Commit Graph

930 Commits

Author SHA1 Message Date
andryyy
9482da211f
[Rspamd] Update to 1.9 stable repository
[Compose] Update Rspamd image
2019-03-12 23:39:34 +01:00
andryyy
ffed14c277
[PHP-FPM] Fix SQL upgrade script 2019-03-12 23:24:22 +01:00
andryyy
c77368ee70
[ACME] Set mode 600 for key files 2019-03-12 23:24:03 +01:00
andryyy
837ee3b3b0
[Solr] Keep EdgeNGramFilterFactory out of query
[Compose] Update PHP-FPM, Solr and ACME images
2019-03-12 23:21:15 +01:00
andryyy
fc63661fbd
[Solr] Change default configset before bootstrapping
[Solr] Bootstrap cannot be omitted and must occur before mounting the data directory
2019-03-12 23:15:26 +01:00
André Peters
ae19d81f2d
Merge branch 'master' into admin-login 2019-03-10 10:38:42 +01:00
André Peters
216451ed43
Merge branch 'master' into admin-login 2019-03-10 09:51:12 +01:00
andryyy
c7c115d63a
[Solr] Use fixed, recommended schema but add EdgeNGramFilterFactory 2019-03-10 09:40:04 +01:00
andryyy
47d4be8884
[Dovecot] v2.3.5 (PH 0.5.5)
[Dovecot] Change Solr cronjob to fit dovecot-fts
2019-03-10 09:35:26 +01:00
andryyy
b6d9fbf747
[Postfix] Fix Postfix map 2019-03-09 12:30:36 +01:00
andryyy
15970ab8dc
[Postfix] Fix sasl_passwd query from alias domain, fixes #2410
[Web] Major fix, added a line break!
[Compose] Update Postfix image
2019-03-09 11:22:39 +01:00
andryyy
8e42ad4f1f
[Rspamd] Use stable unstable :) 2019-03-07 00:09:07 +01:00
andryyy
d65f7a2bd4
[Watchdog] Do not hammer API too much when running Ipv6 NAT check
[Watchdog] Run IPv6 NAT check more often (300s sleep instead of 3600s)
2019-03-07 00:08:45 +01:00
andryyy
e1ebacca27
[Rspamd] Drop rspamd.conf.local file 2019-03-06 15:06:51 +01:00
andryyy
5bc8289d32
[Watchdog] Minor fixes, print last log lines on error 2019-03-04 17:56:27 +01:00
tha80
d365813997
Downgraded rspamd deb repository 2019-03-04 13:59:31 +01:00
andryyy
c4dfed8a96
[Compose, Rspamd] Downgrade Rspamd 2019-03-03 22:54:47 +01:00
andryyy
950ab30462
[Rspamd] Upgrade Rspamd
[Compose] New Rspamd image
2019-03-03 22:25:56 +01:00
andryyy
fcbcc117d2
[Netfilter] Detect SOGo 403
[Compose] Update Netfilter
2019-02-28 20:22:16 +01:00
Marcel Hofer
e2f39df7d8 remove obsolete code, use openssl instead of cat /dev/urandom 2019-02-26 20:44:53 +01:00
Marcel Hofer
dd6d253ac0 add random masterpass for sogo admin login
add required headers for sogo proxy auth with password
add SOGoEncryptionKey
add SOGoTrustProxyAuthentication only conditionally if feature is enabled
2019-02-26 09:02:35 +01:00
andryyy
57312ad605
[Compose] Add ALLOW_ADMIN_EMAIL_LOGIN to sogo-mailcow to trigger bootstrap on change
[Compose] Static IPv4 for Dovecot
[SOGo] Remove SOGoIMAPServer from sogo.conf
[SOGo] Add SOGoIMAPServer to bootstrap process
[Nginx] Disallow editAccount for other accounts than 0 (own)
2019-02-25 00:00:32 +01:00
André Peters
298a8d24e9
Merge pull request #2360 from mhofer117/allow-admin-email-login
Allow admins to login as email user (without any password)
2019-02-24 18:49:13 +01:00
Marcel Hofer
cac67db203 add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins 2019-02-23 17:59:18 +01:00
andryyy
db17a304b0
[ClamAV] Create directory before handling whitelist 2019-02-23 10:34:16 +01:00
andryyy
354ecd727c
[ClamAV] More checks and permission fixes 2019-02-23 10:27:13 +01:00
andryyy
fe9b9f5dfa
[ClamAV] Set permission recursively
[Compose] Updaet ClamAV image
2019-02-23 10:21:13 +01:00
andryyy
fe6567a3c8
[Compose] New watchdog image
[Watchdog] Use ipv6nat-mailcow instead of ipv6nat
2019-02-19 22:25:28 +01:00
andryyy
52eb6e48f2
[Compose] New Dovecot image
[Dovecot] Fix very stupid error in quarantine_notify.py - thanks to @DevTek314
2019-02-19 15:02:18 +01:00
andryyy
63752fe0f2
[Solr] Changes to schema - field types are updated 2019-02-15 20:19:50 +01:00
Joshua Hesketh
1355e993dd
Fix building solr
I kept hitting an error when building solr `/bin/sh: /docker-entrypoint.sh: Text file busy`, this is caused where the script is attempted to be ran before the previous `chmod` command has properly sync'd to disk. Adding in a sync fixes this trouble for me.
2019-02-15 17:04:53 +11:00
Aaron Larisch
5cae935485 Fix empty maildir_gc.sh 2019-02-12 17:11:04 +01:00
andryyy
99a816430b
[ACME] Wait for Nginx 2019-02-10 17:36:25 +01:00
Christian Burmeister
f35ffa61d0
Update Dockerfile 2019-02-08 17:03:38 +01:00
Christian Burmeister
0e8f8ada1f
Update Dockerfile 2019-02-08 17:03:16 +01:00
andryyy
4e97da197e
[Dovecot] Fix quarantine notificatin script
[Compose] Update Dovecot image
2019-02-08 10:06:28 +01:00
andryyy
36ad9dbf78
[ACME] verify_html should accept 3** and 2** 2019-02-08 00:04:05 +01:00
andryyy
c438411a3d
[Dovecot] Extend quarantine template: add score and release/delete buttons - depending on acl 2019-02-06 09:21:54 +01:00
andryyy
2a5f6413fa
[Dovecot] Derive text part in quota/quarantine notification mails from html 2019-02-05 10:38:28 +01:00
andryyy
12291436cd
Push image base to Alpine 3.9 2019-02-05 00:01:31 +01:00
andryyy
c7c1422095
[Dovecot] Add quota_notify script
[Dovecot] Some minor changes to quarantine notification script to catch more errors
2019-02-05 00:00:22 +01:00
andryyy
ccc61bf2dc
[PHP-FPM] PHP 7.3, mailparse from Git as long as no releas exists 2019-02-04 23:46:45 +01:00
andryyy
9f2a6f13a5
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-04 23:45:54 +01:00
andryyy
3bfd2c8885
[Dovecot] Once again... finally fixed? 2019-01-31 22:18:38 +01:00
andryyy
dcd6b2268e
[Dovecot] Various fixes for quarantine notifications, many thanks to @DevTek314 for reporting them! 2019-01-31 21:45:58 +01:00
andryyy
3aef412669
[Dovecot] Fix type of last_notification 2019-01-31 20:53:08 +01:00
andryyy
24432b0d9d [PHP-FPM] Remove old fix 2019-01-31 17:08:03 +01:00
andryyy
6d4bcfabb1
[PHP-FPM] Fix sed command 2019-01-31 15:51:00 +01:00
andryyy
3832d04998
[PHP-FPM] Fix sed command 2019-01-31 15:49:53 +01:00
andryyy
61cd2c0353 [PHP-FPM] Patch legacy template lib of NC if exists 2019-01-31 15:44:56 +01:00
andryyy
8c433bf0da [PHP] Drop pear modules 2019-01-30 11:55:03 +01:00
andryyy
c456fe12b3
[Dovecot] Fix last_notification in quarantine_notify.py 2019-01-29 12:13:26 +01:00
andryyy
07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy
f493d3a957
[Dovecot] Simplify Docker image
[Dovecot] Set Dovecot plugins dynamically via file and exclude Solr if not enabled
[Dovecot] Add new quarantine notification script
2019-01-29 00:11:12 +01:00
André Peters
b2bb593656
[Dovecot] imapsync: Connect to database via socket 2019-01-19 11:57:48 +01:00
Dirk Weise
23c2249fa7
Log imapsync cronjob errors
Errors from the imap sync cronbjob are currently dropped silently.
