Commit Graph

904 Commits (567064ed509db373e52d67f944677984030a2389)

Author SHA1 Message Date
andryyy 1fb81f0511
[ACME] Use redis master for write operations 2020-02-05 10:53:23 +01:00
andryyy de5fb9a03c
[SOGo] Some script changes 2020-01-29 10:33:42 +01:00
andryyy cf4baa00a6
[Dovecot] Fix quarantine bcc, use socket for LUA API 2020-01-29 10:30:06 +01:00
andryyy f1aa306ff2
[Watchdog] Add external check for open relay, requires SAL 2020-01-25 18:26:56 +01:00
andryyy 76d75edb64
[SOGo] Fix for whitespaces in mysql return; Order aliases 2020-01-22 10:15:40 +01:00
Marcel Hofer b8a12ad192 [SSL] fix bug with pruning old certificates (#3272) 2020-01-17 22:36:04 +01:00
andryyy 37934fae03
[Rspamd] Add mailcow_networks map 2020-01-12 12:23:11 +01:00
andryyy 2f818b7f84
[Dovecot] Set bcc in quarantine notify 2020-01-10 20:43:20 +01:00
andryyy 03cbed5002
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve) 2020-01-10 20:39:11 +01:00
Yohann Prigent 2f1520b991 fix new imapsync dependency (#3256)
thanks
2020-01-06 23:13:37 +01:00
Peter ef64b638eb Update imapsync to 1.977 (#3248) 2020-01-06 18:43:21 +01:00
andryyy dd91be5a39
[Watchdog] Wait 3 seconds before looping again 2020-01-01 20:11:28 +01:00
andryyy 9e11ab1fd4
[Watchdog] Retry to get current ACME log status, if empty (may fix watchdog mails on very busy servers - eg while running a backup) 2019-12-28 11:37:04 +01:00
andryyy 196c327215
[PHP-FPM] Remove useless flag for gd 2019-12-28 11:35:59 +01:00
andryyy 390cbc070b
[Dovecot] Remove CONTROL from shared namespace - thanks to @Keessaus 2019-12-25 10:34:08 +01:00
andryyy b63cad1dd5
[Compose] Update Rspamd image 2019-12-23 10:21:44 +01:00
andryyy 86d55c41db
[Rspamd] Touch bad lang map
[Rspamd] SA trivial converter (wip)
2019-12-23 10:20:41 +01:00
andryyy dfd40500b4
[ClamAV] Add fp signature 2019-12-17 15:52:20 +01:00
andryyy 8c3ab0371a
[ClamAV] Copy productive whitelist.ign to exposed configuration folder, remove direct mount of whitelist file 2019-12-14 15:12:37 +01:00
andryyy cc99fe3820
[ClamAV] Whitelist js in pdf - too many fp 2019-12-14 14:59:31 +01:00
andryyy 228a6f4ceb
[SOGo] Read build args 2019-12-07 17:27:59 +01:00
andryyy b8ed434ecd
[Dovecot] Delete ham/spam hash if previously learned; Change LUA script pathes 2019-12-06 10:20:06 +01:00
andryyy b7a749208d
[Dovecot] Really strange race condition when reading an untouched LUA file on slower systems 2019-12-05 10:14:41 +01:00
andryyy 4715245697
[Dovecot] Drop logs 2019-12-05 09:30:53 +01:00
andryyy 13ef9dd113
[Dovecot] Fix lua error when trying to escape empty domains 2019-12-04 21:47:25 +01:00
andryyy f3ac24f0e8
[Watchdog] Revert acme-mailcow threshold to 1 2019-12-04 21:46:16 +01:00
andryyy afb43c9c5b
[Dovecot] Fix app passwds: allow multiple pass hashes by using LUA construct 2019-12-03 18:50:45 +01:00
andryyy ced6867a4e
[Watchdog] Fix ipv6 config check 2019-12-02 18:04:56 +01:00
andryyy 287f3ed921
[Web] Allow to use data/web/css/build/0081-custom-mailcow.css for ignored overrides 2019-12-02 14:46:47 +01:00
andryyy 9998a9ef28
[Watchdog] smtp-cli 3.10 (yay) and a new check for IPv6 configuration problems 2019-12-02 14:23:54 +01:00
andryyy 751fcf0619
[SOGo] Make view more readable 2019-12-02 10:53:59 +01:00
