Commit Graph

944 Commits (9febe4e86bd27e1ff3dd00c577265d8612c4d009)

Author SHA1 Message Date
andryyy 730fa16a69
[PHP-FPM, Config] API key generated via mailcow.conf as rw access 2020-04-10 21:21:11 +02:00
andryyy 20c29f8204
[Watchdog] Add WATCHDOG_MYSQL_REPLICATION_CHECKS, minor fix 2020-04-06 11:23:20 +02:00
andryyy ef0b40085b
[Postfix] Allow to relay only non-local mailboxes 2020-04-03 20:39:53 +02:00
andryyy e03f9727f0
[Rspamd] v2.5 2020-04-01 21:16:55 +02:00
andryyy c3a4c6d311
[Rspamd] Rolling release 2020-03-28 19:51:16 +01:00
andryyy 858f0d686d
[Dovecot] Syslog-ng match fixes 2020-03-28 19:50:54 +01:00
andryyy 6364f70a9e
[Dovecot] Fix var 2020-03-25 21:24:41 +01:00
andryyy 1fc18284ab
[Dovecot] Revert fd49958a00 2020-03-25 21:14:43 +01:00
Kristian Feldsam fd49958a00
Quarantine notifications - don't send if sender is blacklisted (#3428)
Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2020-03-24 15:51:03 +01:00
andryyy 632d1cabb3
[Dovecot] Fix imapsync_cron 2020-03-20 18:11:24 +01:00
andryyy 32ef5508a0
[Netfilter] Log matched regex 2020-03-19 12:23:31 +01:00
andryyy 7db5bc01a4
[PHP-FPM] Fix permissions for global maps 2020-03-19 12:18:36 +01:00
andryyy 03f173905e [Compose] Update SOGo and ACME
[ACME] SKIP IP check for SNAT'ed setups to workaround race conditions
2020-03-15 21:37:10 +01:00
andryyy 7386b511ed
[Postfix] Remove duplicate COPY from Dockerfile, fixes #3397 2020-03-09 13:21:02 +01:00
andryyy e28a176639
[ACME, Watchdog] Improve waiting for Redis 2020-03-08 20:23:32 +01:00
andryyy c9aebd73cc
[Dovecot] Wait for versions table instead of failing and restarting 2020-03-08 16:51:30 +01:00
andryyy e290d6d869
[Rspamd] Fix neural.lua 2020-03-08 12:25:03 +01:00
andryyy d248bb660c
[Rspamd] Reduce Sorbs recent score
[Rspamd] Add annoying CSA to bulk symbols and score then with 3.2
[Rspamd] Update to 2.4
2020-03-06 07:14:06 +01:00
andryyy 1f5fcad499 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2020-03-03 15:03:45 +01:00
andryyy e19e6b9e92
[ACME] Force renewal with force_renew file, docs will follow 2020-03-03 14:59:24 +01:00
Peter f7053e28dd
Delete watchdog.sh~ (#3378)
temp file to be removed
2020-03-02 21:27:56 +01:00
andryyy ae79a663ab
[Watchdog] Send 10 last applied ratelimits in mail report 2020-03-02 19:56:49 +01:00
andryyy 9a25ebc54e
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2020-03-01 11:49:58 +01:00
andryyy 7b9f5ac1c4
[ACME] Restart Postfix, reload seems not work all the time 2020-02-29 14:26:38 +01:00
andryyy c785c8f700
[Dovecot] Show last mail (pop3, imap) login in web interface 2020-02-25 19:38:20 +01:00
andryyy 3784cdd42c
[SOGo] Cronjob for backup, chown sogo_backup 2020-02-22 09:38:38 +01:00
andryyy 55151b1313
[Watchdog] Define thresholds in docker-compose(.override) file 2020-02-21 08:48:40 +01:00
andryyy 3d2962a12d
[Dovecot] LUA: Passdb: Reconnect to SQL if connection was lost 2020-02-20 17:48:57 +01:00
andryyy c54cfbf332
[Postfix] Add hooks 2020-02-19 21:41:06 +01:00
