andryyy
85454d3406
[ClamAV] Change mirror for Dockerfile
2021-11-14 20:12:21 +01:00
andryyy
7d3dd56a8c
[Dovecot] v2.3.17
2021-11-14 20:11:56 +01:00
Sven Gottwald
7e35c3d0dd
[ClamAV] Update to 0.103.4 ( #4314 )
...
* [ClamAV] Update to 0.103.4
ClamAV 0.103.4 is a critical patch release, see https://blog.clamav.net/2021/11/clamav-01034-and-01041-patch-releases.html for more information.
* Update docker-compose.yml
Update mailcow/clamd:1.42
2021-11-11 13:43:41 +01:00
andryyy
0e6672d9bf
[Dovecot] LUA fix
2021-10-30 14:40:26 +02:00
andryyy
f0aae22f77
[Dovecot, Web] Fix remaining issues of app password enhancements from #4296
2021-10-30 14:34:33 +02:00
andryyy
644b1f85d1
[Dovecot, Web] Allow SOGo access with app password when imap is disabled; Add sieve to mailbox protocol access restrictions
2021-10-30 08:03:41 +02:00
andryyy
09d763548c
Merge branch 'app-passwd-daveas' into staging
2021-10-29 06:50:23 +02:00
Peter
6bf70cf846
[Watchdog] Add Watchdog verbose logging ( #4299 )
...
* [Watchdog] Add verbose logging
* [Watchdog] More verbose debugging
* [Watchdog] Enable MX check for recipients
Co-authored-by: andryyy <andre.peters@debinux.de>
2021-10-29 06:48:49 +02:00
andryyy
15ce95e78d
[Web, Dovecot] Add sieve and pop3 to protocol access for app passwords
2021-10-29 06:15:10 +02:00
andryyy
e13bc242a4
[Web, Dovecot] Allow to define scope of services for app passwords
2021-10-28 21:57:19 +02:00
andryyy
56e8e88276
[Dovecot] Do not disallow app passwords when force_password_reset is active
2021-10-23 07:22:56 +02:00
Max
4a91fdf134
[Cleanup] Clean up the xmpp remainder ( #4286 )
...
* [Web] Update russian translation (lang.ru.json)
* XMPP cleanup
Co-authored-by: Dmitriy Alekseev <1865999+dragoangel@users.noreply.github.com>
2021-10-18 21:44:01 +02:00
Dmitriy Alekseev
819f2876e6
[Netfilter] Add non-SMTP command rule ( #4289 )
2021-10-08 12:38:29 +03:00
Kristian Feldsam
0b64967ec5
[web] implemented twig templating system ( #4264 )
...
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-09-22 20:47:10 +02:00
Sven Gottwald
bc7714b8f3
[ClamAV] Update to latest LTS release ( #4262 )
...
- ClamAV 0.103 is the first Long Term Support (LTS) feature release.
- LTS feature releases will be supported for at least three years from the initial publication date of that LTS feature version. In other words, support for the LTS release "X.Y" starts when version "X.Y.0" is published and ends three years after.
- Each LTS feature release will be supported with critical patch versions and access to download signatures for the duration of the three-year support period.
- A new LTS feature release will be identified approximately every two years.
- Users must stay up-to-date with the latest patch versions for continued support. As of Aug. 28, that means version 0.103.3.
- Source: https://blog.clamav.net/2021/09/changes-to-clamav-end-of-life-policy.html
2021-09-04 12:24:39 +02:00
andryyy
107c8ed229
[Watchdog] Workarond for issue with content buffering in Alpine and Nagios plugins
2021-09-01 18:57:56 +02:00
andryyy
f12756511d
[Dovecot] Update to 2.3.16
2021-09-01 17:00:51 +02:00
Kristian Feldsam
54c4d7e49c
[Dovecot: Imapsync] Parse, save and show last run status ( #4253 )
...
