Commit Graph

1917 Commits (d32f3e9d16478ff341f7101ed864efc604b85fac)

Author SHA1 Message Date
andryyy 950ab30462
[Rspamd] Upgrade Rspamd
[Compose] New Rspamd image
2019-03-03 22:25:56 +01:00
andryyy 0375703198
[Postfix] Fix mandatory encryption protocols and always require at least TLS 1.2 for LMTP 2019-03-03 12:11:39 +01:00
andryyy eccf3ff4da
[Postfix] Mandatory encryption protocol is now min. TLS 1.2 2019-03-03 12:09:10 +01:00
andryyy 69f54b99a1
[Dovecot] ssl_min_protocol is now TLS 1.2 2019-03-03 12:08:26 +01:00
andryyy 52890e113f
[Web] Update bootstrap to 3.4.1, fixes #2381 2019-03-03 12:07:33 +01:00
André Peters de320771e0
Merge pull request #2385 from mhofer117/allow-admin-email-login
allow multiple concurrent admin logins
2019-03-02 21:34:36 +01:00
andryyy 1e79ea6c7e
[Web] Fix transport_check over port 465, fixes #2386 2019-03-02 20:32:12 +01:00
Marcel Hofer 6a7b4387eb allow multiple concurrent admin logins 2019-03-02 12:32:10 +01:00
andryyy fcbcc117d2
[Netfilter] Detect SOGo 403
[Compose] Update Netfilter
2019-02-28 20:22:16 +01:00
Marcel Hofer 965577c5d8 fix path check 2019-02-27 23:16:23 +01:00
Marcel Hofer fa80d66d6c match EAS and SOGO/dav case insensitive 2019-02-27 23:14:30 +01:00
Marcel Hofer a110378000 always check basic auth against user database for EAS and SOGo if ALLOW_ADMIN_EMAIL_LOGIN is enabled 2019-02-27 23:06:19 +01:00
andryyy 38911034c3
Don't break DAV 2019-02-26 22:13:37 +01:00
andryyy ae512018a8
[Postfix] Remove sasl requiring policies from port 25 2019-02-26 21:37:08 +01:00
Marcel Hofer e2f39df7d8 remove obsolete code, use openssl instead of `cat /dev/urandom` 2019-02-26 20:44:53 +01:00
andryyy 97adcbe5f8
[Web] Strip < and > from start/end of full name 2019-02-26 09:23:16 +01:00
Marcel Hofer dd6d253ac0 add random masterpass for sogo admin login
add required headers for sogo proxy auth with password
add SOGoEncryptionKey
add SOGoTrustProxyAuthentication only conditionally if feature is enabled
2019-02-26 09:02:35 +01:00
andryyy b0584b7699
[Dovecot] Remove vacation-seconds from global-only 2019-02-25 10:22:00 +01:00
andryyy 57312ad605
[Compose] Add ALLOW_ADMIN_EMAIL_LOGIN to sogo-mailcow to trigger bootstrap on change
[Compose] Static IPv4 for Dovecot
[SOGo] Remove SOGoIMAPServer from sogo.conf
[SOGo] Add SOGoIMAPServer to bootstrap process
[Nginx] Disallow editAccount for other accounts than 0 (own)
2019-02-25 00:00:32 +01:00
André Peters 298a8d24e9
Merge pull request #2360 from mhofer117/allow-admin-email-login
Allow admins to login as email user (without any password)
2019-02-24 18:49:13 +01:00
André Peters 4482aee747
Update sogo-auth.php 2019-02-24 00:15:09 +01:00
andryyy 108e808d06
[Rspamd] Reduce SOGO_CONTACT score to -99 2019-02-23 23:46:01 +01:00
André Peters 9a9079baa5
Update sogo.auth_request.template.sh 2019-02-23 22:29:14 +01:00
André Peters 88fbc6bf16
Update sogo-auth.php
Consistency again. :)

I moved the prerequisites require_once to the top, ok?
