Commit Graph

1174 Commits (7c418beef077ba63b0f82708652d8a682be312ff)

Author SHA1 Message Date
André 508b712ae1 [Web] Revert user acl 2017-10-26 10:35:03 +02:00
André 4156b4cdf8 [Rspamd] Disable spoofed sender check 2017-10-26 10:29:13 +02:00
André 25ee53289b Fix metrics 2017-10-26 10:22:16 +02:00
André db5a3ae47f [Web] Start work on ACL; [Helper] Nextcloud helper script 2017-10-26 10:21:12 +02:00
André 988978b351 [Rspamd] Remove log helper and disable fann redis 2017-10-25 20:55:11 +02:00
André 4fd5b9afba [SOGo] Fix for some Outlook 2016 EAS problems 2017-10-25 08:57:34 +02:00
Antoine Sirinelli 4797057a07 Remove the duplicate string definitions (english)
The following strings were defined twice in lang.en.php.
The first occurence has been removed to avoid confusion (and bugs from
translation tools):

- $lang['danger']['whitelist_from_invalid']
- $lang['success']['aliasd_modified']
- $lang['user']['spamfilter_default_score']
- $lang['edit']['save']
- $lang['tfa']['totp']
- $lang['admin']['sr']
- $lang['admin']['save']
2017-10-23 22:45:51 +02:00
André 04cb033f0a [PHP-FPM] Add imagemagic 2017-10-21 10:10:27 +02:00
André f7cd7cc123 [Rspamd] Redis history is enabled by default 2017-10-21 10:09:53 +02:00
André a110e2ea0f [ACME] Fix detection of orphaned SANs and add tini 2017-10-21 10:08:20 +02:00
André 81775765d8 [Web] Customize app menu and logo; Fix #671 2017-10-21 10:07:06 +02:00
André 6b6470fe54 [Rspamd] Use tini 2017-10-15 09:31:19 +02:00
André 92e8233c92 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-10-14 23:26:14 +02:00
André ac413058c1 [Watchdog] Fix kill -0 check, use tini and send kill request to tini instead of parent pid, sleep longer 2017-10-14 23:26:08 +02:00
André c5dd30b058 [ClamAV] Use tini, check if background procs are running, use pipe to output to stdout 2017-10-14 23:25:29 +02:00
Michael Kuron a4ccd780c6 rspamd: disable greylisting for forwarding hosts 2017-10-14 16:40:44 +02:00
André 33b0167bcc [Web] Accept empty values for sync jobs, fixes #663 2017-10-14 08:34:55 +02:00
André a3e966696f [Nginx] Revert to site splitting 2017-10-12 08:37:48 +02:00
andryyy c5054ae7ed [Watchdog] Ignore null name in jq
[Nginx] Merge sites
[Scripts] Nextcloud helper script (testing!)
2017-10-11 22:56:22 +02:00
andryyy 7c46d6548b [Dovecot] Ignore watchdog IP in logs, filter by syslog-ng 2017-10-11 11:23:20 +02:00
andryyy e107cbef5e [Postfix] Fix sending as alias, when alias is in alias domains, cleanup 2017-10-11 11:22:52 +02:00
andryyy 57484e4a45 [Postfix] Log all watchdog activities to local7 facility 2017-10-11 11:21:41 +02:00
andryyy ec1e23ca71 [Assets] Move nextcloud files to subfolder nextcloud 2017-10-11 11:20:48 +02:00
andryyy 490e1c5001 [Web] Escape : in relayhosts 2017-10-09 20:31:08 +02:00
andryyy 2862b43c81 [Watchdog] Fix watchdog to fit non-exposed PHP 2017-10-09 15:54:54 +02:00
andryyy 6110ac386f [SOGo] Use official nightly; [PHP-FPM] Fix expose=off 2017-10-09 15:45:48 +02:00
andryyy 874aac3c5e [Nginx, PHP-FPM] Do not expose PHP version, example for nextcloud site, include custom locations to site (add site.something.custom to data/conf/nginx) 2017-10-08 22:57:34 +02:00
andryyy 72995ff98e [PHP-FPM] Include more modules for upcoming features and Nextcloud support, drop ro flag; [Watchdog] Some fixes and changes 2017-10-08 22:47:52 +02:00
André Peters 40506d3052 [Web] Add missing sync job option when admin 2017-10-07 22:10:56 +02:00
André Peters 668a05bdf1 [Web] Fixes #657 2017-10-07 22:09:44 +02:00
andryyy 7db5877644 [Web] Fixes #657 2017-10-07 22:08:08 +02:00
andryyy ef9953898c [ACME, Watchdog, DockerAPI] Use only limited Docker API 2017-10-06 13:32:49 +02:00
andryyy 3ae0b16845 [Web, DockerAPI] Be more like official Docker API 2017-10-06 10:20:40 +02:00
andryyy fc18d153cd [Compose, DockerAPI, Web, Watchdog] Watchdog may send notification mails (todo: docs), DockerAPI via Flesk for limited access 2017-10-05 23:38:33 +02:00
andryyy 9860d44d04 [Watchdog] Do also log errors to Redis if availble 2017-10-04 23:18:51 +02:00