* [imapsync] - check for errors in returned_text
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
* [imapsync] parse and save exit status
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
* [dovecot] updated image version
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-09-01 16:29:11 +02:00
andryyy
8ee997b1a3
[Rspamd] Base on bullseye; remove nullnull map to _perhaps_ prevent a memleak
2021-09-01 15:21:43 +02:00
andryyy
19dda55d96
[Alpine] Upgrade to 3.14
2021-08-30 21:01:09 +02:00
andryyy
82f4f1fd15
[Postfix] Lookup credentials for user-specific sender transports
2021-08-17 16:51:06 +02:00
Peter
eca42f5d23
[Dovecot] Update imapsync to 2.148 ( #4206 )
2021-08-09 18:38:16 +02:00
andryyy
6db004bc79
[PHP-FPM] Upgrade to PHP 8
2021-08-08 16:05:59 +02:00
Kristian Feldsam
6ec2a0a97d
[SOGo] Added hooks support for SOGo image ( #4181 )
...
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-07-28 21:41:44 +02:00
andryyy
78084c5e7b
[Web] Log only latest datetime of a unique datetime, service and ip combination
2021-07-01 06:44:37 +02:00
andryyy
13223245f2
[Dovecot] Remove logging of invalid sasl sessions
2021-06-30 10:11:37 +02:00
andryyy
962e9a8be8
[Dovecot] Revert to 2.3.14.1
2021-06-23 14:22:57 +02:00
andryyy
b2272b8e35
[Dovecot] Re-add listescape...
2021-06-23 14:17:39 +02:00
andryyy
1cedef173f
[SOGo] Add trusted proxy by default
2021-06-23 14:11:41 +02:00
andryyy
1d59fa3d53
[Dovecot] Remove listescape; enable SSO by default
2021-06-23 14:11:23 +02:00
andryyy
0ba0878e28
[Dovecot] v2.3.15
2021-06-21 22:02:24 +02:00
andryyy
d414ab82f8
[Watchdog] Remove IPv6 NAT check (wip)
2021-06-21 22:02:06 +02:00
andryyy
38aee89a67
[Doveceot] Fix forced PW update
2021-06-09 07:25:38 +02:00
andryyy
a6edb75e88
[Doveceot] Fix forced PW update
2021-06-09 07:22:48 +02:00
andryyy
f7bbbde8c9
[Dovecot] Check protocol access in LUA API, remove postlogin script
2021-06-08 13:15:14 +02:00
andryyy
68f9ca8cb0
[Postfix] Remove broken SASL access map, moved to Dovecot LUA authentication
2021-06-08 13:13:49 +02:00
andryyy
51e3521aac
[Postfix] Remove smtpd_last_auth service; replaced by SASL logging in Dovecot LUA auth process
2021-06-04 14:29:28 +02:00
andryyy
6d22ae8d02
[Dovecot] Feature: Move authentication to LUA and prepare for http based authentication, log last SASL logins to SQL
2021-06-04 14:27:33 +02:00
andryyy
8a83587800
[Postfix] Finally here: MX based transport map routing; Sorry it took years, Patrik
...
[Web] Small fixes
2021-05-28 10:40:41 +02:00
andryyy
5065667ae4
[Postfix] Allow to set and override a relayhost per mailbox
...
[Web] Replace recycle icon with trash (this one made me a bit sad)
[Web] Various small fixes
[Web] Allow or disallow a domain admin to change relayhost settings (default is off, as previous default)
2021-05-26 14:02:27 +02:00
andryyy
b8f7b00fff
[Rspamd] Add new bad header map
2021-05-24 11:09:46 +02:00
andryyy
676ce199f3
[Dovecot] Minor: Fix EHLO name
2021-05-24 11:09:33 +02:00
andryyy
beda649ecf
[Dovecot] Quota notifications: Allow to send to external address (BCC via mailcow UI)
2021-05-23 09:49:36 +02:00
andryyy
08e9ab18a8
[Netfilter] Implement protocol error regex, fulfills #4093
2021-05-10 08:44:34 +02:00
Victor Nyberg
b191190f6f
[Ejabberd] Stop plain text password/user from being logged to file in auth.log. ( #4087 ) ( #4089 )
2021-05-06 13:56:05 +02:00
andryyy
0cbd4ec273
[Config, Update] Add ACME_CONTACT
2021-04-29 23:32:42 +02:00
andryyy
edf1a4fb1f
[Netfilter] Exit on log line error in pubsub
2021-04-25 09:23:02 +02:00
monsterry
dfe43f56bf
[netfilter] Use exit code 2 if an error occurs ( #4040 )
2021-04-25 09:13:26 +02:00
Sven Gottwald
2617f639b2
[ClamAV] Update to 0.103.2 ( #4068 )
...
