Commit Graph

325 Commits

Author SHA1 Message Date
André
5211ab10ed [ACME] Fix license issue 2017-11-16 14:57:17 +01:00
André
c45ea5433f [Rspamd] Base on xenial to fix mime types problems 2017-11-15 12:29:18 +01:00
André
fe845ee56d [Fail2ban] Fix fail2ban container 2017-11-14 19:50:20 +01:00
André
84a7a1a2e7 [Compose] New images, Nginx checks for SOGo before bootstrapping
[PHP-FPM] Some more modules (primarily for Horde)
[Fail2ban] Do not log matches of local and private ips
[Watchdog] Some changes in log system for further processing (wip)
[ACME] Fixes #745
2017-11-14 10:44:22 +01:00
André
60e97503f7 [Web, Dovecot] Show wether a sync job is running, validate min max input attr and validate these values 2017-11-08 11:07:32 +01:00
André
548fe979ec [Compose] add net_bind_service cap to Dovecot, new images, reduce oom_score for dockerapi 2017-11-05 12:17:37 +01:00
André
bcdccf9c92 [Compose] New images, add restart to dockerapi, remove stop grace period (container now handles stop signals better) 2017-11-03 20:38:59 +01:00
André
1e9bc49f2c [Rspamd] Echo dummy for fowardingshosts map; Use higher map reading interval;
[Dockerapi] Exit on sigterm;
[Watchdog] Wait for dockerapi-mailcow to be online
2017-10-27 11:22:39 +02:00
Michael Kuron
3692fc8f32 Update rspamd 2017-10-25 19:43:44 +02:00
André
7054aa316b [Compose] New Rspamd image version; Syntax check Nginx conf before starting container; New ACME image version 2017-10-21 10:09:29 +02:00
André
a35bf76154 [Compose] Remove init where possible or replace init by tini, set grace periods 2017-10-15 09:42:51 +02:00
André
c3e36be576 [Compose] Start to replace init 2017-10-14 23:26:47 +02:00
Michael Kuron
331cedd12f Update rspamd 2017-10-14 13:18:44 +02:00
andryyy
77745e0f79 [Compose] Add fixed ip for watchdog, remove temp. watchdog command, push new Postfix and Dovecot versions 2017-10-11 11:18:58 +02:00
andryyy
2862b43c81 [Watchdog] Fix watchdog to fit non-exposed PHP 2017-10-09 15:54:54 +02:00
andryyy
6110ac386f [SOGo] Use official nightly; [PHP-FPM] Fix expose=off 2017-10-09 15:45:48 +02:00
andryyy
874aac3c5e [Nginx, PHP-FPM] Do not expose PHP version, example for nextcloud site, include custom locations to site (add site.something.custom to data/conf/nginx) 2017-10-08 22:57:34 +02:00
andryyy
72995ff98e [PHP-FPM] Include more modules for upcoming features and Nextcloud support, drop ro flag; [Watchdog] Some fixes and changes 2017-10-08 22:47:52 +02:00
andryyy
ef9953898c [ACME, Watchdog, DockerAPI] Use only limited Docker API 2017-10-06 13:32:49 +02:00
andryyy
fc18d153cd [Compose, DockerAPI, Web, Watchdog] Watchdog may send notification mails (todo: docs), DockerAPI via Flesk for limited access 2017-10-05 23:38:33 +02:00
andryyy
405c49fb0a [Postfix] Remove old socket 2017-10-04 23:15:45 +02:00
andryyy
6f91d094e2 [Compose] Update SOGo and PHP-FPM 2017-10-04 13:03:25 +02:00
andryyy
68d7fa1504 [Watchdog] Skip when use_watchdog=n 2017-10-03 12:05:38 +02:00
Michael Kuron
752a571607 Merge pull request #638 from mkuron/acme
ACME needs to wait for MySQL to be ready
2017-09-28 12:58:07 +02:00
Michael Kuron
ae79445ec0 ACME needs to wait for MySQL to be ready 2017-09-27 19:48:25 +02:00
andryyy
337c9e350e [Watchdog] Reset diff, new image 2017-09-22 16:40:02 +02:00
andryyy
9a58bb1620 [Compose] New image versions due to watchdog 2017-09-21 19:23:51 +02:00
