Lukas Schreiner
d96bf91a0d
Support of different default pass schemes + support of BLF-CRYPT ( #3832 )
...
* Introduce MAILCOW_PASS_SCHEME in order to support blowfish (cf. mailcow/mailcow-dockerized#1019 )
* Furthermore added dovecot to support new environment varible for MAILCOW_PASS_SCHEME defaulted to SSHA256
* Revert changes regarding gitignore.
* Added fallback to SSHA256 if environment is not proper prepared.
* No fallback within management frontend, as it must match to other components.
* Unified and corrected alignment; implemented support of SSHA512
* Currently, password_hash of PHP is using by default bcrypt (BLF). As this might change later, we must ensure, that BLF is still used after PHP changes its default.
* Switched to BLF-CRYPT by default (even on update)
* Switched to BLF-CRYPT by default (even on update)
* Adding information in config generation / update with link to supported hash algorithm
* Bump sogo version to 1.92
* Fallback to BLF-CRYPT in case password scheme is not proper defined for Mailcow administration.
2020-11-15 20:22:35 +01:00
andryyy
477e1ff464
[Web] Fix initial static view update
2020-11-13 15:20:30 +01:00
andryyy
9245bd8636
[Postfix] Sanitize string in smtpd last login script with printf
2020-11-06 12:23:23 +01:00
andryyy
4e337b308f
[Dovecot] Select action in quarantine script, use nobody to run imapsync cron
2020-11-06 12:23:02 +01:00
andryyy
6c697f3f3f
[Web, Quarantine] Allow to set the max score of a message up to which a quarantine notification will be sent
2020-10-27 21:34:02 +01:00
andryyy
d85241f518
[Rspamd] Temp. pre-add proposed upstream change in metadata exporter
2020-10-23 21:49:06 +02:00
andryyy
efc6f214d1
[Dovecot] Revert notification excludes (there are no blacklisted elements in quarantine anymore)
2020-10-23 20:24:25 +02:00
andryyy
c7e17c7fd1
[Rspamd] Global blacklists are not prefilters anymore to not prevent them from being learned
2020-10-21 19:00:53 +02:00
andryyy
5f8e13f596
[Dovecot] Allow to define static master user (not recommended)
2020-10-20 15:43:05 +02:00
andryyy
769c500cd0
[Watchdog] Watch milter status with a dirty workaround, waiting for proxy ping pong event to implement a better check
2020-10-09 11:21:17 +02:00
andryyy
dd62030ce2
[Rspamd] 2.6 stable, switch repo
2020-10-03 11:12:12 +02:00
andryyy
da200db2d3
[ACME] Add more checks, avoid cert/key mismatch on some installations, fix some output
2020-09-28 19:58:30 +02:00
andryyy
836ea1508e
[Postfix] Fix smtp last login on replicated setups
2020-09-28 16:23:49 +02:00
andryyy
172562fc29
[Watchdog] Increase threshold for cert check
2020-09-27 11:34:00 +02:00
andryyy
bcad1af121
[Watchdog] Add certificate check for primary certificate; Add mail delay
2020-09-27 10:34:59 +02:00
andryyy
c8ce288178
[ACME] Do check for restart of Postfix and Dovecot service more thoroughly
2020-09-26 23:33:28 +02:00
andryyy
a79d536867
[Rspamd] 2.6-0~git32~1c3e0910b~buster
2020-09-25 23:00:01 +02:00
andryyy
c3c98348e2
[SOGo] Re-enable TLS for internal IMAP connections, enable TLS for internal SMTP connections
...
[Web] Minor fix in quarantine view
2020-09-24 21:51:32 +02:00
andryyy
2df661a91e
[Dovecot] Move mail index to new volume
2020-09-23 11:20:00 +02:00
andryyy
386133b855
[Dovecot] Remove like from query
...
Signed-off-by: andryyy <andre.peters@debinux.de>
2020-09-20 22:30:03 +02:00
andryyy
3a9efc86cf
[SOGo, Dovecot] Remove unnecessary likes from sql queries
...
[Web] Filter transport destinations to prevent empty destinations
2020-09-20 22:21:00 +02:00
andryyy
4627331339
[Dovecot] Fix sieve with new protocol toggling implementation, fixes #3769
2020-09-19 19:15:06 +02:00
andryyy
85b027aa9d
[Postfix] Merge syslog filters
...
