +02:00
andryyy
5efe0b9a88 Ignore tar.gz 2017-06-19 10:17:37 +02:00
andryyy
10d83017e1 Declare correct arrays 2017-06-19 08:59:47 +02:00
André Peters
2d59e61c6b Merge pull request #370 from mkuron/patch-2
Autodiscovery for eM Client and Outlook 2007/2010
2017-06-19 08:54:59 +02:00
andryyy
2a845a0d21 Less verbose 2017-06-18 20:57:54 +02:00
andryyy
9117c499ef Do not break DNS replies.... 2017-06-18 20:57:26 +02:00
andryyy
6fa19a37d8 Unbound changes 2017-06-18 20:23:26 +02:00
Michael Kuron
08506f7c81 Autodiscovery: send display name to IMAP client 2017-06-18 16:07:56 +02:00
Michael Kuron
4a379d0540 Satisfy Microsoft Remote Connectivity Analyzer 2017-06-18 16:04:13 +02:00
Michael Kuron
b34d650f97 Autodiscovery for arbitrary clients. EAS only for Outlook 2013+
Mobile and Desktop clients can be differentiated based on the response scheme they request. Mobile clients and Outlook 2013+ get EAS, others get IMAP
2017-06-18 13:09:28 +02:00
Michael Kuron
646957efee Autodiscovery for eM Client
It can be identified by its lack of user agent header. Through additional Protocol tags, it can also have CalDAV and CardDAV configured.
2017-06-18 12:11:02 +02:00
andryyy
44c4074773 Add err priority to danger class 2017-06-17 20:57:23 +02:00
andryyy
5aba885b58 Skip ACME client for other certificates than LE 2017-06-17 10:08:12 +02:00
andryyy
08edc1d1d3 Remove obsolete file, add {} 2017-06-16 23:27:16 +02:00
andryyy
812b9b617a Cannot spawn as proc in sub shell. Breaks SOGo restart. 2017-06-16 23:26:43 +02:00
Michael Kuron
b3b5313336 SOGo Integrator: match some preferences to SOGo web defaults 2017-06-16 17:00:46 +02:00
Michael Kuron
d8fa38010a SOGo Integrator bugfix for multiple domains 2017-06-16 14:02:39 +02:00
Michael Kuron
c739091a67 Customize the SOGo Integrator plugin for Thunderbird 2017-06-16 10:30:40 +02:00
andryyy
03d4ea5a35 Add ability to generate passwords for new mailboxes 2017-06-16 08:52:41 +02:00
andryyy
09a6d432f1 Fixes #364 2017-06-15 23:03:21 +02:00
andryyy
ba3fc47d5f Fix autodiscover, thanks to K2rool! 2017-06-15 23:03:10 +02:00
Michael Kuron
5e56edb08c Properly gitignore the SSL certificate 2017-06-15 10:20:54 +02:00
andryyy
83cb686e33 Fix fix for Apple dav.... 2017-06-14 23:17:31 +02:00
andryyy
495bf05fb8 Fix for Apple autoconfiguration (dav) 2017-06-14 23:14:41 +02:00
andryyy
e99fa9433e Fix dav url detection for apple 2017-06-14 23:10:50 +02:00
andryyy
19325ffb2a Validate additional SAN 2017-06-14 07:24:32 +02:00
andryyy
863a0e4d06 Finally fix SOGo race condition 2017-06-13 23:38:47 +02:00
andryyy
4a0a9cbf1f Minor tweaks 2017-06-13 23:38:24 +02:00
andryyy
0fd0cff8ac Auto-sign autodiscover and autoconfig for all domains found in mailcow - only if A records exists and matches 2017-06-13 23:37:48 +02:00
andryyy
655aa9594e Never overwrite error_reporting 2017-06-13 23:36:42 +02:00
andryyy
9a99975394 Fix duplicate postfix install 2017-06-13 07:45:24 +02:00
andryyy
3e09d11856 Be less verbose 2017-06-13 07:41:13 +02:00
andryyy
44197c410e Do not add milter headers for authenticated users 2017-06-13 07:41:00 +02:00
andryyy
fcfc119805 Fix race condition with workaround 2017-06-13 07:39:45 +02:00
andryyy
35a73025c7 Add until to hopefully stop race condition 2017-06-12 23:49:21 +02:00
andryyy
a33aa7a2cb Fix Dockerfile 2017-06-12 23:48:56 +02:00
andryyy
261e1ad4fb Rspamd stable 2017-06-12 23:48:42 +02:00
andryyy