2019-02-23 22:26:41 +01:00
André Peters 0c8f217f49
Update sogo.auth_request.template.sh
Don't want to split hairs! Just consistency. :)
2019-02-23 22:20:09 +01:00
Marcel Hofer cac67db203 add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins 2019-02-23 17:59:18 +01:00
andryyy db17a304b0
[ClamAV] Create directory before handling whitelist 2019-02-23 10:34:16 +01:00
andryyy 354ecd727c
[ClamAV] More checks and permission fixes 2019-02-23 10:27:13 +01:00
andryyy fe9b9f5dfa
[ClamAV] Set permission recursively
[Compose] Updaet ClamAV image
2019-02-23 10:21:13 +01:00
andryyy 9213d65c85 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-22 18:25:48 +01:00
andryyy 28a3f5ca8c
[Dovecot] Add flags and notify to sieve_extensions 2019-02-22 18:25:35 +01:00
andryyy 1092d98499
[Dovecot] Enable sieve vacation seconds not just for global scripts 2019-02-22 10:52:18 +01:00
gummipunkt 4e4ed9c1aa
Update lang.de.php 2019-02-21 21:58:03 +01:00
andryyy fe6567a3c8
[Compose] New watchdog image
[Watchdog] Use ipv6nat-mailcow instead of ipv6nat
2019-02-19 22:25:28 +01:00
andryyy 52eb6e48f2
[Compose] New Dovecot image
[Dovecot] Fix very stupid error in quarantine_notify.py - thanks to @DevTek314
2019-02-19 15:02:18 +01:00
andryyy 30153f29cc
[Web] Changes to user interface (using tabs now) 2019-02-15 20:20:14 +01:00
andryyy 63752fe0f2
[Solr] Changes to schema - field types are updated 2019-02-15 20:19:50 +01:00
Joshua Hesketh 1355e993dd
Fix building solr
I kept hitting an error when building solr `/bin/sh: /docker-entrypoint.sh: Text file busy`, this is caused where the script is attempted to be ran before the previous `chmod` command has properly sync'd to disk. Adding in a sync fixes this trouble for me.
2019-02-15 17:04:53 +11:00
vain90 d7aaa67e2e
Move unset https_port after include of vars local inc 2019-02-14 23:10:46 +01:00
andryyy 02b015a359
[Rspamd] Lower history nrows 2019-02-14 11:11:20 +01:00
andryyy 32994a41ea Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-14 10:54:16 +01:00
andryyy 8883ddc08c
[Assets] Fix Nextcloud site 2019-02-14 10:54:06 +01:00
André Peters 343e5e2cb1
[Web] Update lang.nl.php 2019-02-13 21:03:29 +01:00
eXtremeSHOK 260421448d
Update clamd.conf
AlertOLE2Macros, default should be set to NO

With this option enabled OLE2 files containing VBA macros, which were NOT detected by signatures will be marked as "Heuristics.OLE2.ContainsMacros".

This causes most microsoft office document files which contains macros to be blocked. Majority of corporate documents mailed contain macros. When the option is set to NO, emails are still checked for known malicious macros.

Due to any message failing clamav being set to a 2000 score, this causes all legitimate emails with harmless macros to be blocked.

The default for debian/ubuntu is to set this to NO
cPanel, iredmail, etc all have this option set to NO
2019-02-13 09:50:29 +02:00
andryyy 54dfb5c450 [Web] Unset https_port after vars local inc
[Compose] New Dovecot image
2019-02-12 19:01:37 +01:00
Aaron Larisch 5cae935485 Fix empty maildir_gc.sh 2019-02-12 17:11:04 +01:00
André Peters efcd86053c
[Template] Fix stupid typo..... 2019-02-11 23:59:07 +01:00
André Peters d29adbae02
Update autodiscover-json.php 2019-02-11 13:52:24 +01:00
eXtremeSHOK d3f382c558
Fix: AutoDiscover issue with Outlook 2019
Fixes #2300
2019-02-11 14:50:37 +02:00
Geitenijs 8b3b3a8b31
Update lang.nl.php 2019-02-10 19:53:36 +01:00
