Commit Graph

73 Commits (1fb81f05116f580924aa799e5b42e74a4803e323)

Author SHA1 Message Date
andryyy f1aa306ff2
[Watchdog] Add external check for open relay, requires SAL 2020-01-25 18:26:56 +01:00
andryyy dd91be5a39
[Watchdog] Wait 3 seconds before looping again 2020-01-01 20:11:28 +01:00
andryyy 9e11ab1fd4
[Watchdog] Retry to get current ACME log status, if empty (may fix watchdog mails on very busy servers - eg while running a backup) 2019-12-28 11:37:04 +01:00
andryyy f3ac24f0e8
[Watchdog] Revert acme-mailcow threshold to 1 2019-12-04 21:46:16 +01:00
andryyy ced6867a4e
[Watchdog] Fix ipv6 config check 2019-12-02 18:04:56 +01:00
andryyy 9998a9ef28
[Watchdog] smtp-cli 3.10 (yay) and a new check for IPv6 configuration problems 2019-12-02 14:23:54 +01:00
andryyy 78e727bcfc
[Watchdog] Retry acme check once more, redis-mailcow might be busy and not returning the wanted string 2019-11-24 09:19:58 +01:00
andryyy a95a3f6145
[Watchdog] Watch olefy 2019-10-18 19:45:16 +02:00
andryyy 0089f72f3d
[Watchdog] Fix for Rspamd 2.0 2019-10-12 13:15:36 +02:00
andryyy baba546c7a
[Watchdog] Wait longer for containers to settle 2019-09-21 22:41:31 +02:00
andryyy 6a7cc9ec80
[Watchdog] Monitor Redis 2019-09-12 08:29:15 +02:00
andryyy 62068b2209
[Watchdog] Add watchdog@invalid as rcpt for check 2019-09-04 23:07:17 +02:00
andryyy f00b563d9c
[Watchdog] More fixes for watchdog... 2019-08-13 20:19:01 +02:00
andryyy 6aa7664d79
[Watchdog] Force timeout on smtp-cli, kill watchdog.sh on reload 2019-08-11 10:18:00 +02:00
andryyy fc1e547e53
[Watchdog] Minor changes and better error detection; Increased ClamAV threshold 2019-08-09 14:12:56 +02:00
andryyy 1ad1413d08
[Watchdog] Do not reload every minute... 2019-08-03 14:38:09 +02:00
andryyy 5f9644e8bd
[Watchdog] Minor changes and PID logging for workers, disabling olefy check 2019-08-03 14:29:02 +02:00
Patrik Kernstock 39250ca3d0
Added charset for watchdog mails
Added charset parameter to get rid of the negative rating of rspamd R_MISSING_CHARSET (2.5).
2019-07-25 21:49:30 +02:00
andryyy 8c3a7e52b4
[Watchdog] Minor threshold changes 2019-07-22 21:07:16 +02:00
andryyy 7d72c8088a
[Watchdog] Some changes like running checks less often, lower thresholds and a whois command fix 2019-07-20 21:43:14 +02:00
andryyy 4b9f022890
[Watchdog] Watch olefy, thanks to @ntimo 2019-07-07 21:59:20 +02:00
andryyy 8984240e44
[Watchdog, Config] Added WATCHDOG_NOTIFY_BAN to disable IP ban notifications
[Netfilter] Remove unused files after installation
[Compose] Some new images and a new option for watchdog: WATCHDOG_NOTIFY_BAN - defaults to y
2019-06-13 19:38:53 +02:00
andryyy 7145c380b0
[Watchdog] Minor text changes and send whois report of banned IP 2019-06-10 22:40:21 +02:00
andryyy 7f6acdb791
[Watchdog] Fix for fix for wrong mails 2019-06-10 21:53:44 +02:00
andryyy 0d7681d0a5
[Watchdog] Fix broken mail with more than one rcpt in some cases 2019-06-10 20:20:41 +02:00
andryyy dcd0bfc13e
[Watchdog] Send mail when IP was banned 2019-06-10 10:57:38 +02:00
andryyy 03f0bac916
[Watchdog] Change error message for acme-mailcow 2019-05-16 19:44:39 +02:00
andryyy 5be4885c15
[Watchdog] Send mail when starting
[Compose] Update watchdog and remove oom check for compatibility
2019-04-18 22:09:26 +02:00