andryyy 073c6c6e73 [Postfix/Rspamd] Do not reject unauthenticated sender mismatches but rewrite their subject and assign symbol SPOOFED_SENDER with score 1.0 2017-10-04 23:16:39 +02:00
andryyy 2dc8306b69 [Postfix] Remove old socket 2017-10-04 23:15:26 +02:00
andryyy 3de01afce0 [Web] Fixes #650 2017-10-04 19:01:46 +02:00
andryyy cc2f2afc62 [Web] Use Docker API for SOGo restart 2017-10-04 13:04:58 +02:00
andryyy 82ac5fa063 [SOGo] Remove supervisord API 2017-10-04 13:04:35 +02:00
andryyy 9b4ed6b21c [PHP-FPM] Include Docker api for better SOGo status handling and future changes 2017-10-04 13:04:15 +02:00
andryyy 4915375500 [Web] Fix duplicate key as result of race-condition when recreating mailbox while authentication in IMAP is cached and a mail arrives 2017-10-03 22:39:58 +02:00
André Peters d8636113dd Merge pull request #636 from mkuron/outlook
Preliminary support for Outlook 2016’s autodiscover.json
2017-10-03 21:23:59 +03:00
andryyy 24af77f41c [Web] Revert some autodiscover changes 2017-10-03 17:18:04 +02:00
andryyy da987e5b48 [Postfix] Forgot 'not' in filter 2017-10-03 16:54:18 +02:00
andryyy 6287a395b5 [Web] Revert some autodiscover changes, fix json_api for Postfix logs 2017-10-03 16:48:33 +02:00
andryyy c59d03fcb3 [Watchdog] Skip when use_watchdog=n 2017-10-03 12:07:48 +02:00
andryyy 68d7fa1504 [Watchdog] Skip when use_watchdog=n 2017-10-03 12:05:38 +02:00
andryyy 8c646f64b5 [Web] Autodiscover: Disable utf8_encode for displayname 2017-10-02 23:37:57 +02:00
André Peters e1ee1e848f Update autodiscover-json.php
HTTP_HOST is okay.
Syntax for consistency. :-)
2017-10-02 23:22:53 +02:00
andryyy bc33465b41 [Web] Autodiscover fixex (DAV path) 2017-10-02 22:46:55 +02:00
andryyy 5e69decd7b [Web] Temp. workaround for em Client which sends an empty user-agent 2017-10-02 22:19:20 +02:00
andryyy 9c37cd76e5 [Web] Autodiscover logs 2017-10-02 21:47:31 +02:00
andryyy 64c9691798 [Web] Autodiscover fixes 2017-10-02 19:07:14 +02:00
andryyy a837c9ab53 [Web] Better fkey handling in init_db; set body font size to 11pt instead of 14px; Changes to autodiscover functions 2017-10-02 15:58:55 +02:00
andryyy 7cb3c416cb Merge fix for prereq path 2017-10-01 20:34:37 +02:00
André Peters 42567a352c Should fix #644 2017-10-01 12:40:44 +02:00
Michael Kuron 752a571607 Merge pull request #638 from mkuron/acme
ACME needs to wait for MySQL to be ready
2017-09-28 12:58:07 +02:00
Michael Kuron ae79445ec0 ACME needs to wait for MySQL to be ready 2017-09-27 19:48:25 +02:00
Michael Kuron c731a18f66 Preliminary support for Outlook 2016’s autodiscover.json 2017-09-26 22:11:01 +02:00
andryyy 337c9e350e [Watchdog] Reset diff, new image 2017-09-22 16:40:02 +02:00
andryyy f257ed92f5 [Rspamd] Add missing ratelimit.conf 2017-09-21 22:21:11 +02:00
andryyy 62524150d2 [ACME] Add timestamps, check if acme account key is valid
[Postfix] Ignore local0
[Watchdog] Add Rspamd checks
2017-09-21 19:30:09 +02:00
andryyy edb2be979b [Postfix] Changes to ignore watchdog checks 2017-09-21 19:25:43 +02:00
andryyy fd3b2e5f16 [Rspamd] Changes to ignore watchdog checks 2017-09-21 19:25:17 +02:00
andryyy ab850dc901 [ACME] Detect and fix invalid registration 2017-09-21 09:46:09 +02:00
Phoenix Eve Aspacio 651c1cac23 Fixed broken link 2017-09-21 07:22:33 +08:00
andryyy 41d2a16571 [Watchdog] Script was not executable 2017-09-20 23:36:04 +02:00
andryyy 288a55b1f3 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-09-20 23:25:07 +02:00
andryyy f511cb0f63 [Watchdog] More fixes and or changes 2017-09-20 23:24:56 +02:00
andryyy fd1955edca [Fail2ban] Add variable name 2017-09-20 23:24:39 +02:00
andryyy ea5aa261c9 [Unbound] Define mailcow ip6 as private 2017-09-20 23:23:11 +02:00
Michael Kuron a411a357b9 rspamd: exclude Mail Flow monitoring from logs and stats 2017-09-20 15:21:02 +02:00
andryyy b6e84fac3a Sleep instead of stopping containers to prevent restarts 2017-09-20 12:50:50 +02:00
andryyy df5c79c3f1 Fixes for watchdog! 2017-09-20 12:27:24 +02:00
andryyy e70d5b9206 Fix watchdog 2017-09-20 11:05:23 +02:00
andryyy a8fb1d3f4f Add experimental watchdog 2017-09-20 10:56:49 +02:00