andryyy
ab850dc901 [ACME] Detect and fix invalid registration 2017-09-21 09:46:09 +02:00
andryyy
38649cca3d [Compose] Remove dns_search 2017-09-20 23:22:38 +02:00
andryyy
3ec18619ee [Compose] Push new images 2017-09-20 12:56:04 +02:00
andryyy
a8fb1d3f4f Add experimental watchdog 2017-09-20 10:56:49 +02:00
andryyy
1c3194910d [Compose] Rspamd fix 2017-09-16 23:28:54 +02:00
andryyy
1b974bc8d1 [Compose] New images 2017-09-16 23:05:33 +02:00
andryyy
8741b5f3b1 [Compose] Enable some minimal inits, change or remove some health checks 2017-09-16 13:17:37 +02:00
andryyy
79985ad7ed [Compose] Disable strict mode in MariaDB 10.2 (temp.), skip most DNS resolving in MariaDB, fix MariaDB healthcheck by using a valid user, set larger MariaDB packet size 2017-09-12 20:59:24 +02:00
andryyy
9a504de1f8 [ClamAV] Restart only on failure 2017-09-12 07:57:09 +02:00
andryyy
1ffed58956 [ACME] New version, better IPv4 detection 2017-09-11 21:51:17 +02:00
andryyy
2f41832e58 Cleanup 2017-09-08 18:37:28 +02:00
andryyy
c5530273b0 [ACME] Push new image version 2017-09-04 20:58:49 +02:00
andryyy
008d500f4d [Compose, Dovecot] Fixed missing ltrim 2017-09-01 23:39:51 +02:00
andryyy
7351fcf1e3 [Compose, SOGo] New version, ltrim logs 2017-09-01 23:33:12 +02:00
andryyy
08d6b97ffa [Dovecot] New Dovecot and Pigeonhole versions; include delete2 option in imapsync 2017-08-31 10:36:10 +02:00
andryyy
4a0e3a433b [Fail2ban] Remove rule to detect disconnects without authentication 2017-08-30 22:27:33 +02:00
andryyy
b1213c51d7 [Rspamd] Dynamic ratelimit fixed, removed async redis request; Ready to implement per-user ratelimits via UI (tbd) 2017-08-30 21:42:39 +02:00
andryyy
ba13086446 [SOGo] Update to image v1.5
[Rspamd] Mount custom directory
2017-08-18 22:16:15 +02:00
André Peters
92eefc1288 Merge pull request #486 from mkuron/patch-1
Disable ClamAV phishing filter
2017-08-02 15:54:16 +02:00
Michael Kuron
dec64eef32 Disable ClamAV phishing filter
ClamAV has a phishing filter built in, but it generates too many false positives. We can disable it without risk because rspamd also checks for phishing itself.
2017-08-02 14:42:53 +02:00
andryyy
2eed7c05a1 [Dovecot] Push version, fix cronjob (fixes #310) 2017-08-01 14:02:00 +02:00
andryyy
1d90702bae [MySQL] Fix max connections 2017-08-01 09:26:53 +02:00
andryyy
deeeff0e01 [Dovecot] Push version 2017-07-31 08:20:03 +02:00
andryyy
33bf9f5c5d [Rspamd] Push image version 1.5, Rspamd 1.6.3 2017-07-26 23:07:01 +02:00
andryyy
5d5646df0c [Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code 2017-07-24 22:53:23 +02:00
andryyy
83d485dd94 [Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication) 2017-07-22 20:39:54 +02:00
andryyy
4e148c7026 [Compose] Push Rspamd 1.4; Push acme 1.14; Add Dovecot ulimits 2017-07-13 12:54:29 +02:00
andryyy
e6727b1fd6 [ACME] Iterate alias domains, use hostname in subject field 2017-07-13 12:51:52 +02:00
andryyy
48318a4999 [Compose] nslookup against google.com 2017-07-11 22:51:48 +02:00
andryyy
99cd459655 [Compose] Remove logging restrictions to make it easier to implement other drivers; Push new Postfix, SOGo and Dovecot images 2017-07-11 17:06:36 +02:00
andryyy
12e9620a07 [Compose] Add DOVEADM_PORT with default binding 127.0.0.1:19991 2017-07-10 21:28:24 +02:00
andryyy
51660589d4 [Rspamd] Push version 1.3 2017-07-09 22:28:36 +02:00
andryyy
