Commit Graph

549 Commits (aef19e2a462364544b7ee2a38f924be34d9d753f)

Author SHA1 Message Date
andryyy c4446b85f1 [Rspamd] Add ratelimit.lua (to be removed from Dockerfile with next Rspamd release) 2018-12-15 21:19:35 +01:00
andryyy b7c9af5e75 [Dovecot] Give master user a uid and gid, fixes #2093 2018-12-13 19:52:50 +01:00
andryyy d8906e3d6c [Dovecot] Trim more logs 2018-12-12 22:51:55 +01:00
Markus Heberling 4755bb323b Allow setting ACL_ANYONE in the configuration 2018-12-11 11:32:36 +01:00
andryyy 5153623539 [Dovecot] Add master user to userdb (to be used in SOGo)
[SOGo] Use sieve.creds to authenticate against Dovecot and send email reminders
2018-12-10 23:23:56 +01:00
andryyy b710cb751b [Dovecot] Split imapsync cron by -- 2018-12-10 13:24:51 +01:00
andryyy 09b9055f1a [DockerAPI] Add mysql_upgrade task 2018-12-10 13:24:07 +01:00
andryyy 04b699a3c7 [PHP-FPM] Trigger mysql_upgrade 2018-12-10 13:22:25 +01:00
andryyy 2a6320b86e [Netfilter] Disable aborted login without auth as fail2ban trigger
[Dovecot] passdb query ignored active attribute in mailbox table
[PHP-FPM] Add default release format for spam
2018-12-06 16:49:28 +01:00
andryyy cfab7274b7 [Netfilter] Revert SNAT rule check, todo: check DNS with SNAT enabled 2018-12-01 23:12:27 +01:00
andryyy 45ecc26a12 [Netfilter] Do not delete SNAT rule if not on first position 2018-12-01 21:17:08 +01:00
andryyy a695bdd2ee [Dovecot] Update Dovecot to 2.3.4, update Pigeonhole to 0.5.4
[Dovecot] Remove UTF-8 attribute
2018-11-26 09:44:41 +01:00
andryyy c82f8165d8 [Dovecot] Fix maildir_gc, build with ldap support 2018-11-26 09:11:22 +01:00
andryyy 9acd9c719d [SOGo] Read plist_ldap for dual auth via ldap, unsupported 2018-11-26 09:10:39 +01:00
andryyy f011db317e [SOGo] Wait for updated db schema before bootstrapping 2018-11-16 22:48:28 +01:00
andryyy 7998ec3f1f [DockerAPI] Fix image, fixes #2008 2018-11-16 20:09:29 +01:00
andryyy a4452ed3a5 [Postfix] Important fix for mailbox maps, fixes #2013 2018-11-15 22:55:45 +01:00
andryyy b3518b0749 [Dovecot] Remove dedicated index (wip)
[SOGo] Fix sogo_view
2018-11-12 20:59:39 +01:00
andryyy 2210201c76 [SOGo] Adjust SOGo view 2018-11-12 09:53:39 +01:00
andryyy 1404fc50f4 [Rspamd] Add stopsignal (testing) 2018-11-12 09:52:34 +01:00
andryyy 9ee557e5a5 [Postfix] Adjust mailbox query 2018-11-12 09:49:52 +01:00
andryyy 244ab191bd [Dovecot] Dovecot 2.3.3, Pigeonhole 0.5.3
[Dovecot] Use "--enable-hardening" flag
[Dovecot] Fix cronjobs
[Dovecot] Use /var/volatile to prevent locking files from being written to NFS storage (if vmail is on NFS)
[Dovecot] Change userdb query
[Dovecot] Use /var/attachments for mdbox attachment deduplication and /var/index for index files
[Dovecot] Fix sieve user creation
[Dovecot] Make console writable
[Dovecot] Fix trim_logs.sh
2018-11-12 09:49:23 +01:00
Markus Gnadl 0e33fd49bb wildcards (subdomain.*) in ADDITIONAL_SAN are expanded to all mailcow domains 2018-10-30 09:07:01 +01:00
andryyy 2bd1b1c960 [Watchdog] Skip container restart if running for less than 120 seconds 2018-10-27 23:44:06 +02:00
andryyy f796db0a65 [DockerAPI] Add top and stats 2018-10-27 13:25:18 +02:00