Security patch, see https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
2021-04-20 10:39:26 +02:00
andryyy
971434ddd3
[mailcow] Use ofelia instead of cron daemons (wip: remove init systems)
2021-04-16 20:38:09 +02:00
andryyy
efd30df735
[PHP-FPM] Add default password policy
2021-04-09 13:49:31 +02:00
andryyy
f60143e983
[Postfix, Dovecot, SOGo] Sanitize F2B logs
2021-04-07 21:27:05 +02:00
andryyy
dbede2252c
[Ejabberd, Postfix, Dovecot] Do not run DNS check against unbound
2021-04-01 15:24:55 +02:00
andryyy
a02425dbf5
[Dovecot] Remove Schaal, remove non-numeric TXT output from dig request
2021-03-26 11:24:39 +01:00
andryyy
8eb757bea3
[Netfilter] Further improvements to catch invalid input
2021-03-23 20:53:04 +01:00
andryyy
8bf9ee8308
[Netfilter] Restart on invalid data via pubsub
2021-03-22 21:19:24 +01:00
andryyy
cda16ac53f
[ClamAV] Update to 0.103.1
2021-03-17 14:19:21 +01:00
andryyy
851f575384
Merge branch 'master' of github.com:mailcow/mailcow-dockerized
2021-03-13 12:38:06 +01:00
andryyy
c79aae2b1e
[Watchdog] Longer sleep for open relay check
2021-03-13 12:37:06 +01:00
Valentin Brandner
3255c08813
[Update, Config] Add subject for watchdog emails ( #4027 )
...
Co-authored-by: Valentin <vbrandner.itsb-b2018@fh-salzburg.ac.at>
2021-03-13 12:36:29 +01:00
andryyy
84ba784550
[Dovecot] Set --addheader by default, fixes #4025
2021-03-11 19:21:50 +01:00
andryyy
c39792c1a5
[Dovecot] Update image to 2.3.14
2021-03-04 16:13:27 +01:00
andryyy
0bd03c04bd
[ACME] Skip inactive domains
2021-03-03 07:59:11 +01:00
andryyy
e9b554b09c
[Web] Add nevondo.com ip check source, thank you!
2021-03-01 20:00:01 +01:00
andryyy
d3c0e2fc11
Temp remove ip6.korves.net
2021-03-01 10:21:53 +01:00
andryyy
5eb2df542b
[Watchdog] Revert to Alpine 3.11, needs fixes
2021-02-18 11:52:54 +01:00
andryyy
e0bb079cb7
[Watchdog] Temp. disable query check
2021-02-18 09:26:32 +01:00
andryyy
27b18373cc
[Alpine] Update Alpine base images to v3.13
2021-02-18 08:48:12 +01:00
Timo
0a3ea8ee3f
[olefy] Update container to alpine 3:13 to fix build ( #3988 )
2021-02-18 08:25:30 +01:00
andryyy
9c8c83fd24
[Web] Fix permission of ejabberd directory
2021-02-16 14:09:08 +01:00
andryyy
8c6b512f05
[mailcow] Move ejabberd site to last available site
2021-02-12 19:26:49 +01:00
andryyy
f2453e316f
[Ejabberd] More fixes for Ejabberd integration (WIP)
2021-02-12 10:04:19 +01:00
andryyy
38c5470d54
[Ejabberd] Various fixes, sorry (still WIP)
2021-02-11 21:09:46 +01:00
andryyy
462aa0a764
[Ejabberd] Fix bootstrapping, ejabberd could not be enabled
2021-02-11 20:46:13 +01:00
andryyy
9c1bd5c18b
[Ejabberd] Add new Dockerfile
2021-02-11 15:24:49 +01:00
andryyy
fa9c584912
[PHP-FPM] Add sleep to loop
2021-02-11 09:33:02 +01:00
andryyy
410cb558ee
[Dovecot] Check if quarantine_notify.py holds a lock
...