Michael Kuron 533f947074 Merge pull request #589 from marrco/master
Rspamd: better scores for mx_check symbols
2017-09-19 12:14:18 +00:00
Michael Kuron 68c87ce7a6 rspamd mx_check: composite symbol overrides individual scores 2017-09-19 14:12:10 +02:00
marrco 1fb4f34046 Update metrics.conf 2017-09-19 10:04:39 +02:00
marrco 5742e3b014 Update mx_check.conf 2017-09-19 10:00:50 +02:00
marrco 0752840369 Update mx_check.conf 2017-09-19 09:23:41 +02:00
marrco 9d611a903a Update metrics.conf 2017-09-19 09:21:36 +02:00
marrco 529c3bcc9c Create composites.conf 2017-09-19 09:19:22 +02:00
andryyy 4b39f667e2 [Postfix] Fix protocols 2017-09-18 11:00:11 +02:00
andryyy 719aa1a391 [Postfix] Fix protocols 2017-09-18 10:59:45 +02:00
andryyy 67056dc3d1 [Postfix] Less strict smtpd_tls_mandatory_protocols 2017-09-18 08:24:24 +02:00
andryyy 0cf22b64e1 [Postfix] Less strict smtpd_tls_mandatory_protocols 2017-09-18 08:23:31 +02:00
andryyy e07f84d0f0 [Web] Update phpmailer, always use correct path for vars.inc.php 2017-09-17 14:39:10 +02:00
andryyy e20f50fafc [Web] Fix spacing 2017-09-17 14:38:05 +02:00
andryyy d0c0cd4992 [Rspamd] Fix user settings... 2017-09-16 23:27:13 +02:00
andryyy fcc6bcc4b3 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-09-16 23:05:40 +02:00
andryyy 1b974bc8d1 [Compose] New images 2017-09-16 23:05:33 +02:00
André Peters 6d86813330 Merge pull request #610 from mkuron/rspamd-header
Rspamd user settings: fix matching From header
2017-09-16 23:00:38 +02:00
andryyy 750a2b8cef [Web] New feature: Show DKIM private keys - needs variable set to true in vars.local.inc.php 2017-09-16 22:59:42 +02:00
Michael Kuron e4f13568d1 Rspamd user settings: fix matching From header 2017-09-16 18:46:28 +02:00
andryyy c6f81fe67b [Web] Fix autodiscover merge on user.php 2017-09-16 13:33:27 +02:00
andryyy e20d31e440 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-09-16 13:17:59 +02:00
andryyy 2b97305f6d [ACME] Sleep, don't exit 2017-09-16 13:17:48 +02:00
andryyy 8741b5f3b1 [Compose] Enable some minimal inits, change or remove some health checks 2017-09-16 13:17:37 +02:00
André Peters 4acc82dbea Merge pull request #468 from mkuron/clientconfig4
Client configuration guide link
2017-09-16 13:11:54 +02:00
andryyy c63fb8b11a [Web] Init db fix for c_location 2017-09-15 07:55:23 +02:00
andryyy 762f18e913 [Clamd] Use Dockerds own init system 2017-09-14 23:13:24 +02:00
andryyy c75f16c97c [Web] Fix initial admin creation 2017-09-14 22:45:17 +02:00
andryyy 089e8776f5 [Postfix] Stricter TLS settings for mandatory connections 2017-09-14 13:34:23 +02:00
andryyy f0df390d12 [Nginx] Stricter TLS settings 2017-09-14 13:34:07 +02:00
andryyy 00e465a9a1 [Dovecot] Allow INBOX to be shared, sigh... fixes #594 2017-09-14 13:32:11 +02:00
marrco a2720cca83 Update mx_check.conf 2017-09-13 16:32:10 +02:00
54f6e50bb5 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2017-09-13 16:14:14 +02:00
andryyy 71070fbe86 [Web] Fix admin injection query 2017-09-12 22:48:12 +02:00
andryyy 998523bdfa [Web] Allow ratelimt per user, overrides domain tl 2017-09-12 20:57:54 +02:00
andryyy eeaa48a729 [PHP-FPM] Use valid user for mysqladmin ping
[SOGo] Use valid user for mysqladmin ping
2017-09-12 20:57:18 +02:00
marrco 1f9bafd578 Temporay fix to MX values
see https://github.com/mailcow/mailcow-dockerized/issues/576
2017-09-12 17:02:43 +02:00
andryyy 1ffed58956 [ACME] New version, better IPv4 detection 2017-09-11 21:51:17 +02:00
andryyy 2d0af3f486 [ACME] New version, better IPv4 detection 2017-09-11 21:49:22 +02:00
andryyy 92e6c9daae [Nginx] Fix SSL temp. 2017-09-11 17:37:25 +02:00
André Peters 013163bac9 Merge pull request #573 from cwildfoerster/serve-local-only
serve internet explorer js files too
2017-09-10 19:15:14 +02:00
Constantin Wildförster 82ed5e17b0
serve internet explorer js files too 2017-09-10 16:28:33 +02:00
Constantin Wildförster 65deb45f68
fixes #562 2017-09-10 16:11:55 +02:00
andryyy 3ab6fc21c6 [Web] Init user_acl after mailbox table 2017-09-10 13:48:53 +02:00
JOduMonT b2b9731020 a little bit of security
Hide the version of NGINX, block XSS and more...