andryyy e04a3aed6a [ClamAV] Do not try to modify cross-mounted file, copy whitelist from conf to lib directory 2018-10-27 13:25:05 +02:00
andryyy 4e2b8dbd90 [Watchdog] Check if initdb is running and if true skip killing php-fpm-mailcow 2018-10-27 13:23:36 +02:00
andryyy c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
andryyy 800eebd117 [Dovecot] Use events to kill supervisord when main proc dies
[Postfix] Use events to kill supervisord when main proc dies
[SOGo] Use events to kill supervisord when main proc dies
2018-10-25 22:35:07 +02:00
andryyy 23e3bdfe5a [Dockerapi] Some minor changes 2018-10-25 22:34:31 +02:00
andryyy 37964d9dd1 [ACME] Try to reload services after certificate changes instead of restarting
[DockerAPI] Add service reload commands
2018-10-24 20:14:59 +02:00
André db64fa490b [SOGo] Read .sogo_access attribute when bootstrapping view 2018-10-23 21:13:37 +02:00
André fbf1c7b7c1 [DockerAPI] WIP: change of structure, add some more commands to control mail queue 2018-10-23 21:12:37 +02:00
André e941c6e8b2 [ACME] Fix missing for loop start
[Compose] New ACME image
2018-10-19 10:03:05 +02:00
André 7a7fafec87 [Compose] New Rspamd image (1.8.1)
[Rspamd] Upgrade base to Bionic
2018-10-17 22:41:39 +02:00
André 86b92f68cb [Watchdog] Remove cert check (wip)
[Watchdog] Append last check loop as attachment to mail
[Watchdog] Print time and date in mail alerts
2018-10-17 22:30:13 +02:00
André 7386dc1e5c [ACME] Stop requesting certificates for autoconfig.* 2018-10-16 23:01:01 +02:00
André 178bee7ac3 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-10-14 19:05:57 +02:00
André d2d0369f32 [PHP-FPM] Base on Alpine 3.8
[Watchdog] Base on Alpine 3.8
[ACME] Base on Alpine 3.8
[Watchdog] Minor changes
2018-10-14 14:29:03 +02:00
André 2da228a21e [Watchdog] Remove some check_ping checks
[Watchdog] Add ClamAV check (if SKIP_CLAMD=n)
[Watchdog] Add Unbound check
[Watchdog] Do not use Docker API by default to determine IP of containers (see "IP_BY_DOCKER_API")
[Watchdog] Minor changes
2018-10-14 00:21:31 +02:00
André a9eddae686 [ACME] Do not add alias domains to auto* domains 2018-10-14 00:19:14 +02:00
André 5705044af0 [ClamAV] Update to 0.100.2 2018-10-14 00:18:21 +02:00
Tobias "Knight" S 7114999c75
remove duplicated import time 2018-10-13 23:30:24 +02:00
André 93917f8385 [Unbound] Upgrade to Alpine 3.8, fixes #1882 2018-10-13 10:12:01 +02:00
André 23e6e52f4f [Postfix] Proper permissions for sql config files
[Dovecot] Proper permissions for sql config files
2018-10-12 10:57:00 +02:00
André aa39be7ea6 [SOGo] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Init database in entrypoint
[PHP-FPM] Change API credential injection
[Dovecot] Use mysqladmin status instead of ping to determine readiness
2018-10-11 11:53:22 +02:00
André ce135bb773 [ACME] Log acme-client output base64 encoded, use mysqladmin status instead of ping to determine readiness 2018-10-11 11:51:13 +02:00
André ad63552951 [Dovecot] Check file size of mail crypt key pair, fixes #1859
[Compose] New Dovecot image
2018-10-07 15:10:17 +02:00
André 9f52cd9456 [Docker API] Fix sieve list for users, fixes #1849 2018-10-06 22:09:23 +02:00