[Postfix] Create sasl_access map; Use JSON_VALUE and remove unnecessary like command
2020-09-17 19:48:04 +02:00
andryyy
09ec4fcd81
[Dovecot] For future use: pass used protocol; Check if user has protocol access while authenticating
2020-09-17 19:46:28 +02:00
andryyy
fd2d7d12a0
[Rspamd] Latest 2.5
2020-09-15 11:57:39 +02:00
andryyy
567064ed50
[ClamAV] Update to 0.103.0
2020-09-15 11:07:35 +02:00
andryyy
1f36ae28d4
[Postfix, Web] Feature: Show last SMTP login
2020-09-15 11:02:53 +02:00
andryyy
28041b1d97
[Rspamd] Encrypt fuzzy communication, switch to Rspamd 2.6
2020-09-15 11:01:20 +02:00
andryyy
6cb5d832d6
[Rspamd] Minor: Fix text
2020-09-09 10:49:08 +02:00
andryyy
ed9daeb849
[Oletools] Fix olevba.py manually until merged
2020-09-09 10:48:43 +02:00
andryyy
0884f42379
[Netfilter] Skip invalid regex
2020-08-27 21:13:30 +02:00
andryyy
d4dd1024c9
[Netfilter] Replace query by resolve (deprecated)
2020-08-27 20:50:22 +02:00
andryyy
d47652d7e4
[Netfilter] Reload regex filters from Redis
2020-08-27 20:42:20 +02:00
andryyy
97ee4b70ca
[Various] Always use lowercase for COMPOSE_PROJECT_NAME
2020-08-27 20:41:45 +02:00
andryyy
ef2c96b010
[SOGo] Update to 5.0.0.20200816-1
2020-08-16 11:58:57 +02:00
andryyy
c85ce6f2c2
[Dovecot] Update to 2.3.11.3
2020-08-13 10:45:13 +02:00
andryyy
c9fb2517a2
[PHP-FPM] Fix lookup of Postfix container when SQL applied an update
2020-08-07 22:25:17 +02:00
andryyy
954736cfea
[PHP-FPM] Fix missing aspell lib, update Redis lib, fixes #3675
2020-07-25 08:54:43 +02:00
andryyy
e34060e943
[PHP-FPM] Add pspell; [SOGo] Update image
2020-07-23 11:21:37 +02:00
monsterry
3ac74258db
[Config] Allow CIDR notation for API_ALLOW_FROM ( #3655 )
2020-07-15 07:28:02 +02:00
andryyy
816c779ac2
[Netfilter] Fix Netfilter image
2020-07-12 05:20:57 +02:00
andryyy
4cefc6039f
[Watchdog] Filter containers by compose project name
2020-07-11 13:32:10 +02:00
andryyy
bffa3d962a
[Postfix] Test DNS against mailcow.email
2020-07-11 13:31:48 +02:00
andryyy
ed3c58134b
[PHP-FPM] Filter containers by compose project name
2020-07-11 13:31:16 +02:00
andryyy
27b192d5c3
[ACME] Filter containers by compose project name
2020-07-11 13:30:57 +02:00
andryyy
f2a68b2ff1
[SOGo] SOGo does no trust self signed or invalid certificates anymore, add temp workaround
2020-07-11 13:23:22 +02:00
andryyy
09ad2b1314
[Dovecot] Filter by compose project name, create trusted map for SOGo IP, run DNS check before starting service
2020-07-11 13:22:48 +02:00
andryyy
6c92688ff6
[Quarantine] Allow to redirect all quarantine messages to a specific address
...
[Web] Minor changes to quarantine UI
2020-07-04 19:31:44 +02:00
andryyy
e40a0eae01
[ACME] Fix directory URL
2020-07-03 10:20:36 +02:00
andryyy
4ce39c0f3f
[ACME] Add DIRECTORY_URL for custom directory URLs
2020-07-03 09:00:10 +02:00
andryyy
be538dd94e
[Watchdog] Minor change to Dovecot health check
2020-06-23 10:44:52 +02:00
andryyy
f7c807b290
[PHP-FPM] Add bcmath and GMP
2020-06-14 20:13:09 +02:00
andryyy
2971a2acf7
[Watchdog] Fix a Dovecot error message
2020-06-10 20:41:15 +02:00
andryyy
706a854e6f
[Dovecot] Specify Dovecot version in case of errors with new versions
2020-06-07 22:50:24 +02:00
andryyy
4ba7194eb1
[Clamd] Pass version as ARG
2020-06-07 22:50:20 +02:00
andryyy
ddf1c81bc5
[Dovecot] Specify Dovecot version in case of errors with new versions
2020-06-07 22:47:46 +02:00
andryyy
83e783a9d7
[Dovecot] Specify Dovecot version in case of errors with new versions
2020-06-07 22:43:35 +02:00
andryyy
ab5d78f675
[Postfix] Fix "disallow login": A catch-all will not catch mail for mailboxes with disallowed login
2020-06-06 01:12:31 +02:00
Jan Malte Gerth
15254fc48f
[Dovecot] Quarantine: add increment of count to prevent infinity loop ( #3591 )
...