[SOGo] Change default theme
2021-01-28 15:48:59 +01:00
ValdikSS
9c559680a6
Add postscreen whitelist syntax and examples ( #3931 )
2021-01-11 19:23:32 +01:00
andryyy
ea98ac6442
[Postfix] Do not create a TLS SNI map when SKIP_LETS_ENCRYPT=y
2021-01-08 12:39:40 +01:00
andryyy
5ea0caa261
[Dovecot] Update Dovecot to 2.3.13
2021-01-04 16:36:33 +01:00
andryyy
c8a72bf642
[Watchdog] Return score with Rspamd check
2020-12-26 10:20:46 +01:00
andryyy
16f87f07fa
[Dovecot] Replace hostname for quarantine notifications with mailcow hostname (broke after Docker 20.10 fix)
2020-12-11 10:05:05 +01:00
andryyy
835c4eebb8
[Postfix] Fix HELO name
2020-12-09 14:41:19 +01:00
andryyy
ba20db2e08
[Web] Allow a user to choose notification categories (junk folder, rejected mail, both/all) + user ACL
2020-11-28 17:41:48 +01:00
andryyy
bfd451fe30
[ClamAV] Add default wl PUA.Pdf.Trojan.OpenActionObjectwithJavascript-1
2020-11-19 15:28:52 +01:00
Lukas Schreiner
d96bf91a0d
Support of different default pass schemes + support of BLF-CRYPT ( #3832 )
...
* Introduce MAILCOW_PASS_SCHEME in order to support blowfish (cf. mailcow/mailcow-dockerized#1019 )
* Furthermore added dovecot to support new environment varible for MAILCOW_PASS_SCHEME defaulted to SSHA256
* Revert changes regarding gitignore.
* Added fallback to SSHA256 if environment is not proper prepared.
* No fallback within management frontend, as it must match to other components.
* Unified and corrected alignment; implemented support of SSHA512
* Currently, password_hash of PHP is using by default bcrypt (BLF). As this might change later, we must ensure, that BLF is still used after PHP changes its default.
* Switched to BLF-CRYPT by default (even on update)
* Switched to BLF-CRYPT by default (even on update)
* Adding information in config generation / update with link to supported hash algorithm
* Bump sogo version to 1.92
* Fallback to BLF-CRYPT in case password scheme is not proper defined for Mailcow administration.
2020-11-15 20:22:35 +01:00
andryyy
477e1ff464
[Web] Fix initial static view update
2020-11-13 15:20:30 +01:00
andryyy
9245bd8636
[Postfix] Sanitize string in smtpd last login script with printf
2020-11-06 12:23:23 +01:00
andryyy
4e337b308f
[Dovecot] Select action in quarantine script, use nobody to run imapsync cron
2020-11-06 12:23:02 +01:00
andryyy
6c697f3f3f
[Web, Quarantine] Allow to set the max score of a message up to which a quarantine notification will be sent
2020-10-27 21:34:02 +01:00
andryyy
d85241f518
[Rspamd] Temp. pre-add proposed upstream change in metadata exporter
2020-10-23 21:49:06 +02:00
andryyy
efc6f214d1
[Dovecot] Revert notification excludes (there are no blacklisted elements in quarantine anymore)
2020-10-23 20:24:25 +02:00
andryyy
c7e17c7fd1
[Rspamd] Global blacklists are not prefilters anymore to not prevent them from being learned
2020-10-21 19:00:53 +02:00
andryyy
5f8e13f596
[Dovecot] Allow to define static master user (not recommended)
2020-10-20 15:43:05 +02:00
andryyy
769c500cd0
[Watchdog] Watch milter status with a dirty workaround, waiting for proxy ping pong event to implement a better check
2020-10-09 11:21:17 +02:00
andryyy
dd62030ce2
[Rspamd] 2.6 stable, switch repo
2020-10-03 11:12:12 +02:00
andryyy
da200db2d3
[ACME] Add more checks, avoid cert/key mismatch on some installations, fix some output
2020-09-28 19:58:30 +02:00
andryyy
836ea1508e
[Postfix] Fix smtp last login on replicated setups
2020-09-28 16:23:49 +02:00
andryyy
172562fc29
[Watchdog] Increase threshold for cert check
2020-09-27 11:34:00 +02:00
andryyy
bcad1af121
[Watchdog] Add certificate check for primary certificate; Add mail delay
2020-09-27 10:34:59 +02:00