Commit Graph

939 Commits (d146ee12ad560345b4b432534793c25fd160539d)

Author SHA1 Message Date
andryyy cbdd6b0dfa
[ACME] Fix insecure http verifications 2019-07-22 22:52:45 +02:00
andryyy a2cc3340b7
[DockerAPI] Alpine 3.10 2019-07-22 21:09:17 +02:00
andryyy 78d350ba23
[Olefy] Alpine 3.10 2019-07-22 21:09:05 +02:00
andryyy 22d17390df
[Netfilter] Alpine 3.10 with dirty, dirty hack to workaround iptables issue with Python 2019-07-22 21:08:44 +02:00
andryyy 3d52cc2270
[ACME] Alpine 3.10 2019-07-22 21:08:11 +02:00
andryyy 4532b5c882
[Dovecot] Remove default cronjobs 2019-07-22 21:07:39 +02:00
andryyy 8c3a7e52b4
[Watchdog] Minor threshold changes 2019-07-22 21:07:16 +02:00
andryyy 9aad9d8e4e
[Dovecot] New Dovecot version 2019-07-21 13:08:00 +02:00
andryyy 5e7466ac7f
[SOGo, Config, Update] Add SOGO_EXPIRE_SESSION to define default session timeout 2019-07-21 13:07:48 +02:00
andryyy 7d72c8088a
[Watchdog] Some changes like running checks less often, lower thresholds and a whois command fix 2019-07-20 21:43:14 +02:00
andryyy a0f4886be6
[PHP-FPM] Update to Alpine 3.10 because of yet untraced errors with CentOS 7 Docker hosts 2019-07-20 15:15:39 +02:00
andryyy 568e166478
[Unbound] Update base to Alpine 3.10 to use Unbound 1.9
[Unbound] Set unwanted-reply-threshold: 10000
2019-07-13 09:22:03 +02:00
andryyy 2898aa6918
[Postfix] Remove unused alias domain catch all map 2019-07-13 08:59:32 +02:00
andryyy d3906329e7
[SOGo] Update Dockerfile 2019-07-13 08:58:13 +02:00
andryyy 7466157d3a
[SOGo] Use SSL via IMAP, seems to be more stable, fixes #2770 2019-07-09 08:59:28 +02:00
andryyy ea3f1374fc
[ACME] Slightly better info messages, some fixes 2019-07-09 08:59:07 +02:00
andryyy b139e48eec
Add some hints to autogenerated files 2019-07-08 07:56:41 +02:00
andryyy 59fe692252 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-07-08 07:56:02 +02:00
andryyy 4b9f022890
[Watchdog] Watch olefy, thanks to @ntimo 2019-07-07 21:59:20 +02:00
André Peters f6a053985f
Revert "Update docker-entrypoint.sh" 2019-07-06 11:46:05 +02:00
André Peters 98c46fc33d
Merge pull request #2755 from gmarke/patch-1
Update docker-entrypoint.sh
2019-07-06 11:11:31 +02:00
andryyy 184eb7a739
[ClamAV] Fix chmod command, thanks to @fbcd4f50ea5350f051450323b5abfd0b 2019-07-03 10:46:30 +02:00
gmarke 99131f52de
Update docker-entrypoint.sh
get mysql ID only for current project
2019-07-03 08:06:44 +02:00
andryyy 27d1bd8aeb [ClamAV] Fix missing exit code var, fixes #2746 2019-06-29 23:27:22 +02:00
andryyy 014a0c7af5
[ACME] Better HTTP verification 2019-06-29 20:28:03 +02:00
andryyy 104fbae0d9
[Netfilter] Set some f2boptions to int 2019-06-25 22:16:38 +02:00
andryyy 2efd27e40e
[Olefy] A new container is born, thanks to @c-rosenberg
[ACME] Autoconfig is back (re-added to SAN list by default for all mail domains)
[Rspamd] Added comment to composite
2019-06-25 18:52:05 +02:00
andryyy 71c6c59f1c
[Dovecot] Fix cleanup of old quarantine items, fixes #2721 2019-06-22 23:12:23 +02:00
andryyy 39f95b8284
[Compose] Add olefy container, new Postfix iamge and new ClamAV image 2019-06-16 17:37:25 +02:00
andryyy aea957e949
[Olefy] New container and image 2019-06-16 17:36:32 +02:00
andryyy 090e14ee8d
[Netfilter] Keep musl-dev, update pip 2019-06-13 21:10:49 +02:00
andryyy 8984240e44
[Watchdog, Config] Added WATCHDOG_NOTIFY_BAN to disable IP ban notifications
[Netfilter] Remove unused files after installation
[Compose] Some new images and a new option for watchdog: WATCHDOG_NOTIFY_BAN - defaults to y
2019-06-13 19:38:53 +02:00
andryyy 7145c380b0
[Watchdog] Minor text changes and send whois report of banned IP 2019-06-10 22:40:21 +02:00
andryyy 7f6acdb791
[Watchdog] Fix for fix for wrong mails 2019-06-10 21:53:44 +02:00
andryyy 0d7681d0a5
[Watchdog] Fix broken mail with more than one rcpt in some cases 2019-06-10 20:20:41 +02:00
andryyy c257724cd0
[PHP-FPM] Add exif module 2019-06-10 13:39:53 +02:00
andryyy dcd0bfc13e
[Watchdog] Send mail when IP was banned 2019-06-10 10:57:38 +02:00
andryyy e25e9c7b40
[Postfix] Create resource maps 2019-06-09 16:49:38 +02:00
andryyy 53bda04848
[PHP-FPM] Update PHP and some modules 2019-06-05 06:56:58 +02:00
andryyy de03e4178a
[Dovecot] Run cronjob at 4:15 AM to remove max aged quarantine items (default: 365 days) 2019-06-01 21:23:43 +02:00
andryyy d9361a6263