fix #3590
might even prevent memory error in #2545
2020-06-04 11:37:43 +02:00
andryyy
063337b58d
[Watchdog] Watch mail queue (added inexpensive check via "find" instead of adding an API endpoint to dockerapi-mailcow)
2020-05-31 11:39:20 +02:00
andryyy
6ea8560de6
[PHP-FPM] Minor changes to prepare routine
2020-05-27 14:34:34 +02:00
andryyy
bdbb0c34be
[Dovecot] Fix invalid rcpt when no bcc is set, fixes #3576
2020-05-26 20:03:40 +02:00
andryyy
8a441dd77a
[Watchdog] Send mails with priority 1
2020-05-23 11:16:13 +02:00
andryyy
718706dd27
[ClamAV] Update to 0.102.3
2020-05-21 21:24:48 +02:00
andryyy
14bca3a1f9
[DockerAPI] Show queue item content via postcat
2020-05-19 20:15:01 +02:00
andryyy
c6cfd1c771
[PHP-FPM] Fix gd
2020-05-12 18:30:09 +02:00
Christian Burmeister
b5502fb52a
netfilter - Python 3.8 - SyntaxWarning for 'is not' ( #3537 )
2020-05-12 18:26:03 +02:00
andryyy
767ae65946
[Web] Allow ratelimit time frame "day"; Allow to create announcements
2020-05-11 11:52:02 +02:00
andryyy
02a74914b4
Update to Alpine 3.11
2020-05-11 11:50:45 +02:00
andryyy
1a3a42a672
[PHP-FPM] Update to PHP 7.4
2020-05-08 14:00:59 +02:00
andryyy
9078031255
[Dovecot] WIP: Read env vars for cronjobs from prepared file
2020-05-04 07:49:30 +02:00
andryyy
2007b0ffc9
[SOGo] Fix skipped SOGo
2020-04-29 21:08:52 +02:00
andryyy
3459c13022
[Postfix] Implement disallowed logins
2020-04-29 11:00:00 +02:00
andryyy
85a69a580e
[Dovecot] Implement disallowed logins
2020-04-29 10:58:47 +02:00
andryyy
d392257289
[Web] Some changes
...
[SOGo] Allow to not spawn SOGo but an idling shell
[Rspamd] Remove X-CSA-Complaints from bulk headers...
2020-04-27 20:47:28 +02:00
Richard Lea
c6e6d3e8ee
[Dovecot] fix error redirection at doveconf ( #3500 )
2020-04-23 09:35:22 +02:00
andryyy
731f5cb354
[Netfilter] Log matching string instead of regex
2020-04-20 20:27:27 +02:00
Michael
37b0bfdac6
Don't delete folder which are not created... ( #3484 )
...
... in the script. And changed the order to be consistent.
2020-04-18 22:26:52 +02:00
andryyy
56e4963423
[Dovecot] Set repl health on start
2020-04-14 17:32:15 +02:00
Kristian Feldsam
fe19bb7d94
Quarantine notifications - exclude blacklisted sender ( #3446 )
...
