Commit Graph

872 Commits (2aba31821bc2395c7f19a86c8dafed662aed01ec)

Author SHA1 Message Date
andryyy 922a8db7a5
[Dovecot] Auto-generate shared namespace 2019-05-18 23:01:05 +02:00
andryyy 5e36018864
[Rspamd] Auto-generate SIEVE_HOST map and add dnsutils 2019-05-18 22:44:30 +02:00
Kraeutergarten 51f5f66c91 low response timeout
add ipv6 support
add multiple record support
2019-05-18 12:04:11 +02:00
Kraeutergarten 4cc63ceeb7 Allow hostnames for fail2ban whitelist. 2019-05-17 19:38:34 +02:00
andryyy 03f0bac916
[Watchdog] Change error message for acme-mailcow 2019-05-16 19:44:39 +02:00
andryyy 389317e9e4
[Dovecot] Fix memory leak when quarantine sender has non-ascii chars in mail address 2019-05-16 19:44:14 +02:00
andryyy 6a8c4e332b
[ACME] Register error when no hostname could be validated 2019-05-16 19:43:08 +02:00
Arlon1 2d5add5a13 acme: changed the threshold for certificate renewal
The threshold for certificate renewal is changed to 30 days before
expiry date (was 14 days).
fixes #2607
2019-05-16 15:31:50 +02:00
André Peters 2b6e486a11
[Dovecot] Update imapsync - thanks to @hunter-nl 2019-05-09 10:39:28 +02:00
andryyy b20ff13e40 [Rspamd] Update to 1.9.2, minor entrypoint changes
[Compose] Update Rspamd to 1.9.2
2019-05-06 12:18:41 +02:00
André Peters 6cf9a0354b
Trying to avoid non-distro packages 2019-05-05 22:30:11 +02:00
André Peters 081feca893
Replacing trim by function
https://perlmaven.com/trim
2019-05-05 22:28:55 +02:00
hunter-nl 4ebc871966
Added noreleasecheck parameter 2019-05-05 14:35:34 +02:00
hunter-nl d6833d0b29
Add extra perl modules for imapsync 2019-05-05 13:24:12 +02:00
hunter-nl 54a039fbd1
Fix: Processing result of running imapsync command
There was a possibility the status is_running never set back to 0.
Also the unlock command could be executed twice.
2019-05-05 13:15:34 +02:00
hunter-nl b7b532768c
Moved set "is_running" status
Moved set "is_running" status just before the actual execution of imapsync
2019-05-05 13:12:09 +02:00
hunter-nl fbf356d522
Update imapsync script to 1.937 2019-05-05 13:09:17 +02:00
hunter-nl d32f3e9d16
Fix processing imapsync custom parameters 2019-05-05 13:07:17 +02:00
andryyy 189ea89a71
[Dovecot] Revert to previous imapsync cron script 2019-05-04 23:08:43 +02:00
hunter-nl e59417ed78
Update imapsync_cron.pl
Second unlocking lock_file failed because it was already unlocked.
2019-05-04 13:07:23 +02:00
hunter-nl f9cd9927b1
Update imapsync_cron.pl
Moved setting "is_running" status to just before the actual execution of imapsync command.
2019-05-04 12:02:41 +02:00
hunter-nl 95fe217ce1
Update imapsync_cron.pl
Fix: Reset is_running status in case of exception occurs in running imapsync. Else it will stuck in "running" status.
2019-05-04 11:58:19 +02:00
hunter-nl 59882b443a
Update imapsync_cron.pl
Fix executing imapsync command containing quoted strings in parameters.
2019-05-04 11:45:51 +02:00
Sven Gottwald b55ac86d6b
Update Dovecot to v2.3.6 and Pigeonhole to v0.5.6 2019-05-01 20:28:11 +02:00
andryyy 60fd955def
[ACME] Add 0 byte check for cert.pem 2019-04-27 10:23:00 +02:00
andryyy 9bab6507a7
[ACME] Allow to skip all names but MAILCOW_HOSTNAME 2019-04-26 21:15:46 +02:00
andryyy 3e3e526568
[Dovecot] Update to 2.3.5.2
[Compose] Update Dovecot image
2019-04-25 18:10:28 +02:00
Ralph Paßgang 42b240c10c Updating the www.dovecot.org/releases/... url to just dovecot.org/releases/... in dovecot Dockerfile to
prevent a http redirect problem with the curl ... | tar command.