[PHP-FPM] Add Q_MAX_AGE key and set to 365 days if missing 2019-06-01 21:22:58 +02:00
andryyy dcacf85a5d
[Dovecot] Rename sieve_after to global_sieve_after and create a global_sieve_before file 2019-06-01 13:53:24 +02:00
andryyy cc16f60826 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-05-30 08:36:56 +02:00
André Peters 69fb7f7a7c
[ClamAV] Update to 0.101.2 2019-05-30 08:36:39 +02:00
Timo N 15b2ca6eaa
[ClamAV] Updated to version 0.101.2 2019-05-30 06:41:21 +02:00
andryyy 395f0f7a3d
[Rspamd] Remove authenticated user from auth results header
[Dovecot] Fix permissions of console
[Compose] New Dovecot image
2019-05-29 18:02:14 +02:00
Thomas Sänger e24ba8e2d8
fix typo that prevented trimming watchdog logs 2019-05-27 23:09:25 +02:00
andryyy 7d7ecbe591
[Dovecot] Removed quota recalc job (too intensive on larger systems) 2019-05-27 20:29:55 +02:00
André Peters 856c37ef7b
[DockerAPI] Python3 - big thanks to @christianbur 2019-05-27 19:33:59 +02:00
andryyy 57d65535c9
[Dovecot] Trim watchdog logs 2019-05-25 10:29:17 +02:00
andryyy db0ec130f5
[Web] Lang updates
[ACME] Typo
2019-05-22 23:47:45 +02:00
André Peters 522a304181
Merge pull request #2629 from christianbur/acme_v3
acme-tiny with python3
2019-05-22 23:36:23 +02:00
Christian Burmeister a8e96c57b1
fix typo - container_post__exec__maildir__cleanup 2019-05-22 23:05:07 +02:00
André Peters 9a114845d7
[Netfilter] Reworked by @Kraeutergarten 2019-05-22 22:49:40 +02:00
Christian Burmeister cd71935001
Remove pyOpenSSL 2019-05-21 19:58:18 +02:00
Christian Burmeister 7032ea00d0
add "--virtual .build-dependencies" 2019-05-21 19:51:03 +02:00
Christian Burmeister 8327aac700
Update phpfpm baseimage from alpine 3.8 to 3.9 2019-05-20 23:23:04 +02:00
Christian Burmeister bfbd4c1240
acme-tiny with python3 2019-05-20 21:32:04 +02:00
Christian Burmeister 9afa2730ac
Update server.py 2019-05-20 21:30:40 +02:00
Christian Burmeister 07d15cf035
Update Dockerfile 2019-05-20 21:27:47 +02:00
André Peters 003b244544
Merge pull request #2623 from Arlon1/acme/cert_renewal_threshold
acme: changed the threshold for certificate renewal
2019-05-20 19:51:03 +02:00
Kraeutergarten b862ce2bfb Add hostnames for blacklist. 2019-05-20 09:02:40 +02:00
Kraeutergarten e6de9c299d Fix wrong python version. 2019-05-20 07:02:42 +02:00
Kraeutergarten 9b02c9272e clear whitelist, if it gets cleard. 2019-05-19 10:55:11 +02:00
Kraeutergarten 5af250398c Redo complete logging.
Do some other fixes caused by python3
2019-05-19 10:36:16 +02:00
Kraeutergarten d6af494789 update to python3 2019-05-19 09:55:49 +02:00
Kraeutergarten 5ed113c47f resolving whitelist every minute 2019-05-19 09:48:10 +02:00
andryyy 922a8db7a5
[Dovecot] Auto-generate shared namespace 2019-05-18 23:01:05 +02:00
andryyy 5e36018864
[Rspamd] Auto-generate SIEVE_HOST map and add dnsutils 2019-05-18 22:44:30 +02:00
Kraeutergarten 51f5f66c91 low response timeout
add ipv6 support
add multiple record support
2019-05-18 12:04:11 +02:00
Kraeutergarten 4cc63ceeb7 Allow hostnames for fail2ban whitelist. 2019-05-17 19:38:34 +02:00
andryyy 03f0bac916
[Watchdog] Change error message for acme-mailcow 2019-05-16 19:44:39 +02:00
andryyy 389317e9e4
[Dovecot] Fix memory leak when quarantine sender has non-ascii chars in mail address 2019-05-16 19:44:14 +02:00
andryyy 6a8c4e332b
[ACME] Register error when no hostname could be validated 2019-05-16 19:43:08 +02:00
Arlon1 2d5add5a13 acme: changed the threshold for certificate renewal
The threshold for certificate renewal is changed to 30 days before
expiry date (was 14 days).
fixes #2607
2019-05-16 15:31:50 +02:00
André Peters 2b6e486a11
[Dovecot] Update imapsync - thanks to @hunter-nl 2019-05-09 10:39:28 +02:00
andryyy b20ff13e40 [Rspamd] Update to 1.9.2, minor entrypoint changes
[Compose] Update Rspamd to 1.9.2
2019-05-06 12:18:41 +02:00
André Peters 6cf9a0354b
Trying to avoid non-distro packages 2019-05-05 22:30:11 +02:00
André Peters 081feca893
Replacing trim by function
https://perlmaven.com/trim
2019-05-05 22:28:55 +02:00
hunter-nl 4ebc871966
Added noreleasecheck parameter 2019-05-05 14:35:34 +02:00
hunter-nl d6833d0b29
Add extra perl modules for imapsync 2019-05-05 13:24:12 +02:00
hunter-nl 54a039fbd1
Fix: Processing result of running imapsync command
There was a possibility the status is_running never set back to 0.