Geitenijs 86c830e1e6
Update lang.nl.php 2019-02-10 19:49:30 +01:00
Geitenijs 037c62be3a
Update lang.nl.php 2019-02-10 19:41:21 +01:00
Geitenijs c1b3cb662e
Update lang.nl.php 2019-02-10 19:36:07 +01:00
andryyy 99a816430b
[ACME] Wait for Nginx 2019-02-10 17:36:25 +01:00
Geitenijs 5a3f2c9d67
Update lang.nl.php 2019-02-10 15:59:38 +01:00
André Peters c187531afd
[Web] Improvement of quarantine notification 2019-02-10 00:16:36 +01:00
andryyy a91aeb2500 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-09 23:50:16 +01:00
andryyy 38c939c4d2
[Web] Fix quota notificate html template saving 2019-02-09 23:49:06 +01:00
Aiko Appeldorn 36ba1f28d5 [Dovecot] fixed indentation for quarantine template 2019-02-09 21:29:15 +01:00
Aiko Appeldorn fdf21b8412 [Dovecot] improved quarantine message 2019-02-09 21:27:47 +01:00
Geitenijs 131cc00d5d
Update lang.nl.php 2019-02-09 20:32:42 +01:00
André Peters 99bcd218ba
Merge pull request #2229 from heavygale/patch-5
Forward mailcow-ui-domain to the docs
2019-02-08 20:58:10 +01:00
andryyy 4252164487
[Web] Remove E_ALL error reporting 2019-02-08 20:56:26 +01:00
andryyy ff9113b35f
[Web] Fix for last value of array in vars
[Compose] Update Solr and Unbound images
2019-02-08 20:55:05 +01:00
Christian Burmeister f35ffa61d0
Update Dockerfile 2019-02-08 17:03:38 +01:00
Christian Burmeister 0e8f8ada1f
Update Dockerfile 2019-02-08 17:03:16 +01:00
André Peters c2ba9f558d
[WEB] Update Yubico lib 2019-02-08 11:12:59 +01:00
andryyy 4e97da197e
[Dovecot] Fix quarantine notificatin script
[Compose] Update Dovecot image
2019-02-08 10:06:28 +01:00
Timo N c1c2dc302a
[WEB] Update Yubico lib 2019-02-08 06:49:12 +01:00
andryyy 36ad9dbf78
[ACME] verify_html should accept 3** and 2** 2019-02-08 00:04:05 +01:00
andryyy a908b2da6e
[Web] Fix shared alias displain in user view, fixes #2274 2019-02-07 22:37:26 +01:00
andryyy d60c6a4e56
[Web] Fix shared alias displain in user view, fixes #2274 2019-02-07 22:37:11 +01:00
andryyy d775bf3e2b
[Assets] Nextcloud: add plain listener 2019-02-06 21:48:41 +01:00
andryyy 5efdf71120
[Nginx] Add qhandler rewrite
[Web] Move theme header include, fixes #2267
2019-02-06 10:14:56 +01:00
andryyy 030d5068f3
[Web] Add quick actions handler for quarantine, add trigger 2019-02-06 09:29:00 +01:00
andryyy e140979aac
[Web] Add quick release/delete functions 2019-02-06 09:28:22 +01:00
andryyy c111c4e429
[Web] Delete from quarantine and user_acl when deleting mailbox 2019-02-06 09:24:13 +01:00
andryyy 4a1362fc4d
[Web] Minor alias overview fix 2019-02-06 09:23:44 +01:00
andryyy b74226a9dc
[Web] Fix return for unban/ban actions via API 2019-02-06 09:23:01 +01:00
andryyy f8d26d9415
[Web] Remove broken logger examples 2019-02-06 09:22:13 +01:00
andryyy c438411a3d
[Dovecot] Extend quarantine template: add score and release/delete buttons - depending on acl 2019-02-06 09:21:54 +01:00
andryyy 243389a9d5
[Web] Update lang 2019-02-06 09:21:10 +01:00
andryyy 499c426b97
[Web] Allow to mass-change TLS policy and quarantine notifications in /mailbox 2019-02-06 09:20:58 +01:00
andryyy 2a5f6413fa
[Dovecot] Derive text part in quota/quarantine notification mails from html 2019-02-05 10:38:28 +01:00
andryyy 78d0deed94
[Web] Lang updates
[Web] Minor fixes
2019-02-05 10:37:28 +01:00
andryyy c57a544c52
[Postfix] Disable auth on port 25 2019-02-05 10:35:32 +01:00
andryyy 1e764009bf
[Web] Use INTL_IDNA_VARIANT_UTS46 in idn_to_ascii (thanks to @Knight1 !)