2019-04-24 17:44:15 +02:00
andryyy 5be4885c15
[Watchdog] Send mail when starting
[Compose] Update watchdog and remove oom check for compatibility
2019-04-18 22:09:26 +02:00
andryyy 794c2080ec
[ClamAV] Increase watchdog clamd-mailcow thresholds 2019-04-05 12:09:46 +02:00
andryyy a9c1b480c5
[Solr] Make entrypoint executable 2019-04-05 12:09:18 +02:00
Joshua Hesketh f8ff11a1e3
Merge branch 'master' into patch-4 2019-04-02 17:08:19 +11:00
andryyy a86f9e0120
[Compose] New Dovecot image
[Dovecot] Update Dovecot to v2.3.5.1
2019-03-31 19:07:39 +02:00
André Peters 987e884407
Merge branch 'master' into admin-login 2019-03-31 15:49:18 +02:00
andryyy b42d0df8e2
[ACME] Allow to skip http verification 2019-03-29 07:46:52 +01:00
andryyy 9378a34adb
[SOGo] Remove unnamed volume and rsync web content to named volume 2019-03-29 07:46:28 +01:00
andryyy e7d17ad1ac
[Watchdog] Check for ACME failures 2019-03-27 23:15:04 +01:00
andryyy 8b0f7fa81b
[ACME] Write redis key on non-empty exit code 2019-03-27 23:14:46 +01:00
André Peters eb2b26699c
[Dovcot] Cleanup random user maildirs 2019-03-27 16:37:15 +01:00
Marcel Hofer 7d2289c3a7 Merge branch 'master' into admin-login
# Conflicts:
#	data/web/js/site/mailbox.js
2019-03-23 21:17:02 +01:00
andryyy 22798a85e5
[Config] Add MAILDIR_SUB, "Maildir" for new setups by default
[Update] Add MAILDIR_SUB= for updated mailcows
[Dovecot] Read MAILDIR_SUB for mail_home
2019-03-18 14:09:32 +01:00
André Peters 3d8a46357b
Merge branch 'master' into admin-login 2019-03-18 02:03:59 +01:00
andryyy 9482da211f
[Rspamd] Update to 1.9 stable repository
[Compose] Update Rspamd image
2019-03-12 23:39:34 +01:00
andryyy ffed14c277
[PHP-FPM] Fix SQL upgrade script 2019-03-12 23:24:22 +01:00
andryyy c77368ee70
[ACME] Set mode 600 for key files 2019-03-12 23:24:03 +01:00
andryyy 837ee3b3b0
[Solr] Keep EdgeNGramFilterFactory out of query
[Compose] Update PHP-FPM, Solr and ACME images
2019-03-12 23:21:15 +01:00
andryyy fc63661fbd
[Solr] Change default configset before bootstrapping
[Solr] Bootstrap cannot be omitted and must occur before mounting the data directory
2019-03-12 23:15:26 +01:00
André Peters ae19d81f2d
Merge branch 'master' into admin-login 2019-03-10 10:38:42 +01:00
André Peters 216451ed43
Merge branch 'master' into admin-login 2019-03-10 09:51:12 +01:00
andryyy c7c115d63a
[Solr] Use fixed, recommended schema but add EdgeNGramFilterFactory 2019-03-10 09:40:04 +01:00
andryyy 47d4be8884
[Dovecot] v2.3.5 (PH 0.5.5)
[Dovecot] Change Solr cronjob to fit dovecot-fts
2019-03-10 09:35:26 +01:00
andryyy b6d9fbf747
[Postfix] Fix Postfix map 2019-03-09 12:30:36 +01:00
andryyy 15970ab8dc
[Postfix] Fix sasl_passwd query from alias domain, fixes #2410
[Web] Major fix, added a line break!
[Compose] Update Postfix image
2019-03-09 11:22:39 +01:00
andryyy 8e42ad4f1f
[Rspamd] Use stable unstable :) 2019-03-07 00:09:07 +01:00
andryyy d65f7a2bd4
[Watchdog] Do not hammer API too much when running Ipv6 NAT check
[Watchdog] Run IPv6 NAT check more often (300s sleep instead of 3600s)
2019-03-07 00:08:45 +01:00
andryyy e1ebacca27
[Rspamd] Drop rspamd.conf.local file 2019-03-06 15:06:51 +01:00
andryyy 5bc8289d32
[Watchdog] Minor fixes, print last log lines on error 2019-03-04 17:56:27 +01:00
tha80 d365813997
Downgraded rspamd deb repository 2019-03-04 13:59:31 +01:00
andryyy c4dfed8a96
[Compose, Rspamd] Downgrade Rspamd 2019-03-03 22:54:47 +01:00
andryyy 950ab30462
[Rspamd] Upgrade Rspamd
[Compose] New Rspamd image
2019-03-03 22:25:56 +01:00
andryyy fcbcc117d2
[Netfilter] Detect SOGo 403
[Compose] Update Netfilter
2019-02-28 20:22:16 +01:00
Marcel Hofer e2f39df7d8 remove obsolete code, use openssl instead of `cat /dev/urandom` 2019-02-26 20:44:53 +01:00
Marcel Hofer dd6d253ac0 add random masterpass for sogo admin login
add required headers for sogo proxy auth with password
add SOGoEncryptionKey
add SOGoTrustProxyAuthentication only conditionally if feature is enabled
2019-02-26 09:02:35 +01:00
andryyy 57312ad605
[Compose] Add ALLOW_ADMIN_EMAIL_LOGIN to sogo-mailcow to trigger bootstrap on change
[Compose] Static IPv4 for Dovecot
[SOGo] Remove SOGoIMAPServer from sogo.conf
[SOGo] Add SOGoIMAPServer to bootstrap process
[Nginx] Disallow editAccount for other accounts than 0 (own)
2019-02-25 00:00:32 +01:00
André Peters 298a8d24e9
Merge pull request #2360 from mhofer117/allow-admin-email-login
Allow admins to login as email user (without any password)
2019-02-24 18:49:13 +01:00
Marcel Hofer cac67db203 add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins 2019-02-23 17:59:18 +01:00
andryyy db17a304b0
[ClamAV] Create directory before handling whitelist 2019-02-23 10:34:16 +01:00
andryyy 354ecd727c
[ClamAV] More checks and permission fixes 2019-02-23 10:27:13 +01:00
andryyy fe9b9f5dfa
[ClamAV] Set permission recursively
[Compose] Updaet ClamAV image
2019-02-23 10:21:13 +01:00
andryyy fe6567a3c8
[Compose] New watchdog image
[Watchdog] Use ipv6nat-mailcow instead of ipv6nat
2019-02-19 22:25:28 +01:00
andryyy 52eb6e48f2
[Compose] New Dovecot image
[Dovecot] Fix very stupid error in quarantine_notify.py - thanks to @DevTek314
2019-02-19 15:02:18 +01:00
andryyy 63752fe0f2
[Solr] Changes to schema - field types are updated 2019-02-15 20:19:50 +01:00
Joshua Hesketh 1355e993dd
Fix building solr
I kept hitting an error when building solr `/bin/sh: /docker-entrypoint.sh: Text file busy`, this is caused where the script is attempted to be ran before the previous `chmod` command has properly sync'd to disk. Adding in a sync fixes this trouble for me.