86e86c7758 [Compose] Important health check fix for nginx-mailcow 2017-07-07 11:20:00 +02:00
andryyy
a324b1a385 [Rspamd] Fix DKIM siging (base64 hash line folding) 2017-07-06 15:57:33 +02:00
andryyy
44d3a6eee8 [Compose] Slight changes to health checks to start a bit faster 2017-07-06 11:34:10 +02:00
andryyy
e357eb1131 [SOGo] SOGo v3.2.10 (https://git.io/vQV7r) 2017-07-06 11:23:40 +02:00
andryyy
69da02c144 [Dovecot] Important fix for Pigeonhole (downgrade) 2017-07-05 19:13:07 +02:00
andryyy
2fadfee61a [SOGo] Remove thunderbird plugin generation, will move to docs 2017-07-05 10:22:48 +02:00
andryyy
fa8b5c3ab1 [ACME] Version 1.12 2017-07-04 21:33:45 +02:00
andryyy
dc463c3dda [Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver. 2017-07-04 18:08:20 +02:00
andryyy
a2f1c09a84 [Web] Style changes to DKIM import section, push login errors to Redis channel 2017-07-04 18:05:04 +02:00
andryyy
ace247b3b9 [ACME] Unset name arrays before reusing them 2017-07-03 10:20:09 +02:00
andryyy
2cf9f71613 [ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME 2017-07-02 20:18:22 +02:00
andryyy
b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy
cf594fbabd [Compose] Reduce interval of healthcheck to not wait 3 minutes for a healthy state... 2017-07-01 23:20:45 +02:00
andryyy
6853130952 [Compose] Less hammering on mailcow.email/ip.php, ability to disable IPv4 check in mailcow.conf, don't complain about missing ADDITIONAL_SAN 2017-07-01 23:13:41 +02:00
andryyy
49e72b6c72 Reduce Unbound health check, push Dovecot and ACME image versions 2017-06-30 20:31:04 +02:00
andryyy
a6b60aebb8 [Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match 2017-06-29 11:30:14 +02:00
andryyy
9040d456ed [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:25:32 +02:00
andryyy
3d652dd3d0 Added more checks for acme-mailcow 2017-06-29 00:56:51 +02:00
andryyy
6d8438c01c - More checks for acme-mailcow (verify hashes)
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy
a58c5a3240 Push version of acme-mailcow 2017-06-27 20:16:43 +02:00
andryyy
e9ea0712f2 Add SKIP_FAIL2BAN var 2017-06-27 10:26:48 +02:00
andryyy
433e0c8f9a Allow /0 to whitelist all, push f2b version in yml 2017-06-27 09:32:57 +02:00
andryyy
b6bc1eaf0a Fix autodiscover, pass ports to phpfpm-mailcow for further features and autodiscover 2017-06-25 18:09:42 +02:00
andryyy
8590cc577b Move folder names to match image names 2017-06-25 00:21:24 +02:00
andryyy
47eb11338c Push fail2ban version to 1.2 2017-06-24 20:06:23 +02:00
andryyy
e39615ed55 Redis as dependency for Fail2ban 2017-06-24 20:02:33 +02:00
andryyy
b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy
fdc98f8418 Fixed IP for Redis, fail2ban-mailcow: pass TZ env var 2017-06-24 00:04:50 +02:00
andryyy
2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy
0fafadb0bb Also bind to 0.0.0.0 by default 2017-06-23 10:53:44 +02:00
andryyy
59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
Michael Kuron
1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy
4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy
2c3d649f0f Skip LE with configuration parameter 2017-06-22 09:06:28 +02:00
andryyy
b051870ba4 Limit log size as most information is written to Redis 2017-06-21 21:39:24 +02:00
andryyy
ca917673bd Introduce image tags 2017-06-20 20:05:49 +02:00
andryyy
8eeae43824 Fixed IP for MySQL to prevent IPv6 issues 2017-06-19 10:18:16 +02:00
