andryyy
|
b5c844d704
|
[Postfix] IMPORTANT: Disabling TLS 1.0 and 1.1 for submission and smtps
|
2020-02-12 10:36:54 +01:00 |
andryyy
|
77d922c05a
|
[Dovecot] IMPORTANT: Disabling TLS 1.0 and 1.2 - welcome to 2020
|
2020-02-12 09:12:24 +01:00 |
andryyy
|
9d04d0ee4a
|
[Rspamd] Add X-Last-TLS-Session-Version header
|
2020-02-09 19:08:28 +01:00 |
andryyy
|
82c094c77c
|
[Postfix] Added custom_postscreen_whitelist.cidr for a custom Postscreen wl, fixes #3313
|
2020-02-06 08:28:05 +01:00 |
andryyy
|
8a3fc802c5
|
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized
|
2020-02-06 07:04:31 +01:00 |
andryyy
|
a71f8ed5af
|
[PHP-FPM] Do not use Redis for session handling
|
2020-02-05 11:04:34 +01:00 |
andryyy
|
ad55dd8f05
|
[Rspamd] Use redis master for RL operations in pipe_rl
|
2020-02-05 11:02:31 +01:00 |
andryyy
|
23cf8995df
|
[Dovecot] Set replicator options by default - unused, no support or docs as of today
|
2020-02-05 11:01:50 +01:00 |
Michael Kuron
|
3cdbe7b73c
|
Reduce Rspamd DNSBL false positives (#3311)
* rspamd: ignore Spamhaus XBL for Received headers
* rspamd: ignore SORBS RBL for forwarding hosts
* rspamd: ignore RBLs for forwarding hosts
|
2020-02-04 12:35:52 +01:00 |
André Peters
|
60fb5498ff
|
Update mime_types.conf
|
2020-02-04 12:06:20 +01:00 |
André Peters
|
96a507c927
|
Update mime_types.conf
|
2020-02-04 12:05:24 +01:00 |
andryyy
|
d83013667b
|
[Rspamd] Do not normalise domains to eSLD for ARC
|
2020-01-19 13:17:23 +01:00 |
andryyy
|
081602def9
|
[Postfix] Client rcpt rate limit set to 50
|
2020-01-18 16:32:41 +01:00 |
andryyy
|
57af5103c7
|
[Rspamd] Ratelimit for bounces reduced, max_rcpt for ratelimit increased
|
2020-01-18 16:32:27 +01:00 |
Michael Kuron
|
4c2e13009b
|
rspamd: More comprehensive attachment handling (#3273)
- block all Office documents with macros
- don’t just block all doc files
- mark some more Windows executable extensions as bad
|
2020-01-17 22:19:12 +01:00 |
andryyy
|
4e46d44e79
|
[Rspamd] Allow empty envfrom for system mails, add only Dovecot to sign_networks and sign by header when sign_networks fires.
ARC remains active for forwards. Result: fully signed and trusted forwards and signed rejects in sieve.
|
2020-01-12 12:21:21 +01:00 |
andryyy
|
791e0831ad
|
[Rspamd] Fix DKIM, fixes #3262
|
2020-01-12 11:39:53 +01:00 |
andryyy
|
5f73629493
|
[Rspamd] Set rspamd as trusted host, rspamd is not spoofing
|
2020-01-10 20:39:52 +01:00 |
andryyy
|
03cbed5002
|
[Rspamd] allow_hdrfrom_mismatch true, auth_only false (sieve)
|
2020-01-10 20:39:11 +01:00 |
andryyy
|
203dd12497
|
[Rspamd] Fix groups
|
2020-01-06 18:47:51 +01:00 |
andryyy
|
6d5677eb32
|
[Rspamd] Decrease weight of missed charset
|
2020-01-05 11:34:03 +01:00 |
andryyy
|
b098696b89
|
[Rspamd] Fix groups.conf syntax
|
2020-01-05 11:24:13 +01:00 |
andryyy
|
ad1f243667
|
[Postfix] Set CA path for smtpd
[Rspamd] Split deprecated metrics.conf to actions.conf and groups.conf
|
2020-01-05 11:21:04 +01:00 |
andryyy
|
9157993953
|
[Dovecot] Enable editheaders plugin in sieve for all users
|
