andryyy
03c614f749
[Postfix] Use Nginx IP in whitelist_forwardinghosts.sh
2017-07-26 23:04:27 +02:00
andryyy
b629089ff8
[SOGo] Rename reconf-domains to bootstrap-sogo and exec sogod after a successful bootstrap; Wait for SOGo to die and free listener
2017-07-24 23:25:04 +02:00
andryyy
5d5646df0c
[Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code
2017-07-24 22:53:23 +02:00
andryyy
83d485dd94
[Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication)
2017-07-22 20:39:54 +02:00
andryyy
ed33cb5f57
[Rspamd] ARC: Disallow login/domain mismatch
2017-07-21 11:03:35 +02:00
andryyy
5f5872f78b
[Rspamd] Initial custom ratelimit support
2017-07-13 12:54:53 +02:00
andryyy
e6727b1fd6
[ACME] Iterate alias domains, use hostname in subject field
2017-07-13 12:51:52 +02:00
andryyy
9e92c4a2ad
[Dovecot] Do not keep persistent logs in a container
2017-07-11 17:09:31 +02:00
andryyy
f8ae5158cb
[Postfix] Do not keep persistent logs in a container
2017-07-11 17:09:20 +02:00
andryyy
a31819fd6c
[SOGo] Log to a pipe to not keep logs in a container
2017-07-11 17:08:06 +02:00
andryyy
51660589d4
[Rspamd] Push version 1.3
2017-07-09 22:28:36 +02:00
andryyy
a324b1a385
[Rspamd] Fix DKIM siging (base64 hash line folding)
2017-07-06 15:57:33 +02:00
andryyy
69da02c144
[Dovecot] Important fix for Pigeonhole (downgrade)
2017-07-05 19:13:07 +02:00
andryyy
7f47af1d60
Fix destination hash
2017-07-05 12:31:52 +02:00
andryyy
87cc5f54ff
[Postfix] Fix redis log destination hash
2017-07-05 12:03:12 +02:00
andryyy
2fadfee61a
[SOGo] Remove thunderbird plugin generation, will move to docs
2017-07-05 10:22:48 +02:00
andryyy
de14d30e6b
[ACME] Fix exit command (was using echo), fix for duplicate SAN (filter)
2017-07-04 21:32:58 +02:00
andryyy
dc463c3dda
[Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver.
2017-07-04 18:08:20 +02:00
andryyy
ed11e7586e
[Clamd] Add SKIP_CLAMD variable to disable Clamd start
2017-07-04 18:05:44 +02:00
andryyy
ace247b3b9
[ACME] Unset name arrays before reusing them
2017-07-03 10:20:09 +02:00
andryyy
2cf9f71613
[ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME
2017-07-02 20:18:22 +02:00
andryyy
cf902854d7
Merge, conflict fixed
2017-07-02 11:22:35 +02:00
andryyy
b7cb4ac9d5
[Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow
2017-07-02 11:10:35 +02:00
andryyy
ae5ce6568d
[Dovecot] Dovecot 2.2.31, Pigeonhole 0.4.19
2017-06-30 20:30:30 +02:00
andryyy
5ab11c0c1e
[ACME] Show err instead of empty var when IP lookup failed
2017-06-30 20:29:55 +02:00
andryyy
d2048ccf20
[ACME] Be more verbose about IP address
2017-06-29 21:22:01 +02:00
andryyy
a6b60aebb8
[Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match
2017-06-29 11:30:14 +02:00
andryyy
9040d456ed
[acme-mailcow] Auto-detect container ids for restart; Restart containers after restore
2017-06-29 10:25:32 +02:00
andryyy
3d652dd3d0
Added more checks for acme-mailcow
2017-06-29 00:56:51 +02:00
andryyy
6d8438c01c
- More checks for acme-mailcow (verify hashes)
...
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy
b0584c3622
Use , as IFS for additional san
2017-06-28 10:50:51 +02:00
andryyy
f7bce8b81a
Copy dhparams if not found
2017-06-27 20:15:53 +02:00
andryyy
e9ea0712f2
Add SKIP_FAIL2BAN var
2017-06-27 10:26:48 +02:00
andryyy
b9ffcf2bf8
Add whitelist function to Fail2ban
2017-06-26 23:18:05 +02:00
andryyy
8590cc577b
Move folder names to match image names
2017-06-25 00:21:24 +02:00
andryyy
c4c1bdf477
Add a retry window for fail2ban-mailcow, add priority to logging, added window time to logging string"
2017-06-24 20:04:12 +02:00
andryyy
b8e9b3d879
fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon
2017-06-24 00:07:18 +02:00
andryyy
2104034156
cp -n is unknown
2017-06-23 14:22:54 +02:00
andryyy
59623a639e
Keep key when issuing new certificate to not break TLSA records with options 3 1 1
2017-06-23 08:40:05 +02:00
andryyy
18e52ab27d
More debug output, keep key for TLSA 3 1 1, other minor changes
2017-06-23 08:33:07 +02:00
andryyy
85a9239ae9
Move account key
2017-06-22 21:44:10 +02:00
andryyy
0c07ff59c3
Fix skip le test...