2019-01-18 18:25:43 +01:00
Dirk Weise
630bce5f29
imapsync: Connect to database via socket
Make the imapsync script connect to mysql via socket and not tcp like all other services do.

Reasoning: consistency. 🤓  And in my case the database does not listen on tcp; just on the socket.
2019-01-18 17:36:30 +01:00
andryyy
d6efc2fcd3
[Rspamd] Fix metadata_exporter
[Web] Show subjet in quarantine
[Compose] Update Rspamd image
2019-01-17 22:00:18 +01:00
andryyy
ae4e1358a2
[Solr] Refuse to start with RAM lt 2 GB
[Config/Update] Set limits and change descriptions for Solr
2019-01-17 20:25:38 +01:00
andryyy
5081d6d9f1
[ClamAV] Add more signatures 2019-01-16 23:41:42 +01:00
andryyy
62ccd4215e [SOGo] Allow to turn off GAL for each domain 2019-01-16 23:41:15 +01:00
andryyy
0c84b484a5
[DockerAPI] Add unused FTS endpoints... 2019-01-16 22:20:22 +01:00
André Peters
f3dfe346bf [Dovecot] Allow setting ACL_ANYONE in mailcow.conf 2019-01-16 19:08:19 +01:00
andryyy
889b260b7d
[ClamAV] Set prio of clamd parent to 10, fixes #2174 2019-01-13 23:03:07 +01:00
andryyy
5619221ed0
[ClamAV] Fix whitelist permission error
[Compose] New image for ClamAV
[Git] Add ignore data/web/nextcloud*
2019-01-13 11:21:44 +01:00
andryyy
ab35e1d688 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-10 22:14:52 +01:00
andryyy
b0130c153c
[Clamd] Improve logging
[Compose] Remove tty from clamd-mailcow
2019-01-10 22:13:59 +01:00
amorfo77
9a90647709
[Clamav] Remove duplicate chown 2019-01-10 13:31:34 +01:00
andryyy
e42afa39a8
[ClamAV] Update to 0.101.1 (based on Debian to fix some errors)
[ClamAV] Some config values are deprecated and were replaced
2019-01-08 12:54:33 +01:00
Markus Heberling
9750ec5bec
Merge branch 'master' into master 2019-01-01 14:20:22 +01:00
andryyy
4f278255a5
[SOGo] Fix ealarms, again, fixes #2136
[Compose] Update SOGo image
2018-12-29 21:19:25 +01:00
andryyy
3fa42ada8e [Compose] Update to Redis 5
[Compose] New images for watchdog and PHP-FPM
[Watchdog] Run IPv6 NAT check hourly
[PHP-FPM] Update PHP and libs
2018-12-27 10:47:00 +01:00
andryyy
424bc997ad [Watchdog] Add check for IPv6 NAT: Make sure IPv6 NAT container was started at least 30s after other containers
[Compose] ipv6nat depends on all containers
[Compose] Update watchdog image
2018-12-27 08:20:49 +01:00
Michael Kuron
0974a5fb60
Fix transport map authentication with multiple identical nexthops 2018-12-25 15:02:50 +01:00
andryyy
9aca90c75f [SOGo] Fix file path of sogo-full.svg
[Compose] Updated SOGo image
[Update] Add user.name and user.email for local git config if missing
2018-12-22 16:56:50 +01:00
andryyy
e84dec3b56 [SOGo] Revert self-built SOGo 2018-12-21 19:54:32 +01:00
andryyy
fbe46e39e5 [SOGo] Copy logo from config dir, no need to rebuild image 2018-12-20 19:02:20 +01:00
andryyy
8f686c1543 [Postfix] Split sasl passwd maps to not lookup sender_dependent_default_transport_maps auth info when querying for transport_maps 2018-12-19 09:38:56 +01:00
andryyy
29512fa4e1 [SOGo] Build stable SOGo versions
[SOGo] Remove custom colors, there were various broken styles especially for indicators of freebusy states
2018-12-19 09:34:16 +01:00
andryyy
6f1ec5acbf [Watchdog] Alert when ratelimit log changed (does NOT send one mail per triggered ratelimit) 2018-12-15 21:21:22 +01:00
andryyy
468e3dbe12 [PHP-FPM] Try SQL once, prevent loops (todo: fix view before upgrade) 2018-12-15 21:20:21 +01:00
andryyy
c4446b85f1 [Rspamd] Add ratelimit.lua (to be removed from Dockerfile with next Rspamd release) 2018-12-15 21:19:35 +01:00
andryyy
b7c9af5e75 [Dovecot] Give master user a uid and gid, fixes #2093 2018-12-13 19:52:50 +01:00
andryyy
d8906e3d6c [Dovecot] Trim more logs 2018-12-12 22:51:55 +01:00
Markus Heberling
4755bb323b Allow setting ACL_ANYONE in the configuration 2018-12-11 11:32:36 +01:00
andryyy
5153623539 [Dovecot] Add master user to userdb (to be used in SOGo)
[SOGo] Use sieve.creds to authenticate against Dovecot and send email reminders
2018-12-10 23:23:56 +01:00
andryyy
b710cb751b [Dovecot] Split imapsync cron by -- 2018-12-10 13:24:51 +01:00
andryyy
09b9055f1a [DockerAPI] Add mysql_upgrade task 2018-12-10 13:24:07 +01:00
andryyy
04b699a3c7 [PHP-FPM] Trigger mysql_upgrade 2018-12-10 13:22:25 +01:00
andryyy
2a6320b86e [Netfilter] Disable aborted login without auth as fail2ban trigger
[Dovecot] passdb query ignored active attribute in mailbox table
[PHP-FPM] Add default release format for spam
2018-12-06 16:49:28 +01:00
andryyy
cfab7274b7 [Netfilter] Revert SNAT rule check, todo: check DNS with SNAT enabled 2018-12-01 23:12:27 +01:00
andryyy
45ecc26a12 [Netfilter] Do not delete SNAT rule if not on first position 2018-12-01 21:17:08 +01:00
andryyy
a695bdd2ee [Dovecot] Update Dovecot to 2.3.4, update Pigeonhole to 0.5.4
[Dovecot] Remove UTF-8 attribute
2018-11-26 09:44:41 +01:00
andryyy
c82f8165d8 [Dovecot] Fix maildir_gc, build with ldap support 2018-11-26 09:11:22 +01:00
andryyy
9acd9c719d [SOGo] Read plist_ldap for dual auth via ldap, unsupported 2018-11-26 09:10:39 +01:00
andryyy
f011db317e [SOGo] Wait for updated db schema before bootstrapping 2018-11-16 22:48:28 +01:00
andryyy
7998ec3f1f [DockerAPI] Fix image, fixes #2008 2018-11-16 20:09:29 +01:00
andryyy
a4452ed3a5 [Postfix] Important fix for mailbox maps, fixes #2013 2018-11-15 22:55:45 +01:00
andryyy
b3518b0749 [Dovecot] Remove dedicated index (wip)
[SOGo] Fix sogo_view
2018-11-12 20:59:39 +01:00
andryyy
2210201c76 [SOGo] Adjust SOGo view 2018-11-12 09:53:39 +01:00
andryyy
1404fc50f4 [Rspamd] Add stopsignal (testing) 2018-11-12 09:52:34 +01:00
andryyy
9ee557e5a5 [Postfix] Adjust mailbox query 2018-11-12 09:49:52 +01:00
andryyy
244ab191bd [Dovecot] Dovecot 2.3.3, Pigeonhole 0.5.3
[Dovecot] Use "--enable-hardening" flag