2019-12-31 14:24:33 +01:00 |
andryyy
|
58a00cf7ea
|
[Web, Rspamd] Add bad language map, add map to mailcow UI
|
2019-12-22 18:57:28 +01:00 |
andryyy
|
5a0df09361
|
[Rspamd] Rate .doc with +10, decrease default bayes ham score
|
2019-12-20 15:44:58 +01:00 |
andryyy
|
57003a8215
|
[Postfix] Update Postscreen whitelist
|
2019-12-15 22:04:45 +01:00 |
andryyy
|
8c3ab0371a
|
[ClamAV] Copy productive whitelist.ign to exposed configuration folder, remove direct mount of whitelist file
|
2019-12-14 15:12:37 +01:00 |
andryyy
|
25c2bcc8b3
|
[ClamAV] Force add default whitelist.ign2
|
2019-12-14 15:04:09 +01:00 |
andryyy
|
6564944f7a
|
[Postfix] Add bl.suomispam.net
|
2019-12-06 16:15:04 +01:00 |
andryyy
|
309f90a9b3
|
[Dovecot] Change LUA path
|
2019-12-06 10:20:47 +01:00 |
andryyy
|
7e2aa42578
|
[IMPORTANT] If you run Ubuntu 16.04, upgrade your kernel to linux-generic-hwe-16.04
[ClamAV] Remove deprecated parameter
|
2019-12-05 14:29:04 +01:00 |
andryyy
|
afb43c9c5b
|
[Dovecot] Fix app passwds: allow multiple pass hashes by using LUA construct
|
2019-12-03 18:50:45 +01:00 |
andryyy
|
653c058e33
|
[Web] Feature: Allow app passwords for imap/smtp, allow to set acl permission for app passwords (domain admin [when logged in as user] and user)
|
2019-12-02 11:02:19 +01:00 |
andryyy
|
0e6dfdd0fe
|
[Nginx] Catch case-insensitive /sogo$ request and redirect to /SOGo
|
2019-12-02 10:55:17 +01:00 |
andryyy
|
7b4ed3bf64
|
[Rspamd] Lower map watch interval
|
2019-12-02 10:54:22 +01:00 |
andryyy
|
9257fa90d4
|
[Nginx] Fix 301 to SOGo
|
2019-11-28 19:14:23 +01:00 |
andryyy
|
ce15dda990
|
[Nginx] Redirect /S|sogo* to /SOGo
|
2019-11-28 15:08:11 +01:00 |
andryyy
|
8badb146e9
|
[Unbound] Disable ipsecmod
|
2019-11-26 21:08:47 +01:00 |
andryyy
|
d57e2b58c1
|
[Rspamd] Reduce ptr fail score
|
2019-11-24 16:09:59 +01:00 |
andryyy
|
19d0eedeba
|
[Rspamd] Add FORGED_W_BAD_POLICY
|
2019-11-24 16:08:58 +01:00 |
andryyy
|
eeda59e048
|
[Postfix] Add more service labels, thanks to @christianbur
|
2019-11-24 15:35:56 +01:00 |
andryyy
|
5d7e365592
|
[Postfix] Remove test var
|
2019-11-24 15:23:16 +01:00 |
andryyy
|
4a36eb014c
|
[Postfix] TLS protocols for submission and smtps can be overriden using extra.cf (submission_smtpd_tls_mandatory_protocols and smtps_smtpd_tls_mandatory_protocols), thanks to @christianbur
[Postfix] Show overriding warnings when starting Postfix, but hide them in syslog output
|
2019-11-24 14:18:27 +01:00 |
andryyy
|
79bcbe5a51
|
[MySQL] Some tweaks to lower RAM consumption, thanks to @Thomas2500
|
2019-11-21 19:41:50 +01:00 |
andryyy
|
e0535bedbb
|
[Rspamd] Set new last modified when changing Rspamd settings
|
2019-11-18 16:42:56 +01:00 |
andryyy
|
7a87c492ed
|
[Rspamd] Fix bad ASN map format
|
2019-11-18 13:26:16 +01:00 |
andryyy
|
d67e4e83c9
|
[Rspamd] Increase score for BAD_REP_POLICIES
|
2019-11-15 23:51:48 +01:00 |
andryyy
|
e439d52ff2
|
[SOGo] Minor config changes
|
2019-11-15 17:39:32 +01:00 |
andryyy
|
56ddc4bd26
|
[Rspamd] Add new default reject message
[Rspamd] Add Sorbs
|
2019-11-15 07:58:04 +01:00 |