b367ec0ace Add Unbound as better DNSSEC enabled resolver 2017-06-12 23:48:27 +02:00
andryyy
db01b08926 Fixes #351 2017-06-12 20:21:31 +02:00
Michael Kuron
d6c9f96b4e Don't keep development packages in php-fpm image. 2017-06-12 17:06:57 +02:00
andryyy
5aa2ded331 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-12 10:46:08 +02:00
andryyy
ef62f6b383 Acme tool checks for valid autodiscover and autoconfig A records and skips non-existing names
Todo: Add AAAA check, add check for additional_san
2017-06-12 10:45:12 +02:00
andryyy
ad969d15cd Remove bind9 2017-06-12 10:43:36 +02:00
andryyy
a25fc17b87 Fix permission 2017-06-12 10:43:28 +02:00
andryyy
c0619a5b6b Less layers 2017-06-12 10:43:11 +02:00
andryyy
5321ebe707 Push to Dovecot 2.2.30 2017-06-12 10:42:48 +02:00
andryyy
cf44745c18 Less layers 2017-06-12 10:42:33 +02:00
andryyy
02ceb6d3ef Remove obsolete files 2017-06-12 10:40:08 +02:00
Phoenix Eve Aspacio
7575b46fba Update 2017-06-12 15:38:36 +08:00
Phoenix Eve Aspacio
564fb82257 Create header.inc.php 2017-06-11 13:43:59 +08:00
Phoenix Eve Aspacio
915ffb1991 Added mailcow app description 2017-06-11 08:05:10 +08:00
Phoenix Eve Aspacio
9754b8c196 Escape HTML special chars 2017-06-11 07:58:30 +08:00
André Peters
329ac40d95 Merge pull request #332 from mkuron/symlink
Replace symlink to PHP script
2017-06-08 20:57:51 +02:00
Chris Croome
ed448f19c1 Typo fixed 2017-06-08 11:41:31 +01:00
andryyy
3a42895094 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-06 22:02:17 +02:00
andryyy
6836bf2df2 Update DKIM to ARC/DKIM 2017-06-06 22:02:07 +02:00
andryyy
663ea7815c Use new milter interface 2017-06-06 22:01:41 +02:00
andryyy
a41cafac3e Switch to Rspamds milter interface 2017-06-06 22:00:34 +02:00
andryyy
c9318ecf83 Switch to Rspamds milter interface 2017-06-06 21:59:44 +02:00
andryyy
e15795e112 Enable http2 2017-06-06 21:59:27 +02:00
andryyy
2db910d6dc Remove Rmitler \o/ 2017-06-06 21:58:48 +02:00
Michael Kuron
062abb0ca7 Replace symlink to PHP script 2017-06-04 13:31:35 +02:00
Phoenix Eve Aspacio
6c73cc6918 More Capitalization Fix ✏✏ 2017-06-01 18:36:25 +08:00
Phoenix Eve Aspacio
9658fb2f85 Capitalization fix 🐳 2017-06-01 18:24:46 +08:00
andryyy
55071805f3 Execute after rmilter_headers (prio 10) 2017-05-29 21:53:47 +02:00
andryyy
5a95d2062c More changes to the UI, more API... 2017-05-29 21:51:06 +02:00
andryyy
f84a3a731a File indents 2017-05-29 21:50:43 +02:00
andryyy
ed58a9a9b3 File permission 2017-05-29 21:49:47 +02:00
andryyy
d33399b3cb Fix mismatch in env and from mime header when signing mail 2017-05-29 21:49:01 +02:00
andryyy
e159eb7522 Fix listener 2017-05-29 21:48:41 +02:00
André Peters
1c0443b5fa Merge pull request #317 from mkuron/patch-1
SOGo UI: per-user authentication failure rate-limiting
2017-05-29 08:48:30 +02:00
André Peters
ae707cd8ff Revert "php-fpm dockerfile simplification" 2017-05-29 08:45:30 +02:00
André Peters
192eb50449 Merge pull request #319 from TBK0000/php-fpm-alpine
php-fpm dockerfile simplification
2017-05-29 07:32:24 +02:00
TBK
9ee00c9933 php-fpm dockerfile simplification
By using Alpine pkgs instead of the official php base image the image size has been reduced from 459 MB to 55.7 MB a reduction of a whooping 403.3 MB :D
2017-05-28 23:33:16 +02:00
TBK
e151e32730 ShellCheck
http://www.shellcheck.net/
2017-05-28 23:28:41 +02:00
TBK
2d0c4db2a5 Clamav dockerfile simplification
- Locked to specific release.
- Fewer layers.
- Size reduction of 49 MB.