andryyy
d720f31684 Use unbound.conf from data/conf 2017-06-18 21:03:57 +02:00
andryyy
6fa19a37d8 Unbound changes 2017-06-18 20:23:26 +02:00
andryyy
7b1eb71216 Change Unbound health check 2017-06-17 21:46:43 +02:00
andryyy
ac7dc3e330 Fix alias 2017-06-17 21:41:12 +02:00
Michael Kuron
115ac81bc6 Pass hostname to SOGo Integrator build script 2017-06-17 13:59:09 +02:00
andryyy
89788340a0 Fix ActiveSync (SOGo issue 4142 and 4119) 2017-06-16 23:02:23 +02:00
Michael Kuron
c739091a67 Customize the SOGo Integrator plugin for Thunderbird 2017-06-16 10:30:40 +02:00
andryyy
6d49dfb4e1 Less restarts 2017-06-13 23:38:08 +02:00
andryyy
26c7cabee5 Unbound needs to be healthy 2017-06-13 07:45:41 +02:00
andryyy
b367ec0ace Add Unbound as better DNSSEC enabled resolver 2017-06-12 23:48:27 +02:00
andryyy
92e2999dc0 Remove DNS recursor 2017-06-12 09:22:02 +02:00
andryyy
3a42895094 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-06 22:02:17 +02:00
andryyy
2db910d6dc Remove Rmitler \o/ 2017-06-06 21:58:48 +02:00
Phoenix Eve Aspacio
4c0a1d4fb1 fixed typo 2017-06-06 20:10:39 +08:00
andryyy
8ea241f1e7 Allow all protocols in named 2017-05-29 21:47:53 +02:00
andryyy
178a219c05 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-05-26 23:02:34 +02:00
andryyy
ae97866b05 Set via env file 2017-05-26 23:01:18 +02:00
andryyy
b1dd0cdcd1 Fixed project name for f2b 2017-05-26 22:52:45 +02:00
André Peters
43500389cb Merge pull request #314 from mkuron/fail2ban
Add auth rate limiting container dependency on PHP container
2017-05-25 20:49:39 +02:00
Michael Kuron
74b4feea38 Fix auth rate limiting container dependency 2017-05-25 16:11:39 +02:00
André Peters
8c73b8eb5f Merge pull request #311 from mkuron/fail2ban
Fail2ban-like authentication rate limiting for Postfix, Dovecot and SOGo
2017-05-25 10:58:14 +02:00
Michael Kuron
88f94a2e15 Authentication rate limiting for Postfix, Dovecot and SOGo 2017-05-25 10:44:10 +02:00
andryyy
354008a82d Fixed hostname for Rspamd to allow fixed rs_history prefix build by hostname 2017-05-23 21:51:18 +02:00
andryyy
f38d726ed2 Revert base of Rspamd 2017-05-17 07:46:27 +02:00
andryyy
c92434af61 Fix ipv6 2017-05-14 20:10:32 +02:00
andryyy
0ea977b1a0 Fix path 2017-05-14 14:25:21 +02:00
André Peters
0950985894 Merge pull request #203 from mkuron/patch-2
IPv6 support
2017-05-13 09:10:32 +02:00
andryyy
66634b19fd Use more alpine images, thanks to K2rool 2017-05-13 09:04:10 +02:00
andryyy
4cb8596ff0 Remove unused and unnamed volume 2017-05-09 23:25:13 +02:00
andryyy
2e6fdba2b6 PHP should depend on Redis 2017-05-08 15:40:31 +02:00
Michael Kuron
f1571c08a5 Add ipv6nat container
This enables full IPv6 support via NAT
2017-05-06 08:28:44 +02:00
Michael Kuron
f02b47ac27 Enable local IPv6 2017-05-06 08:28:43 +02:00
andryyy
73c6d69f5b Add ClamAV by default, can be shut down if not needed 2017-04-25 10:46:27 +02:00
andryyy
0c7ff2f4b6 Added clamd container for testing 2017-04-21 22:09:09 +02:00
andryyy
022739dcab Remove reset mysql script 2017-04-08 23:35:58 +02:00
andryyy
655f6e7138 Add Zeyple volume to Postfix 2017-04-05 22:32:18 +02:00
andryyy
34bc242554 Add Zeyple filter 2017-04-05 22:19:01 +02:00
andryyy
58d86dadce Rebase Dovecot on Stretch slim, build from stable source with latest stable Pigeonhole for antispam replacement 2017-04-03 20:06:49 +02:00
andryyy
b15c6f7d96 Change repository names 2017-03-06 09:10:06 +01:00