André c6aa3610f0 [Postfix] Enable/create smtp_tls_policy_maps 2018-10-04 14:34:53 +02:00
André cf28727376 [Dovecot] Add timeouts to sa-rules script, remove with -f flag to return 0 2018-10-03 23:27:31 +02:00
André d8148bef79 [Docker API] Do not print warning when maildr does not exist 2018-10-03 11:27:52 +02:00
André 2af2f7836d [Dovecot] Remove fixed uid and gid 2018-10-02 10:31:22 +02:00
André 62b27aeacb [Dovecot] Check garbage hourly
[Dovecot] Update SA rules once when container starts
2018-10-02 09:34:21 +02:00
André ca1e950c61 [Dovecot] Do not query gid and uid 2018-10-02 09:13:33 +02:00
André d7ca5579dc [Rspamd] Ignore custom files, but keep bad asn map 2018-09-30 18:55:35 +02:00
André cdca603ff5 [Unbound] Fix logging, fixes #585
[Rspamd] Fix permissions of controller password file
[Unbound] Enable unbound-control
2018-09-30 14:43:18 +02:00
André 4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André 0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André 96c985abad [Rspamd] Move settings file to RSPAMD_CONF root, delete old lua scripts 2018-09-26 13:23:05 +02:00
André 29aeb5b85d [Watchdog] Fix SOGo check, fixes #1750 2018-09-09 21:52:48 +02:00
André c8a1cbd25a Merge branch 'temp-master' 2018-09-09 21:21:43 +02:00
André c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André ad902f0ad8 [SOGo] Remove HTTP server on port 9192 2018-09-09 09:48:11 +02:00
André 8a88514dfd [SOGo] Declare /usr/lib/GNUstep/SOGo as volume
[Nginx] Mount vols from sogo-mailcow to access /usr/lib/GNUstep/SOGo
2018-09-07 16:40:37 +02:00
sriccio 5e56a46c84 [dovecot] Enhancement to allow to use auth_default_realm
When using auth_default_realm in dovecot configuration to setup a default domain name (to allow users to login with only a username instead of the full e-mail address), it breaks the compatibility with imapsync and sogo/sieve vacation.

Adding a domain name to dovecot master user/pass fixes this.

This never made it do the master branch, so I'm trying a PR again :)

See: https://github.com/mailcow/mailcow-dockerized/pull/1331#issuecomment-386534307
2018-08-28 17:14:05 +02:00
André 66ee11c03d [SOGo] Disable display of ACL "any/authenticated" by default
[Dovecot] Disable "any" ACL by default
[SOGo] Might fix theme switching (yes, again)
2018-08-17 21:42:31 +02:00
André 6bd818ceec [ACME] Remove third-party IP tools 2018-08-06 15:15:24 +02:00
André ff0b9246b5 [ClamAV] Add whitelist file for ClamAV, fixes #1607
[ACME] Test for CAA before running script, fixes #1632
2018-08-05 22:35:20 +02:00
André 9dd17d4609 [SOGo] Change color codes in correct files 2018-08-04 09:23:45 +02:00
André bf9a180c00 [SOGo] Fix theme switching (99% sure we did it this time, guys) 2018-08-03 20:27:58 +02:00
André e678292447 [Dovecot] Trim autodiscover logs 2018-08-02 12:19:58 +02:00
André 39b0fc515f [SOGo] Syslog-ng: Do not trim after each push to Redis 2018-08-02 12:17:21 +02:00
André 85f83b1b71 [Rspamd] v1.7.9 (removed explicit ratelimit.lua) 2018-08-02 12:16:55 +02:00
André f5fb7f6da5 [Watchdog] Do not trim after each push to Redis 2018-08-02 12:16:05 +02:00