[Dovecot] Fix cronjobs
[Dovecot] Use /var/volatile to prevent locking files from being written to NFS storage (if vmail is on NFS)
[Dovecot] Change userdb query
[Dovecot] Use /var/attachments for mdbox attachment deduplication and /var/index for index files
[Dovecot] Fix sieve user creation
[Dovecot] Make console writable
[Dovecot] Fix trim_logs.sh
2018-11-12 09:49:23 +01:00
Markus Gnadl
0e33fd49bb wildcards (subdomain.*) in ADDITIONAL_SAN are expanded to all mailcow domains 2018-10-30 09:07:01 +01:00
andryyy
2bd1b1c960 [Watchdog] Skip container restart if running for less than 120 seconds 2018-10-27 23:44:06 +02:00
andryyy
f796db0a65 [DockerAPI] Add top and stats 2018-10-27 13:25:18 +02:00
andryyy
e04a3aed6a [ClamAV] Do not try to modify cross-mounted file, copy whitelist from conf to lib directory 2018-10-27 13:25:05 +02:00
andryyy
4e2b8dbd90 [Watchdog] Check if initdb is running and if true skip killing php-fpm-mailcow 2018-10-27 13:23:36 +02:00
andryyy
c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
andryyy
800eebd117 [Dovecot] Use events to kill supervisord when main proc dies
[Postfix] Use events to kill supervisord when main proc dies
[SOGo] Use events to kill supervisord when main proc dies
2018-10-25 22:35:07 +02:00
andryyy
23e3bdfe5a [Dockerapi] Some minor changes 2018-10-25 22:34:31 +02:00
andryyy
37964d9dd1 [ACME] Try to reload services after certificate changes instead of restarting
[DockerAPI] Add service reload commands
2018-10-24 20:14:59 +02:00
André
db64fa490b [SOGo] Read .sogo_access attribute when bootstrapping view 2018-10-23 21:13:37 +02:00
André
fbf1c7b7c1 [DockerAPI] WIP: change of structure, add some more commands to control mail queue 2018-10-23 21:12:37 +02:00
André
e941c6e8b2 [ACME] Fix missing for loop start
[Compose] New ACME image
2018-10-19 10:03:05 +02:00
André
7a7fafec87 [Compose] New Rspamd image (1.8.1)
[Rspamd] Upgrade base to Bionic
2018-10-17 22:41:39 +02:00
André
86b92f68cb [Watchdog] Remove cert check (wip)
[Watchdog] Append last check loop as attachment to mail
[Watchdog] Print time and date in mail alerts
2018-10-17 22:30:13 +02:00
André
7386dc1e5c [ACME] Stop requesting certificates for autoconfig.* 2018-10-16 23:01:01 +02:00
André
178bee7ac3 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-10-14 19:05:57 +02:00
André
d2d0369f32 [PHP-FPM] Base on Alpine 3.8
[Watchdog] Base on Alpine 3.8
[ACME] Base on Alpine 3.8
[Watchdog] Minor changes
2018-10-14 14:29:03 +02:00
André
2da228a21e [Watchdog] Remove some check_ping checks
[Watchdog] Add ClamAV check (if SKIP_CLAMD=n)
[Watchdog] Add Unbound check
[Watchdog] Do not use Docker API by default to determine IP of containers (see "IP_BY_DOCKER_API")
[Watchdog] Minor changes
2018-10-14 00:21:31 +02:00
André
a9eddae686 [ACME] Do not add alias domains to auto* domains 2018-10-14 00:19:14 +02:00
André
5705044af0 [ClamAV] Update to 0.100.2 2018-10-14 00:18:21 +02:00
Tobias "Knight" S
7114999c75
remove duplicated import time 2018-10-13 23:30:24 +02:00
André
93917f8385 [Unbound] Upgrade to Alpine 3.8, fixes #1882 2018-10-13 10:12:01 +02:00
André
23e6e52f4f [Postfix] Proper permissions for sql config files
[Dovecot] Proper permissions for sql config files
2018-10-12 10:57:00 +02:00
André
aa39be7ea6 [SOGo] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Init database in entrypoint
[PHP-FPM] Change API credential injection
[Dovecot] Use mysqladmin status instead of ping to determine readiness
2018-10-11 11:53:22 +02:00
André
ce135bb773 [ACME] Log acme-client output base64 encoded, use mysqladmin status instead of ping to determine readiness 2018-10-11 11:51:13 +02:00
André
ad63552951 [Dovecot] Check file size of mail crypt key pair, fixes #1859
[Compose] New Dovecot image
2018-10-07 15:10:17 +02:00
André
9f52cd9456 [Docker API] Fix sieve list for users, fixes #1849 2018-10-06 22:09:23 +02:00
André
c6aa3610f0 [Postfix] Enable/create smtp_tls_policy_maps 2018-10-04 14:34:53 +02:00
André
cf28727376 [Dovecot] Add timeouts to sa-rules script, remove with -f flag to return 0 2018-10-03 23:27:31 +02:00
André
d8148bef79 [Docker API] Do not print warning when maildr does not exist 2018-10-03 11:27:52 +02:00
André
2af2f7836d [Dovecot] Remove fixed uid and gid 2018-10-02 10:31:22 +02:00
André
62b27aeacb [Dovecot] Check garbage hourly
[Dovecot] Update SA rules once when container starts
2018-10-02 09:34:21 +02:00
André
ca1e950c61 [Dovecot] Do not query gid and uid 2018-10-02 09:13:33 +02:00
André
d7ca5579dc [Rspamd] Ignore custom files, but keep bad asn map 2018-09-30 18:55:35 +02:00
André
cdca603ff5 [Unbound] Fix logging, fixes #585
[Rspamd] Fix permissions of controller password file
[Unbound] Enable unbound-control
2018-09-30 14:43:18 +02:00
André
4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André
0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André
96c985abad [Rspamd] Move settings file to RSPAMD_CONF root, delete old lua scripts 2018-09-26 13:23:05 +02:00
André
29aeb5b85d [Watchdog] Fix SOGo check, fixes #1750 2018-09-09 21:52:48 +02:00
André
c8a1cbd25a Merge branch 'temp-master' 2018-09-09 21:21:43 +02:00
André
c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André
ad902f0ad8 [SOGo] Remove HTTP server on port 9192 2018-09-09 09:48:11 +02:00
André
8a88514dfd [SOGo] Declare /usr/lib/GNUstep/SOGo as volume
[Nginx] Mount vols from sogo-mailcow to access /usr/lib/GNUstep/SOGo
2018-09-07 16:40:37 +02:00
sriccio
5e56a46c84 [dovecot] Enhancement to allow to use auth_default_realm
When using auth_default_realm in dovecot configuration to setup a default domain name (to allow users to login with only a username instead of the full e-mail address), it breaks the compatibility with imapsync and sogo/sieve vacation.

