Commit Graph

842 Commits (a35bf76154a9f18d3f6353db6aba054312bde568)

Author SHA1 Message Date
andryyy 008d500f4d [Compose, Dovecot] Fixed missing ltrim 2017-09-01 23:39:51 +02:00
andryyy 7351fcf1e3 [Compose, SOGo] New version, ltrim logs 2017-09-01 23:33:12 +02:00
andryyy 4d7bb26874 [Postfix] Add null rcpt for watchdog 2017-09-01 12:22:29 +02:00
andryyy 08d6b97ffa [Dovecot] New Dovecot and Pigeonhole versions; include delete2 option in imapsync 2017-08-31 10:36:10 +02:00
andryyy 4a0e3a433b [Fail2ban] Remove rule to detect disconnects without authentication 2017-08-30 22:27:33 +02:00
andryyy 3e741a0d9c [Web] Disable connectors in FooTable filter 2017-08-30 22:06:51 +02:00
andryyy cfd9316d74 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-08-30 21:43:45 +02:00
andryyy 9ebb9efeb1 [Web] Added Polish translation! Big thanks to Jan! 2017-08-30 21:43:35 +02:00
andryyy b1213c51d7 [Rspamd] Dynamic ratelimit fixed, removed async redis request; Ready to implement per-user ratelimits via UI (tbd) 2017-08-30 21:42:39 +02:00
André Peters 29acfe85db Merge pull request #536 from mkuron/patch-1
Rspamd user blacklist/whitelist improvements
2017-08-28 22:55:12 +02:00
Michael Kuron 8383ba5e9c Rspamd user settings: fix From header match
The request_header regex appears to not be expected to be encapsulated in slashes and does not seem to accept flags.
2017-08-28 20:27:53 +02:00
Michael Kuron fcd8cfa4f4 Rspamd user settings: don't print all email addresses of a domain
The ucl_rcpts function can already deal with domains, so lets use this capability.
2017-08-27 14:19:29 +02:00
Michael Kuron 93a092e627 Rspamd user settings: also match From header 2017-08-27 14:19:28 +02:00
Michael Kuron e178ca36de Rspamd user settings: make regexes case-insensitive
This is necessary because the user web UI normalizes to lowercase
2017-08-27 14:19:28 +02:00
andryyy 66ae588445 [Web] Started work on ACL, fix notifications 2017-08-18 22:18:14 +02:00
andryyy e47feeffd6 [Rspamd] Add custom directory for own files 2017-08-18 22:17:01 +02:00
andryyy 7a2c0f2ee7 [Acme] Skip backup mx domains 2017-08-18 09:57:25 +02:00
andryyy e5faee9037 [Nginx] Disable client_max_body_size 2017-08-09 10:17:32 +02:00
André Peters 92eefc1288 Merge pull request #486 from mkuron/patch-1
Disable ClamAV phishing filter
2017-08-02 15:54:16 +02:00
Michael Kuron dec64eef32 Disable ClamAV phishing filter
ClamAV has a phishing filter built in, but it generates too many false positives. We can disable it without risk because rspamd also checks for phishing itself.