andryyy dfbf3e85be
[Dovecot] Add map for app passwds 2019-12-02 10:53:25 +01:00
andryyy 767a5c7a0e
[Postfix] Build with dnsutils 2019-11-26 22:56:20 +01:00
andryyy c75fd9ac40
[Postfix] Wait for DNS 2019-11-26 21:09:12 +01:00
andryyy 4a36eb014c
[Postfix] TLS protocols for submission and smtps can be overriden using extra.cf (submission_smtpd_tls_mandatory_protocols and smtps_smtpd_tls_mandatory_protocols), thanks to @christianbur
[Postfix] Show overriding warnings when starting Postfix, but hide them in syslog output
2019-11-24 14:18:27 +01:00
andryyy d1f898360c
[SOGo] Rebase on Buster 2019-11-24 11:02:06 +01:00
andryyy d34077950d
[SOGo] Rebase on Buster 2019-11-24 09:20:19 +01:00
andryyy 78e727bcfc
[Watchdog] Retry acme check once more, redis-mailcow might be busy and not returning the wanted string 2019-11-24 09:19:58 +01:00
andryyy d6af0ae7d6
[ClamAV] Update ClamAV 2019-11-21 17:52:45 +01:00
andryyy 158fb20c83 [Netfilter] Add new rule
[Compose] Update Postfix and netfilter
2019-11-12 20:45:23 +01:00
andryyy e1fdbba0f7
[Postfix] Add custom_transport.pcre 2019-11-12 20:44:43 +01:00
andryyy 0f8cc4bef8
[PHP-FPM] Fix check for tz import 2019-11-11 23:24:29 +01:00
andryyy 322dc169e6
[PHP-FPM] Check if tz data import is necessary 2019-11-11 23:19:47 +01:00
andryyy 6565e994bb
[MySQL, PHP, DockerAPI] Move mysql_tzinfo_to_sql trigger to php-fpm-mailcow to prevent race condition on slow disks (known bug @ MariaDB) 2019-11-10 13:15:57 +01:00
Zekeriya Akgül 9ccbeb7f66 Added control for attrs_json object item's type (#3126)
item can be bytes or str in different situations. So let's keep defensive.
2019-11-09 10:01:43 +01:00
andryyy d091bf76aa
[PHP-FPM] Create events in docker entrypoint of PHP-FPM 2019-11-06 21:02:47 +01:00
andryyy d0788372fe
[Dovecot] Retry sa-rules download (1, 2, 4, 8, 16 ... seconds) 2019-11-02 12:03:41 +01:00
andryyy 7f8b13434d
[Rspamd, Dovecot] Do not use Schaal rules - probably too much for Rspamd 2.x to handle, mem leak? 2019-10-31 20:43:07 +01:00
andryyy 27de9dbf92
[Rspamd] Slight changes to improve memory usage
[Web] Dirty hack to touch Rspamd maps a second time
2019-10-30 20:07:58 +01:00
andryyy a1971f7af8
[Rspamd] Set correct parent permission 2019-10-30 14:40:00 +01:00
andryyy 2f3f70dd00
[Dovecot] sa-rules: escape non-regex in regex 2019-10-30 14:39:25 +01:00
andryyy 59df735aa8
[Web] Filter duplicates when adding multiple transports 2019-10-30 14:37:44 +01:00
andryyy 02bb3a44a7
[Rspamd] Wait for PHP to not break inotify 2019-10-29 19:58:34 +01:00
andryyy b52ee0a706
[Rspamd] Fix map permissions for www
[Web] Allow to manage global maps in UI (WIP)
2019-10-29 08:39:57 +01:00
andryyy bdf56971d5
[Rspamd, PHP-FPM] Mount Rspamd maps, set correct permissions (WIP: edit in UI)
[PHP-FPM] Update image, fixes #3091
[Web] Netfilter: Do not auto restart netfilter-mailcow but add a small hint to restart netfilter-mailcow after adding a ban to perm bans
[Web] Remove unused js script parameter
2019-10-25 08:31:31 +02:00
andryyy cd6594df01
[Clamd] Run freshclam before starting ClamAV 2019-10-22 21:30:45 +02:00
andryyy 1e4aa212ea
[ClamAV] Try to prevent update collisions 2019-10-22 13:50:03 +02:00
André Peters 5d93ae655a
Merge pull request #2509 from mhofer117/tls-sni