Adding a domain name to dovecot master user/pass fixes this.

This never made it do the master branch, so I'm trying a PR again :)

See: https://github.com/mailcow/mailcow-dockerized/pull/1331#issuecomment-386534307
2018-08-28 17:14:05 +02:00
André
66ee11c03d [SOGo] Disable display of ACL "any/authenticated" by default
[Dovecot] Disable "any" ACL by default
[SOGo] Might fix theme switching (yes, again)
2018-08-17 21:42:31 +02:00
André
6bd818ceec [ACME] Remove third-party IP tools 2018-08-06 15:15:24 +02:00
André
ff0b9246b5 [ClamAV] Add whitelist file for ClamAV, fixes #1607
[ACME] Test for CAA before running script, fixes #1632
2018-08-05 22:35:20 +02:00
André
9dd17d4609 [SOGo] Change color codes in correct files 2018-08-04 09:23:45 +02:00
André
bf9a180c00 [SOGo] Fix theme switching (99% sure we did it this time, guys) 2018-08-03 20:27:58 +02:00
André
e678292447 [Dovecot] Trim autodiscover logs 2018-08-02 12:19:58 +02:00
André
39b0fc515f [SOGo] Syslog-ng: Do not trim after each push to Redis 2018-08-02 12:17:21 +02:00
André
85f83b1b71 [Rspamd] v1.7.9 (removed explicit ratelimit.lua) 2018-08-02 12:16:55 +02:00
André
f5fb7f6da5 [Watchdog] Do not trim after each push to Redis 2018-08-02 12:16:05 +02:00
André
f8f87d4744 [ACME] Do not trim after each push to Redis 2018-08-02 12:15:41 +02:00
André
bdf7632757 [Postfix] Add '*' as send_as to sender_acl map
[Postfix] Syslog-ng: Do not trim after each push to Redis
2018-08-02 12:15:04 +02:00
André
04b43d0a3b [Dovecot] Add new imapsync + dependencies
[Dovecot] Syslog-ng: Do not trim after each push to Redis
[Dovecot] Add new cronjob to trim all Redis logs every minute (will be moved in the future)
2018-08-02 12:14:13 +02:00
André
15b80760b2 [Postfix] Add scripts to learn from spam/ham traps
[Dovecot] Learn fuzzy when moving mails from/to junk
2018-07-29 00:36:08 +02:00
André
ff463168d1 [SOGo] Override theme-default.css to prevent theme switching, delete theme-green until fixed 2018-07-28 14:26:02 +02:00
André
1115b826f9 [Dovecot] Various fixes for imapsync_cron, new imapsync version 2018-07-27 22:19:14 +02:00
André
5cc09055a7 [SOGo] Another try to fix theme switching on login screen 2018-07-27 22:16:18 +02:00
André
ef8c79c0e5 [Postfix] Fix alias for spam and ham addresses 2018-07-25 01:21:22 +02:00
André
63ce1ba2d6 [Postfix] Create ham/spam mailboxes @ localhost 2018-07-25 01:05:51 +02:00
André
240eb3abce [Netfilter] Wait for Redis instead of exiting with an exception 2018-07-24 23:30:18 +02:00
André
6cba85eb07 [Postfix] Add tzdata to Postfix 2018-07-17 00:29:07 +02:00
André
b45b9bc5cf [SOGo] Override more theme options to prevent occasional theme switching on login 2018-07-15 16:34:25 +02:00
André
853b924fe1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-07-15 11:56:26 +02:00
André
c372b01909 [Rspamd] Use old ratelimit LUA until custom rl is fixed
[Web] Updated settings preset: Ratelimit was NOT applied when preset for settings map was used (added "RATELIMIT_UPDATE", "RATELIMIT_CHECK" to symbols_enabled)
[Rspamd] v1.7.8
2018-07-13 11:40:37 +02:00
André
e9f60bf06c [SOGo] Missing ) ... 2018-07-12 14:19:06 +02:00
André
e06c3e87ee [SOGo] Refresh sogo static view on start 2018-07-12 14:08:00 +02:00
André
8a9ce0a57c [SOGo] Refresh sogo static view on start 2018-07-12 14:04:31 +02:00
André
d9df322eda [Dovecot] Remove additional hash scheme and let Dovecot decide the hash by prefix 2018-07-12 00:46:17 +02:00
André
2aef18d130 [Dovecot] Remove user queries from passdb + add a second passdb for additional algorithms + create userdb without password queries 2018-07-12 00:23:12 +02:00
André
a4e96a3fe3 [ClamAV] v0.100.1 + rebase on Alpine 3.8 2018-07-12 00:21:46 +02:00
André
cfb0d3b62c [SOGo] Create a sogo_update_password trigger in SQL
[SOGo] prependPasswordScheme=YES in user sources
[SOGo] Use new "static view" as viewURL for much faster table lookups on large systems
2018-07-11 22:08:02 +02:00
André
22cecc3f85 [Postfix] Use Bionic as base image (Postfix 3.3) and replace python-gpgme by python-gpg
[Postfix] Fix syslog-ng config version
2018-07-11 20:01:03 +02:00
André
1e59816665 [Netfilter] Prevent crashes by locking threads
[Netfilter] SNAT6
2018-07-11 19:59:10 +02:00
André
055183257d [Dovecot] v2.3.2.1 + remove some dev packages 2018-07-11 19:07:26 +02:00
André
f8283536ec [Netfilter] Fix chain order watching and other fixes
[Web] Fix perm ban display
2018-07-09 22:23:39 +02:00
André
a72a3734d6 [SOGo, Compose] Add cow to logo... + new SOGo image 2018-07-06 12:10:22 +02:00
André
7b69549881 [SOGo] Fix theme-blue.js contrast and flipping colors on login screen, fixes #1528 2018-07-06 11:54:12 +02:00
André
e352604a9b [Compose, PHP-FPM] Fix script in new image 2018-07-04 11:41:43 +02:00
André
26807823b4 [Netfilter] python-tipbles 0.13.0 plus missing vars for 0.13.0 2018-07-03 23:25:31 +02:00
André
3b5df979e9 [Dovecot, Compose] New Dovecot image, upgrade to 2.3.2 (0.5.2 PH), fixes various bugs including replication over TCP 2018-07-02 10:35:04 +02:00
André
17d3a24d89 [Netfilter] Fix table refresh and rule injection in snat loop 2018-06-29 11:25:26 +02:00
André
73a566b25a [ACME] Fix for multiple additional SAN 2018-06-29 09:35:48 +02:00
André
d6a74e82e3 [ACME] Fix for CNAME response on AAAA dig request 2018-06-28 20:41:44 +02:00
André
a1a6574964 [PHP-FPM] Add tzdata, update APCu and Redis extensions, update PHP to new minor 2018-06-27 22:51:17 +02:00
André
729bba5b57 [ACME, Compose] Add new image; fix AAAA check for ADDITIONAL_SAN 2018-06-27 12:09:51 +02:00
André
8adf3d27db [ACME, Compose] Add new image; fix AAAA check for MAILCOW_HOSTNAME 2018-06-26 23:35:17 +02:00
André