2017-08-02 14:42:53 +02:00
andryyy 2eed7c05a1 [Dovecot] Push version, fix cronjob (fixes #310) 2017-08-01 14:02:00 +02:00
andryyy d85352fa9a [Dovecot] Use listescape 2017-07-31 12:41:18 +02:00
andryyy c7484434dd [Dovecot] Remove master.pid if not running; Check for active imapsync besides lock file; Reconnect MySQL connection in imapsync_cron.pl 2017-07-31 08:19:02 +02:00
andryyy 10b2ae09b9 [Web] Remove dev file 2017-07-30 21:40:40 +02:00
andryyy aabcf65c69 [Nginx] Set server_names_hash_bucket_size 64 2017-07-30 21:39:35 +02:00
andryyy 66e06a0c0c [Web] Sync jobs can be created/viewed/edited by admins/domain admins; Various fixes or improvements 2017-07-29 10:32:17 +02:00
andryyy 9be3aa3334 [Rspamd] Disable monitored 2017-07-27 09:03:44 +02:00
andryyy 3bd7383bca [Web] Add relay host testing tool 2017-07-26 23:11:43 +02:00
andryyy b4892f043f [Web] Edit relayhost 2017-07-26 23:11:08 +02:00
andryyy 45ef561ac0 [Web] Add default rcpt for relay testing tool to variables 2017-07-26 23:10:18 +02:00
andryyy 9bce8f0501 [Web] Fix session timeout 2017-07-26 23:09:50 +02:00
andryyy 5a49748dd5 [Web] Add graphs and stats to JSON api 2017-07-26 23:09:15 +02:00
andryyy 379933a333 [Web] Added PHPMailer for relayhost testing tool 2017-07-26 23:07:46 +02:00
andryyy 33bf9f5c5d [Rspamd] Push image version 1.5, Rspamd 1.6.3 2017-07-26 23:07:01 +02:00
andryyy 8da02378b1 [Rspamd] Use Nginx IP in settings map 2017-07-26 23:04:49 +02:00
andryyy 03c614f749 [Postfix] Use Nginx IP in whitelist_forwardinghosts.sh 2017-07-26 23:04:27 +02:00
andryyy b629089ff8 [SOGo] Rename reconf-domains to bootstrap-sogo and exec sogod after a successful bootstrap; Wait for SOGo to die and free listener 2017-07-24 23:25:04 +02:00
andryyy 5d5646df0c [Compose, SOGo] Update SOGo, give SOGo more time for a graceful restart, autorestart on any exit code 2017-07-24 22:53:23 +02:00
André Peters 0a6eef83bd Merge pull request #449 from mkuron/autoconfig
Autoconfig/Autodiscover unification
2017-07-24 12:58:53 +02:00
André Peters 1b719a8668 Update autoconfig.php 2017-07-24 12:37:02 +02:00
André Peters 27c169dbe1 Update mobileconfig.php 2017-07-24 12:35:56 +02:00
André Peters bfa2e83803 Add more help text, remove obsolete variable 2017-07-24 12:35:04 +02:00
André Peters b295bedf53 Update autoconfig.php 2017-07-24 12:28:48 +02:00
Phoenix Eve Aspacio e26563d51e Enable Fail2ban in Autodiscover 2017-07-23 21:27:18 +08:00
Michael Kuron 53d44ed18d Merge branch 'dev' into autoconfig 2017-07-23 10:12:03 +02:00
andryyy 83d485dd94 [Web, Postfix, Compose] Allow to add relayhosts per domain (+ plain and login authentication) 2017-07-22 20:39:54 +02:00
Michael Kuron 8fcaf407e6 Client configuration link 2017-07-22 12:37:39 +02:00
andryyy ed33cb5f57 [Rspamd] ARC: Disallow login/domain mismatch 2017-07-21 11:03:35 +02:00
andryyy f4db3a7a00 [Web] Allow multiple sync jobs with same username, fixes #464 2017-07-17 22:36:34 +02:00
andryyy 84ad579437 [Web] Initial ratelimit support, more API actions 2017-07-16 11:03:28 +02:00
andryyy 256c9d86dd [Rspamd] Initial custom ratelimit support 2017-07-13 12:55:14 +02:00
andryyy 5f5872f78b [Rspamd] Initial custom ratelimit support 2017-07-13 12:54:53 +02:00