andryyy
6d7b6a92ee Fix docker-compose 2017-03-05 14:04:00 +01:00
andryyy
be8031d8ff Move sleep to docker-compose 2017-03-05 12:25:46 +01:00
andryyy
714490ad5e Fix Rspamd 2017-03-04 00:02:42 +01:00
andryyy
60ba5d2ce5 Changes in depends_on 2017-03-03 15:24:04 +01:00
andryyy
6d7c3423ba Change Nginx templates 2017-02-28 10:12:18 +01:00
andryyy
e6b5ce44a6 Add Nginx HTTP listener, add build flags for containers, add Postfix data volume 2017-02-28 09:59:54 +01:00
andryyy
3aae8375b4 Add default var for HTTPS_BIND 2017-02-23 16:24:42 +01:00
andryyy
1c12799091 Add bind9 and replace pdns 2017-02-23 16:06:28 +01:00
andryyy
47a7aa7807 Not of any use as of today 2017-02-21 22:26:14 +01:00
carazzim0
b0d8f6cd46 add static address for nginx 2017-02-16 19:55:04 +01:00
andryyy
920c0c064e Use static IPs for Rspamd and SOGo to not emerg Nginx, start Rspamd after Nginx, add health check for SQL 2017-02-02 10:09:10 +01:00
andryyy
010468636d Push to compose 2.1 2017-01-30 10:58:33 +01:00
andryyy
865634a340 Fix service names... 2017-01-25 19:40:31 +01:00
andryyy
2ec001a92c Revert docker container names until next release 2017-01-25 19:37:23 +01:00
andryyy
e87c5d30dd Remove aliases 2017-01-21 11:49:55 +01:00
andryyy
085be87eb5 TZ in mysql command breaks mysql on first start 2017-01-15 17:38:40 +01:00
andryyy
079ddb40f6 Delay change of service names 2017-01-13 16:28:53 +01:00
andryyy
89b5d9bde6 Easier container names, allow to set HTTPS port, Typo fix 2017-01-12 21:40:42 +01:00
andryyy
b109c6d7f0 Use default TZ in MySQL 2017-01-11 16:12:08 +01:00
andryyy
603902014a Add command for phpfpm service to set a timezone, remove env var 2017-01-09 11:04:35 +01:00
andryyy
7384f83932 Add rspamd volume 2017-01-05 20:33:37 +01:00
andryyy
2c822accb8 Do not change service names 2017-01-03 10:33:06 +01:00
andryyy
b53df6e088 Change ports in docker-compose file if needed 2017-01-01 21:26:51 +01:00
andryyy
bb3ef74721 Change service names to skip alias 2017-01-01 21:23:10 +01:00
andryyy
49e09d3ca0 Add autodiscover and autoconfig 2016-12-21 12:16:05 +01:00
andryyy
eef81c58ae Add random created master at each startup to handle SOGo features 2016-12-21 08:25:47 +01:00
andryyy
c54da60071 Switch to stable MariaDB 2016-12-18 22:25:15 +01:00
andryyy
1fcdbc01af Skip tz in MySQL 2016-12-18 15:03:42 +01:00
andryyy
fc16653272 Added timezone 2016-12-18 12:49:57 +01:00
andryyy
4102ccc1a3 Add timezones 2016-12-18 12:42:10 +01:00
andryyy
cd6ab4b464 Must use MySQL 5.7 for default row format atm, moved volumes etc., some changes to Dockerfiles 2016-12-18 00:10:52 +01:00
andryyy
7ef70e4c81 Move dkim data, vmail and dbs to volumes, changed README 2016-12-17 20:31:59 +01:00
andryyy
8b50e59f73 Share SOGo WebResources 2016-12-17 10:06:03 +01:00
andryyy
767cdb0e00 Use pDNSr for all services to get better rr-results 2016-12-16 12:41:46 +01:00
andryyy
220ea526f7 Thanks to https://gist.github.com/croessner/64ae8150b3fa3636ec002b812c4ab2ff 2016-12-16 12:23:04 +01:00
andryyy
4b7bf81cbd Add data containers to fix permission issues 2016-12-15 10:08:36 +01:00
andryyy
774320d5e8 Use env vars for PHP app 2016-12-14 21:10:11 +01:00
andryyy
1d190c4553 Should use the mailcow nginx image... 2016-12-14 16:25:20 +01:00
andryyy
c727e1fd1e Add snakeoil certs 2016-12-14 16:18:18 +01:00
andryyy
9e8a003508 Remove old file 2016-12-14 15:56:30 +01:00