f88a72eedd [ACME] Validate AAAA, if any, before A - fail on AAAA mismatch (LE prioritization) 2018-06-26 23:10:24 +02:00
André
071024db4c Fix indentation 2018-06-26 07:49:14 +02:00
André
aa6a136c1f [Dockerapi, Dovecot] Fix missing active user filter 2018-06-20 07:25:10 +02:00
André
27d3388579 [Rspamd] Remove antivirus debugging 2018-06-10 14:30:30 +02:00
André
6ded3dbd95 [API] Allow to set API options in mailcow.conf, fixes #1457 2018-06-08 09:11:03 +02:00
André
4a403e9323 [Dovecot] Imapsync: Set is_running = 0 on restart 2018-06-03 19:22:44 +02:00
André
37e6c50a9b [Watchdog] Add missing package for IPv6 with smtp-cli, fixes #1430 2018-05-27 21:40:53 +02:00
André
a38424d3ad [Watchdog] Find exact matches for service names, shuffle scaled services, check if ip is in mailcow network 2018-05-26 22:19:17 +02:00
André
b26aa04a9b [Dovecot] Imapsync: Increase timeout1 value 2018-05-24 17:34:43 +02:00
André
74008735ca [SOGo] Always show GAL contacts 2018-05-06 14:33:20 +02:00
André
9e53ed4daf [Watchdog] Update to new image with smtp-cli 3.9 2018-05-06 09:15:35 +02:00
eXtremeSHOK
8a9319c3f0
Update smtp-cli to v3.9
https://github.com/mludvig/smtp-cli/tree/v3.9
2018-05-06 03:43:59 +02:00
André
d14e6c184b [ClamAV] Modify /dev/console to fit permissions 2018-05-02 21:08:40 +02:00
André
27fc98d12e [Netfilter] Use Alpine 3.6 2018-04-27 21:55:25 +02:00
André
435fee2bc9 [Compose] Update PHP-FPM image 2018-04-26 22:04:59 +02:00
André
30cea1da9a [SOGo] Increase workers count to 20
[Postfix] Add extended TLS header
[Web] Increase timeout to 10 for docker API connections
[Postfix] Add perl package
2018-04-26 14:08:45 +02:00
André
7181ee4658 [Rspamd] Apply ratelimit against authenticated user instead of envelope from
[PHP-FPM] Create PHP-FPM listeners 9001 (system) and 9002 (web), drop 9000
[Rspamd] Parse quarantine messages as utf8
[Rspamd] Use new schema for Rspamd bayes hashes and expire them in Redis
[SOGo] Change default logo
[SOGo] Use different keyserver by default in Dockerfile
[Rspamd] Add bad ASN list (disabled by default)
[Watchdog] Change the way we check PHP-FPM, change SOGo check
[Nginx] Change ports according to new PHP-FPM listeners
[Update] Fix PHP-FPM ports for existing non-mailcow Nginx sites
2018-04-26 13:56:07 +02:00
André
f53006f6ab [Dovecot] Dovecot 2.3.1, Pigeonhole 0.5.1
[ClamAV] 0.100.0, new log method without pipes
[Compose] New images for Dovecot and ClamAV, add persistent tty to clamd-mailcow
2018-04-26 12:36:13 +02:00
André
05e026db3a [Netfilter] New ban method, allow to set blacklists 2018-04-25 10:54:13 +02:00
André
7031af4cc8 [Compose] New dockerapi-mailcow image
[Docker API] Fix for rspamd-mailcow rspamadm pw command
2018-04-19 12:56:49 +02:00
André Peters
d2e11df0d4
[SOGo] Wait for view to be created
Creating sogo_view can fail when run before init_db.
2018-03-03 23:20:41 +01:00
André Peters
e3b542e73a Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2018-02-28 17:36:02 +01:00
André Peters
b175125d02
Merge branch 'dev' into master 2018-02-28 15:38:56 +01:00
André Peters
b6137cca2a
[ACME] Do not delete private key
...when reg key is invalid.
2018-02-28 11:13:17 +01:00
André Peters
a27f34d9df [SOGo] Add v4 repo, new logo 2018-02-27 20:55:41 +01:00
André Peters
bf5b6732cf [Dovecot] Fix passdb query 2018-02-27 20:55:12 +01:00
André Peters
6a01411460 [Dovecot] Fix imapsync 2018-02-27 15:12:21 +01:00
André Peters
0553dc5959 [Postfix] Fix query 2018-02-27 15:02:31 +01:00
André Peters
55cd58f14c
Update imapsync_cron.pl 2018-02-27 15:00:27 +01:00
Lucky88888
48c85d08f2
fix maxbytespersecond issue
Fixed $maxbytespersecond configurable option. This was still not working because it took the DB value of maxage. 
"First GitHub update for me, so please tell if I should have something different. ;) "
2018-02-26 15:26:17 +00:00
André Peters
3829135d93 [ClamAV] Add directory to make bootstrap not complain about missing directories 2018-02-26 09:19:14 +01:00
André Peters
944b91a4b8 [Dockerapi] Add du command, push version 2018-02-22 09:21:37 +01:00
André Peters
bbbe52f560 [SOGo] Add blue (default) and red theme 2018-02-22 09:20:46 +01:00
André Peters
ff3328ea8c [SOGo] Use indigo theme, copy logo and theme.js to image 2018-02-19 12:56:45 +01:00
André Peters
39f289fc3c [Web, Dovecot, Postfix] Fix JSON attribute for login 2018-02-19 10:17:29 +01:00
André Peters
fc53a69a44 [Helper] Nextcloud 13; Additional header for Nextcloud site
[PHP-FPM] Build gd with TTF support
2018-02-18 20:59:32 +01:00
André Peters
ab720bf164 [Web, Postfix] Move TLS policy to mailbox attributes 2018-02-17 11:12:16 +01:00
André Peters
2bdc3f94c0 [Web] Database schema test 2018-02-17 09:50:58 +01:00
André Peters
31a9bb446c [Netfilter] Fixes a f2boptions not defined error 2018-02-17 08:51:41 +01:00
André Peters
1f09544f32 Fix conflict 2018-02-16 22:44:02 +01:00
André Peters
2865c892a6 [Multi] Fixes #1058 by including a 'force password update' option and also introduces a attributes json object to be used for further mailbox configurations in the future 2018-02-16 22:40:51 +01:00
eXtremeSHOK
8eb05d1450
Fix for large Mailboxes to avoid timeouts 2
Missing ' (sorry my editor keeps correcting the '" to " )
2018-02-14 14:02:56 +02:00
eXtremeSHOK
a37a8e3b2a
Fix for large Mailboxes to avoid timeouts
** I agree to the code of conduct and the contributory guidelines **

Tested with 80+GB single inbox via imap

``` --nofoldersizes --skipsize --fast ``` file and folder sizes are only used for statistics, which are completely useless. Before the actual data is transfered the message and folder sizes need to be calculated on a 200 000+ message inbox, this will almost never complete.