[Web] Some PHP fixes (warnings, notices)
[Web] Add quota notification tools
2019-02-05 00:10:21 +01:00
andryyy 21741dc061
[Web] Update bootstrap slider javascript
[Web] Minor JS changes and fixes
2019-02-05 00:07:34 +01:00
andryyy 9eafde0b3b
[Web] Add woff2 PT Sans font file
[Web] Fix minor font issues
[Web] Update bootstrap slider
2019-02-05 00:06:34 +01:00
andryyy d3050df839 [Assets] Add default quota template 2019-02-05 00:05:27 +01:00
andryyy 7a96516fad Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-05 00:05:00 +01:00
André Peters 69bb77aeaf
[Nginx] Enable TLSv1.3 2019-02-05 00:04:23 +01:00
andryyy 6f478ed2a3
[Rspamd] Set history lines to 10000 2019-02-05 00:02:56 +01:00
andryyy 12291436cd
Push image base to Alpine 3.9 2019-02-05 00:01:31 +01:00
andryyy c7c1422095
[Dovecot] Add quota_notify script
[Dovecot] Some minor changes to quarantine notification script to catch more errors
2019-02-05 00:00:22 +01:00
andryyy aa1e03476d
[Dovecot] Enable quota notifications 2019-02-04 23:59:31 +01:00
andryyy ccc61bf2dc
[PHP-FPM] PHP 7.3, mailparse from Git as long as no releas exists 2019-02-04 23:46:45 +01:00
andryyy 9f2a6f13a5
Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-04 23:45:54 +01:00
andryyy c3258c3399 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-02-04 22:36:17 +01:00
andryyy a599536499
[Web] Various session fixes 2019-02-04 22:34:03 +01:00
Tobias "Knight" S c06e4c81cf
Enable TLSv1.3 finally
With Alpine 3.9 https://pkgs.alpinelinux.org/package/v3.9/main/x86/openssl we got OpenSSL 1.1.1a. 
With https://github.com/docker-library/official-images/pull/5377 it was merged into the Nginx upstream image and thus Nginx was built with it.
2019-02-01 01:04:13 +01:00
André Peters 0cd412d25b
Merge pull request #2255 from Geitenijs/patch-2
Update lang.nl.php
2019-01-31 23:42:30 +01:00
andryyy 635e694ffa
[Web] Fix quarantine subject 2019-01-31 22:25:17 +01:00
andryyy 3bfd2c8885
[Dovecot] Once again... finally fixed? 2019-01-31 22:18:38 +01:00
andryyy dcd6b2268e
[Dovecot] Various fixes for quarantine notifications, many thanks to @DevTek314 for reporting them! 2019-01-31 21:45:58 +01:00
andryyy 3aef412669
[Dovecot] Fix type of last_notification 2019-01-31 20:53:08 +01:00
andryyy 24432b0d9d [PHP-FPM] Remove old fix 2019-01-31 17:08:03 +01:00
andryyy 6ad8798d5c [Nginx] Compress some files, don't compress proxy answers 2019-01-31 17:07:49 +01:00
andryyy d7f169cc2f
[Web] Further improvments, minor fixes 2019-01-31 17:07:24 +01:00
andryyy 14901eed64
[Nginx] Remove broken locations 2019-01-31 15:58:35 +01:00
andryyy f5ca46f6d8 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-31 15:52:13 +01:00
andryyy 6d4bcfabb1
[PHP-FPM] Fix sed command 2019-01-31 15:51:00 +01:00
andryyy 3832d04998
[PHP-FPM] Fix sed command 2019-01-31 15:49:53 +01:00
andryyy 60f9968134
[Nginx] Add compression, change expires 2019-01-31 15:45:57 +01:00
andryyy ea83f72981
[Web] Minify more resources, fix missing JS 2019-01-31 15:45:31 +01:00
andryyy 61cd2c0353 [PHP-FPM] Patch legacy template lib of NC if exists 2019-01-31 15:44:56 +01:00
Guilherme Capanema de Barros 6f7e47ee40
Adds missing values to alias INSERT statement.
public_comment and private_comments were missing from the VALUES array in PDO prepare statement.