Also the unlock command could be executed twice.
2019-05-05 13:15:34 +02:00
hunter-nl b7b532768c
Moved set "is_running" status
Moved set "is_running" status just before the actual execution of imapsync
2019-05-05 13:12:09 +02:00
hunter-nl fbf356d522
Update imapsync script to 1.937 2019-05-05 13:09:17 +02:00
hunter-nl d32f3e9d16
Fix processing imapsync custom parameters 2019-05-05 13:07:17 +02:00
andryyy 189ea89a71
[Dovecot] Revert to previous imapsync cron script 2019-05-04 23:08:43 +02:00
hunter-nl e59417ed78
Update imapsync_cron.pl
Second unlocking lock_file failed because it was already unlocked.
2019-05-04 13:07:23 +02:00
hunter-nl f9cd9927b1
Update imapsync_cron.pl
Moved setting "is_running" status to just before the actual execution of imapsync command.
2019-05-04 12:02:41 +02:00
hunter-nl 95fe217ce1
Update imapsync_cron.pl
Fix: Reset is_running status in case of exception occurs in running imapsync. Else it will stuck in "running" status.
2019-05-04 11:58:19 +02:00
hunter-nl 59882b443a
Update imapsync_cron.pl
Fix executing imapsync command containing quoted strings in parameters.
2019-05-04 11:45:51 +02:00
Sven Gottwald b55ac86d6b
Update Dovecot to v2.3.6 and Pigeonhole to v0.5.6 2019-05-01 20:28:11 +02:00
andryyy 60fd955def
[ACME] Add 0 byte check for cert.pem 2019-04-27 10:23:00 +02:00
andryyy 9bab6507a7
[ACME] Allow to skip all names but MAILCOW_HOSTNAME 2019-04-26 21:15:46 +02:00
andryyy 3e3e526568
[Dovecot] Update to 2.3.5.2
[Compose] Update Dovecot image
2019-04-25 18:10:28 +02:00
Ralph Paßgang 42b240c10c Updating the www.dovecot.org/releases/... url to just dovecot.org/releases/... in dovecot Dockerfile to
prevent a http redirect problem with the curl ... | tar command.
2019-04-24 17:44:15 +02:00
andryyy 5be4885c15
[Watchdog] Send mail when starting
[Compose] Update watchdog and remove oom check for compatibility
2019-04-18 22:09:26 +02:00
andryyy 794c2080ec
[ClamAV] Increase watchdog clamd-mailcow thresholds 2019-04-05 12:09:46 +02:00
andryyy a9c1b480c5
[Solr] Make entrypoint executable 2019-04-05 12:09:18 +02:00
Joshua Hesketh f8ff11a1e3
Merge branch 'master' into patch-4 2019-04-02 17:08:19 +11:00
andryyy a86f9e0120
[Compose] New Dovecot image
[Dovecot] Update Dovecot to v2.3.5.1
2019-03-31 19:07:39 +02:00
André Peters 987e884407
Merge branch 'master' into admin-login 2019-03-31 15:49:18 +02:00
andryyy b42d0df8e2
[ACME] Allow to skip http verification 2019-03-29 07:46:52 +01:00
andryyy 9378a34adb
[SOGo] Remove unnamed volume and rsync web content to named volume 2019-03-29 07:46:28 +01:00
andryyy e7d17ad1ac
[Watchdog] Check for ACME failures 2019-03-27 23:15:04 +01:00
andryyy 8b0f7fa81b
[ACME] Write redis key on non-empty exit code 2019-03-27 23:14:46 +01:00
André Peters eb2b26699c
[Dovcot] Cleanup random user maildirs 2019-03-27 16:37:15 +01:00
Marcel Hofer 7d2289c3a7 Merge branch 'master' into admin-login
# Conflicts:
#	data/web/js/site/mailbox.js
2019-03-23 21:17:02 +01:00
andryyy 22798a85e5
[Config] Add MAILDIR_SUB, "Maildir" for new setups by default
[Update] Add MAILDIR_SUB= for updated mailcows
[Dovecot] Read MAILDIR_SUB for mail_home
2019-03-18 14:09:32 +01:00
André Peters 3d8a46357b
Merge branch 'master' into admin-login 2019-03-18 02:03:59 +01:00
andryyy 9482da211f
[Rspamd] Update to 1.9 stable repository
[Compose] Update Rspamd image
2019-03-12 23:39:34 +01:00
andryyy ffed14c277
[PHP-FPM] Fix SQL upgrade script 2019-03-12 23:24:22 +01:00
andryyy c77368ee70
[ACME] Set mode 600 for key files 2019-03-12 23:24:03 +01:00
andryyy 837ee3b3b0
[Solr] Keep EdgeNGramFilterFactory out of query
[Compose] Update PHP-FPM, Solr and ACME images
2019-03-12 23:21:15 +01:00
andryyy fc63661fbd
[Solr] Change default configset before bootstrapping
[Solr] Bootstrap cannot be omitted and must occur before mounting the data directory
2019-03-12 23:15:26 +01:00
André Peters ae19d81f2d
Merge branch 'master' into admin-login 2019-03-10 10:38:42 +01:00
André Peters 216451ed43
Merge branch 'master' into admin-login 2019-03-10 09:51:12 +01:00
andryyy c7c115d63a
[Solr] Use fixed, recommended schema but add EdgeNGramFilterFactory 2019-03-10 09:40:04 +01:00
andryyy 47d4be8884
[Dovecot] v2.3.5 (PH 0.5.5)
[Dovecot] Change Solr cronjob to fit dovecot-fts
2019-03-10 09:35:26 +01:00
andryyy b6d9fbf747
[Postfix] Fix Postfix map 2019-03-09 12:30:36 +01:00
andryyy 15970ab8dc
[Postfix] Fix sasl_passwd query from alias domain, fixes #2410
[Web] Major fix, added a line break!