André f8f87d4744 [ACME] Do not trim after each push to Redis 2018-08-02 12:15:41 +02:00
André bdf7632757 [Postfix] Add '*' as send_as to sender_acl map
[Postfix] Syslog-ng: Do not trim after each push to Redis
2018-08-02 12:15:04 +02:00
André 04b43d0a3b [Dovecot] Add new imapsync + dependencies
[Dovecot] Syslog-ng: Do not trim after each push to Redis
[Dovecot] Add new cronjob to trim all Redis logs every minute (will be moved in the future)
2018-08-02 12:14:13 +02:00
André 15b80760b2 [Postfix] Add scripts to learn from spam/ham traps
[Dovecot] Learn fuzzy when moving mails from/to junk
2018-07-29 00:36:08 +02:00
André ff463168d1 [SOGo] Override theme-default.css to prevent theme switching, delete theme-green until fixed 2018-07-28 14:26:02 +02:00
André 1115b826f9 [Dovecot] Various fixes for imapsync_cron, new imapsync version 2018-07-27 22:19:14 +02:00
André 5cc09055a7 [SOGo] Another try to fix theme switching on login screen 2018-07-27 22:16:18 +02:00
André ef8c79c0e5 [Postfix] Fix alias for spam and ham addresses 2018-07-25 01:21:22 +02:00
André 63ce1ba2d6 [Postfix] Create ham/spam mailboxes @ localhost 2018-07-25 01:05:51 +02:00
André 240eb3abce [Netfilter] Wait for Redis instead of exiting with an exception 2018-07-24 23:30:18 +02:00
André 6cba85eb07 [Postfix] Add tzdata to Postfix 2018-07-17 00:29:07 +02:00
André b45b9bc5cf [SOGo] Override more theme options to prevent occasional theme switching on login 2018-07-15 16:34:25 +02:00
André 853b924fe1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-07-15 11:56:26 +02:00
André c372b01909 [Rspamd] Use old ratelimit LUA until custom rl is fixed
[Web] Updated settings preset: Ratelimit was NOT applied when preset for settings map was used (added "RATELIMIT_UPDATE", "RATELIMIT_CHECK" to symbols_enabled)
[Rspamd] v1.7.8
2018-07-13 11:40:37 +02:00
André e9f60bf06c [SOGo] Missing ) ... 2018-07-12 14:19:06 +02:00
André e06c3e87ee [SOGo] Refresh sogo static view on start 2018-07-12 14:08:00 +02:00
André 8a9ce0a57c [SOGo] Refresh sogo static view on start 2018-07-12 14:04:31 +02:00
André d9df322eda [Dovecot] Remove additional hash scheme and let Dovecot decide the hash by prefix 2018-07-12 00:46:17 +02:00
André 2aef18d130 [Dovecot] Remove user queries from passdb + add a second passdb for additional algorithms + create userdb without password queries 2018-07-12 00:23:12 +02:00
André a4e96a3fe3 [ClamAV] v0.100.1 + rebase on Alpine 3.8 2018-07-12 00:21:46 +02:00
André cfb0d3b62c [SOGo] Create a sogo_update_password trigger in SQL
[SOGo] prependPasswordScheme=YES in user sources
[SOGo] Use new "static view" as viewURL for much faster table lookups on large systems
2018-07-11 22:08:02 +02:00
André 22cecc3f85 [Postfix] Use Bionic as base image (Postfix 3.3) and replace python-gpgme by python-gpg
[Postfix] Fix syslog-ng config version
2018-07-11 20:01:03 +02:00
André 1e59816665 [Netfilter] Prevent crashes by locking threads
[Netfilter] SNAT6
2018-07-11 19:59:10 +02:00
André 055183257d [Dovecot] v2.3.2.1 + remove some dev packages 2018-07-11 19:07:26 +02:00
André f8283536ec [Netfilter] Fix chain order watching and other fixes
[Web] Fix perm ban display
2018-07-09 22:23:39 +02:00