Final version, fixed syntax
Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2020-04-14 13:41:47 +02:00
andryyy
5944595be3
[Watchdog] Watch replication, if any (unsupported)
2020-04-14 12:48:57 +02:00
andryyy
6f9c658aa8
[Postfix] Do not log tls sni maps errors from connections initiated by mailcow checks
2020-04-13 20:33:44 +02:00
andryyy
655c9b4eba
[Rspamd] Minor fixes
2020-04-12 13:09:09 +02:00
andryyy
4efc35abde
[PHP-FPM] Add API_KEY_READ_ONLY generation
2020-04-11 20:57:11 +02:00
andryyy
2d545b0f75
[PHP-FPM] Update libs
2020-04-11 09:01:35 +02:00
andryyy
730fa16a69
[PHP-FPM, Config] API key generated via mailcow.conf as rw access
2020-04-10 21:21:11 +02:00
andryyy
20c29f8204
[Watchdog] Add WATCHDOG_MYSQL_REPLICATION_CHECKS, minor fix
2020-04-06 11:23:20 +02:00
andryyy
ef0b40085b
[Postfix] Allow to relay only non-local mailboxes
2020-04-03 20:39:53 +02:00
andryyy
e03f9727f0
[Rspamd] v2.5
2020-04-01 21:16:55 +02:00
andryyy
c3a4c6d311
[Rspamd] Rolling release
2020-03-28 19:51:16 +01:00
andryyy
858f0d686d
[Dovecot] Syslog-ng match fixes
2020-03-28 19:50:54 +01:00
andryyy
6364f70a9e
[Dovecot] Fix var
2020-03-25 21:24:41 +01:00
andryyy
1fc18284ab
[Dovecot] Revert fd49958a00
2020-03-25 21:14:43 +01:00
Kristian Feldsam
fd49958a00
Quarantine notifications - don't send if sender is blacklisted ( #3428 )
...
Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2020-03-24 15:51:03 +01:00
andryyy
632d1cabb3
[Dovecot] Fix imapsync_cron
2020-03-20 18:11:24 +01:00
andryyy
32ef5508a0
[Netfilter] Log matched regex
2020-03-19 12:23:31 +01:00
andryyy
7db5bc01a4
[PHP-FPM] Fix permissions for global maps
2020-03-19 12:18:36 +01:00
andryyy
03f173905e
[Compose] Update SOGo and ACME
...
[ACME] SKIP IP check for SNAT'ed setups to workaround race conditions
2020-03-15 21:37:10 +01:00
andryyy
7386b511ed
[Postfix] Remove duplicate COPY from Dockerfile, fixes #3397
2020-03-09 13:21:02 +01:00
andryyy
e28a176639
[ACME, Watchdog] Improve waiting for Redis
2020-03-08 20:23:32 +01:00
andryyy
c9aebd73cc
[Dovecot] Wait for versions table instead of failing and restarting
2020-03-08 16:51:30 +01:00
andryyy
e290d6d869
[Rspamd] Fix neural.lua
2020-03-08 12:25:03 +01:00
andryyy
d248bb660c
[Rspamd] Reduce Sorbs recent score
...
[Rspamd] Add annoying CSA to bulk symbols and score then with 3.2
[Rspamd] Update to 2.4
2020-03-06 07:14:06 +01:00
andryyy
1f5fcad499
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-03-03 15:03:45 +01:00
andryyy
e19e6b9e92
[ACME] Force renewal with force_renew file, docs will follow
2020-03-03 14:59:24 +01:00
Peter
f7053e28dd
Delete watchdog.sh~ ( #3378 )
...
temp file to be removed
2020-03-02 21:27:56 +01:00
andryyy
ae79a663ab
[Watchdog] Send 10 last applied ratelimits in mail report
2020-03-02 19:56:49 +01:00
andryyy
9a25ebc54e
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
2020-03-01 11:49:58 +01:00
andryyy
7b9f5ac1c4
[ACME] Restart Postfix, reload seems not work all the time
2020-02-29 14:26:38 +01:00
andryyy
c785c8f700
[Dovecot] Show last mail (pop3, imap) login in web interface
2020-02-25 19:38:20 +01:00
andryyy
3784cdd42c
[SOGo] Cronjob for backup, chown sogo_backup
2020-02-22 09:38:38 +01:00
andryyy
55151b1313
[Watchdog] Define thresholds in docker-compose(.override) file
2020-02-21 08:48:40 +01:00
andryyy
3d2962a12d
[Dovecot] LUA: Passdb: Reconnect to SQL if connection was lost
2020-02-20 17:48:57 +01:00
andryyy
c54cfbf332
[Postfix] Add hooks
2020-02-19 21:41:06 +01:00
andryyy
5b73de43e4
[PHP-FPM] Update libs, add gnupg
2020-02-16 14:20:36 +01:00
andryyy
701198b8f4
[Dovecot] Fix check to determine running imapsync procs, todo: more jobs at the same time