inspired by : https://gist.github.com/plentz/6737338
2017-09-09 23:10:36 +07:00
André Peters 78c363b7a5 Merge pull request #565 from mkuron/softreject
Forwarding hosts: treat soft reject like greylist
2017-09-09 10:43:41 +02:00
Michael Kuron 3d9c161be1 Forwarding hosts: treat soft reject like greylist 2017-09-09 10:30:26 +02:00
andryyy ed4e8d301c Fix tabs 2017-09-08 18:41:02 +02:00
andryyy b8c4093702 [Web] Allow a spam score up to 2000, fixes #556 2017-09-07 20:20:36 +02:00
Tobias fcd0efc265 Change primary name of SSL certificate
Hostname as primary name for the SSL certificate, all other names will
be added as SAN
2017-09-03 19:41:47 +02:00
andryyy 1f90433429 [Dovecot, Postfix, SOGo] Fix redis log cleanup, fixes #542 2017-09-03 11:57:58 +02:00
andryyy 446907944a [Postfix] Fix missing ltrim 2017-09-01 23:40:23 +02:00
andryyy 008d500f4d [Compose, Dovecot] Fixed missing ltrim 2017-09-01 23:39:51 +02:00
andryyy 7351fcf1e3 [Compose, SOGo] New version, ltrim logs 2017-09-01 23:33:12 +02:00
andryyy 4d7bb26874 [Postfix] Add null rcpt for watchdog 2017-09-01 12:22:29 +02:00
andryyy 08d6b97ffa [Dovecot] New Dovecot and Pigeonhole versions; include delete2 option in imapsync 2017-08-31 10:36:10 +02:00
andryyy 4a0e3a433b [Fail2ban] Remove rule to detect disconnects without authentication 2017-08-30 22:27:33 +02:00
andryyy 3e741a0d9c [Web] Disable connectors in FooTable filter 2017-08-30 22:06:51 +02:00
andryyy cfd9316d74 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-08-30 21:43:45 +02:00
andryyy 9ebb9efeb1 [Web] Added Polish translation! Big thanks to Jan! 2017-08-30 21:43:35 +02:00
andryyy b1213c51d7 [Rspamd] Dynamic ratelimit fixed, removed async redis request; Ready to implement per-user ratelimits via UI (tbd) 2017-08-30 21:42:39 +02:00
André Peters 29acfe85db Merge pull request #536 from mkuron/patch-1
Rspamd user blacklist/whitelist improvements
2017-08-28 22:55:12 +02:00
Michael Kuron 8383ba5e9c Rspamd user settings: fix From header match
The request_header regex appears to not be expected to be encapsulated in slashes and does not seem to accept flags.
2017-08-28 20:27:53 +02:00
Michael Kuron fcd8cfa4f4 Rspamd user settings: don't print all email addresses of a domain
The ucl_rcpts function can already deal with domains, so lets use this capability.
2017-08-27 14:19:29 +02:00
Michael Kuron 93a092e627 Rspamd user settings: also match From header 2017-08-27 14:19:28 +02:00
Michael Kuron e178ca36de Rspamd user settings: make regexes case-insensitive
This is necessary because the user web UI normalizes to lowercase
2017-08-27 14:19:28 +02:00
Michael Kuron 0ad870fffe Merge branch 'dev' into dns2 2017-08-24 21:52:39 +02:00
andryyy 66ae588445 [Web] Started work on ACL, fix notifications 2017-08-18 22:18:14 +02:00
andryyy e47feeffd6 [Rspamd] Add custom directory for own files 2017-08-18 22:17:01 +02:00
andryyy 7a2c0f2ee7 [Acme] Skip backup mx domains 2017-08-18 09:57:25 +02:00
andryyy e5faee9037 [Nginx] Disable client_max_body_size 2017-08-09 10:17:32 +02:00
André Peters 92eefc1288 Merge pull request #486 from mkuron/patch-1
Disable ClamAV phishing filter
2017-08-02 15:54:16 +02:00
Michael Kuron dec64eef32 Disable ClamAV phishing filter
ClamAV has a phishing filter built in, but it generates too many false positives. We can disable it without risk because rspamd also checks for phishing itself.
2017-08-02 14:42:53 +02:00
andryyy 2eed7c05a1 [Dovecot] Push version, fix cronjob (fixes #310) 2017-08-01 14:02:00 +02:00
andryyy d85352fa9a [Dovecot] Use listescape 2017-07-31 12:41:18 +02:00
andryyy c7484434dd [Dovecot] Remove master.pid if not running; Check for active imapsync besides lock file; Reconnect MySQL connection in imapsync_cron.pl 2017-07-31 08:19:02 +02:00
andryyy 10b2ae09b9 [Web] Remove dev file 2017-07-30 21:40:40 +02:00
andryyy aabcf65c69 [Nginx] Set server_names_hash_bucket_size 64 2017-07-30 21:39:35 +02:00
andryyy 66e06a0c0c [Web] Sync jobs can be created/viewed/edited by admins/domain admins; Various fixes or improvements 2017-07-29 10:32:17 +02:00
andryyy 9be3aa3334 [Rspamd] Disable monitored 2017-07-27 09:03:44 +02:00
andryyy 3bd7383bca [Web] Add relay host testing tool 2017-07-26 23:11:43 +02:00
andryyy b4892f043f [Web] Edit relayhost 2017-07-26 23:11:08 +02:00