2019-02-15 17:04:53 +11:00
Aaron Larisch 5cae935485 Fix empty maildir_gc.sh 2019-02-12 17:11:04 +01:00
andryyy 99a816430b
[ACME] Wait for Nginx 2019-02-10 17:36:25 +01:00
Christian Burmeister f35ffa61d0
Update Dockerfile 2019-02-08 17:03:38 +01:00
Christian Burmeister 0e8f8ada1f
Update Dockerfile 2019-02-08 17:03:16 +01:00
andryyy 4e97da197e
[Dovecot] Fix quarantine notificatin script
[Compose] Update Dovecot image
2019-02-08 10:06:28 +01:00
andryyy 36ad9dbf78
[ACME] verify_html should accept 3** and 2** 2019-02-08 00:04:05 +01:00
andryyy c438411a3d
[Dovecot] Extend quarantine template: add score and release/delete buttons - depending on acl 2019-02-06 09:21:54 +01:00
andryyy 2a5f6413fa
[Dovecot] Derive text part in quota/quarantine notification mails from html 2019-02-05 10:38:28 +01:00
andryyy 12291436cd
Push image base to Alpine 3.9 2019-02-05 00:01:31 +01:00
andryyy c7c1422095
[Dovecot] Add quota_notify script
[Dovecot] Some minor changes to quarantine notification script to catch more errors
2019-02-05 00:00:22 +01:00
andryyy ccc61bf2dc
[PHP-FPM] PHP 7.3, mailparse from Git as long as no releas exists 2019-02-04 23:46:45 +01:00
andryyy 9f2a6f13a5
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-04 23:45:54 +01:00
andryyy 3bfd2c8885
[Dovecot] Once again... finally fixed? 2019-01-31 22:18:38 +01:00
andryyy dcd6b2268e
[Dovecot] Various fixes for quarantine notifications, many thanks to @DevTek314 for reporting them! 2019-01-31 21:45:58 +01:00
andryyy 3aef412669
[Dovecot] Fix type of last_notification 2019-01-31 20:53:08 +01:00
andryyy 24432b0d9d [PHP-FPM] Remove old fix 2019-01-31 17:08:03 +01:00
andryyy 6d4bcfabb1
[PHP-FPM] Fix sed command 2019-01-31 15:51:00 +01:00
andryyy 3832d04998
[PHP-FPM] Fix sed command 2019-01-31 15:49:53 +01:00
andryyy 61cd2c0353 [PHP-FPM] Patch legacy template lib of NC if exists 2019-01-31 15:44:56 +01:00
andryyy 8c433bf0da [PHP] Drop pear modules 2019-01-30 11:55:03 +01:00
andryyy c456fe12b3
[Dovecot] Fix last_notification in quarantine_notify.py 2019-01-29 12:13:26 +01:00
andryyy 07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy f493d3a957
[Dovecot] Simplify Docker image
[Dovecot] Set Dovecot plugins dynamically via file and exclude Solr if not enabled
[Dovecot] Add new quarantine notification script
2019-01-29 00:11:12 +01:00
André Peters b2bb593656
[Dovecot] imapsync: Connect to database via socket 2019-01-19 11:57:48 +01:00
Dirk Weise 23c2249fa7
Log imapsync cronjob errors
Errors from the imap sync cronbjob are currently dropped silently.
2019-01-18 18:25:43 +01:00
Dirk Weise 630bce5f29
imapsync: Connect to database via socket
Make the imapsync script connect to mysql via socket and not tcp like all other services do.

Reasoning: consistency. 🤓  And in my case the database does not listen on tcp; just on the socket.
2019-01-18 17:36:30 +01:00
andryyy d6efc2fcd3
[Rspamd] Fix metadata_exporter
[Web] Show subjet in quarantine
[Compose] Update Rspamd image
2019-01-17 22:00:18 +01:00
andryyy ae4e1358a2
[Solr] Refuse to start with RAM lt 2 GB
[Config/Update] Set limits and change descriptions for Solr
2019-01-17 20:25:38 +01:00
andryyy 5081d6d9f1
[ClamAV] Add more signatures 2019-01-16 23:41:42 +01:00
andryyy 62ccd4215e [SOGo] Allow to turn off GAL for each domain 2019-01-16 23:41:15 +01:00
andryyy 0c84b484a5
[DockerAPI] Add unused FTS endpoints... 2019-01-16 22:20:22 +01:00
André Peters f3dfe346bf [Dovecot] Allow setting ACL_ANYONE in mailcow.conf 2019-01-16 19:08:19 +01:00
andryyy 889b260b7d
[ClamAV] Set prio of clamd parent to 10, fixes #2174 2019-01-13 23:03:07 +01:00
andryyy 5619221ed0
[ClamAV] Fix whitelist permission error
[Compose] New image for ClamAV
[Git] Add ignore data/web/nextcloud*
2019-01-13 11:21:44 +01:00
andryyy ab35e1d688 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-10 22:14:52 +01:00
andryyy b0130c153c
[Clamd] Improve logging
[Compose] Remove tty from clamd-mailcow
2019-01-10 22:13:59 +01:00
amorfo77 9a90647709
[Clamav] Remove duplicate chown 2019-01-10 13:31:34 +01:00
andryyy e42afa39a8
[ClamAV] Update to 0.101.1 (based on Debian to fix some errors)
[ClamAV] Some config values are deprecated and were replaced
2019-01-08 12:54:33 +01:00
Markus Heberling 9750ec5bec
Merge branch 'master' into master 2019-01-01 14:20:22 +01:00
andryyy 4f278255a5
[SOGo] Fix ealarms, again, fixes #2136
[Compose] Update SOGo image
2018-12-29 21:19:25 +01:00
andryyy 3fa42ada8e [Compose] Update to Redis 5
[Compose] New images for watchdog and PHP-FPM
[Watchdog] Run IPv6 NAT check hourly
[PHP-FPM] Update PHP and libs
2018-12-27 10:47:00 +01:00
andryyy 424bc997ad [Watchdog] Add check for IPv6 NAT: Make sure IPv6 NAT container was started at least 30s after other containers