[Compose] Update Postfix image
2019-03-09 11:22:39 +01:00
andryyy 8e42ad4f1f
[Rspamd] Use stable unstable :) 2019-03-07 00:09:07 +01:00
andryyy d65f7a2bd4
[Watchdog] Do not hammer API too much when running Ipv6 NAT check
[Watchdog] Run IPv6 NAT check more often (300s sleep instead of 3600s)
2019-03-07 00:08:45 +01:00
andryyy e1ebacca27
[Rspamd] Drop rspamd.conf.local file 2019-03-06 15:06:51 +01:00
andryyy 5bc8289d32
[Watchdog] Minor fixes, print last log lines on error 2019-03-04 17:56:27 +01:00
tha80 d365813997
Downgraded rspamd deb repository 2019-03-04 13:59:31 +01:00
andryyy c4dfed8a96
[Compose, Rspamd] Downgrade Rspamd 2019-03-03 22:54:47 +01:00
andryyy 950ab30462
[Rspamd] Upgrade Rspamd
[Compose] New Rspamd image
2019-03-03 22:25:56 +01:00
andryyy fcbcc117d2
[Netfilter] Detect SOGo 403
[Compose] Update Netfilter
2019-02-28 20:22:16 +01:00
Marcel Hofer e2f39df7d8 remove obsolete code, use openssl instead of `cat /dev/urandom` 2019-02-26 20:44:53 +01:00
Marcel Hofer dd6d253ac0 add random masterpass for sogo admin login
add required headers for sogo proxy auth with password
add SOGoEncryptionKey
add SOGoTrustProxyAuthentication only conditionally if feature is enabled
2019-02-26 09:02:35 +01:00
andryyy 57312ad605
[Compose] Add ALLOW_ADMIN_EMAIL_LOGIN to sogo-mailcow to trigger bootstrap on change
[Compose] Static IPv4 for Dovecot
[SOGo] Remove SOGoIMAPServer from sogo.conf
[SOGo] Add SOGoIMAPServer to bootstrap process
[Nginx] Disallow editAccount for other accounts than 0 (own)
2019-02-25 00:00:32 +01:00
André Peters 298a8d24e9
Merge pull request #2360 from mhofer117/allow-admin-email-login
Allow admins to login as email user (without any password)
2019-02-24 18:49:13 +01:00
Marcel Hofer cac67db203 add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins 2019-02-23 17:59:18 +01:00
andryyy db17a304b0
[ClamAV] Create directory before handling whitelist 2019-02-23 10:34:16 +01:00
andryyy 354ecd727c
[ClamAV] More checks and permission fixes 2019-02-23 10:27:13 +01:00
andryyy fe9b9f5dfa
[ClamAV] Set permission recursively
[Compose] Updaet ClamAV image
2019-02-23 10:21:13 +01:00
andryyy fe6567a3c8
[Compose] New watchdog image
[Watchdog] Use ipv6nat-mailcow instead of ipv6nat
2019-02-19 22:25:28 +01:00
andryyy 52eb6e48f2
[Compose] New Dovecot image
[Dovecot] Fix very stupid error in quarantine_notify.py - thanks to @DevTek314
2019-02-19 15:02:18 +01:00
andryyy 63752fe0f2
[Solr] Changes to schema - field types are updated 2019-02-15 20:19:50 +01:00
Joshua Hesketh 1355e993dd
Fix building solr
I kept hitting an error when building solr `/bin/sh: /docker-entrypoint.sh: Text file busy`, this is caused where the script is attempted to be ran before the previous `chmod` command has properly sync'd to disk. Adding in a sync fixes this trouble for me.
2019-02-15 17:04:53 +11:00
Aaron Larisch 5cae935485 Fix empty maildir_gc.sh 2019-02-12 17:11:04 +01:00
andryyy 99a816430b
[ACME] Wait for Nginx 2019-02-10 17:36:25 +01:00
Christian Burmeister f35ffa61d0
Update Dockerfile 2019-02-08 17:03:38 +01:00
Christian Burmeister 0e8f8ada1f
Update Dockerfile 2019-02-08 17:03:16 +01:00
andryyy 4e97da197e
[Dovecot] Fix quarantine notificatin script
[Compose] Update Dovecot image
2019-02-08 10:06:28 +01:00
andryyy 36ad9dbf78
[ACME] verify_html should accept 3** and 2** 2019-02-08 00:04:05 +01:00
andryyy c438411a3d
[Dovecot] Extend quarantine template: add score and release/delete buttons - depending on acl 2019-02-06 09:21:54 +01:00
andryyy 2a5f6413fa
[Dovecot] Derive text part in quota/quarantine notification mails from html 2019-02-05 10:38:28 +01:00
andryyy 12291436cd
Push image base to Alpine 3.9 2019-02-05 00:01:31 +01:00
andryyy c7c1422095
[Dovecot] Add quota_notify script
[Dovecot] Some minor changes to quarantine notification script to catch more errors
2019-02-05 00:00:22 +01:00
andryyy ccc61bf2dc
[PHP-FPM] PHP 7.3, mailparse from Git as long as no releas exists 2019-02-04 23:46:45 +01:00
andryyy 9f2a6f13a5
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-04 23:45:54 +01:00
andryyy 3bfd2c8885
[Dovecot] Once again... finally fixed? 2019-01-31 22:18:38 +01:00
andryyy dcd6b2268e
[Dovecot] Various fixes for quarantine notifications, many thanks to @DevTek314 for reporting them! 2019-01-31 21:45:58 +01:00
andryyy 3aef412669
[Dovecot] Fix type of last_notification 2019-01-31 20:53:08 +01:00
andryyy 24432b0d9d [PHP-FPM] Remove old fix 2019-01-31 17:08:03 +01:00
andryyy 6d4bcfabb1
[PHP-FPM] Fix sed command 2019-01-31 15:51:00 +01:00
andryyy 3832d04998
[PHP-FPM] Fix sed command 2019-01-31 15:49:53 +01:00
andryyy 61cd2c0353 [PHP-FPM] Patch legacy template lib of NC if exists 2019-01-31 15:44:56 +01:00
andryyy 8c433bf0da [PHP] Drop pear modules 2019-01-30 11:55:03 +01:00
andryyy c456fe12b3
[Dovecot] Fix last_notification in quarantine_notify.py 2019-01-29 12:13:26 +01:00
andryyy 07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy f493d3a957
[Dovecot] Simplify Docker image
[Dovecot] Set Dovecot plugins dynamically via file and exclude Solr if not enabled
[Dovecot] Add new quarantine notification script
2019-01-29 00:11:12 +01:00
André Peters b2bb593656
[Dovecot] imapsync: Connect to database via socket 2019-01-19 11:57:48 +01:00
Dirk Weise 23c2249fa7
Log imapsync cronjob errors
Errors from the imap sync cronbjob are currently dropped silently.