Different SSL Certificate for each Domain with TLS SNI
2019-10-20 15:17:14 +02:00
Marcel Hofer 56bc9d45bb [SSL] prevent multiple certificates with the same domain 2019-10-20 14:44:39 +02:00
andryyy d35e3c1eff
[Dovecot] Fix Dovecot quarantine notification script 2019-10-19 22:58:11 +02:00
Marcel Hofer b413ed4013 [SSL] minor fix: prevent checking of empty SQL_DOMAIN 2019-10-19 18:23:59 +02:00
Marcel Hofer 2e35da6816 [SSL] create individual domain certificates, add SNI configs for Postfix/Dovecot/Nginx 2019-10-19 12:48:56 +02:00
andryyy a95a3f6145
[Watchdog] Watch olefy 2019-10-18 19:45:16 +02:00
andryyy b0711db489
[Dockerfiles] Rename some files and create hook points 2019-10-18 12:01:47 +02:00
andryyy 2811b498ab
[Netfilter] Punish failed logins to /rspamd 2019-10-12 13:15:59 +02:00
andryyy 0089f72f3d
[Watchdog] Fix for Rspamd 2.0 2019-10-12 13:15:36 +02:00
André Peters 4f6d407fdd
Revert "extend debug page to show assigned domain quota" 2019-10-02 19:23:09 +02:00
heavygale ecda554e53 finalizing disk usage rework
- changed dockerapi to not return human readable values for df
- all caluclations now in KiB
- moved code from domain_admin to mailbox functions
- using actual occupied bytes as used quota
- all outputs now in *iB using formatBytes()
2019-10-01 20:27:06 +02:00
andryyy 3811866ea0
[PHP-FPM] Add composer 2019-09-28 19:58:40 +02:00
andryyy 8c26371d6d
[SQL upgrade] Catch more errors 2019-09-25 12:53:14 +02:00
andryyy 3c133ad02a
[ClamAV] Cleanup garbage when starting container (tmp files may fill up disk, when container runs oom) 2019-09-24 16:39:39 +02:00
andryyy 5ae05b5ec0
[SQL Upgrade] Fix process of SQL upgrade, wait for command to complete and do not use pipe communication model 2019-09-23 21:42:47 +02:00
andryyy baba546c7a
[Watchdog] Wait longer for containers to settle 2019-09-21 22:41:31 +02:00
andryyy 6c4d93f70a
[PHP-FPM] Upgrade of MySQL may need to be applied twice 2019-09-21 22:37:43 +02:00
andryyy 3bd32072f1
[Compose] UPDATE MARIADB TO 10.3 - Please check your installations after upgrading and WAIT a few minutes for the upgrade to complete!
[Postfix] Remove old python lib
[Compose] Add a grace period for MySQL when shutting down
[Netfilter] It is okay to be number two :( (fixes chain order in ip6tables FORWARD chain)
2019-09-20 22:54:40 +02:00
andryyy 1d45c563b7
[Netfilter] Set default ban masks to 32 and 128 2019-09-20 14:30:48 +02:00
andryyy 4b559d5b79
[Postfix] Remove python-gpg 2019-09-20 09:23:44 +02:00
Zekeriya Akgül d62ec4498a
Removed unnecessary print 2019-09-15 10:36:01 +03:00
zekeriya 96042bdab8 [Dovecot] removed non-ascii chars from 'from' field before send 2019-09-14 21:48:13 +03:00
zekeriya adbecef56f [Dovecot] Fixed variable names for DB connection. 2019-09-14 21:07:18 +03:00
zekeriya 8af9b5b6d1 [Dovecot] Fixed quarantine_notify.py json decode error 2019-09-14 21:01:53 +03:00
zekeriya b9e7d12a5e [Dovecot] notify scripts migrated to python3 2019-09-13 21:14:30 +03:00
andryyy c22bddb244
[Watchdog] Add missing mariadb-client tools 2019-09-12 08:35:53 +02:00
andryyy 6a7cc9ec80
[Watchdog] Monitor Redis 2019-09-12 08:29:15 +02:00
andryyy 954690b315 [SOGo] Dont fail with unhandled err response, when a user is forced to change the passwd on next login