andryyy e6727b1fd6 [ACME] Iterate alias domains, use hostname in subject field 2017-07-13 12:51:52 +02:00
andryyy 9e92c4a2ad [Dovecot] Do not keep persistent logs in a container 2017-07-11 17:09:31 +02:00
andryyy f8ae5158cb [Postfix] Do not keep persistent logs in a container 2017-07-11 17:09:20 +02:00
andryyy a31819fd6c [SOGo] Log to a pipe to not keep logs in a container 2017-07-11 17:08:06 +02:00
andryyy 08b99c8d74 [Dovecot] Add doveadm service 2017-07-10 21:30:45 +02:00
Michael Kuron 5abeb313ba Autoconfig harmonization
- use $autodiscover_config everywhere
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
- iOS mobileconfig generator
2017-07-10 20:52:51 +02:00
andryyy c5d90b821a [Dovecot] Add extra.conf include to override Dovecot configuration changes 2017-07-10 09:19:12 +02:00
André Peters f37405d9fd Merge pull request #446 from mailcow/revert-444-dns
Revert "DNS diagnostics page"
2017-07-10 08:46:32 +02:00
André Peters beec3d47f7 Revert "Client configuration guides" 2017-07-10 08:46:20 +02:00
André Peters 4c1537c1c2 Revert "DNS diagnostics page" 2017-07-10 08:45:59 +02:00
André Peters c5acdd70fb Merge pull request #427 from mkuron/clientconfig2
Client configuration guides
2017-07-10 08:03:28 +02:00
André Peters b1dddd08e6 Merge pull request #444 from mkuron/dns
DNS diagnostics page
2017-07-10 07:53:29 +02:00
andryyy 51660589d4 [Rspamd] Push version 1.3 2017-07-09 22:28:36 +02:00
Michael Kuron c1a1f98ee5 DNS diagnostics page 2017-07-09 10:01:27 +02:00
andryyy fa2af1b286 [Web] Allow more bytes in concat queries, fixes #435 2017-07-06 17:34:51 +02:00
andryyy a324b1a385 [Rspamd] Fix DKIM siging (base64 hash line folding) 2017-07-06 15:57:33 +02:00
Michael Kuron 8946d69274 Fix merge conflict 2017-07-05 20:11:07 +02:00
andryyy 69da02c144 [Dovecot] Important fix for Pigeonhole (downgrade) 2017-07-05 19:13:07 +02:00
andryyy 7f47af1d60 Fix destination hash 2017-07-05 12:31:52 +02:00
andryyy 87cc5f54ff [Postfix] Fix redis log destination hash 2017-07-05 12:03:12 +02:00
andryyy 2fadfee61a [SOGo] Remove thunderbird plugin generation, will move to docs 2017-07-05 10:22:48 +02:00
andryyy de14d30e6b [ACME] Fix exit command (was using echo), fix for duplicate SAN (filter) 2017-07-04 21:32:58 +02:00
Michael Kuron b88190988e Autodiscover: Strip bind addresses off of port environment variables 2017-07-04 19:58:30 +02:00
andryyy dc463c3dda [Multiple] Push multiple logs to Redis channel for fail2ban-mailcow to read. Enables Fail2ban independently of used Docker logging driver. 2017-07-04 18:08:20 +02:00
andryyy ed11e7586e [Clamd] Add SKIP_CLAMD variable to disable Clamd start 2017-07-04 18:05:44 +02:00
andryyy a2f1c09a84 [Web] Style changes to DKIM import section, push login errors to Redis channel 2017-07-04 18:05:04 +02:00
andryyy ace247b3b9 [ACME] Unset name arrays before reusing them 2017-07-03 10:20:09 +02:00
andryyy d4311a806b Fix Rspamd logs date 2017-07-03 08:10:11 +02:00
andryyy 2cf9f71613 [ACME] Revert fix for empty additional_san, fix skip_ip_check in ACME 2017-07-02 20:18:22 +02:00
Michael Kuron 96ed94dedd Client configuration guides
- iOS mobileconfig generator
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