2019-01-18 18:25:43 +01:00
Dirk Weise 630bce5f29
imapsync: Connect to database via socket
Make the imapsync script connect to mysql via socket and not tcp like all other services do.

Reasoning: consistency. 🤓  And in my case the database does not listen on tcp; just on the socket.
2019-01-18 17:36:30 +01:00
andryyy d6efc2fcd3
[Rspamd] Fix metadata_exporter
[Web] Show subjet in quarantine
[Compose] Update Rspamd image
2019-01-17 22:00:18 +01:00
andryyy ae4e1358a2
[Solr] Refuse to start with RAM lt 2 GB
[Config/Update] Set limits and change descriptions for Solr
2019-01-17 20:25:38 +01:00
andryyy 5081d6d9f1
[ClamAV] Add more signatures 2019-01-16 23:41:42 +01:00
andryyy 62ccd4215e [SOGo] Allow to turn off GAL for each domain 2019-01-16 23:41:15 +01:00
andryyy 0c84b484a5
[DockerAPI] Add unused FTS endpoints... 2019-01-16 22:20:22 +01:00
André Peters f3dfe346bf [Dovecot] Allow setting ACL_ANYONE in mailcow.conf 2019-01-16 19:08:19 +01:00
andryyy 889b260b7d
[ClamAV] Set prio of clamd parent to 10, fixes #2174 2019-01-13 23:03:07 +01:00
andryyy 5619221ed0
[ClamAV] Fix whitelist permission error
[Compose] New image for ClamAV
[Git] Add ignore data/web/nextcloud*
2019-01-13 11:21:44 +01:00
andryyy ab35e1d688 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-10 22:14:52 +01:00
andryyy b0130c153c
[Clamd] Improve logging
[Compose] Remove tty from clamd-mailcow
2019-01-10 22:13:59 +01:00
amorfo77 9a90647709
[Clamav] Remove duplicate chown 2019-01-10 13:31:34 +01:00
andryyy e42afa39a8
[ClamAV] Update to 0.101.1 (based on Debian to fix some errors)
[ClamAV] Some config values are deprecated and were replaced
2019-01-08 12:54:33 +01:00
Markus Heberling 9750ec5bec
Merge branch 'master' into master 2019-01-01 14:20:22 +01:00
andryyy 4f278255a5
[SOGo] Fix ealarms, again, fixes #2136
[Compose] Update SOGo image
2018-12-29 21:19:25 +01:00
andryyy 3fa42ada8e [Compose] Update to Redis 5
[Compose] New images for watchdog and PHP-FPM
[Watchdog] Run IPv6 NAT check hourly
[PHP-FPM] Update PHP and libs
2018-12-27 10:47:00 +01:00
andryyy 424bc997ad [Watchdog] Add check for IPv6 NAT: Make sure IPv6 NAT container was started at least 30s after other containers
[Compose] ipv6nat depends on all containers
[Compose] Update watchdog image
2018-12-27 08:20:49 +01:00
Michael Kuron 0974a5fb60
Fix transport map authentication with multiple identical nexthops 2018-12-25 15:02:50 +01:00
andryyy 9aca90c75f [SOGo] Fix file path of sogo-full.svg
[Compose] Updated SOGo image
[Update] Add user.name and user.email for local git config if missing
2018-12-22 16:56:50 +01:00
andryyy e84dec3b56 [SOGo] Revert self-built SOGo 2018-12-21 19:54:32 +01:00
andryyy fbe46e39e5 [SOGo] Copy logo from config dir, no need to rebuild image 2018-12-20 19:02:20 +01:00
andryyy 8f686c1543 [Postfix] Split sasl passwd maps to not lookup sender_dependent_default_transport_maps auth info when querying for transport_maps 2018-12-19 09:38:56 +01:00
andryyy 29512fa4e1 [SOGo] Build stable SOGo versions
[SOGo] Remove custom colors, there were various broken styles especially for indicators of freebusy states
2018-12-19 09:34:16 +01:00
andryyy 6f1ec5acbf [Watchdog] Alert when ratelimit log changed (does NOT send one mail per triggered ratelimit) 2018-12-15 21:21:22 +01:00
andryyy 468e3dbe12 [PHP-FPM] Try SQL once, prevent loops (todo: fix view before upgrade) 2018-12-15 21:20:21 +01:00
andryyy c4446b85f1 [Rspamd] Add ratelimit.lua (to be removed from Dockerfile with next Rspamd release) 2018-12-15 21:19:35 +01:00
andryyy b7c9af5e75 [Dovecot] Give master user a uid and gid, fixes #2093 2018-12-13 19:52:50 +01:00
andryyy d8906e3d6c [Dovecot] Trim more logs 2018-12-12 22:51:55 +01:00
Markus Heberling 4755bb323b Allow setting ACL_ANYONE in the configuration 2018-12-11 11:32:36 +01:00
andryyy 5153623539 [Dovecot] Add master user to userdb (to be used in SOGo)
