André Peters
ba0b6963c7
Revert "Update site-defaults.conf ( #3778 )" ( #3779 )
...
This reverts commit b8ec9ad536
.
2020-09-26 22:53:53 +02:00
andryyy
1256059a4f
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-09-26 22:17:51 +02:00
mcmufffin
b8ec9ad536
Update site-defaults.conf ( #3778 )
2020-09-26 22:15:43 +02:00
andryyy
520056a489
[Rspamd] Quarantine, Pushover: Respect active = 2 while processing
2020-09-26 21:58:49 +02:00
andryyy
1e244e9c0c
[Rspamd] Quarantine, Pushover: Respect active = 2 while processing
2020-09-26 21:58:28 +02:00
andryyy
642ef1a515
[Rspamd] Pushover, quarantine: also process
2020-09-26 21:55:04 +02:00
andryyy
c3c98348e2
[SOGo] Re-enable TLS for internal IMAP connections, enable TLS for internal SMTP connections
...
[Web] Minor fix in quarantine view
2020-09-24 21:51:32 +02:00
andryyy
e2d98323ef
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-09-24 20:31:07 +02:00
andryyy
e5f0e1da44
[Rspamd] Fix prio for includes in overrides
2020-09-24 20:30:58 +02:00
Jellyfrog
c31d0cee86
[Nginx] Refresh cipher suites ( #3669 )
...
Also turn ssl_prefer_server_ciphers off.
"The cipher suites are all strong and so we allow the client to choose, as they will know best if they have support for hardware-accelerated AES" - https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29
2020-09-24 07:30:09 +02:00
andryyy
c355bc2b69
[Rspamd] Prepare SMTP ip restriction, WIP
2020-09-23 11:21:28 +02:00
andryyy
f2c1530143
[ClamAV] Set to ConcurrentDatabaseReload and (todo:) add note to docs
2020-09-17 21:48:00 +02:00
andryyy
881f558e48
[Postfix] Add sasl check to deny specific users from using smtp relay
2020-09-17 19:44:52 +02:00
andryyy
22d4c04416
[Dovecot] Postlogin socket owned by vmail
2020-09-17 19:43:57 +02:00
andryyy
2c9140f9f0
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-09-15 12:01:15 +02:00
andryyy
1f36ae28d4
[Postfix, Web] Feature: Show last SMTP login
2020-09-15 11:02:53 +02:00
andryyy
28041b1d97
[Rspamd] Encrypt fuzzy communication, switch to Rspamd 2.6
2020-09-15 11:01:20 +02:00
Noa J
c1034b890d
[Rspamd] Add open-relay-check@mailcow.email to monitoring_nolog.map ( #3757 )
2020-09-13 13:07:21 +02:00
andryyy
943730de47
[Rspamd] Add filter to global mime black- and whitelists to only match addr
2020-09-12 20:11:18 +02:00
Dmitriy Alekseev
7feb589b90
[Rspamd] Add iso/img to bad extensions ( #3753 )
2020-09-12 12:21:12 +02:00
Dmitriy Alekseev
eb12c2f8cd
[Rspamd] Disable extension cloaking ( #3754 )
2020-09-12 12:20:55 +02:00
andryyy
c201a712cb
[Rspamd] Macro check was fixed, remove doc and xls ban for now...
2020-09-09 16:02:14 +02:00
andryyy
013b3f88da
[Rspamd] Meta exporter and settings map: read vars.local.inc.php
2020-09-06 08:54:36 +02:00
andryyy
92074b0edb
[Rspamd] doc and xls are blocked
2020-09-03 15:33:39 +02:00
Dmitriy Alekseev
070cdb7787
Update arc.conf ( #3686 )
2020-07-31 19:47:03 +02:00
Dmitriy Alekseev
5b52e15fec
Update dkim_signing.conf ( #3685 )
2020-07-31 19:46:39 +02:00
Marcel Caspar
3dc2b1a721
[Rspamd] Add urlhaus map to rspamd ( #3683 )
...
add the list with online malware urls from URLhaus into rspamd to check against
2020-07-30 15:24:29 +02:00
andryyy
7d7f85c998
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-07-29 13:57:38 +02:00
andryyy
a349629a5a
[Rspamd] Remove spoofed unauth symbol from mails from whitelisted fwd hosts
2020-07-29 13:57:33 +02:00
Dmitriy Alekseev
72387a4a48
Disable SMTPUTF8 in Postfix due Dovecot-LMTP isn't support it ( #3680 )
...