andryyy 5b73de43e4 [PHP-FPM] Update libs, add gnupg 2020-02-16 14:20:36 +01:00
andryyy 701198b8f4
[Dovecot] Fix check to determine running imapsync procs, todo: more jobs at the same time 2020-02-12 08:32:58 +01:00
andryyy 06df5f3017
[Postfix] Added custom_postscreen_whitelist.cidr for a custom Postscreen wl, fixes #3313 2020-02-06 08:28:48 +01:00
andryyy 1ad469a24a
[Watchdog] Use Redis master for write operations 2020-02-05 11:01:09 +01:00
andryyy 9dec216261
[SOGo] Delete test file 2020-02-05 11:00:33 +01:00
andryyy 6898e6c8f9
[SOGo] Check if master, only run DB prep if master, use correct syslog-ng config if not master 2020-02-05 10:59:32 +01:00
andryyy b889c70db8
[Rspamd] Set Redis slaveof if not master, adjust redis configs automatically 2020-02-05 10:58:52 +01:00
andryyy 15fb2e22ea
[Postfix] Use Redis master if set 2020-02-05 10:58:04 +01:00
andryyy f6b3a6e874
[PHP-FPM] Check if master, write to Redis master only 2020-02-05 10:57:37 +01:00
andryyy 423104db61
[Netfilter] Use Redis master if set 2020-02-05 10:57:14 +01:00
andryyy c8b9f2b36c
[Dovecot] Add auth_passdb_lookup to LUA, add default plugins for replicator, check if master, add node to GUID creation, use correct syslog-ng config if Redis write-master is not redis-mailcow, trim logs on Redis master 2020-02-05 10:56:44 +01:00
andryyy 1fb81f0511
[ACME] Use redis master for write operations 2020-02-05 10:53:23 +01:00
andryyy de5fb9a03c
[SOGo] Some script changes 2020-01-29 10:33:42 +01:00
andryyy cf4baa00a6
[Dovecot] Fix quarantine bcc, use socket for LUA API 2020-01-29 10:30:06 +01:00
andryyy f1aa306ff2
[Watchdog] Add external check for open relay, requires SAL 2020-01-25 18:26:56 +01:00
andryyy 76d75edb64
[SOGo] Fix for whitespaces in mysql return; Order aliases 2020-01-22 10:15:40 +01:00
Marcel Hofer b8a12ad192 [SSL] fix bug with pruning old certificates (#3272) 2020-01-17 22:36:04 +01:00
andryyy 37934fae03
[Rspamd] Add mailcow_networks map 2020-01-12 12:23:11 +01:00
andryyy 2f818b7f84
[Dovecot] Set bcc in quarantine notify 2020-01-10 20:43:20 +01:00
andryyy 03cbed5002
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve) 2020-01-10 20:39:11 +01:00
Yohann Prigent 2f1520b991 fix new imapsync dependency (#3256)
thanks
2020-01-06 23:13:37 +01:00
Peter ef64b638eb Update imapsync to 1.977 (#3248) 2020-01-06 18:43:21 +01:00
andryyy dd91be5a39
[Watchdog] Wait 3 seconds before looping again 2020-01-01 20:11:28 +01:00
andryyy 9e11ab1fd4
[Watchdog] Retry to get current ACME log status, if empty (may fix watchdog mails on very busy servers - eg while running a backup) 2019-12-28 11:37:04 +01:00
andryyy 196c327215
[PHP-FPM] Remove useless flag for gd 2019-12-28 11:35:59 +01:00
andryyy 390cbc070b
[Dovecot] Remove CONTROL from shared namespace - thanks to @Keessaus 2019-12-25 10:34:08 +01:00
andryyy b63cad1dd5
[Compose] Update Rspamd image 2019-12-23 10:21:44 +01:00
andryyy 86d55c41db
[Rspamd] Touch bad lang map
[Rspamd] SA trivial converter (wip)
2019-12-23 10:20:41 +01:00
andryyy dfd40500b4
[ClamAV] Add fp signature 2019-12-17 15:52:20 +01:00