andryyy 794c2080ec
[ClamAV] Increase watchdog clamd-mailcow thresholds 2019-04-05 12:09:46 +02:00
andryyy e7d17ad1ac
[Watchdog] Check for ACME failures 2019-03-27 23:15:04 +01:00
andryyy d65f7a2bd4
[Watchdog] Do not hammer API too much when running Ipv6 NAT check
[Watchdog] Run IPv6 NAT check more often (300s sleep instead of 3600s)
2019-03-07 00:08:45 +01:00
andryyy 5bc8289d32
[Watchdog] Minor fixes, print last log lines on error 2019-03-04 17:56:27 +01:00
andryyy fe6567a3c8
[Compose] New watchdog image
[Watchdog] Use ipv6nat-mailcow instead of ipv6nat
2019-02-19 22:25:28 +01:00
andryyy 07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy 3fa42ada8e [Compose] Update to Redis 5
[Compose] New images for watchdog and PHP-FPM
[Watchdog] Run IPv6 NAT check hourly
[PHP-FPM] Update PHP and libs
2018-12-27 10:47:00 +01:00
andryyy 424bc997ad [Watchdog] Add check for IPv6 NAT: Make sure IPv6 NAT container was started at least 30s after other containers
[Compose] ipv6nat depends on all containers
[Compose] Update watchdog image
2018-12-27 08:20:49 +01:00
andryyy 6f1ec5acbf [Watchdog] Alert when ratelimit log changed (does NOT send one mail per triggered ratelimit) 2018-12-15 21:21:22 +01:00
andryyy 2bd1b1c960 [Watchdog] Skip container restart if running for less than 120 seconds 2018-10-27 23:44:06 +02:00
andryyy 4e2b8dbd90 [Watchdog] Check if initdb is running and if true skip killing php-fpm-mailcow 2018-10-27 13:23:36 +02:00
andryyy c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
André 86b92f68cb [Watchdog] Remove cert check (wip)
[Watchdog] Append last check loop as attachment to mail
[Watchdog] Print time and date in mail alerts
2018-10-17 22:30:13 +02:00
André d2d0369f32 [PHP-FPM] Base on Alpine 3.8
[Watchdog] Base on Alpine 3.8
[ACME] Base on Alpine 3.8
[Watchdog] Minor changes
2018-10-14 14:29:03 +02:00
André 2da228a21e [Watchdog] Remove some check_ping checks
[Watchdog] Add ClamAV check (if SKIP_CLAMD=n)
[Watchdog] Add Unbound check
[Watchdog] Do not use Docker API by default to determine IP of containers (see "IP_BY_DOCKER_API")
[Watchdog] Minor changes
2018-10-14 00:21:31 +02:00
André 4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André 0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André 29aeb5b85d [Watchdog] Fix SOGo check, fixes #1750 2018-09-09 21:52:48 +02:00
André c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André f5fb7f6da5 [Watchdog] Do not trim after each push to Redis 2018-08-02 12:16:05 +02:00
André a38424d3ad [Watchdog] Find exact matches for service names, shuffle scaled services, check if ip is in mailcow network 2018-05-26 22:19:17 +02:00
André 7181ee4658 [Rspamd] Apply ratelimit against authenticated user instead of envelope from
[PHP-FPM] Create PHP-FPM listeners 9001 (system) and 9002 (web), drop 9000
[Rspamd] Parse quarantine messages as utf8
[Rspamd] Use new schema for Rspamd bayes hashes and expire them in Redis
[SOGo] Change default logo
[SOGo] Use different keyserver by default in Dockerfile
[Rspamd] Add bad ASN list (disabled by default)
[Watchdog] Change the way we check PHP-FPM, change SOGo check
[Nginx] Change ports according to new PHP-FPM listeners
[Update] Fix PHP-FPM ports for existing non-mailcow Nginx sites
2018-04-26 13:56:07 +02:00