2019-01-31 09:38:18 -02:00
Geitenijs 37d43acc65
Update lang.nl.php 2019-01-31 11:50:09 +01:00
andryyy d17d823e0d Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-30 22:59:52 +01:00
andryyy 5249942121
[Web] Remote SourceSansPro, remove css style 2019-01-30 22:46:25 +01:00
andryyy ad0df77d28
[Web] Minify css and js via PHP
[Web] Use PT Sans
[Web] Update some libs
2019-01-30 12:10:26 +01:00
andryyy 8c433bf0da [PHP] Drop pear modules 2019-01-30 11:55:03 +01:00
Tii 40061ff6af Don't check for firefox, only check for u2f browser API 2019-01-30 00:16:30 +01:00
andryyy b3f84d2c78
[Dovecot] Remove break-imap-search (it is a default setting) 2019-01-29 13:25:35 +01:00
andryyy c456fe12b3
[Dovecot] Fix last_notification in quarantine_notify.py 2019-01-29 12:13:26 +01:00
andryyy 8da54e5194
[Rspamd] Split global wl from to mime-from and smtp-from 2019-01-29 12:11:10 +01:00
andryyy 43a91639e0
[Asset] Add default template for quarantine notifications 2019-01-29 00:21:09 +01:00
andryyy 07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy f493d3a957
[Dovecot] Simplify Docker image
[Dovecot] Set Dovecot plugins dynamically via file and exclude Solr if not enabled
[Dovecot] Add new quarantine notification script
2019-01-29 00:11:12 +01:00
heavygale de72ef065a Forward mailcow-ui-domain to the docs
We need a additional variable for the mailcow-ui-domain, if the domain used for the mailcow ui differs from the hostname. Otherwise our users will get the login promt, when they try to access the mobileconfig file.
2019-01-26 22:31:28 +01:00
andryyy 520a3f94cc [Web] Update lang 2019-01-23 10:46:06 +01:00
André Peters 6b89927f6e
[Web] Lower compose project name, fixes #1994 2019-01-23 10:29:58 +01:00
Dirk Weise f7f6584e3a
Fix german lang glitch
There is no adjective "klartext".  🤓
![grammar police](https://i.imgflip.com/1j57fn.jpg)
2019-01-22 14:27:33 +01:00
andryyy 4235d8a1d1 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-01-19 11:58:32 +01:00
andryyy fb49385e55 [Web] Lang updates 2019-01-19 11:58:30 +01:00
André Peters 38391d2cc3
Merge pull request #2197 from Geitenijs/patch-1
Update lang.nl.php
2019-01-19 11:58:03 +01:00
André Peters b2bb593656
[Dovecot] imapsync: Connect to database via socket 2019-01-19 11:57:48 +01:00
André Peters 92a6d40042
[Dovecot] Log imapsync cronjob errors 2019-01-19 11:57:23 +01:00
André Peters ba06810b84
[Web] Fixed typo in lang.de.php 2019-01-19 11:53:11 +01:00
andryyy af49a41ff6
[Web] Remember FooTable settings by using state plugin, fixes #2122 2019-01-19 08:25:05 +01:00
Dirk Weise 23c2249fa7
Log imapsync cronjob errors
Errors from the imap sync cronbjob are currently dropped silently.
2019-01-18 18:25:43 +01:00
Geitenijs 77111353ba
Update lang.nl.php 2019-01-18 18:06:19 +01:00
Dirk Weise 630bce5f29
imapsync: Connect to database via socket
Make the imapsync script connect to mysql via socket and not tcp like all other services do.

Reasoning: consistency. 🤓  And in my case the database does not listen on tcp; just on the socket.
2019-01-18 17:36:30 +01:00
andryyy d6efc2fcd3
[Rspamd] Fix metadata_exporter
[Web] Show subjet in quarantine
[Compose] Update Rspamd image
2019-01-17 22:00:18 +01:00
andryyy ae4e1358a2
[Solr] Refuse to start with RAM lt 2 GB
[Config/Update] Set limits and change descriptions for Solr
2019-01-17 20:25:38 +01:00
andryyy 2e8bd8b3c4
[Dovecot] Add czech folder names to namespace 2019-01-16 23:47:15 +01:00
andryyy 5081d6d9f1
[ClamAV] Add more signatures 2019-01-16 23:41:42 +01:00
andryyy 62ccd4215e [SOGo] Allow to turn off GAL for each domain 2019-01-16 23:41:15 +01:00
andryyy 8dde735a0a
[Web] Allow to turn off GAL for each domain 2019-01-16 23:41:02 +01:00
andryyy 0c84b484a5
[DockerAPI] Add unused FTS endpoints... 2019-01-16 22:20:22 +01:00