``` --buffersize 8192000 ``` sets the io buffer to 8mb, the default buffer is 4kbyte, this is speeds up syncs.

```  --skipheader 'X-*' ``` X headers vary wildly from system to system and do not ensure message uniqueness, they are not needed.

```  --split1 3000 --split2 3000 ```    split the requests in several parts on the server, 3000 is the number of messages handled per request.

``` --fastio1 --fastio2 ``` use fastio
2018-02-14 13:27:30 +02:00
Phoenix Eve Aspacio
42868b1710
Merge pull request #1037 from klausenbusk/empty
Remove "empty" folders
2018-02-14 08:15:13 +08:00
Kristian Klausen
a0cdc1e4ff Remove "empty" folders
There seems to be no reason for this empty folders.
2018-02-13 23:45:49 +01:00
André Peters
66a3df16ed [Netfilter] Fixes empty f2b options 2018-02-09 10:32:12 +01:00
André Peters
83094a773e [Watchdog] Use socket to pipe to Rspamd 2018-02-08 22:57:29 +01:00
André Peters
004d262e41 [Rspamd] Create missing password include as placeholder 2018-02-08 22:57:17 +01:00
André Peters
ac4982d706 [Dovecot] Use socket to pipe to Rspamd 2018-02-08 22:56:43 +01:00
André Peters
a2ca550aa0 [Dovecot] Use socket instead of worker IP 2018-02-08 22:29:43 +01:00
André Peters
e3854a8037 [Dockerapi] Fixes recent chang in exec_run return 2018-02-08 22:29:06 +01:00
root
fae542534d Merge remote-tracking branch 'origin/master' into dev 2018-02-08 19:54:14 +01:00
Joshua Hesketh
2fc13bdfbe Fix imapsync for large mailboxes
Where there is a lot of folders in a mailbox the output may be larger
than TEXT will allow (64KiB). Instead use MEDIUMTEXT (16MiB) which
should be ample.

Additionally check that a sync isn't already running before starting
a new one.

Fixes: #1011
2018-02-08 15:24:04 +11:00
andre.peters
cf1e46723a [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:37:10 +01:00
andre.peters
3f9e0a8023 [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:36:06 +01:00
andre.peters
ae4ccd4d17 [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:35:55 +01:00
andre.peters
6ebcd00521 [Dovecot] Fixes CVE-2017-15132 2018-02-01 22:43:28 +01:00
andre.peters
c5f9b065f6 [Dovecot] Fixes CVE-2017-15132 2018-02-01 22:27:48 +01:00
andre.peters
a0d9efba00 [PHP-FPM] Remove old migration scripts 2018-02-01 13:40:59 +01:00
andre.peters
f4ae354c0c [SOGo] Do not try to use foreign mailboxes as alias 2018-02-01 13:40:13 +01:00
andre.peters
38a819771b [Netfilter] Rename fail2ban to netfilter, use iptables-python 2018-02-01 13:39:27 +01:00
andre.peters
0773448b35 [Dockerapi] Fix jsonify output 2018-02-01 13:38:42 +01:00
André Peters
912ba9b4ff
Fixes #979 2018-01-29 14:42:51 +01:00
Michael Kuron
c30448c4d8 Merge branch 'master' of https://github.com/andryyy/mailcow-dockerized into recipient_map
Conflicts:
	data/web/inc/init_db.inc.php
2018-01-27 17:22:08 +01:00
andre.peters
7433b6dc91 [ClamAV] Build from source, fix bugs...
[Compose] New clamd-mailcow image
2018-01-27 10:26:12 +01:00
andre.peters
04f9d74339 [Web, Dovecot] Add new options to imapsync, other minor changes to forms, partly fixes #955 2018-01-24 12:59:11 +01:00
andre.peters
1aaa5682b4 [Fail2ban] Allow to set subnet size for banned networks 2018-01-24 09:11:33 +01:00
andre.peters
f2f4dabce4 [Postfix] postconf wrapper for correct config location, fixes #949 2018-01-24 09:10:43 +01:00
andre.peters
46aafff627 [ClamAV] Outsource config 2018-01-24 08:40:13 +01:00
Michael Kuron
e86565e283 Expose Postfix's recipient_canonical_maps through web UI 2018-01-23 20:02:31 +01:00
andre.peters
a7a7b3f3fd [Postfix] Use name instead of IP 2018-01-21 15:01:51 +01:00
andre.peters
d24bb16947 [Watchdog] Check PHP-FPM port 9000 and 9001 2018-01-21 15:01:35 +01:00
andre.peters
737c41379f [PHP-FPM] Move opcache config to local config file, define new PECL versions 2018-01-21 15:01:02 +01:00
andre.peters
83a21259f7 [Rspamd] Use names instead of IPs 2018-01-21 15:00:05 +01:00
andre.peters
08c8976a95 [SOGo] Show shared aliases and "allow to send as" addresses as FROM fields in SOGo 2018-01-21 14:58:16 +01:00
andre.peters
8419266678 [Web] Important fixes for quarantaine; other minor changes 2018-01-17 15:23:33 +01:00
andre.peters
09b6c20bad [DockerAPI] Hide stderr from rspamadm output 2018-01-14 18:44:06 +01:00
andre.peters
5d5d36fc60 [Dovecot] Revert to 2.2 to fix various errors 2018-01-14 10:44:06 +01:00
andre.peters
38aaeeb30b [Dovecot] Dovecot 2.3 from git for temp fixes
[ACME] Use -a switch (thanks to jas8522!)
2018-01-14 10:34:06 +01:00
andre.peters
42923698fd [Dovcot] Fixes for v2.3 2018-01-13 22:49:50 +01:00
andre.peters
ceef6d6fd3 [Dovecot] Dovecot 2.3, Pigeonhole 0.5
[Watchdog] Fix Dovecot health check
2018-01-09 11:15:52 +01:00
andre.peters
b7a23a28fd Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2018-01-08 22:01:39 +01:00
andre.peters
1e9cae9084 [Compose] New images with LOG_LINES
[Update] Do not add empty line in each loop
2018-01-08 22:00:54 +01:00
Michael Kuron
cde250a989 Properly wait for MySQL to come up before starting SOGo 2018-01-08 19:56:44 +01:00
andre.peters
db032af698 [ACME] Fix script 2017-12-31 17:17:46 +01:00
andre.peters
8d56534e76 [Postfix] Don't try to authenticate to relayhosts without username, fixes #725 2017-12-25 10:18:49 +01:00
Oratorian
236e4d4a36
See Issue #826
Fixes dockerapi-mailcow_1 | raise TypeError('port must be an integer')

Containers are now restarting.
2017-12-18 16:41:04 +01:00
andre.peters
52f4f850cf [Postfix] Fix missing authentication data for relayhosts when sender domain is alias domain 2017-12-17 17:45:12 +01:00
andre.peters
a771d66889 [Dovecot] Update imapsync 2017-12-17 17:45:05 +01:00
andre.peters
2994b94b6c [Docker API] Remove logs, remove env var for compose project name 2017-12-11 09:43:01 +01:00
andre.peters
6c67b9df82 Replace name by IP, remove unused tables 2017-12-09 22:30:18 +01:00
andre.peters
2519738094 Various changes... 2017-12-09 13:15:24 +01:00
Peter Schiffer
7d6fc8e6b6 [Dockerapi] Auto detect version of docker server
Some older versions of docker need specific version of client api to be able to
communicate. This change allows automatically detect and set version of API to
match server version of API.