[SOGo] Use sieve.creds to authenticate against Dovecot and send email reminders
2018-12-10 23:23:56 +01:00
andryyy b710cb751b [Dovecot] Split imapsync cron by -- 2018-12-10 13:24:51 +01:00
andryyy 09b9055f1a [DockerAPI] Add mysql_upgrade task 2018-12-10 13:24:07 +01:00
andryyy 04b699a3c7 [PHP-FPM] Trigger mysql_upgrade 2018-12-10 13:22:25 +01:00
andryyy 2a6320b86e [Netfilter] Disable aborted login without auth as fail2ban trigger
[Dovecot] passdb query ignored active attribute in mailbox table
[PHP-FPM] Add default release format for spam
2018-12-06 16:49:28 +01:00
andryyy cfab7274b7 [Netfilter] Revert SNAT rule check, todo: check DNS with SNAT enabled 2018-12-01 23:12:27 +01:00
andryyy 45ecc26a12 [Netfilter] Do not delete SNAT rule if not on first position 2018-12-01 21:17:08 +01:00
andryyy a695bdd2ee [Dovecot] Update Dovecot to 2.3.4, update Pigeonhole to 0.5.4
[Dovecot] Remove UTF-8 attribute
2018-11-26 09:44:41 +01:00
andryyy c82f8165d8 [Dovecot] Fix maildir_gc, build with ldap support 2018-11-26 09:11:22 +01:00
andryyy 9acd9c719d [SOGo] Read plist_ldap for dual auth via ldap, unsupported 2018-11-26 09:10:39 +01:00
andryyy f011db317e [SOGo] Wait for updated db schema before bootstrapping 2018-11-16 22:48:28 +01:00
andryyy 7998ec3f1f [DockerAPI] Fix image, fixes #2008 2018-11-16 20:09:29 +01:00
andryyy a4452ed3a5 [Postfix] Important fix for mailbox maps, fixes #2013 2018-11-15 22:55:45 +01:00
andryyy b3518b0749 [Dovecot] Remove dedicated index (wip)
[SOGo] Fix sogo_view
2018-11-12 20:59:39 +01:00
andryyy 2210201c76 [SOGo] Adjust SOGo view 2018-11-12 09:53:39 +01:00
andryyy 1404fc50f4 [Rspamd] Add stopsignal (testing) 2018-11-12 09:52:34 +01:00
andryyy 9ee557e5a5 [Postfix] Adjust mailbox query 2018-11-12 09:49:52 +01:00
andryyy 244ab191bd [Dovecot] Dovecot 2.3.3, Pigeonhole 0.5.3
[Dovecot] Use "--enable-hardening" flag
[Dovecot] Fix cronjobs
[Dovecot] Use /var/volatile to prevent locking files from being written to NFS storage (if vmail is on NFS)
[Dovecot] Change userdb query
[Dovecot] Use /var/attachments for mdbox attachment deduplication and /var/index for index files
[Dovecot] Fix sieve user creation
[Dovecot] Make console writable
[Dovecot] Fix trim_logs.sh
2018-11-12 09:49:23 +01:00
Markus Gnadl 0e33fd49bb wildcards (subdomain.*) in ADDITIONAL_SAN are expanded to all mailcow domains 2018-10-30 09:07:01 +01:00
andryyy 2bd1b1c960 [Watchdog] Skip container restart if running for less than 120 seconds 2018-10-27 23:44:06 +02:00
andryyy f796db0a65 [DockerAPI] Add top and stats 2018-10-27 13:25:18 +02:00
andryyy e04a3aed6a [ClamAV] Do not try to modify cross-mounted file, copy whitelist from conf to lib directory 2018-10-27 13:25:05 +02:00
andryyy 4e2b8dbd90 [Watchdog] Check if initdb is running and if true skip killing php-fpm-mailcow 2018-10-27 13:23:36 +02:00
andryyy c9cf3476a0 [Update] Remove obsolete parameters
[Compose] New watchdog image
[Watchdog] Allow multiple rcpts separated by comma
2018-10-26 10:07:23 +02:00
andryyy 800eebd117 [Dovecot] Use events to kill supervisord when main proc dies
[Postfix] Use events to kill supervisord when main proc dies
[SOGo] Use events to kill supervisord when main proc dies
2018-10-25 22:35:07 +02:00
andryyy 23e3bdfe5a [Dockerapi] Some minor changes 2018-10-25 22:34:31 +02:00
andryyy 37964d9dd1 [ACME] Try to reload services after certificate changes instead of restarting
[DockerAPI] Add service reload commands
2018-10-24 20:14:59 +02:00
André db64fa490b [SOGo] Read .sogo_access attribute when bootstrapping view 2018-10-23 21:13:37 +02:00
André fbf1c7b7c1 [DockerAPI] WIP: change of structure, add some more commands to control mail queue 2018-10-23 21:12:37 +02:00
André e941c6e8b2 [ACME] Fix missing for loop start
[Compose] New ACME image
2018-10-19 10:03:05 +02:00
André 7a7fafec87 [Compose] New Rspamd image (1.8.1)
[Rspamd] Upgrade base to Bionic
2018-10-17 22:41:39 +02:00
André 86b92f68cb [Watchdog] Remove cert check (wip)