[Compose] ipv6nat depends on all containers
[Compose] Update watchdog image
2018-12-27 08:20:49 +01:00
Michael Kuron 0974a5fb60
Fix transport map authentication with multiple identical nexthops 2018-12-25 15:02:50 +01:00
andryyy 9aca90c75f [SOGo] Fix file path of sogo-full.svg
[Compose] Updated SOGo image
[Update] Add user.name and user.email for local git config if missing
2018-12-22 16:56:50 +01:00
andryyy e84dec3b56 [SOGo] Revert self-built SOGo 2018-12-21 19:54:32 +01:00
andryyy fbe46e39e5 [SOGo] Copy logo from config dir, no need to rebuild image 2018-12-20 19:02:20 +01:00
andryyy 8f686c1543 [Postfix] Split sasl passwd maps to not lookup sender_dependent_default_transport_maps auth info when querying for transport_maps 2018-12-19 09:38:56 +01:00
andryyy 29512fa4e1 [SOGo] Build stable SOGo versions
[SOGo] Remove custom colors, there were various broken styles especially for indicators of freebusy states
2018-12-19 09:34:16 +01:00
andryyy 6f1ec5acbf [Watchdog] Alert when ratelimit log changed (does NOT send one mail per triggered ratelimit) 2018-12-15 21:21:22 +01:00
andryyy 468e3dbe12 [PHP-FPM] Try SQL once, prevent loops (todo: fix view before upgrade) 2018-12-15 21:20:21 +01:00
andryyy c4446b85f1 [Rspamd] Add ratelimit.lua (to be removed from Dockerfile with next Rspamd release) 2018-12-15 21:19:35 +01:00
andryyy b7c9af5e75 [Dovecot] Give master user a uid and gid, fixes #2093 2018-12-13 19:52:50 +01:00
andryyy d8906e3d6c [Dovecot] Trim more logs 2018-12-12 22:51:55 +01:00
Markus Heberling 4755bb323b Allow setting ACL_ANYONE in the configuration 2018-12-11 11:32:36 +01:00
andryyy 5153623539 [Dovecot] Add master user to userdb (to be used in SOGo)
[SOGo] Use sieve.creds to authenticate against Dovecot and send email reminders
2018-12-10 23:23:56 +01:00
andryyy b710cb751b [Dovecot] Split imapsync cron by -- 2018-12-10 13:24:51 +01:00
andryyy 09b9055f1a [DockerAPI] Add mysql_upgrade task 2018-12-10 13:24:07 +01:00
andryyy 04b699a3c7 [PHP-FPM] Trigger mysql_upgrade 2018-12-10 13:22:25 +01:00
andryyy 2a6320b86e [Netfilter] Disable aborted login without auth as fail2ban trigger
[Dovecot] passdb query ignored active attribute in mailbox table
[PHP-FPM] Add default release format for spam
2018-12-06 16:49:28 +01:00
andryyy cfab7274b7 [Netfilter] Revert SNAT rule check, todo: check DNS with SNAT enabled 2018-12-01 23:12:27 +01:00
andryyy 45ecc26a12 [Netfilter] Do not delete SNAT rule if not on first position 2018-12-01 21:17:08 +01:00
andryyy a695bdd2ee [Dovecot] Update Dovecot to 2.3.4, update Pigeonhole to 0.5.4
[Dovecot] Remove UTF-8 attribute
2018-11-26 09:44:41 +01:00
andryyy c82f8165d8 [Dovecot] Fix maildir_gc, build with ldap support 2018-11-26 09:11:22 +01:00
andryyy 9acd9c719d [SOGo] Read plist_ldap for dual auth via ldap, unsupported 2018-11-26 09:10:39 +01:00
andryyy f011db317e [SOGo] Wait for updated db schema before bootstrapping 2018-11-16 22:48:28 +01:00
andryyy 7998ec3f1f [DockerAPI] Fix image, fixes #2008 2018-11-16 20:09:29 +01:00
andryyy a4452ed3a5 [Postfix] Important fix for mailbox maps, fixes #2013 2018-11-15 22:55:45 +01:00
andryyy b3518b0749 [Dovecot] Remove dedicated index (wip)
[SOGo] Fix sogo_view
2018-11-12 20:59:39 +01:00
andryyy 2210201c76 [SOGo] Adjust SOGo view 2018-11-12 09:53:39 +01:00
andryyy 1404fc50f4 [Rspamd] Add stopsignal (testing) 2018-11-12 09:52:34 +01:00
andryyy 9ee557e5a5 [Postfix] Adjust mailbox query 2018-11-12 09:49:52 +01:00
andryyy 244ab191bd [Dovecot] Dovecot 2.3.3, Pigeonhole 0.5.3
[Dovecot] Use "--enable-hardening" flag
[Dovecot] Fix cronjobs
[Dovecot] Use /var/volatile to prevent locking files from being written to NFS storage (if vmail is on NFS)
[Dovecot] Change userdb query
[Dovecot] Use /var/attachments for mdbox attachment deduplication and /var/index for index files
[Dovecot] Fix sieve user creation
[Dovecot] Make console writable
[Dovecot] Fix trim_logs.sh
2018-11-12 09:49:23 +01:00
Markus Gnadl 0e33fd49bb wildcards (subdomain.*) in ADDITIONAL_SAN are expanded to all mailcow domains 2018-10-30 09:07:01 +01:00
andryyy 2bd1b1c960 [Watchdog] Skip container restart if running for less than 120 seconds 2018-10-27 23:44:06 +02:00
andryyy f796db0a65 [DockerAPI] Add top and stats 2018-10-27 13:25:18 +02:00
andryyy e04a3aed6a [ClamAV] Do not try to modify cross-mounted file, copy whitelist from conf to lib directory 2018-10-27 13:25:05 +02:00
andryyy 4e2b8dbd90 [Watchdog] Check if initdb is running and if true skip killing php-fpm-mailcow 2018-10-27 13:23:36 +02:00
andryyy c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
andryyy 800eebd117 [Dovecot] Use events to kill supervisord when main proc dies