2017-05-28 16:23:13 +02:00
Michael Kuron
eb9217a8b8 SOGo UI: per-user authentication failure rate-limiting 2017-05-28 16:02:34 +02:00
andryyy
95c30e8791 Remove change... 2017-05-26 23:03:51 +02:00
andryyy
178a219c05 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-05-26 23:02:34 +02:00
andryyy
ce6bf18c2f Web UI improvements 2017-05-26 23:02:04 +02:00
André Peters
4f2a1d940c Merge pull request #313 from mkuron/fail2ban
Authentication rate limiting for Mailcow UI
2017-05-25 15:52:15 +02:00
Michael Kuron
de8ec199fa PHP authentication failure: log straight to error log 2017-05-25 15:36:44 +02:00
Michael Kuron
1906c26e5d Auth rate limiting: Mailcow UI and correct treatment of v4-mapped addresses 2017-05-25 13:57:50 +02:00
andryyy
0403579b7e Use hostname 2017-05-25 11:00:14 +02:00
andryyy
813207c694 Listen on internal IPv6 2017-05-25 10:59:57 +02:00
André Peters
8c73b8eb5f Merge pull request #311 from mkuron/fail2ban
Fail2ban-like authentication rate limiting for Postfix, Dovecot and SOGo
2017-05-25 10:58:14 +02:00
Michael Kuron
88f94a2e15 Authentication rate limiting for Postfix, Dovecot and SOGo 2017-05-25 10:44:10 +02:00
andryyy
fd92283fb8 Add missing ; 2017-05-24 10:03:06 +02:00
andryyy
56a9a09e2f Further migration 2017-05-23 22:23:46 +02:00
andryyy
466b8137e5 Add log_helper to Rspamd, add IPv6 for http maps in Nginx, make Bind listen on v6 and add acl for internal network 2017-05-23 22:23:34 +02:00
andryyy
d1b99d2355 Remove workaround 2017-05-23 22:22:40 +02:00
andryyy
b17543f211 Fixes 2017-05-23 21:50:48 +02:00
andryyy
21714bd054 Remove obsolete map 2017-05-23 21:50:33 +02:00
andryyy
f3a1d81347 Rate extensions 2017-05-23 21:50:05 +02:00
André Peters
d16304bf6a Merge pull request #299 from PhoenixPeca/dev
Added a preliminar italian translation - DEV
2017-05-23 09:38:34 +02:00
andryyy
fd5a59086b More structural changes 2017-05-23 09:36:59 +02:00
andryyy
5a62d29fa6 Fixes #301 2017-05-20 14:47:36 +02:00
andryyy
e99db685e5 Change map watch interval, remove Mraptor 2017-05-20 14:28:05 +02:00
Phoenix Eve C. Aspacio
e1d39983f6 Added Italian language file 2017-05-19 18:35:39 +08:00
Phoenix Eve C. Aspacio
62750b716a Added Italian Language 2017-05-19 18:34:29 +08:00
andryyy
0e80033535 Remove autocomplete 2017-05-19 09:02:52 +02:00
andryyy
4ffa80a669 Remove ip from session check 2017-05-18 19:45:41 +02:00
andryyy
eb0920366c Remove defect domain administrators 2017-05-18 10:18:13 +02:00
andryyy
90f6d53418 License 2017-05-18 09:47:38 +02:00
André Peters
03b20a4570 Create LICENSE 2017-05-18 09:08:04 +02:00
andryyy
9965ff10a7 Fix mynetworks: Add mailcow ipv6 network 2017-05-17 22:38:59 +02:00
André Peters
a72631fb15 Merge branch 'master' into dev 2017-05-17 21:20:12 +02:00
andryyy
c9184a9bad Various fixes and changes 2017-05-17 21:17:00 +02:00
andryyy
a7b854f7ce Fix Dockerfile, again 2017-05-17 21:16:48 +02:00
andryyy
61de3c354c Use Alpine ClamAV 2017-05-17 07:48:48 +02:00
andryyy
dd5b46e9ee Use Alpine PHP-FPM 2017-05-17 07:48:37 +02:00
andryyy
f38d726ed2 Revert base of Rspamd 2017-05-17 07:46:27 +02:00
Dennis Neufeld
0d3d9b8c15 Fix bug: Session cookie domain
If the web domain is != mail domain, the session cookie is set to the wrong domain.
2017-05-16 19:46:24 +02:00
Dennis Neufeld
53d02ded2a Add missing question mark (GET-URL) 2017-05-16 19:25:35 +02:00
Dennis Neufeld
b2a5bf0453 Formatting, Updated Bootstrap/Bootswatch 2017-05-16 19:20:58 +02:00
Dennis Neufeld
9f4491b9be Language selection: Fix missing negation 2017-05-16 18:17:31 +02:00
Dennis Neufeld
8fb6a4c34d Language selection
Better way to select language
2017-05-16 18:11:58 +02:00
Dennis Neufeld
4a9c9c220a Updated languages
Use HTML5-linebreak instead of XHTML
2017-05-16 18:11:00 +02:00
andryyy
cab5277ce5 Check if variable is not empty to prevent warnings 2017-05-16 11:59:20 +02:00
andryyy
08ad62a253 Fix domain actions 2017-05-16 09:51:05 +02:00
andryyy
4007db0862 Fix domain actions 2017-05-16 09:50:15 +02:00
andryyy
e91c6916ab CSRF protection 2017-05-15 11:37:12 +02:00
andryyy
4c6cfa66a8 CSRF protection 2017-05-15 11:36:31 +02:00
andryyy
82c805d091 Remove owasp tool 2017-05-15 09:29:03 +02:00
andryyy
fccdabb113 Remove owasp csrf tool 2017-05-15 09:00:37 +02:00
andryyy
861ade77ab New Dockerfile 2017-05-14 22:11:12 +02:00