Commit Graph

21 Commits (5e5ab6cf40901840ad3f865f8852b7f3c0b8e20b)

Author SHA1 Message Date
andryyy eec75690e0
[Nginx] Deny inc/lib location 2021-08-08 16:06:26 +02:00
andryyy 8b08d09ca2
[Web] Remove XMPP options
[Web] Add Rspamd preset #4
[Web] Do not show failed SASL logins (and also remove them from db)
2021-06-30 10:13:29 +02:00
andryyy 3045bcf49d
[Nginx] Allow SOGo SSO 2021-06-23 14:12:14 +02:00
andryyy 1cd0a96ad0
[Nginx, SOGo] Set mime type text/plain instead of returning 403 when opening risky attachments 2021-05-17 21:21:35 +02:00
andryyy 6a8aa699d9
[SOGo, Nginx] Deny access to some extensions from SOGo web ui to mitigate security concerns 2021-05-12 10:44:42 +02:00
Maximilian 5df8a24c84
server_tokens off in default settings (#4073)
Co-authored-by: Maximilian Leith <accounts.maximilan@leith.de>
2021-04-26 13:20:23 +02:00
andryyy 666d344322
[Web] Remove XMPP site when disabling XMPP 2021-02-14 21:33:43 +01:00
andryyy 9407b55661
[PHP-FPM] Fix fastcgi timeouts 2020-12-26 10:19:52 +01:00
andryyy 8e15c56330
[SOGo] Increase timeout for SOGo to prevent failure on uploads 2020-11-25 16:11:02 +01:00
mcmufffin 93ac0d3864
Update site-defaults.conf (#3780) 2020-09-27 12:38:40 +02:00
André Peters ba0b6963c7
Revert "Update site-defaults.conf (#3778)" (#3779)
This reverts commit b8ec9ad536.
2020-09-26 22:53:53 +02:00
mcmufffin b8ec9ad536
Update site-defaults.conf (#3778) 2020-09-26 22:15:43 +02:00
Jellyfrog c31d0cee86
[Nginx] Refresh cipher suites (#3669)
Also turn ssl_prefer_server_ciphers off.
"The cipher suites are all strong and so we allow the client to choose, as they will know best if they have support for hardware-accelerated AES" - https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29
2020-09-24 07:30:09 +02:00
Timo N 5fe9de0500
[API] Removed api_blueprint docs and use swagger (#3595)
* [NGINX] Removed api docs location

* [WEB] Removed api_blueprint api docs

* [WEB] Added openapi/swagger api viewer

* [WEB] Added openapi.yaml with api docs

* [WEB] Added request body for create app password endpoint

* [Web] Updated types in openapi.yaml

* [Web] Only define API docs auth header once

* [Web] Added 401 api response to docs
2020-06-07 20:46:17 +02:00
andryyy 84d205d728
[Nginx] Drop X-Powered-By via fastcgi_hide_header 2020-05-06 20:14:34 +02:00
andryyy a4e5400f67
[Nginx] Add proxy_send_timeout and proxy_read_timeout of 300 to /SOGo 2020-02-19 21:40:45 +01:00
andryyy 0e6dfdd0fe
[Nginx] Catch case-insensitive /sogo$ request and redirect to /SOGo 2019-12-02 10:55:17 +01:00
andryyy 9257fa90d4
[Nginx] Fix 301 to SOGo 2019-11-28 19:14:23 +01:00
andryyy ce15dda990
[Nginx] Redirect /S|sogo* to /SOGo 2019-11-28 15:08:11 +01:00
tinect cc1bf5d426 deliver CSS and JS as external request 2019-10-20 21:25:58 +02:00
Marcel Hofer 2e35da6816 [SSL] create individual domain certificates, add SNI configs for Postfix/Dovecot/Nginx 2019-10-19 12:48:56 +02:00