andryyy 8c3ab0371a
[ClamAV] Copy productive whitelist.ign to exposed configuration folder, remove direct mount of whitelist file 2019-12-14 15:12:37 +01:00
andryyy cc99fe3820
[ClamAV] Whitelist js in pdf - too many fp 2019-12-14 14:59:31 +01:00
andryyy 228a6f4ceb
[SOGo] Read build args 2019-12-07 17:27:59 +01:00
andryyy b8ed434ecd
[Dovecot] Delete ham/spam hash if previously learned; Change LUA script pathes 2019-12-06 10:20:06 +01:00
andryyy b7a749208d
[Dovecot] Really strange race condition when reading an untouched LUA file on slower systems 2019-12-05 10:14:41 +01:00
andryyy 4715245697
[Dovecot] Drop logs 2019-12-05 09:30:53 +01:00
andryyy 13ef9dd113
[Dovecot] Fix lua error when trying to escape empty domains 2019-12-04 21:47:25 +01:00
andryyy f3ac24f0e8
[Watchdog] Revert acme-mailcow threshold to 1 2019-12-04 21:46:16 +01:00
andryyy afb43c9c5b
[Dovecot] Fix app passwds: allow multiple pass hashes by using LUA construct 2019-12-03 18:50:45 +01:00
andryyy ced6867a4e
[Watchdog] Fix ipv6 config check 2019-12-02 18:04:56 +01:00
andryyy 287f3ed921
[Web] Allow to use data/web/css/build/0081-custom-mailcow.css for ignored overrides 2019-12-02 14:46:47 +01:00
andryyy 9998a9ef28
[Watchdog] smtp-cli 3.10 (yay) and a new check for IPv6 configuration problems 2019-12-02 14:23:54 +01:00
andryyy 751fcf0619
[SOGo] Make view more readable 2019-12-02 10:53:59 +01:00
andryyy dfbf3e85be
[Dovecot] Add map for app passwds 2019-12-02 10:53:25 +01:00
andryyy 767a5c7a0e
[Postfix] Build with dnsutils 2019-11-26 22:56:20 +01:00
andryyy c75fd9ac40
[Postfix] Wait for DNS 2019-11-26 21:09:12 +01:00
andryyy 4a36eb014c
[Postfix] TLS protocols for submission and smtps can be overriden using extra.cf (submission_smtpd_tls_mandatory_protocols and smtps_smtpd_tls_mandatory_protocols), thanks to @christianbur
[Postfix] Show overriding warnings when starting Postfix, but hide them in syslog output
2019-11-24 14:18:27 +01:00
andryyy d1f898360c
[SOGo] Rebase on Buster 2019-11-24 11:02:06 +01:00
andryyy d34077950d
[SOGo] Rebase on Buster 2019-11-24 09:20:19 +01:00
andryyy 78e727bcfc
[Watchdog] Retry acme check once more, redis-mailcow might be busy and not returning the wanted string 2019-11-24 09:19:58 +01:00
andryyy d6af0ae7d6
[ClamAV] Update ClamAV 2019-11-21 17:52:45 +01:00
andryyy 158fb20c83 [Netfilter] Add new rule
[Compose] Update Postfix and netfilter
2019-11-12 20:45:23 +01:00
andryyy e1fdbba0f7
[Postfix] Add custom_transport.pcre 2019-11-12 20:44:43 +01:00
andryyy 0f8cc4bef8
[PHP-FPM] Fix check for tz import 2019-11-11 23:24:29 +01:00
andryyy 322dc169e6
[PHP-FPM] Check if tz data import is necessary 2019-11-11 23:19:47 +01:00
andryyy 6565e994bb
[MySQL, PHP, DockerAPI] Move mysql_tzinfo_to_sql trigger to php-fpm-mailcow to prevent race condition on slow disks (known bug @ MariaDB) 2019-11-10 13:15:57 +01:00
Zekeriya Akgül 9ccbeb7f66 Added control for attrs_json object item's type (#3126)
item can be bytes or str in different situations. So let's keep defensive.