[Postfix] Use events to kill supervisord when main proc dies
[SOGo] Use events to kill supervisord when main proc dies
2018-10-25 22:35:07 +02:00
andryyy 23e3bdfe5a [Dockerapi] Some minor changes 2018-10-25 22:34:31 +02:00
andryyy 37964d9dd1 [ACME] Try to reload services after certificate changes instead of restarting
[DockerAPI] Add service reload commands
2018-10-24 20:14:59 +02:00
André db64fa490b [SOGo] Read .sogo_access attribute when bootstrapping view 2018-10-23 21:13:37 +02:00
André fbf1c7b7c1 [DockerAPI] WIP: change of structure, add some more commands to control mail queue 2018-10-23 21:12:37 +02:00
André e941c6e8b2 [ACME] Fix missing for loop start
[Compose] New ACME image
2018-10-19 10:03:05 +02:00
André 7a7fafec87 [Compose] New Rspamd image (1.8.1)
[Rspamd] Upgrade base to Bionic
2018-10-17 22:41:39 +02:00
André 86b92f68cb [Watchdog] Remove cert check (wip)
[Watchdog] Append last check loop as attachment to mail
[Watchdog] Print time and date in mail alerts
2018-10-17 22:30:13 +02:00
André 7386dc1e5c [ACME] Stop requesting certificates for autoconfig.* 2018-10-16 23:01:01 +02:00
André 178bee7ac3 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-10-14 19:05:57 +02:00
André d2d0369f32 [PHP-FPM] Base on Alpine 3.8
[Watchdog] Base on Alpine 3.8
[ACME] Base on Alpine 3.8
[Watchdog] Minor changes
2018-10-14 14:29:03 +02:00
André 2da228a21e [Watchdog] Remove some check_ping checks
[Watchdog] Add ClamAV check (if SKIP_CLAMD=n)
[Watchdog] Add Unbound check
[Watchdog] Do not use Docker API by default to determine IP of containers (see "IP_BY_DOCKER_API")
[Watchdog] Minor changes
2018-10-14 00:21:31 +02:00
André a9eddae686 [ACME] Do not add alias domains to auto* domains 2018-10-14 00:19:14 +02:00
André 5705044af0 [ClamAV] Update to 0.100.2 2018-10-14 00:18:21 +02:00
Tobias "Knight" S 7114999c75
remove duplicated import time 2018-10-13 23:30:24 +02:00
André 93917f8385 [Unbound] Upgrade to Alpine 3.8, fixes #1882 2018-10-13 10:12:01 +02:00
André 23e6e52f4f [Postfix] Proper permissions for sql config files
[Dovecot] Proper permissions for sql config files
2018-10-12 10:57:00 +02:00
André aa39be7ea6 [SOGo] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Init database in entrypoint
[PHP-FPM] Change API credential injection
[Dovecot] Use mysqladmin status instead of ping to determine readiness
2018-10-11 11:53:22 +02:00
André ce135bb773 [ACME] Log acme-client output base64 encoded, use mysqladmin status instead of ping to determine readiness 2018-10-11 11:51:13 +02:00
André ad63552951 [Dovecot] Check file size of mail crypt key pair, fixes #1859
[Compose] New Dovecot image
2018-10-07 15:10:17 +02:00
André 9f52cd9456 [Docker API] Fix sieve list for users, fixes #1849 2018-10-06 22:09:23 +02:00
André c6aa3610f0 [Postfix] Enable/create smtp_tls_policy_maps 2018-10-04 14:34:53 +02:00
André cf28727376 [Dovecot] Add timeouts to sa-rules script, remove with -f flag to return 0 2018-10-03 23:27:31 +02:00
André d8148bef79 [Docker API] Do not print warning when maildr does not exist 2018-10-03 11:27:52 +02:00
André 2af2f7836d [Dovecot] Remove fixed uid and gid 2018-10-02 10:31:22 +02:00
André 62b27aeacb [Dovecot] Check garbage hourly
[Dovecot] Update SA rules once when container starts
2018-10-02 09:34:21 +02:00
André ca1e950c61 [Dovecot] Do not query gid and uid 2018-10-02 09:13:33 +02:00
André d7ca5579dc [Rspamd] Ignore custom files, but keep bad asn map 2018-09-30 18:55:35 +02:00
André cdca603ff5 [Unbound] Fix logging, fixes #585
[Rspamd] Fix permissions of controller password file
[Unbound] Enable unbound-control
2018-09-30 14:43:18 +02:00
André 4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André 0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André 96c985abad [Rspamd] Move settings file to RSPAMD_CONF root, delete old lua scripts 2018-09-26 13:23:05 +02:00
André 29aeb5b85d [Watchdog] Fix SOGo check, fixes #1750 2018-09-09 21:52:48 +02:00
André c8a1cbd25a Merge branch 'temp-master' 2018-09-09 21:21:43 +02:00
André c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André ad902f0ad8 [SOGo] Remove HTTP server on port 9192 2018-09-09 09:48:11 +02:00
André 8a88514dfd [SOGo] Declare /usr/lib/GNUstep/SOGo as volume
[Nginx] Mount vols from sogo-mailcow to access /usr/lib/GNUstep/SOGo
2018-09-07 16:40:37 +02:00
sriccio 5e56a46c84 [dovecot] Enhancement to allow to use auth_default_realm
When using auth_default_realm in dovecot configuration to setup a default domain name (to allow users to login with only a username instead of the full e-mail address), it breaks the compatibility with imapsync and sogo/sieve vacation.

Adding a domain name to dovecot master user/pass fixes this.