2017-07-02 16:29:42 +02:00
andryyy 56a652fbf3 [Rspamd] Set error_reporting to 0 2017-07-02 11:25:14 +02:00
andryyy cf902854d7 Merge, conflict fixed 2017-07-02 11:22:35 +02:00
andryyy b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy afc8c93c07 [Rspamd] Cleanup settings map 2017-07-01 23:14:27 +02:00
andryyy 60ce236738 [Web] Language strings for DKIM import tool 2017-07-01 23:12:14 +02:00
andryyy 744784cb62 [UI] Initial: Import private keys for DKIM/ARC 2017-06-30 21:50:21 +02:00
andryyy ae5ce6568d [Dovecot] Dovecot 2.2.31, Pigeonhole 0.4.19 2017-06-30 20:30:30 +02:00
andryyy 5ab11c0c1e [ACME] Show err instead of empty var when IP lookup failed 2017-06-30 20:29:55 +02:00
andryyy d2048ccf20 [ACME] Be more verbose about IP address 2017-06-29 21:22:01 +02:00
andryyy a6b60aebb8 [Fai2ban] Added auto-detection for container names; Allow multiple rules for each container; log rule id and container on match 2017-06-29 11:30:14 +02:00
andryyy 372da9b557 [Web] Move Fail2ban function, add lang strings 2017-06-29 10:30:25 +02:00
andryyy 6c64ffbd49 [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:29:56 +02:00
andryyy 9040d456ed [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:25:32 +02:00
andryyy 3d652dd3d0 Added more checks for acme-mailcow 2017-06-29 00:56:51 +02:00
andryyy 6d8438c01c - More checks for acme-mailcow (verify hashes)
- Autodiscover configuration file: Merge array from vars.local.inc.php
- Push acme-mailcow to 1.6
2017-06-28 23:22:51 +02:00
andryyy 234baf1cb9 Readd 2017-06-28 18:59:15 +02:00
andryyy aa5b03dd99 Merge branch 'dev'
Conflicts:
	data/web/autodiscover.php
2017-06-28 18:57:22 +02:00
andryyy b0584c3622 Use , as IFS for additional san 2017-06-28 10:50:51 +02:00
andryyy f7bce8b81a Copy dhparams if not found 2017-06-27 20:15:53 +02:00
andryyy e9ea0712f2 Add SKIP_FAIL2BAN var 2017-06-27 10:26:48 +02:00
andryyy 433e0c8f9a Allow /0 to whitelist all, push f2b version in yml 2017-06-27 09:32:57 +02:00
andryyy a6677983af Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-26 23:18:15 +02:00
andryyy b9ffcf2bf8 Add whitelist function to Fail2ban 2017-06-26 23:18:05 +02:00
andryyy 6cd44b4136 Remove old code 2017-06-26 23:17:46 +02:00
Phoenix Eve Aspacio 0488c9a250 Update edit.css 2017-06-26 07:34:41 +08:00
Phoenix Eve Aspacio 38c74e5e24 Update mailbox.css 2017-06-26 07:34:21 +08:00
Phoenix Eve Aspacio d4f4c0f0c9 Update user.css 2017-06-26 07:33:53 +08:00
Phoenix Eve Aspacio a08ad04708 Update admin.css 2017-06-26 07:33:33 +08:00
Phoenix Eve Aspacio 48557a4de9 Update admin.css 2017-06-26 07:23:48 +08:00
Phoenix Eve Aspacio c4f25b7dde Update mailbox.css 2017-06-26 07:23:17 +08:00
Phoenix Eve Aspacio 877bc74dbe Update user.css 2017-06-26 07:22:58 +08:00
Phoenix Eve Aspacio 2d7224e869 Update edit.css 2017-06-26 07:22:41 +08:00
andryyy 4f93bfd04f Initial commit: Set fail2ban parameters in UI 2017-06-25 21:33:26 +02:00
andryyy 468b74c860 Changes to syntax 2017-06-25 20:17:31 +02:00
andryyy 170e030dd6 Configure autodiscover in vars.inc.php 2017-06-25 18:10:29 +02:00
andryyy b6bc1eaf0a Fix autodiscover, pass ports to phpfpm-mailcow for further features and autodiscover 2017-06-25 18:09:42 +02:00