2017-06-22 21:31:14 +02:00
Michael Kuron
1f9b5cb16e
ACME: support CNAME in domain checks
2017-06-22 20:36:03 +02:00
andryyy
4066f3507c
New Rspamd image, also fixes #386
2017-06-22 17:12:13 +02:00
andryyy
856b05147c
Skip LE with configuration parameter
2017-06-22 09:06:24 +02:00
NuVivo314
601f3b6947
Change select Priority
...
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy
c82c9524b0
Delete certificate if SANs were removed
2017-06-20 20:06:54 +02:00
andryyy
428140d34f
Version update
2017-06-20 20:06:35 +02:00
andryyy
0e501acd7d
Base on stretch
2017-06-20 20:06:24 +02:00
Markus Frosch
4be67ccd64
dovecot/imapsync_cron: Use passfiles to hide passwords from ps
2017-06-19 11:43:07 +02:00
andryyy
fbf33e475a
SOGo will be started after reconf script to prevent race conditions
2017-06-19 10:19:16 +02:00
andryyy
624e52e198
mysqladmin uses ping on static IPv4, supervisor does no more autostart SOGo
2017-06-19 10:18:53 +02:00
andryyy
10d83017e1
Declare correct arrays
2017-06-19 08:59:47 +02:00
andryyy
9117c499ef
Do not break DNS replies....
2017-06-18 20:57:26 +02:00
andryyy
6fa19a37d8
Unbound changes
2017-06-18 20:23:26 +02:00
andryyy
5aba885b58
Skip ACME client for other certificates than LE
2017-06-17 10:08:12 +02:00
andryyy
08edc1d1d3
Remove obsolete file, add {}
2017-06-16 23:27:16 +02:00
andryyy
812b9b617a
Cannot spawn as proc in sub shell. Breaks SOGo restart.
2017-06-16 23:26:43 +02:00
Michael Kuron
c739091a67
Customize the SOGo Integrator plugin for Thunderbird
2017-06-16 10:30:40 +02:00
andryyy
19325ffb2a
Validate additional SAN
2017-06-14 07:24:32 +02:00
andryyy
863a0e4d06
Finally fix SOGo race condition
2017-06-13 23:38:47 +02:00
andryyy
4a0a9cbf1f
Minor tweaks
2017-06-13 23:38:24 +02:00
andryyy
0fd0cff8ac
Auto-sign autodiscover and autoconfig for all domains found in mailcow - only if A records exists and matches
2017-06-13 23:37:48 +02:00
andryyy
9a99975394
Fix duplicate postfix install
2017-06-13 07:45:24 +02:00
andryyy
3e09d11856
Be less verbose
2017-06-13 07:41:13 +02:00
andryyy
fcfc119805
Fix race condition with workaround
2017-06-13 07:39:45 +02:00
andryyy
35a73025c7
Add until to hopefully stop race condition
2017-06-12 23:49:21 +02:00
andryyy
a33aa7a2cb
Fix Dockerfile
2017-06-12 23:48:56 +02:00
andryyy
261e1ad4fb
Rspamd stable
2017-06-12 23:48:42 +02:00
andryyy
b367ec0ace
Add Unbound as better DNSSEC enabled resolver
2017-06-12 23:48:27 +02:00
Michael Kuron
d6c9f96b4e
Don't keep development packages in php-fpm image.
2017-06-12 17:06:57 +02:00
andryyy
ef62f6b383
Acme tool checks for valid autodiscover and autoconfig A records and skips non-existing names
...
Todo: Add AAAA check, add check for additional_san
2017-06-12 10:45:12 +02:00
andryyy
ad969d15cd
Remove bind9
2017-06-12 10:43:36 +02:00
andryyy
a25fc17b87
Fix permission
2017-06-12 10:43:28 +02:00
andryyy
c0619a5b6b
Less layers
2017-06-12 10:43:11 +02:00
andryyy
5321ebe707
Push to Dovecot 2.2.30
2017-06-12 10:42:48 +02:00
andryyy
cf44745c18
Less layers
2017-06-12 10:42:33 +02:00
andryyy
02ceb6d3ef
Remove obsolete files
2017-06-12 10:40:08 +02:00
andryyy
663ea7815c
Use new milter interface
2017-06-06 22:01:41 +02:00
andryyy
f84a3a731a
File indents
2017-05-29 21:50:43 +02:00
andryyy
ed58a9a9b3
File permission
2017-05-29 21:49:47 +02:00
André Peters
ae707cd8ff
Revert "php-fpm dockerfile simplification"
2017-05-29 08:45:30 +02:00
André Peters
192eb50449
Merge pull request #319 from TBK0000/php-fpm-alpine
...
php-fpm dockerfile simplification
2017-05-29 07:32:24 +02:00
TBK
9ee00c9933
php-fpm dockerfile simplification
...