This never made it do the master branch, so I'm trying a PR again :)

See: https://github.com/mailcow/mailcow-dockerized/pull/1331#issuecomment-386534307
2018-08-28 17:14:05 +02:00
André 66ee11c03d [SOGo] Disable display of ACL "any/authenticated" by default
[Dovecot] Disable "any" ACL by default
[SOGo] Might fix theme switching (yes, again)
2018-08-17 21:42:31 +02:00
André 6bd818ceec [ACME] Remove third-party IP tools 2018-08-06 15:15:24 +02:00
André ff0b9246b5 [ClamAV] Add whitelist file for ClamAV, fixes #1607
[ACME] Test for CAA before running script, fixes #1632
2018-08-05 22:35:20 +02:00
André 9dd17d4609 [SOGo] Change color codes in correct files 2018-08-04 09:23:45 +02:00
André bf9a180c00 [SOGo] Fix theme switching (99% sure we did it this time, guys) 2018-08-03 20:27:58 +02:00
André e678292447 [Dovecot] Trim autodiscover logs 2018-08-02 12:19:58 +02:00
André 39b0fc515f [SOGo] Syslog-ng: Do not trim after each push to Redis 2018-08-02 12:17:21 +02:00
André 85f83b1b71 [Rspamd] v1.7.9 (removed explicit ratelimit.lua) 2018-08-02 12:16:55 +02:00
André f5fb7f6da5 [Watchdog] Do not trim after each push to Redis 2018-08-02 12:16:05 +02:00
André f8f87d4744 [ACME] Do not trim after each push to Redis 2018-08-02 12:15:41 +02:00
André bdf7632757 [Postfix] Add '*' as send_as to sender_acl map
[Postfix] Syslog-ng: Do not trim after each push to Redis
2018-08-02 12:15:04 +02:00
André 04b43d0a3b [Dovecot] Add new imapsync + dependencies
[Dovecot] Syslog-ng: Do not trim after each push to Redis
[Dovecot] Add new cronjob to trim all Redis logs every minute (will be moved in the future)
2018-08-02 12:14:13 +02:00
André 15b80760b2 [Postfix] Add scripts to learn from spam/ham traps
[Dovecot] Learn fuzzy when moving mails from/to junk
2018-07-29 00:36:08 +02:00
André ff463168d1 [SOGo] Override theme-default.css to prevent theme switching, delete theme-green until fixed 2018-07-28 14:26:02 +02:00
André 1115b826f9 [Dovecot] Various fixes for imapsync_cron, new imapsync version 2018-07-27 22:19:14 +02:00
André 5cc09055a7 [SOGo] Another try to fix theme switching on login screen 2018-07-27 22:16:18 +02:00
André ef8c79c0e5 [Postfix] Fix alias for spam and ham addresses 2018-07-25 01:21:22 +02:00
André 63ce1ba2d6 [Postfix] Create ham/spam mailboxes @ localhost 2018-07-25 01:05:51 +02:00
André 240eb3abce [Netfilter] Wait for Redis instead of exiting with an exception 2018-07-24 23:30:18 +02:00
André 6cba85eb07 [Postfix] Add tzdata to Postfix 2018-07-17 00:29:07 +02:00
André b45b9bc5cf [SOGo] Override more theme options to prevent occasional theme switching on login 2018-07-15 16:34:25 +02:00
André 853b924fe1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-07-15 11:56:26 +02:00
André c372b01909 [Rspamd] Use old ratelimit LUA until custom rl is fixed
[Web] Updated settings preset: Ratelimit was NOT applied when preset for settings map was used (added "RATELIMIT_UPDATE", "RATELIMIT_CHECK" to symbols_enabled)
[Rspamd] v1.7.8
2018-07-13 11:40:37 +02:00
André e9f60bf06c [SOGo] Missing ) ... 2018-07-12 14:19:06 +02:00
André e06c3e87ee [SOGo] Refresh sogo static view on start 2018-07-12 14:08:00 +02:00
André 8a9ce0a57c [SOGo] Refresh sogo static view on start 2018-07-12 14:04:31 +02:00
André d9df322eda [Dovecot] Remove additional hash scheme and let Dovecot decide the hash by prefix 2018-07-12 00:46:17 +02:00
André 2aef18d130 [Dovecot] Remove user queries from passdb + add a second passdb for additional algorithms + create userdb without password queries 2018-07-12 00:23:12 +02:00
André a4e96a3fe3 [ClamAV] v0.100.1 + rebase on Alpine 3.8 2018-07-12 00:21:46 +02:00
André cfb0d3b62c [SOGo] Create a sogo_update_password trigger in SQL
[SOGo] prependPasswordScheme=YES in user sources
[SOGo] Use new "static view" as viewURL for much faster table lookups on large systems
2018-07-11 22:08:02 +02:00
André 22cecc3f85 [Postfix] Use Bionic as base image (Postfix 3.3) and replace python-gpgme by python-gpg
[Postfix] Fix syslog-ng config version
2018-07-11 20:01:03 +02:00
André 1e59816665 [Netfilter] Prevent crashes by locking threads
[Netfilter] SNAT6
2018-07-11 19:59:10 +02:00
André 055183257d [Dovecot] v2.3.2.1 + remove some dev packages 2018-07-11 19:07:26 +02:00
André f8283536ec [Netfilter] Fix chain order watching and other fixes
[Web] Fix perm ban display
2018-07-09 22:23:39 +02:00
André a72a3734d6 [SOGo, Compose] Add cow to logo... + new SOGo image 2018-07-06 12:10:22 +02:00
André 7b69549881 [SOGo] Fix theme-blue.js contrast and flipping colors on login screen, fixes #1528 2018-07-06 11:54:12 +02:00
André e352604a9b [Compose, PHP-FPM] Fix script in new image 2018-07-04 11:41:43 +02:00