andryyy 45ef561ac0 [Web] Add default rcpt for relay testing tool to variables 2017-07-26 23:10:18 +02:00
andryyy 9bce8f0501 [Web] Fix session timeout 2017-07-26 23:09:50 +02:00
andryyy 5a49748dd5 [Web] Add graphs and stats to JSON api 2017-07-26 23:09:15 +02:00
andryyy 379933a333 [Web] Added PHPMailer for relayhost testing tool 2017-07-26 23:07:46 +02:00
andryyy 33bf9f5c5d [Rspamd] Push image version 1.5, Rspamd 1.6.3 2017-07-26 23:07:01 +02:00
andryyy 8da02378b1 [Rspamd] Use Nginx IP in settings map 2017-07-26 23:04:49 +02:00
andryyy 03c614f749 [Postfix] Use Nginx IP in whitelist_forwardinghosts.sh 2017-07-26 23:04:27 +02:00
andryyy b629089ff8 [SOGo] Rename reconf-domains to bootstrap-sogo and exec sogod after a successful bootstrap; Wait for SOGo to die and free listener 2017-07-24 23:25:04 +02:00
andryyy 5d5646df0c [Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code 2017-07-24 22:53:23 +02:00
André Peters 0a6eef83bd Merge pull request #449 from mkuron/autoconfig
Autoconfig/Autodiscover unification
2017-07-24 12:58:53 +02:00
André Peters 1b719a8668 Update autoconfig.php 2017-07-24 12:37:02 +02:00
André Peters 27c169dbe1 Update mobileconfig.php 2017-07-24 12:35:56 +02:00
André Peters bfa2e83803 Add more help text, remove obsolete variable 2017-07-24 12:35:04 +02:00
André Peters b295bedf53 Update autoconfig.php 2017-07-24 12:28:48 +02:00
Phoenix Eve Aspacio e26563d51e Enable Fail2ban in Autodiscover 2017-07-23 21:27:18 +08:00
Michael Kuron 53d44ed18d Merge branch 'dev' into autoconfig 2017-07-23 10:12:03 +02:00
Michael Kuron fcbbfe71bb Merge branch 'dev' into dns2 2017-07-23 10:10:36 +02:00
andryyy 83d485dd94 [Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication) 2017-07-22 20:39:54 +02:00
Michael Kuron 8fcaf407e6 Client configuration link 2017-07-22 12:37:39 +02:00
andryyy ed33cb5f57 [Rspamd] ARC: Disallow login/domain mismatch 2017-07-21 11:03:35 +02:00
andryyy f4db3a7a00 [Web] Allow multiple sync jobs with same username, fixes #464 2017-07-17 22:36:34 +02:00
andryyy 84ad579437 [Web] Initial ratelimit support, more API actions 2017-07-16 11:03:28 +02:00
andryyy 256c9d86dd [Rspamd] Initial custom ratelimit support 2017-07-13 12:55:14 +02:00
andryyy 5f5872f78b [Rspamd] Initial custom ratelimit support 2017-07-13 12:54:53 +02:00
andryyy e6727b1fd6 [ACME] Iterate alias domains, use hostname in subject field 2017-07-13 12:51:52 +02:00
andryyy 9e92c4a2ad [Dovecot] Do not keep persistent logs in a container 2017-07-11 17:09:31 +02:00
andryyy f8ae5158cb [Postfix] Do not keep persistent logs in a container 2017-07-11 17:09:20 +02:00
andryyy a31819fd6c [SOGo] Log to a pipe to not keep logs in a container 2017-07-11 17:08:06 +02:00
Michael Kuron 98be90c494 Remove SPF and DMARC checks 2017-07-10 21:41:45 +02:00
andryyy 08b99c8d74 [Dovecot] Add doveadm service 2017-07-10 21:30:45 +02:00
Michael Kuron 14d2b3d763 DNS diagnostics page 2017-07-10 21:17:40 +02:00
Michael Kuron 5abeb313ba Autoconfig harmonization
- use $autodiscover_config everywhere
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
- iOS mobileconfig generator
2017-07-10 20:52:51 +02:00
andryyy c5d90b821a [Dovecot] Add extra.conf include to override Dovecot configuration changes 2017-07-10 09:19:12 +02:00
André Peters f37405d9fd Merge pull request #446 from mailcow/revert-444-dns
Revert "DNS diagnostics page"
2017-07-10 08:46:32 +02:00
André Peters beec3d47f7 Revert "Client configuration guides" 2017-07-10 08:46:20 +02:00
André Peters 4c1537c1c2 Revert "DNS diagnostics page" 2017-07-10 08:45:59 +02:00
André Peters c5acdd70fb Merge pull request #427 from mkuron/clientconfig2
Client configuration guides
2017-07-10 08:03:28 +02:00
André Peters b1dddd08e6 Merge pull request #444 from mkuron/dns
DNS diagnostics page
2017-07-10 07:53:29 +02:00
andryyy 51660589d4 [Rspamd] Push version 1.3 2017-07-09 22:28:36 +02:00
Michael Kuron c1a1f98ee5 DNS diagnostics page 2017-07-09 10:01:27 +02:00
andryyy fa2af1b286 [Web] Allow more bytes in concat queries, fixes #435 2017-07-06 17:34:51 +02:00
andryyy a324b1a385 [Rspamd] Fix DKIM siging (base64 hash line folding) 2017-07-06 15:57:33 +02:00
Michael Kuron 8946d69274 Fix merge conflict 2017-07-05 20:11:07 +02:00
andryyy 69da02c144 [Dovecot] Important fix for Pigeonhole (downgrade) 2017-07-05 19:13:07 +02:00