By using Alpine pkgs instead of the official php base image the image size has been reduced from 459 MB to 55.7 MB a reduction of a whooping 403.3 MB :D
2017-05-28 23:33:16 +02:00
TBK
e151e32730
ShellCheck
...
http://www.shellcheck.net/
2017-05-28 23:28:41 +02:00
TBK
2d0c4db2a5
Clamav dockerfile simplification
...
- Locked to specific release.
- Fewer layers.
- Size reduction of 49 MB.
2017-05-28 16:23:13 +02:00
andryyy
95c30e8791
Remove change...
2017-05-26 23:03:51 +02:00
andryyy
178a219c05
Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev
2017-05-26 23:02:34 +02:00
André Peters
4f2a1d940c
Merge pull request #313 from mkuron/fail2ban
...
Authentication rate limiting for Mailcow UI
2017-05-25 15:52:15 +02:00
Michael Kuron
1906c26e5d
Auth rate limiting: Mailcow UI and correct treatment of v4-mapped addresses
2017-05-25 13:57:50 +02:00
andryyy
0403579b7e
Use hostname
2017-05-25 11:00:14 +02:00
André Peters
8c73b8eb5f
Merge pull request #311 from mkuron/fail2ban
...
Fail2ban-like authentication rate limiting for Postfix, Dovecot and SOGo
2017-05-25 10:58:14 +02:00
Michael Kuron
88f94a2e15
Authentication rate limiting for Postfix, Dovecot and SOGo
2017-05-25 10:44:10 +02:00
andryyy
d1b99d2355
Remove workaround
2017-05-23 22:22:40 +02:00
andryyy
b17543f211
Fixes
2017-05-23 21:50:48 +02:00
andryyy
fd5a59086b
More structural changes
2017-05-23 09:36:59 +02:00
André Peters
a72631fb15
Merge branch 'master' into dev
2017-05-17 21:20:12 +02:00
andryyy
a7b854f7ce
Fix Dockerfile, again
2017-05-17 21:16:48 +02:00
andryyy
61de3c354c
Use Alpine ClamAV
2017-05-17 07:48:48 +02:00
andryyy
dd5b46e9ee
Use Alpine PHP-FPM
2017-05-17 07:48:37 +02:00
andryyy
f38d726ed2
Revert base of Rspamd
2017-05-17 07:46:27 +02:00
andryyy
861ade77ab
New Dockerfile
2017-05-14 22:11:12 +02:00
andryyy
be044a1592
Add openssl
2017-05-14 22:10:25 +02:00
andryyy
e795898b80
Fix Redis migration
2017-05-14 20:16:43 +02:00
andryyy
1add37157d
Remove icu lib dev
2017-05-14 20:15:34 +02:00
andryyy
ce4c5b80b8
Fix migration to Redis
2017-05-14 20:07:43 +02:00
andryyy
a46a84a949
Fix docker-entrypoint, fixes key merging from file to Redis
2017-05-14 14:26:07 +02:00
andryyy
fbac28974b
Base on Alpine
2017-05-14 14:25:10 +02:00
andryyy
4b875d1468
Remove some tools after installation
2017-05-14 14:24:55 +02:00
andryyy
cf4cefbccd
Base on Alpine, still needs cleanup
2017-05-14 14:23:26 +02:00
andryyy
980acb507e
Log to redis and file
2017-05-13 22:58:10 +02:00
Michael Käufl
766a986f27
[Dockerfiles] Do not install both curl and wget
...
curl is used in rspamd-pipe-*, so I kept curl
2017-05-13 18:10:04 +02:00
Michael Käufl
7fd982f948
[Dockerfiles] Do not persist DEBIAN_FRONTEND=noninteractive in images
...
According to https://github.com/moby/moby/issues/4032#issuecomment-163689851
(and some other comments in the issue) it's not recommended to set
`DEBIAN_FRONTEND` via `ENV` in a Dockerfile. `ARG` has the same
effect at build time but does not change `DEBIAN_FRONTEND` in the
final image, so I switched to it. It should also work to remove it
completely.
2017-05-13 18:10:04 +02:00
Michael Käufl
e081a847a1
[Dockerfiles] Do not keep curl installed
2017-05-13 18:10:04 +02:00
Michael Käufl
559d9dda71
[Dockerfiles] Run rm as early as possible
2017-05-13 18:10:04 +02:00
Michael Käufl
85be7aa973
[Dockerfiles] Sorted list of packages
2017-05-13 18:10:04 +02:00
Michael Käufl
9ab9d76240
[Dockerfiles] Used best practices for apt-get
...