2019-11-09 10:01:43 +01:00
andryyy d091bf76aa
[PHP-FPM] Create events in docker entrypoint of PHP-FPM 2019-11-06 21:02:47 +01:00
andryyy d0788372fe
[Dovecot] Retry sa-rules download (1, 2, 4, 8, 16 ... seconds) 2019-11-02 12:03:41 +01:00
andryyy 7f8b13434d
[Rspamd, Dovecot] Do not use Schaal rules - probably too much for Rspamd 2.x to handle, mem leak? 2019-10-31 20:43:07 +01:00
andryyy 27de9dbf92
[Rspamd] Slight changes to improve memory usage
[Web] Dirty hack to touch Rspamd maps a second time
2019-10-30 20:07:58 +01:00
andryyy a1971f7af8
[Rspamd] Set correct parent permission 2019-10-30 14:40:00 +01:00
andryyy 2f3f70dd00
[Dovecot] sa-rules: escape non-regex in regex 2019-10-30 14:39:25 +01:00
andryyy 59df735aa8
[Web] Filter duplicates when adding multiple transports 2019-10-30 14:37:44 +01:00
andryyy 02bb3a44a7
[Rspamd] Wait for PHP to not break inotify 2019-10-29 19:58:34 +01:00
andryyy b52ee0a706
[Rspamd] Fix map permissions for www
[Web] Allow to manage global maps in UI (WIP)
2019-10-29 08:39:57 +01:00
andryyy bdf56971d5
[Rspamd, PHP-FPM] Mount Rspamd maps, set correct permissions (WIP: edit in UI)
[PHP-FPM] Update image, fixes #3091
[Web] Netfilter: Do not auto restart netfilter-mailcow but add a small hint to restart netfilter-mailcow after adding a ban to perm bans
[Web] Remove unused js script parameter
2019-10-25 08:31:31 +02:00
andryyy cd6594df01
[Clamd] Run freshclam before starting ClamAV 2019-10-22 21:30:45 +02:00
andryyy 1e4aa212ea
[ClamAV] Try to prevent update collisions 2019-10-22 13:50:03 +02:00
André Peters 5d93ae655a
Merge pull request #2509 from mhofer117/tls-sni
Different SSL Certificate for each Domain with TLS SNI
2019-10-20 15:17:14 +02:00
Marcel Hofer 56bc9d45bb [SSL] prevent multiple certificates with the same domain 2019-10-20 14:44:39 +02:00
andryyy d35e3c1eff
[Dovecot] Fix Dovecot quarantine notification script 2019-10-19 22:58:11 +02:00
Marcel Hofer b413ed4013 [SSL] minor fix: prevent checking of empty SQL_DOMAIN 2019-10-19 18:23:59 +02:00
Marcel Hofer 2e35da6816 [SSL] create individual domain certificates, add SNI configs for Postfix/Dovecot/Nginx 2019-10-19 12:48:56 +02:00
andryyy a95a3f6145
[Watchdog] Watch olefy 2019-10-18 19:45:16 +02:00
andryyy b0711db489
[Dockerfiles] Rename some files and create hook points 2019-10-18 12:01:47 +02:00
andryyy 2811b498ab
[Netfilter] Punish failed logins to /rspamd 2019-10-12 13:15:59 +02:00
andryyy 0089f72f3d
[Watchdog] Fix for Rspamd 2.0 2019-10-12 13:15:36 +02:00
André Peters 4f6d407fdd
Revert "extend debug page to show assigned domain quota" 2019-10-02 19:23:09 +02:00
heavygale ecda554e53 finalizing disk usage rework
- changed dockerapi to not return human readable values for df
- all caluclations now in KiB
- moved code from domain_admin to mailbox functions
- using actual occupied bytes as used quota
- all outputs now in *iB using formatBytes()
2019-10-01 20:27:06 +02:00
andryyy 3811866ea0
[PHP-FPM] Add composer 2019-09-28 19:58:40 +02:00
andryyy 8c26371d6d
[SQL upgrade] Catch more errors 2019-09-25 12:53:14 +02:00
andryyy 3c133ad02a
[ClamAV] Cleanup garbage when starting container (tmp files may fill up disk, when container runs oom) 2019-09-24 16:39:39 +02:00
andryyy 5ae05b5ec0
[SQL Upgrade] Fix process of SQL upgrade, wait for command to complete and do not use pipe communication model 2019-09-23 21:42:47 +02:00
andryyy baba546c7a
[Watchdog] Wait longer for containers to settle 2019-09-21 22:41:31 +02:00
andryyy 6c4d93f70a
[PHP-FPM] Upgrade of MySQL may need to be applied twice 2019-09-21 22:37:43 +02:00
andryyy 3bd32072f1
[Compose] UPDATE MARIADB TO 10.3 - Please check your installations after upgrading and WAIT a few minutes for the upgrade to complete!