SMTPUTF8 to work correctly must be done end-to-end. Leaving it enabled now when LMTP cant receive such email gives more issues then profit.
2020-07-29 13:42:39 +02:00
andryyy
41152193c0
[Dovecot] Increase sieve actions and redirects to 100/101
2020-07-15 15:28:14 +02:00
andryyy
06c8f140b5
[Nginx] Mark script not executable
2020-07-14 13:24:37 +02:00
andryyy
4cd51017a7
[Nginx] Mark script executable
2020-07-14 13:20:50 +02:00
andryyy
d931083e0e
[SOGo] Disable EAS when SKIP_SOGO=y
2020-07-14 13:16:26 +02:00
andryyy
ad8acefb96
[SOGo] Disable EAS when SKIP_SOGO=y
2020-07-14 13:13:32 +02:00
andryyy
e6cc1bf27c
[Dovecot] Include SOGos IP as trusted
2020-07-11 13:33:05 +02:00
andryyy
2344310f47
[SOGo] SOGo does no trust self signed or invalid certificates anymore, add temp workaround
2020-07-11 13:32:49 +02:00
andryyy
0cfdd763f8
[Feature] Add HAProxy listeners and an example override file
2020-07-04 19:30:40 +02:00
andryyy
8ce639aa25
[MySQL] Slightly more resources
2020-07-02 07:53:52 +02:00
andryyy
c673c2a6cc
[Rspamd] Add hint to composite, minor
2020-07-02 07:53:22 +02:00
andryyy
7304add084
[Watchdog] Update compose file, update image
...
[Rspamd] Temporarily disable over-signing, as Cyren does mark those mails as DKIM invalid (blame them, not us)
2020-06-23 21:22:22 +02:00
andryyy
414cbbef6b
[Rspamd] Change whitelisted senders map from prefilter to score -2050
2020-06-19 22:07:10 +02:00
Timo N
5fe9de0500
[API] Removed api_blueprint docs and use swagger ( #3595 )
...
* [NGINX] Removed api docs location
* [WEB] Removed api_blueprint api docs
* [WEB] Added openapi/swagger api viewer
* [WEB] Added openapi.yaml with api docs
* [WEB] Added request body for create app password endpoint
* [Web] Updated types in openapi.yaml
* [Web] Only define API docs auth header once
* [Web] Added 401 api response to docs
2020-06-07 20:46:17 +02:00
andryyy
75f4b77bc2
[Postfix] Remove smtpd_tls_CAfile, fixes #3589
2020-06-04 16:23:41 +02:00
andryyy
115c6540e2
[Rspamd] Consistent LOCAL_CONFDIR
2020-06-03 08:34:24 +02:00
andryyy
702f221a2d
[Rspamd] More bulk headers
2020-06-01 09:55:45 +02:00
andryyy
b208037b49
[Rspamd] Do not exclude fwd hosts from dmarc checks
2020-05-23 20:32:56 +02:00
andryyy
4881f617a5
[Rspamd] Changes to WHITELISTED_FWD_HOST composite handling
2020-05-23 12:20:57 +02:00
andryyy
615ef47f27
[Rspamd] More excludes for fwd hosts, minor fix to FORGED_W_BAD_POLICY
2020-05-23 11:16:33 +02:00
andryyy
6a95d217b4
[Postfix] Remove obsolete comment
2020-05-21 21:55:43 +02:00