2020-02-12 08:32:58 +01:00
andryyy
06df5f3017
[Postfix] Added custom_postscreen_whitelist.cidr for a custom Postscreen wl, fixes #3313
2020-02-06 08:28:48 +01:00
andryyy
1ad469a24a
[Watchdog] Use Redis master for write operations
2020-02-05 11:01:09 +01:00
andryyy
9dec216261
[SOGo] Delete test file
2020-02-05 11:00:33 +01:00
andryyy
6898e6c8f9
[SOGo] Check if master, only run DB prep if master, use correct syslog-ng config if not master
2020-02-05 10:59:32 +01:00
andryyy
b889c70db8
[Rspamd] Set Redis slaveof if not master, adjust redis configs automatically
2020-02-05 10:58:52 +01:00
andryyy
15fb2e22ea
[Postfix] Use Redis master if set
2020-02-05 10:58:04 +01:00
andryyy
f6b3a6e874
[PHP-FPM] Check if master, write to Redis master only
2020-02-05 10:57:37 +01:00
andryyy
423104db61
[Netfilter] Use Redis master if set
2020-02-05 10:57:14 +01:00
andryyy
c8b9f2b36c
[Dovecot] Add auth_passdb_lookup to LUA, add default plugins for replicator, check if master, add node to GUID creation, use correct syslog-ng config if Redis write-master is not redis-mailcow, trim logs on Redis master
2020-02-05 10:56:44 +01:00
andryyy
1fb81f0511
[ACME] Use redis master for write operations
2020-02-05 10:53:23 +01:00
andryyy
de5fb9a03c
[SOGo] Some script changes
2020-01-29 10:33:42 +01:00
andryyy
cf4baa00a6
[Dovecot] Fix quarantine bcc, use socket for LUA API
2020-01-29 10:30:06 +01:00
andryyy
f1aa306ff2
[Watchdog] Add external check for open relay, requires SAL
2020-01-25 18:26:56 +01:00
andryyy
76d75edb64
[SOGo] Fix for whitespaces in mysql return; Order aliases
2020-01-22 10:15:40 +01:00
Marcel Hofer
b8a12ad192
[SSL] fix bug with pruning old certificates ( #3272 )
2020-01-17 22:36:04 +01:00
andryyy
37934fae03
[Rspamd] Add mailcow_networks map
2020-01-12 12:23:11 +01:00
andryyy
2f818b7f84
[Dovecot] Set bcc in quarantine notify
2020-01-10 20:43:20 +01:00
andryyy
03cbed5002
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve)
2020-01-10 20:39:11 +01:00
Yohann Prigent
2f1520b991
fix new imapsync dependency ( #3256 )
...
thanks
2020-01-06 23:13:37 +01:00
Peter
ef64b638eb
Update imapsync to 1.977 ( #3248 )
2020-01-06 18:43:21 +01:00
andryyy
dd91be5a39
[Watchdog] Wait 3 seconds before looping again
2020-01-01 20:11:28 +01:00
andryyy
9e11ab1fd4
[Watchdog] Retry to get current ACME log status, if empty (may fix watchdog mails on very busy servers - eg while running a backup)
2019-12-28 11:37:04 +01:00
andryyy
196c327215
[PHP-FPM] Remove useless flag for gd
2019-12-28 11:35:59 +01:00
andryyy
390cbc070b
[Dovecot] Remove CONTROL from shared namespace - thanks to @Keessaus
2019-12-25 10:34:08 +01:00
andryyy
b63cad1dd5
[Compose] Update Rspamd image
2019-12-23 10:21:44 +01:00
andryyy
86d55c41db
[Rspamd] Touch bad lang map
...
[Rspamd] SA trivial converter (wip)
2019-12-23 10:20:41 +01:00
andryyy
dfd40500b4
[ClamAV] Add fp signature
2019-12-17 15:52:20 +01:00
andryyy
8c3ab0371a
[ClamAV] Copy productive whitelist.ign to exposed configuration folder, remove direct mount of whitelist file
2019-12-14 15:12:37 +01:00
andryyy
cc99fe3820
[ClamAV] Whitelist js in pdf - too many fp
2019-12-14 14:59:31 +01:00
andryyy
228a6f4ceb
[SOGo] Read build args
2019-12-07 17:27:59 +01:00
andryyy
b8ed434ecd
[Dovecot] Delete ham/spam hash if previously learned; Change LUA script pathes
2019-12-06 10:20:06 +01:00
andryyy
b7a749208d
[Dovecot] Really strange race condition when reading an untouched LUA file on slower systems
2019-12-05 10:14:41 +01:00
andryyy
4715245697
[Dovecot] Drop logs
2019-12-05 09:30:53 +01:00
andryyy
13ef9dd113
[Dovecot] Fix lua error when trying to escape empty domains
2019-12-04 21:47:25 +01:00