[Watchdog] Append last check loop as attachment to mail
[Watchdog] Print time and date in mail alerts
2018-10-17 22:30:13 +02:00
André 7386dc1e5c [ACME] Stop requesting certificates for autoconfig.* 2018-10-16 23:01:01 +02:00
André 178bee7ac3 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-10-14 19:05:57 +02:00
André d2d0369f32 [PHP-FPM] Base on Alpine 3.8
[Watchdog] Base on Alpine 3.8
[ACME] Base on Alpine 3.8
[Watchdog] Minor changes
2018-10-14 14:29:03 +02:00
André 2da228a21e [Watchdog] Remove some check_ping checks
[Watchdog] Add ClamAV check (if SKIP_CLAMD=n)
[Watchdog] Add Unbound check
[Watchdog] Do not use Docker API by default to determine IP of containers (see "IP_BY_DOCKER_API")
[Watchdog] Minor changes
2018-10-14 00:21:31 +02:00
André a9eddae686 [ACME] Do not add alias domains to auto* domains 2018-10-14 00:19:14 +02:00
André 5705044af0 [ClamAV] Update to 0.100.2 2018-10-14 00:18:21 +02:00
Tobias "Knight" S 7114999c75
remove duplicated import time 2018-10-13 23:30:24 +02:00
André 93917f8385 [Unbound] Upgrade to Alpine 3.8, fixes #1882 2018-10-13 10:12:01 +02:00
André 23e6e52f4f [Postfix] Proper permissions for sql config files
[Dovecot] Proper permissions for sql config files
2018-10-12 10:57:00 +02:00
André aa39be7ea6 [SOGo] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Use mysqladmin status instead of ping to determine readiness
[PHP-FPM] Init database in entrypoint
[PHP-FPM] Change API credential injection
[Dovecot] Use mysqladmin status instead of ping to determine readiness
2018-10-11 11:53:22 +02:00
André ce135bb773 [ACME] Log acme-client output base64 encoded, use mysqladmin status instead of ping to determine readiness 2018-10-11 11:51:13 +02:00
André ad63552951 [Dovecot] Check file size of mail crypt key pair, fixes #1859
[Compose] New Dovecot image
2018-10-07 15:10:17 +02:00
André 9f52cd9456 [Docker API] Fix sieve list for users, fixes #1849 2018-10-06 22:09:23 +02:00
André c6aa3610f0 [Postfix] Enable/create smtp_tls_policy_maps 2018-10-04 14:34:53 +02:00
André cf28727376 [Dovecot] Add timeouts to sa-rules script, remove with -f flag to return 0 2018-10-03 23:27:31 +02:00
André d8148bef79 [Docker API] Do not print warning when maildr does not exist 2018-10-03 11:27:52 +02:00
André 2af2f7836d [Dovecot] Remove fixed uid and gid 2018-10-02 10:31:22 +02:00
André 62b27aeacb [Dovecot] Check garbage hourly
[Dovecot] Update SA rules once when container starts
2018-10-02 09:34:21 +02:00
André ca1e950c61 [Dovecot] Do not query gid and uid 2018-10-02 09:13:33 +02:00
André d7ca5579dc [Rspamd] Ignore custom files, but keep bad asn map 2018-09-30 18:55:35 +02:00
André cdca603ff5 [Unbound] Fix logging, fixes #585
[Rspamd] Fix permissions of controller password file
[Unbound] Enable unbound-control
2018-09-30 14:43:18 +02:00
André 4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André 0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André 96c985abad [Rspamd] Move settings file to RSPAMD_CONF root, delete old lua scripts 2018-09-26 13:23:05 +02:00
André 29aeb5b85d [Watchdog] Fix SOGo check, fixes #1750 2018-09-09 21:52:48 +02:00
André c8a1cbd25a Merge branch 'temp-master' 2018-09-09 21:21:43 +02:00
André c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André ad902f0ad8 [SOGo] Remove HTTP server on port 9192 2018-09-09 09:48:11 +02:00
André 8a88514dfd [SOGo] Declare /usr/lib/GNUstep/SOGo as volume
[Nginx] Mount vols from sogo-mailcow to access /usr/lib/GNUstep/SOGo
2018-09-07 16:40:37 +02:00
sriccio 5e56a46c84 [dovecot] Enhancement to allow to use auth_default_realm
When using auth_default_realm in dovecot configuration to setup a default domain name (to allow users to login with only a username instead of the full e-mail address), it breaks the compatibility with imapsync and sogo/sieve vacation.

Adding a domain name to dovecot master user/pass fixes this.