[Compose] Update SOGo image
2019-09-09 18:06:42 +02:00
andryyy 62068b2209
[Watchdog] Add watchdog@invalid as rcpt for check 2019-09-04 23:07:17 +02:00
andryyy a1cd7d8ee7
[Postfix] Add watchdog@localhost alias 2019-09-04 23:06:29 +02:00
andryyy b4f159da86
[Postfix] Allow to create an extra.cf file besides main.cf to merge overrides
[Postfix] Better logging while bootstrapping
[Postfix] Stop container, when a service fails (easier to monitor)
2019-09-02 18:37:05 +02:00
andryyy e6609ffe5c
[SOGo] Add ext_acl to SOGo view to allow to select external sender addresses 2019-09-02 09:30:09 +02:00
andryyy 49c7a2cbc7
[PHP-FPM] Plan a Postfix restart, when a MariaDB upgrade was applied 2019-09-02 09:28:13 +02:00
André Peters 4aae447e97
Revert "Python27 eol issue2291" 2019-08-28 07:01:47 +02:00
André Peters b56aa8c1de
Merge pull request #2863 from FaMux/python27EOL_issue2291
Python27 eol issue2291
2019-08-27 19:07:34 +02:00
andryyy bd469412ca
[SOGo] Do not modify UIxAclEditor 2019-08-25 16:03:57 +02:00
andryyy f35efbf39c
[Dovecot] Add new SA rules 2019-08-21 21:07:15 +02:00
andryyy 1d1d6c97cc
[ClamAV] Push to v0.101.4 2019-08-21 21:06:14 +02:00
farnbacher 50c272dbf6
fix wrong package name 2019-08-15 20:58:23 +02:00
farnbacher a119467218
Install Python 3 packages for ported quota_notify.py & quarantine_notify.py 2019-08-15 20:36:32 +02:00
farnbacher c579a2c01e
Update for usage with Python 3
- print with parantheses and .format
 - change shebang
 - change import of email modules
2019-08-15 20:32:20 +02:00
farnbacher cf2e8d6545
Update for usage with Python 3
- print with parantheses and .format
- change import of email modules
- change shebang
2019-08-15 20:18:01 +02:00
andryyy f67f552180 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-08-13 20:28:37 +02:00
Rene Pasing b4ebe83d2f Do not create random files when SKIP_HTTP_VERIFICATION=y (#2830) 2019-08-13 20:26:47 +02:00
andryyy f00b563d9c
[Watchdog] More fixes for watchdog... 2019-08-13 20:19:01 +02:00
andryyy 6aa7664d79
[Watchdog] Force timeout on smtp-cli, kill watchdog.sh on reload 2019-08-11 10:18:00 +02:00
andryyy 3488cb2171
[Dovecot] Fix GUID 2019-08-10 21:03:18 +02:00
andryyy 2714910a7f
[SOGo] Fix versions check 2019-08-10 15:59:28 +02:00
andryyy fc1e547e53
[Watchdog] Minor changes and better error detection; Increased ClamAV threshold 2019-08-09 14:12:56 +02:00
andryyy 457d62e22e
[Dovecot] Generate GUID 2019-08-09 14:11:36 +02:00
andryyy 3136e020f6
[Postfix] Remove Zeyple, base on Buster 2019-08-09 14:08:58 +02:00
keigel2001 f9a3e500b5 [ClamAV] Update to 0.101.3 2019-08-06 17:00:11 +02:00
andryyy 1ad1413d08
[Watchdog] Do not reload every minute... 2019-08-03 14:38:09 +02:00
andryyy 5f9644e8bd
[Watchdog] Minor changes and PID logging for workers, disabling olefy check 2019-08-03 14:29:02 +02:00
andryyy 67049a27e2
[DockerAPI] Fix pathes, fixes #2820 2019-07-30 11:32:38 +02:00
andryyy fb22540f74
[Solr] Use new Solr base 2019-07-28 21:35:10 +02:00
andryyy 97c2fe9fe1
[Dovecot] Install from repository 2019-07-28 21:34:42 +02:00
Patrik Kernstock 39250ca3d0
Added charset for watchdog mails
Added charset parameter to get rid of the negative rating of rspamd R_MISSING_CHARSET (2.5).