André 26807823b4 [Netfilter] python-tipbles 0.13.0 plus missing vars for 0.13.0 2018-07-03 23:25:31 +02:00
André 3b5df979e9 [Dovecot, Compose] New Dovecot image, upgrade to 2.3.2 (0.5.2 PH), fixes various bugs including replication over TCP 2018-07-02 10:35:04 +02:00
André 17d3a24d89 [Netfilter] Fix table refresh and rule injection in snat loop 2018-06-29 11:25:26 +02:00
André 73a566b25a [ACME] Fix for multiple additional SAN 2018-06-29 09:35:48 +02:00
André d6a74e82e3 [ACME] Fix for CNAME response on AAAA dig request 2018-06-28 20:41:44 +02:00
André a1a6574964 [PHP-FPM] Add tzdata, update APCu and Redis extensions, update PHP to new minor 2018-06-27 22:51:17 +02:00
André 729bba5b57 [ACME, Compose] Add new image; fix AAAA check for ADDITIONAL_SAN 2018-06-27 12:09:51 +02:00
André 8adf3d27db [ACME, Compose] Add new image; fix AAAA check for MAILCOW_HOSTNAME 2018-06-26 23:35:17 +02:00
André f88a72eedd [ACME] Validate AAAA, if any, before A - fail on AAAA mismatch (LE prioritization) 2018-06-26 23:10:24 +02:00
André 071024db4c Fix indentation 2018-06-26 07:49:14 +02:00
André aa6a136c1f [Dockerapi, Dovecot] Fix missing active user filter 2018-06-20 07:25:10 +02:00
André 27d3388579 [Rspamd] Remove antivirus debugging 2018-06-10 14:30:30 +02:00
André 6ded3dbd95 [API] Allow to set API options in mailcow.conf, fixes #1457 2018-06-08 09:11:03 +02:00
André 4a403e9323 [Dovecot] Imapsync: Set is_running = 0 on restart 2018-06-03 19:22:44 +02:00
André 37e6c50a9b [Watchdog] Add missing package for IPv6 with smtp-cli, fixes #1430 2018-05-27 21:40:53 +02:00
André a38424d3ad [Watchdog] Find exact matches for service names, shuffle scaled services, check if ip is in mailcow network 2018-05-26 22:19:17 +02:00
André b26aa04a9b [Dovecot] Imapsync: Increase timeout1 value 2018-05-24 17:34:43 +02:00
André 74008735ca [SOGo] Always show GAL contacts 2018-05-06 14:33:20 +02:00
André 9e53ed4daf [Watchdog] Update to new image with smtp-cli 3.9 2018-05-06 09:15:35 +02:00
eXtremeSHOK 8a9319c3f0
Update smtp-cli to v3.9
https://github.com/mludvig/smtp-cli/tree/v3.9
2018-05-06 03:43:59 +02:00
André d14e6c184b [ClamAV] Modify /dev/console to fit permissions 2018-05-02 21:08:40 +02:00
André 27fc98d12e [Netfilter] Use Alpine 3.6 2018-04-27 21:55:25 +02:00
André 435fee2bc9 [Compose] Update PHP-FPM image 2018-04-26 22:04:59 +02:00
André 30cea1da9a [SOGo] Increase workers count to 20
[Postfix] Add extended TLS header
[Web] Increase timeout to 10 for docker API connections
[Postfix] Add perl package
2018-04-26 14:08:45 +02:00
André 7181ee4658 [Rspamd] Apply ratelimit against authenticated user instead of envelope from
[PHP-FPM] Create PHP-FPM listeners 9001 (system) and 9002 (web), drop 9000
[Rspamd] Parse quarantine messages as utf8
[Rspamd] Use new schema for Rspamd bayes hashes and expire them in Redis
[SOGo] Change default logo
[SOGo] Use different keyserver by default in Dockerfile
[Rspamd] Add bad ASN list (disabled by default)
[Watchdog] Change the way we check PHP-FPM, change SOGo check
[Nginx] Change ports according to new PHP-FPM listeners
[Update] Fix PHP-FPM ports for existing non-mailcow Nginx sites
2018-04-26 13:56:07 +02:00
André f53006f6ab [Dovecot] Dovecot 2.3.1, Pigeonhole 0.5.1
[ClamAV] 0.100.0, new log method without pipes
[Compose] New images for Dovecot and ClamAV, add persistent tty to clamd-mailcow
2018-04-26 12:36:13 +02:00
André 05e026db3a [Netfilter] New ban method, allow to set blacklists 2018-04-25 10:54:13 +02:00
André 7031af4cc8 [Compose] New dockerapi-mailcow image
[Docker API] Fix for rspamd-mailcow rspamadm pw command
2018-04-19 12:56:49 +02:00
André Peters d2e11df0d4
[SOGo] Wait for view to be created
Creating sogo_view can fail when run before init_db.
2018-03-03 23:20:41 +01:00
André Peters e3b542e73a Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2018-02-28 17:36:02 +01:00
André Peters b175125d02
Merge branch 'dev' into master 2018-02-28 15:38:56 +01:00
André Peters b6137cca2a
[ACME] Do not delete private key
...when reg key is invalid.
2018-02-28 11:13:17 +01:00
André Peters a27f34d9df [SOGo] Add v4 repo, new logo 2018-02-27 20:55:41 +01:00
André Peters bf5b6732cf [Dovecot] Fix passdb query 2018-02-27 20:55:12 +01:00
André Peters 6a01411460 [Dovecot] Fix imapsync 2018-02-27 15:12:21 +01:00
André Peters 0553dc5959 [Postfix] Fix query 2018-02-27 15:02:31 +01:00
André Peters 55cd58f14c
Update imapsync_cron.pl 2018-02-27 15:00:27 +01:00
Lucky88888 48c85d08f2
fix maxbytespersecond issue
Fixed $maxbytespersecond configurable option. This was still not working because it took the DB value of maxage. 