See https://docs.docker.com/engine/userguide/eng-image/dockerfile_best-practices/#apt-get
- Replaced `-y install` with `install -y` (unification)
- Put every package on its own line
- Moved `rm -rf /var/lib/apt/lists/*` in the same `RUN` statement as `apt-get`
- Removed unnecessary `apt-get clean`
See 03e2923e42/contrib/mkimage/debootstrap (L82-L105)
2017-05-13 18:09:53 +02:00
Michael Käufl
d0d0961006
[Dockerfiles] Replaced deprecated MAINTAINER with LABEL
...
Used format proposed in
https://docs.docker.com/engine/reference/builder/#maintainer-deprecated
2017-05-13 18:09:45 +02:00
Michael Käufl
6cd97c46c5
Used tabs for indentation in Dockerfiles
2017-05-12 20:59:27 +02:00
andryyy
93046dea45
Fixes #261
2017-05-09 21:29:51 +02:00
andryyy
a18bcce93d
Minor style changes
2017-05-08 15:38:03 +02:00
andryyy
653d23a843
Migrate some settings and DKIM keys to Redis when starting
2017-05-08 15:35:24 +02:00
andryyy
a267a4ad71
Use DKIM selector from Redis
2017-05-08 14:11:30 +02:00
andryyy
d614aaf617
Add Json logger
2017-05-06 23:42:18 +02:00
andryyy
a790c2bdc0
Add phpredis
2017-05-05 10:34:31 +02:00
andryyy
3fc42465a0
Fix width problems in mailbox table, change image name to stretch
2017-05-02 09:42:07 +02:00
andryyy
dfee8efa97
Fix DBUSER in entrypoint
2017-04-28 12:24:14 +02:00
andryyy
77992be9fc
Update Dovecot and Pigeonhole
2017-04-28 10:53:04 +02:00
andryyy
40f86057e5
Move forwarding host script to Docker image
2017-04-23 19:38:47 +02:00
Michael Kuron
08612f0aef
Merge remote-tracking branch 'origin/dev' into forwardinghosts
2017-04-22 18:13:58 +02:00
andryyy
cae7ff7816
Initial clamd container
2017-04-20 21:13:41 +02:00
Michael Kuron
a75d916b74
Forwarding hosts in postscreen
2017-04-17 15:51:50 +02:00
andryyy
06928ec841
imapsync: added option to delete from source after transfer
2017-04-10 13:08:02 +02:00
andryyy
e03136bf21
Add description to command
2017-04-08 23:36:46 +02:00
andryyy
8e3dceb512
Rebase images on stretch
2017-04-05 22:25:59 +02:00
andryyy
5bee39dc95
Use fixed IDs
2017-04-05 22:25:34 +02:00
andryyy
13cd5e0b1d
Run sievec after adding keys, use fixed IDs for users
2017-04-05 22:25:16 +02:00
andryyy
2b955d08ab
Base on Stretch, add Zeyple
2017-04-05 22:19:41 +02:00
andryyy
58d86dadce
Rebase Dovecot on Stretch slim, build from stable source with latest stable Pigeonhole for antispam replacement
2017-04-03 20:06:49 +02:00
andryyy
d5c8f0160c
Go back to apt-stable repo
2017-03-26 11:07:50 +02:00
andryyy
42eabf4cb3
Fix Postfix sender when sender is alias in alias domain
2017-03-20 21:38:52 +01:00
andryyy
09850a76e5
Use Rspamds new tag symbol
2017-03-12 14:38:20 +01:00
andryyy
276e370989
Rspamd tag check for non-spam only (post-filter), remove sql files from repository"
2017-03-08 17:58:00 +01:00
andryyy
489b1ff1c0
Fix domain visibility in SOGo (domains should _not_ see each other)
2017-03-08 17:46:21 +01:00
Michael Käufl
a06bac6739
[Dockerfiles] Use COPY instead of ADD
2017-03-07 15:48:24 +01:00
Michael Käufl
9762176810
[Dockerfiles] From -> FROM
2017-03-07 15:48:22 +01:00
andryyy
c283c85d51
Update Postfix and Dovecot, add ignore
2017-03-06 10:33:44 +01:00
andryyy
be8031d8ff
Move sleep to docker-compose
2017-03-05 12:25:46 +01:00
andryyy
3e91d06d73
Change maintainer
2017-03-04 15:07:07 +01:00
andryyy
e332579a40
Sleep 30 seconds to wait for Nginx restart
2017-03-04 10:41:36 +01:00