2019-07-25 21:49:30 +02:00
andryyy cbdd6b0dfa
[ACME] Fix insecure http verifications 2019-07-22 22:52:45 +02:00
andryyy a2cc3340b7
[DockerAPI] Alpine 3.10 2019-07-22 21:09:17 +02:00
andryyy 78d350ba23
[Olefy] Alpine 3.10 2019-07-22 21:09:05 +02:00
andryyy 22d17390df
[Netfilter] Alpine 3.10 with dirty, dirty hack to workaround iptables issue with Python 2019-07-22 21:08:44 +02:00
andryyy 3d52cc2270
[ACME] Alpine 3.10 2019-07-22 21:08:11 +02:00
andryyy 4532b5c882
[Dovecot] Remove default cronjobs 2019-07-22 21:07:39 +02:00
andryyy 8c3a7e52b4
[Watchdog] Minor threshold changes 2019-07-22 21:07:16 +02:00
andryyy 9aad9d8e4e
[Dovecot] New Dovecot version 2019-07-21 13:08:00 +02:00
andryyy 5e7466ac7f
[SOGo, Config, Update] Add SOGO_EXPIRE_SESSION to define default session timeout 2019-07-21 13:07:48 +02:00
andryyy 7d72c8088a
[Watchdog] Some changes like running checks less often, lower thresholds and a whois command fix 2019-07-20 21:43:14 +02:00
andryyy a0f4886be6
[PHP-FPM] Update to Alpine 3.10 because of yet untraced errors with CentOS 7 Docker hosts 2019-07-20 15:15:39 +02:00
andryyy 568e166478
[Unbound] Update base to Alpine 3.10 to use Unbound 1.9
[Unbound] Set unwanted-reply-threshold: 10000
2019-07-13 09:22:03 +02:00
andryyy 2898aa6918
[Postfix] Remove unused alias domain catch all map 2019-07-13 08:59:32 +02:00
andryyy d3906329e7
[SOGo] Update Dockerfile 2019-07-13 08:58:13 +02:00
andryyy 7466157d3a
[SOGo] Use SSL via IMAP, seems to be more stable, fixes #2770 2019-07-09 08:59:28 +02:00
andryyy ea3f1374fc
[ACME] Slightly better info messages, some fixes 2019-07-09 08:59:07 +02:00
andryyy b139e48eec
Add some hints to autogenerated files 2019-07-08 07:56:41 +02:00
andryyy 59fe692252 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-07-08 07:56:02 +02:00
andryyy 4b9f022890
[Watchdog] Watch olefy, thanks to @ntimo 2019-07-07 21:59:20 +02:00
André Peters f6a053985f
Revert "Update docker-entrypoint.sh" 2019-07-06 11:46:05 +02:00
André Peters 98c46fc33d
Merge pull request #2755 from gmarke/patch-1
Update docker-entrypoint.sh
2019-07-06 11:11:31 +02:00
andryyy 184eb7a739
[ClamAV] Fix chmod command, thanks to @fbcd4f50ea5350f051450323b5abfd0b 2019-07-03 10:46:30 +02:00
gmarke 99131f52de
Update docker-entrypoint.sh
get mysql ID only for current project
2019-07-03 08:06:44 +02:00
andryyy 27d1bd8aeb [ClamAV] Fix missing exit code var, fixes #2746 2019-06-29 23:27:22 +02:00
andryyy 014a0c7af5
[ACME] Better HTTP verification 2019-06-29 20:28:03 +02:00
andryyy 104fbae0d9
[Netfilter] Set some f2boptions to int 2019-06-25 22:16:38 +02:00
andryyy 2efd27e40e
[Olefy] A new container is born, thanks to @c-rosenberg
[ACME] Autoconfig is back (re-added to SAN list by default for all mail domains)
[Rspamd] Added comment to composite
2019-06-25 18:52:05 +02:00
andryyy 71c6c59f1c
[Dovecot] Fix cleanup of old quarantine items, fixes #2721 2019-06-22 23:12:23 +02:00
andryyy 39f95b8284
[Compose] Add olefy container, new Postfix iamge and new ClamAV image 2019-06-16 17:37:25 +02:00
andryyy aea957e949
[Olefy] New container and image 2019-06-16 17:36:32 +02:00
andryyy 090e14ee8d
[Netfilter] Keep musl-dev, update pip 2019-06-13 21:10:49 +02:00
andryyy 8984240e44
[Watchdog, Config] Added WATCHDOG_NOTIFY_BAN to disable IP ban notifications
[Netfilter] Remove unused files after installation
[Compose] Some new images and a new option for watchdog: WATCHDOG_NOTIFY_BAN - defaults to y
2019-06-13 19:38:53 +02:00
andryyy 7145c380b0
[Watchdog] Minor text changes and send whois report of banned IP 2019-06-10 22:40:21 +02:00
andryyy 7f6acdb791
[Watchdog] Fix for fix for wrong mails 2019-06-10 21:53:44 +02:00
andryyy 0d7681d0a5
[Watchdog] Fix broken mail with more than one rcpt in some cases 2019-06-10 20:20:41 +02:00