andryyy 7f47af1d60 Fix destination hash 2017-07-05 12:31:52 +02:00
andryyy 87cc5f54ff [Postfix] Fix redis log destination hash 2017-07-05 12:03:12 +02:00
andryyy 2fadfee61a [SOGo] Remove thunderbird plugin generation, will move to docs 2017-07-05 10:22:48 +02:00
andryyy de14d30e6b [ACME] Fix exit command (was using echo), fix for duplicate SAN (filter) 2017-07-04 21:32:58 +02:00
Michael Kuron b88190988e Autodiscover: Strip bind addresses off of port environment variables 2017-07-04 19:58:30 +02:00
andryyy dc463c3dda [Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver. 2017-07-04 18:08:20 +02:00
andryyy ed11e7586e [Clamd] Add SKIP_CLAMD variable to disable Clamd start 2017-07-04 18:05:44 +02:00
andryyy a2f1c09a84 [Web] Style changes to DKIM import section, push login errors to Redis channel 2017-07-04 18:05:04 +02:00
andryyy ace247b3b9 [ACME] Unset name arrays before reusing them 2017-07-03 10:20:09 +02:00
andryyy d4311a806b Fix Rspamd logs date 2017-07-03 08:10:11 +02:00
andryyy 2cf9f71613 [ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME 2017-07-02 20:18:22 +02:00
Michael Kuron 96ed94dedd Client configuration guides
- iOS mobileconfig generator
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
2017-07-02 16:29:42 +02:00
andryyy 56a652fbf3 [Rspamd] Set error_reporting to 0 2017-07-02 11:25:14 +02:00
andryyy cf902854d7 Merge, conflict fixed 2017-07-02 11:22:35 +02:00
andryyy b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy afc8c93c07 [Rspamd] Cleanup settings map 2017-07-01 23:14:27 +02:00
andryyy 60ce236738 [Web] Language strings for DKIM import tool 2017-07-01 23:12:14 +02:00
andryyy 744784cb62 [UI] Initial: Import private keys for DKIM/ARC 2017-06-30 21:50:21 +02:00
andryyy ae5ce6568d [Dovecot] Dovecot 2.2.31, Pigeonhole 0.4.19 2017-06-30 20:30:30 +02:00
andryyy 5ab11c0c1e [ACME] Show err instead of empty var when IP lookup failed 2017-06-30 20:29:55 +02:00
andryyy d2048ccf20 [ACME] Be more verbose about IP address 2017-06-29 21:22:01 +02:00
andryyy a6b60aebb8 [Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match 2017-06-29 11:30:14 +02:00
andryyy 372da9b557 [Web] Move Fail2ban function, add lang strings 2017-06-29 10:30:25 +02:00
andryyy 6c64ffbd49 [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:29:56 +02:00
andryyy 9040d456ed [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:25:32 +02:00
andryyy 3d652dd3d0 Added more checks for acme-mailcow 2017-06-29 00:56:51 +02:00
andryyy 6d8438c01c - More checks for acme-mailcow (verify hashes)
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy 234baf1cb9 Readd 2017-06-28 18:59:15 +02:00
andryyy aa5b03dd99 Merge branch 'dev'
Conflicts:
	data/web/autodiscover.php
2017-06-28 18:57:22 +02:00
andryyy b0584c3622 Use , as IFS for additional san 2017-06-28 10:50:51 +02:00
andryyy f7bce8b81a Copy dhparams if not found 2017-06-27 20:15:53 +02:00
andryyy e9ea0712f2 Add SKIP_FAIL2BAN var 2017-06-27 10:26:48 +02:00
andryyy 433e0c8f9a Allow /0 to whitelist all, push f2b version in yml 2017-06-27 09:32:57 +02:00
andryyy a6677983af Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-26 23:18:15 +02:00
andryyy b9ffcf2bf8 Add whitelist function to Fail2ban 2017-06-26 23:18:05 +02:00
andryyy 6cd44b4136 Remove old code 2017-06-26 23:17:46 +02:00
Phoenix Eve Aspacio 0488c9a250 Update edit.css 2017-06-26 07:34:41 +08:00
Phoenix Eve Aspacio 38c74e5e24 Update mailbox.css 2017-06-26 07:34:21 +08:00
Phoenix Eve Aspacio d4f4c0f0c9 Update user.css 2017-06-26 07:33:53 +08:00
Phoenix Eve Aspacio a08ad04708 Update admin.css 2017-06-26 07:33:33 +08:00
Phoenix Eve Aspacio 48557a4de9 Update admin.css 2017-06-26 07:23:48 +08:00
Phoenix Eve Aspacio c4f25b7dde Update mailbox.css 2017-06-26 07:23:17 +08:00
Phoenix Eve Aspacio 877bc74dbe Update user.css 2017-06-26 07:22:58 +08:00
Phoenix Eve Aspacio 2d7224e869 Update edit.css 2017-06-26 07:22:41 +08:00
andryyy 4f93bfd04f Initial commit: Set fail2ban parameters in UI 2017-06-25 21:33:26 +02:00
andryyy 468b74c860 Changes to syntax 2017-06-25 20:17:31 +02:00
andryyy 170e030dd6 Configure autodiscover in vars.inc.php 2017-06-25 18:10:29 +02:00
andryyy b6bc1eaf0a Fix autodiscover, pass ports to phpfpm-mailcow for further features and autodiscover 2017-06-25 18:09:42 +02:00
Michael Kuron 18386125b6 Fix EAS autodiscover for certain Outlook variants 2017-06-25 14:19:44 +02:00