This never made it do the master branch, so I'm trying a PR again :)

See: https://github.com/mailcow/mailcow-dockerized/pull/1331#issuecomment-386534307
2018-08-28 17:14:05 +02:00
André 66ee11c03d [SOGo] Disable display of ACL "any/authenticated" by default
[Dovecot] Disable "any" ACL by default
[SOGo] Might fix theme switching (yes, again)
2018-08-17 21:42:31 +02:00
André 6bd818ceec [ACME] Remove third-party IP tools 2018-08-06 15:15:24 +02:00
André ff0b9246b5 [ClamAV] Add whitelist file for ClamAV, fixes #1607
[ACME] Test for CAA before running script, fixes #1632
2018-08-05 22:35:20 +02:00
André 9dd17d4609 [SOGo] Change color codes in correct files 2018-08-04 09:23:45 +02:00
André bf9a180c00 [SOGo] Fix theme switching (99% sure we did it this time, guys) 2018-08-03 20:27:58 +02:00
André e678292447 [Dovecot] Trim autodiscover logs 2018-08-02 12:19:58 +02:00
André 39b0fc515f [SOGo] Syslog-ng: Do not trim after each push to Redis 2018-08-02 12:17:21 +02:00
André 85f83b1b71 [Rspamd] v1.7.9 (removed explicit ratelimit.lua) 2018-08-02 12:16:55 +02:00
André f5fb7f6da5 [Watchdog] Do not trim after each push to Redis 2018-08-02 12:16:05 +02:00
André f8f87d4744 [ACME] Do not trim after each push to Redis 2018-08-02 12:15:41 +02:00
André bdf7632757 [Postfix] Add '*' as send_as to sender_acl map
[Postfix] Syslog-ng: Do not trim after each push to Redis
2018-08-02 12:15:04 +02:00
André 04b43d0a3b [Dovecot] Add new imapsync + dependencies
[Dovecot] Syslog-ng: Do not trim after each push to Redis
[Dovecot] Add new cronjob to trim all Redis logs every minute (will be moved in the future)
2018-08-02 12:14:13 +02:00
André 15b80760b2 [Postfix] Add scripts to learn from spam/ham traps
[Dovecot] Learn fuzzy when moving mails from/to junk
2018-07-29 00:36:08 +02:00
André ff463168d1 [SOGo] Override theme-default.css to prevent theme switching, delete theme-green until fixed 2018-07-28 14:26:02 +02:00
André 1115b826f9 [Dovecot] Various fixes for imapsync_cron, new imapsync version 2018-07-27 22:19:14 +02:00
André 5cc09055a7 [SOGo] Another try to fix theme switching on login screen 2018-07-27 22:16:18 +02:00
André ef8c79c0e5 [Postfix] Fix alias for spam and ham addresses 2018-07-25 01:21:22 +02:00
André 63ce1ba2d6 [Postfix] Create ham/spam mailboxes @ localhost 2018-07-25 01:05:51 +02:00
André 240eb3abce [Netfilter] Wait for Redis instead of exiting with an exception 2018-07-24 23:30:18 +02:00
André 6cba85eb07 [Postfix] Add tzdata to Postfix 2018-07-17 00:29:07 +02:00
André b45b9bc5cf [SOGo] Override more theme options to prevent occasional theme switching on login 2018-07-15 16:34:25 +02:00
André 853b924fe1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2018-07-15 11:56:26 +02:00
André c372b01909 [Rspamd] Use old ratelimit LUA until custom rl is fixed
[Web] Updated settings preset: Ratelimit was NOT applied when preset for settings map was used (added "RATELIMIT_UPDATE", "RATELIMIT_CHECK" to symbols_enabled)
[Rspamd] v1.7.8
2018-07-13 11:40:37 +02:00
André e9f60bf06c [SOGo] Missing ) ... 2018-07-12 14:19:06 +02:00
André e06c3e87ee [SOGo] Refresh sogo static view on start 2018-07-12 14:08:00 +02:00
André 8a9ce0a57c [SOGo] Refresh sogo static view on start 2018-07-12 14:04:31 +02:00
André d9df322eda [Dovecot] Remove additional hash scheme and let Dovecot decide the hash by prefix 2018-07-12 00:46:17 +02:00
André 2aef18d130 [Dovecot] Remove user queries from passdb + add a second passdb for additional algorithms + create userdb without password queries 2018-07-12 00:23:12 +02:00
André a4e96a3fe3 [ClamAV] v0.100.1 + rebase on Alpine 3.8 2018-07-12 00:21:46 +02:00
André cfb0d3b62c [SOGo] Create a sogo_update_password trigger in SQL
[SOGo] prependPasswordScheme=YES in user sources
[SOGo] Use new "static view" as viewURL for much faster table lookups on large systems
2018-07-11 22:08:02 +02:00
André 22cecc3f85 [Postfix] Use Bionic as base image (Postfix 3.3) and replace python-gpgme by python-gpg
[Postfix] Fix syslog-ng config version
2018-07-11 20:01:03 +02:00
André 1e59816665 [Netfilter] Prevent crashes by locking threads
[Netfilter] SNAT6
2018-07-11 19:59:10 +02:00
André 055183257d [Dovecot] v2.3.2.1 + remove some dev packages 2018-07-11 19:07:26 +02:00
André f8283536ec [Netfilter] Fix chain order watching and other fixes
[Web] Fix perm ban display
2018-07-09 22:23:39 +02:00
André a72a3734d6 [SOGo, Compose] Add cow to logo... + new SOGo image 2018-07-06 12:10:22 +02:00
André 7b69549881 [SOGo] Fix theme-blue.js contrast and flipping colors on login screen, fixes #1528 2018-07-06 11:54:12 +02:00
André e352604a9b [Compose, PHP-FPM] Fix script in new image 2018-07-04 11:41:43 +02:00
André 26807823b4 [Netfilter] python-tipbles 0.13.0 plus missing vars for 0.13.0 2018-07-03 23:25:31 +02:00
André 3b5df979e9 [Dovecot, Compose] New Dovecot image, upgrade to 2.3.2 (0.5.2 PH), fixes various bugs including replication over TCP 2018-07-02 10:35:04 +02:00
André 17d3a24d89 [Netfilter] Fix table refresh and rule injection in snat loop 2018-06-29 11:25:26 +02:00
André 73a566b25a [ACME] Fix for multiple additional SAN 2018-06-29 09:35:48 +02:00
André d6a74e82e3 [ACME] Fix for CNAME response on AAAA dig request 2018-06-28 20:41:44 +02:00
André a1a6574964 [PHP-FPM] Add tzdata, update APCu and Redis extensions, update PHP to new minor 2018-06-27 22:51:17 +02:00
André 729bba5b57 [ACME, Compose] Add new image; fix AAAA check for ADDITIONAL_SAN 2018-06-27 12:09:51 +02:00