Michael Kuron 18386125b6 Fix EAS autodiscover for certain Outlook variants 2017-06-25 14:19:44 +02:00
andryyy cbb4f51a9d Fix Junk-E-Mail folder name 2017-06-25 11:32:21 +02:00
andryyy 8590cc577b Move folder names to match image names 2017-06-25 00:21:24 +02:00
andryyy 3be99d7f89 Set IPv6 network as secure_ip range in Rspamd 2017-06-24 22:07:26 +02:00
andryyy 47eb11338c Push fail2ban version to 1.2 2017-06-24 20:06:23 +02:00
andryyy c4c1bdf477 Add a retry window for fail2ban-mailcow, add priority to logging, added window time to logging string" 2017-06-24 20:04:12 +02:00
andryyy a2f8f5c908 Fix id 2017-06-24 10:32:24 +02:00
andryyy 1bf8cc13ba Fixes #398 2017-06-24 10:32:10 +02:00
andryyy c75ce5124c Fixes: First line was missing in logs. Adds support for Fail2ban container 2017-06-24 00:07:53 +02:00
andryyy b8e9b3d879 fail2ban:1.1, use Redis, add logging, ban time and max attempts to be configured via UI soon 2017-06-24 00:07:18 +02:00
andryyy 112e056fda Add function to generate 3 1 1 TLSA digest 2017-06-23 14:23:12 +02:00
andryyy 2104034156 cp -n is unknown 2017-06-23 14:22:54 +02:00
andryyy 59623a639e Keep key when issuing new certificate to not break TLSA records with options 3 1 1 2017-06-23 08:40:05 +02:00
andryyy 18e52ab27d More debug output, keep key for TLSA 3 1 1, other minor changes 2017-06-23 08:33:07 +02:00
andryyy 85a9239ae9 Move account key 2017-06-22 21:44:10 +02:00
andryyy 0c07ff59c3 Fix skip le test... 2017-06-22 21:31:14 +02:00
Michael Kuron 1f9b5cb16e ACME: support CNAME in domain checks 2017-06-22 20:36:03 +02:00
andryyy 4066f3507c New Rspamd image, also fixes #386 2017-06-22 17:12:13 +02:00
andryyy 856b05147c Skip LE with configuration parameter 2017-06-22 09:06:24 +02:00
andryyy cbfe5e879e Fix error when adding alias with multiple alias addresses 2017-06-21 23:27:01 +02:00
NuVivo314 601f3b6947 Change select Priority
Simple change, for Select Older
2017-06-21 11:54:03 +02:00
andryyy 578011c78c Move milter config, increase timeout for DNS 2017-06-21 10:18:52 +02:00
andryyy 05fc733091 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-06-20 20:07:30 +02:00
andryyy c82c9524b0 Delete certificate if SANs were removed 2017-06-20 20:06:54 +02:00
andryyy 428140d34f Version update 2017-06-20 20:06:35 +02:00
andryyy 0e501acd7d Base on stretch 2017-06-20 20:06:24 +02:00
Michael Kuron 987d83e104 Make Thunderbird plugin download more resilient
- use specific GitHub API version
- use only-matching grep
- remove hard-coded version number
- use Mozilla Addons API
2017-06-19 20:48:56 +02:00
André Peters beac3035f6 Merge pull request #372 from lazyfrosch/sync-password
data/web: Update syncjob password input to type password
2017-06-19 17:12:49 +02:00
Markus Frosch 4be67ccd64 dovecot/imapsync_cron: Use passfiles to hide passwords from ps 2017-06-19 11:43:07 +02:00
Markus Frosch 0f8bf53d9c data/web: Update syncjob password input to type password
So the password is not readable in clear text.
2017-06-19 11:22:19 +02:00
andryyy 036c51f053 Prefere ipv4 to fix problems on v4-only envs 2017-06-19 10:39:14 +02:00
andryyy 68d455e154 Just start reconf-sogo to also trigger SOGos restart after a successful reconfiguration 2017-06-19 10:30:11 +02:00