andryyy cbb4f51a9d Fix Junk-E-Mail folder name 2017-06-25 11:32:21 +02:00
andryyy 8590cc577b Move folder names to match image names 2017-06-25 00:21:24 +02:00
andryyy 3be99d7f89 Set IPv6 network as secure_ip range in Rspamd 2017-06-24 22:07:26 +02:00
andryyy 47eb11338c Push fail2ban version to 1.2 2017-06-24 20:06:23 +02:00
andryyy c4c1bdf477 Add a retry window for fail2ban-mailcow, add priority to logging, added window time to logging string" 2017-06-24 20:04:12 +02:00
andryyy a2f8f5c908 Fix id 2017-06-24 10:32:24 +02:00
andryyy 1bf8cc13ba Fixes #398 2017-06-24 10:32:10 +02:00
andryyy c75ce5124c Fixes: First line was missing in logs. Adds support for Fail2ban container 2017-06-24 00:07:53 +02:00
andryyy b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy 112e056fda Add function to generate 3 1 1 TLSA digest 2017-06-23 14:23:12 +02:00
andryyy 2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy 59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
andryyy 18e52ab27d More debug output, keep key for TLSA 3 1 1, other minor changes 2017-06-23 08:33:07 +02:00
andryyy 85a9239ae9 Move account key 2017-06-22 21:44:10 +02:00
andryyy 0c07ff59c3 Fix skip le test... 2017-06-22 21:31:14 +02:00
Michael Kuron 1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy 4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy 856b05147c Skip LE with configuration parameter 2017-06-22 09:06:24 +02:00
andryyy cbfe5e879e Fix error when adding alias with multiple alias addresses 2017-06-21 23:27:01 +02:00
NuVivo314 601f3b6947 Change select Priority
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy 578011c78c Move milter config, increase timeout for DNS 2017-06-21 10:18:52 +02:00
andryyy 05fc733091 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-20 20:07:30 +02:00
andryyy c82c9524b0 Delete certificate if SANs were removed 2017-06-20 20:06:54 +02:00
andryyy 428140d34f Version update 2017-06-20 20:06:35 +02:00
andryyy 0e501acd7d Base on stretch 2017-06-20 20:06:24 +02:00
Michael Kuron 987d83e104 Make Thunderbird plugin download more resilient
- use specific GitHub API version
- use only-matching grep
- remove hard-coded version number
- use Mozilla Addons API
2017-06-19 20:48:56 +02:00
André Peters beac3035f6 Merge pull request #372 from lazyfrosch/sync-password
data/web: Update syncjob password input to type password
2017-06-19 17:12:49 +02:00
Markus Frosch 4be67ccd64 dovecot/imapsync_cron: Use passfiles to hide passwords from ps 2017-06-19 11:43:07 +02:00
Markus Frosch 0f8bf53d9c data/web: Update syncjob password input to type password
So the password is not readable in clear text.
2017-06-19 11:22:19 +02:00
andryyy 036c51f053 Prefere ipv4 to fix problems on v4-only envs 2017-06-19 10:39:14 +02:00
andryyy 68d455e154 Just start reconf-sogo to also trigger SOGos restart after a successful reconfiguration 2017-06-19 10:30:11 +02:00
andryyy fbf33e475a SOGo will be started after reconf script to prevent race conditions 2017-06-19 10:19:16 +02:00
andryyy 624e52e198 mysqladmin uses ping on static IPv4, supervisor does no more autostart SOGo 2017-06-19 10:18:53 +02:00
andryyy 5efe0b9a88 Ignore tar.gz 2017-06-19 10:17:37 +02:00
andryyy 10d83017e1 Declare correct arrays 2017-06-19 08:59:47 +02:00
André Peters 2d59e61c6b Merge pull request #370 from mkuron/patch-2
Autodiscovery for eM Client and Outlook 2007/2010
2017-06-19 08:54:59 +02:00
andryyy 2a845a0d21 Less verbose 2017-06-18 20:57:54 +02:00
andryyy 9117c499ef Do not break DNS replies.... 2017-06-18 20:57:26 +02:00
andryyy 6fa19a37d8 Unbound changes 2017-06-18 20:23:26 +02:00
Michael Kuron 08506f7c81 Autodiscovery: send display name to IMAP client 2017-06-18 16:07:56 +02:00
Michael Kuron 4a379d0540 Satisfy Microsoft Remote Connectivity Analyzer 2017-06-18 16:04:13 +02:00
Michael Kuron b34d650f97 Autodiscovery for arbitrary clients. EAS only for Outlook 2013+
Mobile and Desktop clients can be differentiated based on the response scheme they request. Mobile clients and Outlook 2013+ get EAS, others get IMAP
2017-06-18 13:09:28 +02:00
Michael Kuron 646957efee Autodiscovery for eM Client
It can be identified by its lack of user agent header. Through additional Protocol tags, it can also have CalDAV and CardDAV configured.