"First GitHub update for me, so please tell if I should have something different. ;) "
2018-02-26 15:26:17 +00:00
André Peters 3829135d93 [ClamAV] Add directory to make bootstrap not complain about missing directories 2018-02-26 09:19:14 +01:00
André Peters 944b91a4b8 [Dockerapi] Add du command, push version 2018-02-22 09:21:37 +01:00
André Peters bbbe52f560 [SOGo] Add blue (default) and red theme 2018-02-22 09:20:46 +01:00
André Peters ff3328ea8c [SOGo] Use indigo theme, copy logo and theme.js to image 2018-02-19 12:56:45 +01:00
André Peters 39f289fc3c [Web, Dovecot, Postfix] Fix JSON attribute for login 2018-02-19 10:17:29 +01:00
André Peters fc53a69a44 [Helper] Nextcloud 13; Additional header for Nextcloud site
[PHP-FPM] Build gd with TTF support
2018-02-18 20:59:32 +01:00
André Peters ab720bf164 [Web, Postfix] Move TLS policy to mailbox attributes 2018-02-17 11:12:16 +01:00
André Peters 2bdc3f94c0 [Web] Database schema test 2018-02-17 09:50:58 +01:00
André Peters 31a9bb446c [Netfilter] Fixes a f2boptions not defined error 2018-02-17 08:51:41 +01:00
André Peters 1f09544f32 Fix conflict 2018-02-16 22:44:02 +01:00
André Peters 2865c892a6 [Multi] Fixes #1058 by including a 'force password update' option and also introduces a attributes json object to be used for further mailbox configurations in the future 2018-02-16 22:40:51 +01:00
eXtremeSHOK 8eb05d1450
Fix for large Mailboxes to avoid timeouts 2
Missing ' (sorry my editor keeps correcting the '" to " )
2018-02-14 14:02:56 +02:00
eXtremeSHOK a37a8e3b2a
Fix for large Mailboxes to avoid timeouts
** I agree to the code of conduct and the contributory guidelines **

Tested with 80+GB single inbox via imap

``` --nofoldersizes --skipsize --fast ``` file and folder sizes are only used for statistics, which are completely useless. Before the actual data is transfered the message and folder sizes need to be calculated on a 200 000+ message inbox, this will almost never complete.

``` --buffersize 8192000 ``` sets the io buffer to 8mb, the default buffer is 4kbyte, this is speeds up syncs.

```  --skipheader 'X-*' ``` X headers vary wildly from system to system and do not ensure message uniqueness, they are not needed.

```  --split1 3000 --split2 3000 ```    split the requests in several parts on the server, 3000 is the number of messages handled per request.

``` --fastio1 --fastio2 ``` use fastio
2018-02-14 13:27:30 +02:00
Phoenix Eve Aspacio 42868b1710
Merge pull request #1037 from klausenbusk/empty
Remove "empty" folders
2018-02-14 08:15:13 +08:00
Kristian Klausen a0cdc1e4ff Remove "empty" folders
There seems to be no reason for this empty folders.
2018-02-13 23:45:49 +01:00
André Peters 66a3df16ed [Netfilter] Fixes empty f2b options 2018-02-09 10:32:12 +01:00
André Peters 83094a773e [Watchdog] Use socket to pipe to Rspamd 2018-02-08 22:57:29 +01:00
André Peters 004d262e41 [Rspamd] Create missing password include as placeholder 2018-02-08 22:57:17 +01:00
André Peters ac4982d706 [Dovecot] Use socket to pipe to Rspamd 2018-02-08 22:56:43 +01:00
André Peters a2ca550aa0 [Dovecot] Use socket instead of worker IP 2018-02-08 22:29:43 +01:00
André Peters e3854a8037 [Dockerapi] Fixes recent chang in exec_run return 2018-02-08 22:29:06 +01:00
root fae542534d Merge remote-tracking branch 'origin/master' into dev 2018-02-08 19:54:14 +01:00
Joshua Hesketh 2fc13bdfbe Fix imapsync for large mailboxes
Where there is a lot of folders in a mailbox the output may be larger
than TEXT will allow (64KiB). Instead use MEDIUMTEXT (16MiB) which
should be ample.

Additionally check that a sync isn't already running before starting
a new one.

Fixes: #1011
2018-02-08 15:24:04 +11:00
andre.peters cf1e46723a [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:37:10 +01:00
andre.peters 3f9e0a8023 [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:36:06 +01:00
andre.peters ae4ccd4d17 [Dovecot] Fixes CVE-2017-15132 - take 2 2018-02-01 23:35:55 +01:00
andre.peters 6ebcd00521 [Dovecot] Fixes CVE-2017-15132 2018-02-01 22:43:28 +01:00
andre.peters c5f9b065f6 [Dovecot] Fixes CVE-2017-15132 2018-02-01 22:27:48 +01:00
andre.peters a0d9efba00 [PHP-FPM] Remove old migration scripts 2018-02-01 13:40:59 +01:00
andre.peters f4ae354c0c [SOGo] Do not try to use foreign mailboxes as alias 2018-02-01 13:40:13 +01:00
andre.peters 38a819771b [Netfilter] Rename fail2ban to netfilter, use iptables-python 2018-02-01 13:39:27 +01:00
andre.peters 0773448b35 [Dockerapi] Fix jsonify output 2018-02-01 13:38:42 +01:00
André Peters 912ba9b4ff
Fixes #979 2018-01-29 14:42:51 +01:00
Michael Kuron c30448c4d8 Merge branch 'master' of https://github.com/andryyy/mailcow-dockerized into recipient_map
Conflicts:
	data/web/inc/init_db.inc.php
2018-01-27 17:22:08 +01:00
andre.peters 7433b6dc91 [ClamAV] Build from source, fix bugs...
[Compose] New clamd-mailcow image
2018-01-27 10:26:12 +01:00
andre.peters 04f9d74339 [Web, Dovecot] Add new options to imapsync, other minor changes to forms, partly fixes #955 2018-01-24 12:59:11 +01:00