Fixes #765
2017-12-01 23:41:37 +01:00
André
ade4b9e7ae [Postfix, Web] Feature: BCC maps 2017-11-19 15:13:43 +01:00
André
5211ab10ed [ACME] Fix license issue 2017-11-16 14:57:17 +01:00
André
c45ea5433f [Rspamd] Base on xenial to fix mime types problems 2017-11-15 12:29:18 +01:00
André
fe845ee56d [Fail2ban] Fix fail2ban container 2017-11-14 19:50:20 +01:00
André
84a7a1a2e7 [Compose] New images, Nginx checks for SOGo before bootstrapping
[PHP-FPM] Some more modules (primarily for Horde)
[Fail2ban] Do not log matches of local and private ips
[Watchdog] Some changes in log system for further processing (wip)
[ACME] Fixes #745
2017-11-14 10:44:22 +01:00
André
60e97503f7 [Web, Dovecot] Show wether a sync job is running, validate min max input attr and validate these values 2017-11-08 11:07:32 +01:00
André
a36a8828c2 [Dovecot] Specify supervisord user 2017-11-05 12:19:18 +01:00
André
1ef10f1358 [PHP-FPM] Include net_sieve, test removal of usr/src/php for size 2017-11-03 20:27:43 +01:00
André
a9f64a3472 [Dockerapi] Return answers in json 2017-11-03 20:26:09 +01:00
André
b32e5adcc5 [Dovecot] sieve_before/after maps in sql, changed dict names 2017-11-03 20:25:38 +01:00
André
1e9bc49f2c [Rspamd] Echo dummy for fowardingshosts map; Use higher map reading interval;
[Dockerapi] Exit on sigterm;
[Watchdog] Wait for dockerapi-mailcow to be online
2017-10-27 11:22:39 +02:00
André
04cb033f0a [PHP-FPM] Add imagemagic 2017-10-21 10:10:27 +02:00
André
a110e2ea0f [ACME] Fix detection of orphaned SANs and add tini 2017-10-21 10:08:20 +02:00
André
6b6470fe54 [Rspamd] Use tini 2017-10-15 09:31:19 +02:00
André
ac413058c1 [Watchdog] Fix kill -0 check, use tini and send kill request to tini instead of parent pid, sleep longer 2017-10-14 23:26:08 +02:00
André
c5dd30b058 [ClamAV] Use tini, check if background procs are running, use pipe to output to stdout 2017-10-14 23:25:29 +02:00
andryyy
c5054ae7ed [Watchdog] Ignore null name in jq
[Nginx] Merge sites
[Scripts] Nextcloud helper script (testing!)
2017-10-11 22:56:22 +02:00
andryyy
7c46d6548b [Dovecot] Ignore watchdog IP in logs, filter by syslog-ng 2017-10-11 11:23:20 +02:00
andryyy
e107cbef5e [Postfix] Fix sending as alias, when alias is in alias domains, cleanup 2017-10-11 11:22:52 +02:00
andryyy
2862b43c81 [Watchdog] Fix watchdog to fit non-exposed PHP 2017-10-09 15:54:54 +02:00
andryyy
6110ac386f [SOGo] Use official nightly; [PHP-FPM] Fix expose=off 2017-10-09 15:45:48 +02:00
andryyy
72995ff98e [PHP-FPM] Include more modules for upcoming features and Nextcloud support, drop ro flag; [Watchdog] Some fixes and changes 2017-10-08 22:47:52 +02:00
andryyy
ef9953898c [ACME, Watchdog, DockerAPI] Use only limited Docker API 2017-10-06 13:32:49 +02:00
andryyy
3ae0b16845 [Web, DockerAPI] Be more like official Docker API 2017-10-06 10:20:40 +02:00
andryyy
fc18d153cd [Compose, DockerAPI, Web, Watchdog] Watchdog may send notification mails (todo: docs), DockerAPI via Flesk for limited access 2017-10-05 23:38:33 +02:00
andryyy
9860d44d04 [Watchdog] Do also log errors to Redis if availble 2017-10-04 23:18:51 +02:00
andryyy
2dc8306b69 [Postfix] Remove old socket 2017-10-04 23:15:26 +02:00
andryyy
82ac5fa063 [SOGo] Remove supervisord API 2017-10-04 13:04:35 +02:00
andryyy
9b4ed6b21c [PHP-FPM] Include Docker api for better SOGo status handling and future changes 2017-10-04 13:04:15 +02:00
andryyy
da987e5b48 [Postfix] Forgot 'not' in filter 2017-10-03 16:54:18 +02:00
andryyy
c59d03fcb3 [Watchdog] Skip when use_watchdog=n 2017-10-03 12:07:48 +02:00
andryyy
68d7fa1504 [Watchdog] Skip when use_watchdog=n 2017-10-03 12:05:38 +02:00
Michael Kuron
752a571607 Merge pull request #638 from mkuron/acme
ACME needs to wait for MySQL to be ready
2017-09-28 12:58:07 +02:00
Michael Kuron
ae79445ec0 ACME needs to wait for MySQL to be ready 2017-09-27 19:48:25 +02:00
andryyy
337c9e350e [Watchdog] Reset diff, new image 2017-09-22 16:40:02 +02:00
andryyy
62524150d2 [ACME] Add timestamps, check if acme account key is valid
[Postfix] Ignore local0
[Watchdog] Add Rspamd checks
2017-09-21 19:30:09 +02:00
andryyy
ab850dc901 [ACME] Detect and fix invalid registration 2017-09-21 09:46:09 +02:00
andryyy
41d2a16571 [Watchdog] Script was not executable 2017-09-20 23:36:04 +02:00
andryyy
f511cb0f63 [Watchdog] More fixes and or changes 2017-09-20 23:24:56 +02:00
andryyy
fd1955edca [Fail2ban] Add variable name 2017-09-20 23:24:39 +02:00
andryyy
b6e84fac3a Sleep instead of stopping containers to prevent restarts 2017-09-20 12:50:50 +02:00
andryyy
df5c79c3f1 Fixes for watchdog! 2017-09-20 12:27:24 +02:00
andryyy
e70d5b9206 Fix watchdog 2017-09-20 11:05:23 +02:00
andryyy
a8fb1d3f4f Add experimental watchdog 2017-09-20 10:56:49 +02:00
andryyy
d0c0cd4992 [Rspamd] Fix user settings... 2017-09-16 23:27:13 +02:00
andryyy
1b974bc8d1 [Compose] New images 2017-09-16 23:05:33 +02:00
andryyy
2b97305f6d [ACME] Sleep, don't exit 2017-09-16 13:17:48 +02:00
andryyy
762f18e913 [Clamd] Use Dockerds own init system 2017-09-14 23:13:24 +02:00
andryyy
eeaa48a729 [PHP-FPM] Use valid user for mysqladmin ping
[SOGo] Use valid user for mysqladmin ping
2017-09-12 20:57:18 +02:00
andryyy
1ffed58956 [ACME] New version, better IPv4 detection 2017-09-11 21:51:17 +02:00
andryyy
ed4e8d301c Fix tabs 2017-09-08 18:41:02 +02:00
andryyy
b8c4093702 [Web] Allow a spam score up to 2000, fixes #556 2017-09-07 20:20:36 +02:00
Tobias
fcd0efc265 Change primary name of SSL certificate
Hostname as primary name for the SSL certificate, all other names will
be added as SAN
2017-09-03 19:41:47 +02:00
andryyy
1f90433429 [Dovecot, Postfix, SOGo] Fix redis log cleanup, fixes #542 2017-09-03 11:57:58 +02:00
andryyy
446907944a [Postfix] Fix missing ltrim 2017-09-01 23:40:23 +02:00
andryyy
008d500f4d [Compose, Dovecot] Fixed missing ltrim 2017-09-01 23:39:51 +02:00
andryyy
7351fcf1e3 [Compose, SOGo] New version, ltrim logs 2017-09-01 23:33:12 +02:00
andryyy
4d7bb26874 [Postfix] Add null rcpt for watchdog 2017-09-01 12:22:29 +02:00
andryyy
08d6b97ffa [Dovecot] New Dovecot and Pigeonhole versions; include delete2 option in imapsync 2017-08-31 10:36:10 +02:00
andryyy
4a0e3a433b [Fail2ban] Remove rule to detect disconnects without authentication 2017-08-30 22:27:33 +02:00
andryyy
b1213c51d7 [Rspamd] Dynamic ratelimit fixed, removed async redis request; Ready to implement per-user ratelimits via UI (tbd) 2017-08-30 21:42:39 +02:00
andryyy
7a2c0f2ee7 [Acme] Skip backup mx domains 2017-08-18 09:57:25 +02:00
André Peters
92eefc1288 Merge pull request #486 from mkuron/patch-1
Disable ClamAV phishing filter
2017-08-02 15:54:16 +02:00
Michael Kuron
dec64eef32 Disable ClamAV phishing filter
ClamAV has a phishing filter built in, but it generates too many false positives. We can disable it without risk because rspamd also checks for phishing itself.