2017-06-18 12:11:02 +02:00
andryyy 44c4074773 Add err priority to danger class 2017-06-17 20:57:23 +02:00
andryyy 5aba885b58 Skip ACME client for other certificates than LE 2017-06-17 10:08:12 +02:00
andryyy 08edc1d1d3 Remove obsolete file, add {} 2017-06-16 23:27:16 +02:00
andryyy 812b9b617a Cannot spawn as proc in sub shell. Breaks SOGo restart. 2017-06-16 23:26:43 +02:00
Michael Kuron b3b5313336 SOGo Integrator: match some preferences to SOGo web defaults 2017-06-16 17:00:46 +02:00
Michael Kuron d8fa38010a SOGo Integrator bugfix for multiple domains 2017-06-16 14:02:39 +02:00
Michael Kuron c739091a67 Customize the SOGo Integrator plugin for Thunderbird 2017-06-16 10:30:40 +02:00
andryyy 03d4ea5a35 Add ability to generate passwords for new mailboxes 2017-06-16 08:52:41 +02:00
andryyy 09a6d432f1 Fixes #364 2017-06-15 23:03:21 +02:00
andryyy ba3fc47d5f Fix autodiscover, thanks to K2rool! 2017-06-15 23:03:10 +02:00
Michael Kuron 5e56edb08c Properly gitignore the SSL certificate 2017-06-15 10:20:54 +02:00
James Smith bcdbbf0102 Make autodiscover case insensitive 2017-06-14 23:42:42 +01:00
andryyy 83cb686e33 Fix fix for Apple dav.... 2017-06-14 23:17:31 +02:00
andryyy 495bf05fb8 Fix for Apple autoconfiguration (dav) 2017-06-14 23:14:41 +02:00
andryyy e99fa9433e Fix dav url detection for apple 2017-06-14 23:10:50 +02:00
andryyy 19325ffb2a Validate additional SAN 2017-06-14 07:24:32 +02:00
andryyy 863a0e4d06 Finally fix SOGo race condition 2017-06-13 23:38:47 +02:00
andryyy 4a0a9cbf1f Minor tweaks 2017-06-13 23:38:24 +02:00
andryyy 0fd0cff8ac Auto-sign autodiscover and autoconfig for all domains found in mailcow - only if A records exists and matches 2017-06-13 23:37:48 +02:00
andryyy 655aa9594e Never overwrite error_reporting 2017-06-13 23:36:42 +02:00
andryyy 9a99975394 Fix duplicate postfix install 2017-06-13 07:45:24 +02:00
André Peters 7972b38daf Merge pull request #349 from bebehei/patch-1
remove doubly postfix argument
2017-06-13 07:44:39 +02:00
andryyy 3e09d11856 Be less verbose 2017-06-13 07:41:13 +02:00
andryyy 44197c410e Do not add milter headers for authenticated users 2017-06-13 07:41:00 +02:00
andryyy fcfc119805 Fix race condition with workaround 2017-06-13 07:39:45 +02:00
andryyy 35a73025c7 Add until to hopefully stop race condition 2017-06-12 23:49:21 +02:00
andryyy a33aa7a2cb Fix Dockerfile 2017-06-12 23:48:56 +02:00
andryyy 261e1ad4fb Rspamd stable 2017-06-12 23:48:42 +02:00
andryyy b367ec0ace Add Unbound as better DNSSEC enabled resolver 2017-06-12 23:48:27 +02:00
andryyy db01b08926 Fixes #351 2017-06-12 20:21:31 +02:00
Michael Kuron d6c9f96b4e Don't keep development packages in php-fpm image. 2017-06-12 17:06:57 +02:00
andryyy 5aa2ded331 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-12 10:46:08 +02:00
andryyy ef62f6b383 Acme tool checks for valid autodiscover and autoconfig A records and skips non-existing names
Todo: Add AAAA check, add check for additional_san
2017-06-12 10:45:12 +02:00
andryyy ad969d15cd Remove bind9 2017-06-12 10:43:36 +02:00
andryyy a25fc17b87 Fix permission 2017-06-12 10:43:28 +02:00
andryyy c0619a5b6b Less layers 2017-06-12 10:43:11 +02:00
andryyy 5321ebe707 Push to Dovecot 2.2.30 2017-06-12 10:42:48 +02:00
andryyy cf44745c18 Less layers 2017-06-12 10:42:33 +02:00
andryyy 02ceb6d3ef Remove obsolete files 2017-06-12 10:40:08 +02:00
Phoenix Eve Aspacio 7575b46fba Update 2017-06-12 15:38:36 +08:00
Benedikt Heine 0967418078 change dockerfile exec perms 2017-06-11 17:47:04 +02:00
Benedikt Heine c2075be5ec remove doubly postfix argument 2017-06-11 15:42:06 +02:00
Phoenix Eve Aspacio 564fb82257 Create header.inc.php 2017-06-11 13:43:59 +08:00
Phoenix Eve Aspacio 915ffb1991 Added mailcow app description 2017-06-11 08:05:10 +08:00
Phoenix Eve Aspacio 9754b8c196 Escape HTML special chars 2017-06-11 07:58:30 +08:00
André Peters 329ac40d95 Merge pull request #332 from mkuron/symlink
Replace symlink to PHP script
2017-06-08 20:57:51 +02:00
Chris Croome ed448f19c1 Typo fixed 2017-06-08 11:41:31 +01:00
andryyy 3a42895094 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-06 22:02:17 +02:00
andryyy 6836bf2df2 Update DKIM to ARC/DKIM 2017-06-06 22:02:07 +02:00
andryyy 663ea7815c Use new milter interface 2017-06-06 22:01:41 +02:00
andryyy a41cafac3e Switch to Rspamds milter interface 2017-06-06 22:00:34 +02:00
andryyy c9318ecf83 Switch to Rspamds milter interface 2017-06-06 21:59:44 +02:00
andryyy e15795e112 Enable http2 2017-06-06 21:59:27 +02:00
andryyy 2db910d6dc Remove Rmitler \o/ 2017-06-06 21:58:48 +02:00
Michael Kuron 062abb0ca7 Replace symlink to PHP script 2017-06-04 13:31:35 +02:00
Phoenix Eve Aspacio 6c73cc6918 More Capitalization Fix ✏✏ 2017-06-01 18:36:25 +08:00