[Postfix] Remove old python lib
[Compose] Add a grace period for MySQL when shutting down
[Netfilter] It is okay to be number two :( (fixes chain order in ip6tables FORWARD chain)
2019-09-20 22:54:40 +02:00
andryyy 1d45c563b7
[Netfilter] Set default ban masks to 32 and 128 2019-09-20 14:30:48 +02:00
andryyy 4b559d5b79
[Postfix] Remove python-gpg 2019-09-20 09:23:44 +02:00
Zekeriya Akgül d62ec4498a
Removed unnecessary print 2019-09-15 10:36:01 +03:00
zekeriya 96042bdab8 [Dovecot] removed non-ascii chars from 'from' field before send 2019-09-14 21:48:13 +03:00
zekeriya adbecef56f [Dovecot] Fixed variable names for DB connection. 2019-09-14 21:07:18 +03:00
zekeriya 8af9b5b6d1 [Dovecot] Fixed quarantine_notify.py json decode error 2019-09-14 21:01:53 +03:00
zekeriya b9e7d12a5e [Dovecot] notify scripts migrated to python3 2019-09-13 21:14:30 +03:00
andryyy c22bddb244
[Watchdog] Add missing mariadb-client tools 2019-09-12 08:35:53 +02:00
andryyy 6a7cc9ec80
[Watchdog] Monitor Redis 2019-09-12 08:29:15 +02:00
andryyy 954690b315 [SOGo] Dont fail with unhandled err response, when a user is forced to change the passwd on next login
[Compose] Update SOGo image
2019-09-09 18:06:42 +02:00
andryyy 62068b2209
[Watchdog] Add watchdog@invalid as rcpt for check 2019-09-04 23:07:17 +02:00
andryyy a1cd7d8ee7
[Postfix] Add watchdog@localhost alias 2019-09-04 23:06:29 +02:00
andryyy b4f159da86
[Postfix] Allow to create an extra.cf file besides main.cf to merge overrides
[Postfix] Better logging while bootstrapping
[Postfix] Stop container, when a service fails (easier to monitor)
2019-09-02 18:37:05 +02:00
andryyy e6609ffe5c
[SOGo] Add ext_acl to SOGo view to allow to select external sender addresses 2019-09-02 09:30:09 +02:00
andryyy 49c7a2cbc7
[PHP-FPM] Plan a Postfix restart, when a MariaDB upgrade was applied 2019-09-02 09:28:13 +02:00
André Peters 4aae447e97
Revert "Python27 eol issue2291" 2019-08-28 07:01:47 +02:00
André Peters b56aa8c1de
Merge pull request #2863 from FaMux/python27EOL_issue2291
Python27 eol issue2291
2019-08-27 19:07:34 +02:00
andryyy bd469412ca
[SOGo] Do not modify UIxAclEditor 2019-08-25 16:03:57 +02:00
andryyy f35efbf39c
[Dovecot] Add new SA rules 2019-08-21 21:07:15 +02:00
andryyy 1d1d6c97cc
[ClamAV] Push to v0.101.4 2019-08-21 21:06:14 +02:00
farnbacher 50c272dbf6
fix wrong package name 2019-08-15 20:58:23 +02:00
farnbacher a119467218
Install Python 3 packages for ported quota_notify.py & quarantine_notify.py 2019-08-15 20:36:32 +02:00
farnbacher c579a2c01e
Update for usage with Python 3
- print with parantheses and .format
 - change shebang
 - change import of email modules
2019-08-15 20:32:20 +02:00
farnbacher cf2e8d6545
Update for usage with Python 3
- print with parantheses and .format
- change import of email modules
- change shebang
2019-08-15 20:18:01 +02:00
andryyy f67f552180 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-08-13 20:28:37 +02:00
Rene Pasing b4ebe83d2f Do not create random files when SKIP_HTTP_VERIFICATION=y (#2830) 2019-08-13 20:26:47 +02:00
andryyy f00b563d9c
[Watchdog] More fixes for watchdog... 2019-08-13 20:19:01 +02:00
andryyy 6aa7664d79
[Watchdog] Force timeout on smtp-cli, kill watchdog.sh on reload 2019-08-11 10:18:00 +02:00
andryyy 3488cb2171
[Dovecot] Fix GUID 2019-08-10 21:03:18 +02:00
andryyy 2714910a7f
[SOGo] Fix versions check 2019-08-10 15:59:28 +02:00
andryyy fc1e547e53
[Watchdog] Minor changes and better error detection; Increased ClamAV threshold 2019-08-09 14:12:56 +02:00
andryyy 457d62e22e
[Dovecot] Generate GUID 2019-08-09 14:11:36 +02:00
andryyy 3136e020f6
[Postfix] Remove Zeyple, base on Buster 2019-08-09 14:08:58 +02:00
keigel2001 f9a3e500b5 [ClamAV] Update to 0.101.3 2019-08-06 17:00:11 +02:00
andryyy 1ad1413d08
[Watchdog] Do not reload every minute... 2019-08-03 14:38:09 +02:00