2017-08-02 14:42:53 +02:00
andryyy
2eed7c05a1 [Dovecot] Push version, fix cronjob (fixes #310) 2017-08-01 14:02:00 +02:00
andryyy
c7484434dd [Dovecot] Remove master.pid if not running; Check for active imapsync besides lock file; Reconnect MySQL connection in imapsync_cron.pl 2017-07-31 08:19:02 +02:00
andryyy
33bf9f5c5d [Rspamd] Push image version 1.5, Rspamd 1.6.3 2017-07-26 23:07:01 +02:00
andryyy
8da02378b1 [Rspamd] Use Nginx IP in settings map 2017-07-26 23:04:49 +02:00
andryyy
03c614f749 [Postfix] Use Nginx IP in whitelist_forwardinghosts.sh 2017-07-26 23:04:27 +02:00
andryyy
b629089ff8 [SOGo] Rename reconf-domains to bootstrap-sogo and exec sogod after a successful bootstrap; Wait for SOGo to die and free listener 2017-07-24 23:25:04 +02:00
andryyy
5d5646df0c [Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code 2017-07-24 22:53:23 +02:00
andryyy
83d485dd94 [Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication) 2017-07-22 20:39:54 +02:00
andryyy
ed33cb5f57 [Rspamd] ARC: Disallow login/domain mismatch 2017-07-21 11:03:35 +02:00
andryyy
5f5872f78b [Rspamd] Initial custom ratelimit support 2017-07-13 12:54:53 +02:00
andryyy
e6727b1fd6 [ACME] Iterate alias domains, use hostname in subject field 2017-07-13 12:51:52 +02:00
andryyy
9e92c4a2ad [Dovecot] Do not keep persistent logs in a container 2017-07-11 17:09:31 +02:00
andryyy
f8ae5158cb [Postfix] Do not keep persistent logs in a container 2017-07-11 17:09:20 +02:00
andryyy
a31819fd6c [SOGo] Log to a pipe to not keep logs in a container 2017-07-11 17:08:06 +02:00
andryyy
51660589d4 [Rspamd] Push version 1.3 2017-07-09 22:28:36 +02:00
andryyy
a324b1a385 [Rspamd] Fix DKIM siging (base64 hash line folding) 2017-07-06 15:57:33 +02:00
andryyy
69da02c144 [Dovecot] Important fix for Pigeonhole (downgrade) 2017-07-05 19:13:07 +02:00
andryyy
7f47af1d60 Fix destination hash 2017-07-05 12:31:52 +02:00
andryyy
87cc5f54ff [Postfix] Fix redis log destination hash 2017-07-05 12:03:12 +02:00
andryyy
2fadfee61a [SOGo] Remove thunderbird plugin generation, will move to docs 2017-07-05 10:22:48 +02:00
andryyy
de14d30e6b [ACME] Fix exit command (was using echo), fix for duplicate SAN (filter) 2017-07-04 21:32:58 +02:00
andryyy
dc463c3dda [Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver. 2017-07-04 18:08:20 +02:00
andryyy
ed11e7586e [Clamd] Add SKIP_CLAMD variable to disable Clamd start 2017-07-04 18:05:44 +02:00
andryyy
ace247b3b9 [ACME] Unset name arrays before reusing them 2017-07-03 10:20:09 +02:00
andryyy
2cf9f71613 [ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME 2017-07-02 20:18:22 +02:00
andryyy
cf902854d7 Merge, conflict fixed 2017-07-02 11:22:35 +02:00
andryyy
b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy
ae5ce6568d [Dovecot] Dovecot 2.2.31, Pigeonhole 0.4.19 2017-06-30 20:30:30 +02:00
andryyy
5ab11c0c1e [ACME] Show err instead of empty var when IP lookup failed 2017-06-30 20:29:55 +02:00
andryyy
d2048ccf20 [ACME] Be more verbose about IP address 2017-06-29 21:22:01 +02:00
andryyy
a6b60aebb8 [Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match 2017-06-29 11:30:14 +02:00
andryyy
9040d456ed [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:25:32 +02:00
andryyy
3d652dd3d0 Added more checks for acme-mailcow 2017-06-29 00:56:51 +02:00
andryyy
6d8438c01c - More checks for acme-mailcow (verify hashes)
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy
b0584c3622 Use , as IFS for additional san 2017-06-28 10:50:51 +02:00
andryyy
f7bce8b81a Copy dhparams if not found 2017-06-27 20:15:53 +02:00
andryyy
e9ea0712f2 Add SKIP_FAIL2BAN var 2017-06-27 10:26:48 +02:00
andryyy
b9ffcf2bf8 Add whitelist function to Fail2ban 2017-06-26 23:18:05 +02:00
andryyy
8590cc577b Move folder names to match image names 2017-06-25 00:21:24 +02:00
andryyy
c4c1bdf477 Add a retry window for fail2ban-mailcow, add priority to logging, added window time to logging string" 2017-06-24 20:04:12 +02:00
andryyy
b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy
2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy
59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
andryyy
18e52ab27d More debug output, keep key for TLSA 3 1 1, other minor changes 2017-06-23 08:33:07 +02:00
andryyy
85a9239ae9 Move account key 2017-06-22 21:44:10 +02:00
andryyy
0c07ff59c3 Fix skip le test... 2017-06-22 21:31:14 +02:00
Michael Kuron
1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy
4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy
856b05147c Skip LE with configuration parameter 2017-06-22 09:06:24 +02:00
NuVivo314
601f3b6947 Change select Priority
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy
c82c9524b0 Delete certificate if SANs were removed 2017-06-20 20:06:54 +02:00