docker/docker-mailserver
1
0
Fork 0
mirror of https://github.com/tomav/docker-mailserver.git synced 2024-06-23 16:06:52 +02:00
Code Issues Releases Wiki Activity
1,204 Commits 3 Branches 27 Tags 32 MiB
9df60f62ce
Commit Graph

1204 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
youtous
0c838706d0
Option to disable dovecot quota 2020-05-01 23:42:21 +02:00
youtous
e8581be2d3
Prevent sieve symlink to be evaluated as a directory by dovecot 2020-05-01 23:20:15 +02:00
Erik Wramner
46c50f93ad
Merge pull request #1479 from youtous/fix-ldap-quotas 
fix 1478
 2020-04-30 16:54:55 +02:00
youtous
3aeacef125
remove start-mailserver nested conditions dovecot quota 2020-04-30 16:11:45 +02:00
youtous
d45e6b1c22
#fix 1478 2020-04-30 12:47:12 +02:00
Erik Wramner
35f473ad12
Merge pull request #1474 from polarathene/chore/remove-obsolete-param-usetls 
chore: Remove obsolete postfix parameter `smtpd_use_tls`
 2020-04-30 08:02:11 +02:00
Brennan Kinney
76594c21c4
Add note about tls_ssl_options = NO_COMPRESSION 
[Postfix docs](http://www.postfix.org/postconf.5.html#tls_ssl_options):

> Disable SSL compression even if supported by the OpenSSL library. Compression is CPU-intensive, and compression before encryption does not always improve security.

[Postfix mailing list discussion](http://postfix.1071664.n5.nabble.com/patch-mitigate-CRIME-attack-td57978.html):

> The CRIME attack does not apply to SMTP, because unlike SMTP, there is no javascript in SMTP clients that makes them send thousands of email messages with chosen plaintext compressed together in the same packet with SASL credentials or other sensitive data.
> The auditor completely failed to take the context into account.

[Mailing list discussion of potential compression CRIME-like attack](https://lists.cert.at/pipermail/ach/2014-December/001660.html)

> keeping compression disabled is a good idea.

If you need a good test score, PCI compliance will likely flag compression despite not having any known risk with non-HTTP TLS.
 2020-04-29 19:41:08 +12:00
Erik Wramner
41ea52847c
Merge pull request #1473 from polarathene/chore/docs/clarify-port-descriptions 
chore: Clarify exposed ports section on README
 2020-04-29 08:21:03 +02:00
Erik Wramner
4a1cbd705b
Merge pull request #1463 from youtous/pr-fix-dhe 
Fix issue #1461- use a recommended dh group instead of a self-generated one
 2020-04-29 08:00:16 +02:00
Brennan Kinney
e7de9bceaf
chore: Remove obsolete postfix parameter smtpd_use_tls 
See: http://www.postfix.org/postconf.5.html#smtpd_tls_security_level

> this overrides the obsolete parameters `smtpd_use_tls` and `smtpd_enforce_tls`.
 2020-04-27 23:24:26 +12:00
youtous
80bd3a8c85
Update test/mail_dhparams_manual_not_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:47 +02:00
youtous
3e3f5d557b
Update test/mail_dhparams_manual_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:39 +02:00
youtous
27cbdeeb6a
Update test/mail_dhparams_default.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:24 +02:00
youtous
e680c349b1
test wait setup for // containers 2020-04-27 10:28:24 +02:00
youtous
149a10272c
improve dhe tests documentation 2020-04-27 09:57:36 +02:00
Brennan Kinney
9882fc54f7
chore: Clarify exposed ports section on README 2020-04-27 18:23:32 +12:00
youtous
dff7355fa9
fix #1459 2020-04-26 23:07:34 +02:00
youtous
4d031f73e3
test dhparams ONE_DIR both cases 2020-04-26 22:25:48 +02:00
youtous
03b8f87ffc
update dovecot conf comment 2020-04-26 22:23:51 +02:00
youtous
47fac2706f
use ffdhe4096 for DHE params 
use by default ffdhe4096 for DHE params 


use by default ffdhe4096 for DHE params
 2020-04-26 22:23:51 +02:00
youtous
f60de0c66e
init tests cases ffdhe4096 2020-04-26 22:23:51 +02:00
Erik Wramner
b168b73910
Merge pull request #1469 from youtous/pr-quota-feature 
Feature: quota per mailbox
 2020-04-26 18:03:23 +02:00
youtous
bdcf5e0cf1
fix send mail test quota 
fix quota warning test: wait for postfix to be UP


increase postfix restart delay
 2020-04-24 19:03:27 +02:00
youtous
2e149b74c2
fix async quota tests 2020-04-24 17:03:09 +02:00
youtous
04de46dc41
test quota reached 2020-04-24 15:53:44 +02:00
youtous
2527ebfaf2
added dovecot quota feature 
add postfix service quota check


check-for-changes on quotas


setquota command


fix checkforchanges quota


addquota verify user exists


add setquota in setup.sh


merging addquota into setquota


test quota commands


add ldap tests for dovecot quota


fix smtp only quota postfix rules


test postfix conf


add quota test integration


add quota exceeded test


add wait analyze


fix tests


fix setup typo


add test fixes


fix error output


wip


update startup rules


fix setup


fix setup tests


fix output commands


remove quota on remove user


try to fix sync limit mails


check if file exists


fix path


change used quota user


fix post size


check if quota file exists


update tests


configure virtualmailbox limit for dovecot


last fix


fix quota expr


relax dovecot tests


auto create dovecot-quotas


fix dovecot apply quota test


wip quota warning


trying to fix get dovadm quota


dovecot applies fix


fix quota warning lda path


test count mail on quota


fix quota warning permissiosn


fix test
 2020-04-24 14:56:15 +02:00
Erik Wramner
6cb3069c60
Merge pull request #1467 from casperklein/patch-1 
rsyslog logrotate warning fixed
 2020-04-23 14:16:57 +02:00
Casper
ccd838c027
rsyslog logrotate warning fixed 
Fix for https://github.com/tomav/docker-mailserver/issues/1465
 2020-04-23 00:39:56 +02:00
Erik Wramner
e85f3074fb
Merge pull request #1462 from casperklein/patch-1 
AllowSupplementaryGroups change removed.
 2020-04-22 21:44:36 +02:00
Casper
b21e14a1c2
AllowSupplementaryGroups change removed 
1. "AllowSupplementaryGroups false" is no longer present in /etc/clamav/clamd.conf, therefore the command does not work anymore.
2. Since Clamd 0.100.0, "AllowSupplementaryGroups" is deprecated. See: https://blog.clamav.net/2018/04/clamav-01000-has-been-released.html

"Deprecation of the AllowSupplementaryGroups parameter statement in clamd, clamav-milter, and freshclam. Use of supplementary is now in effect by default."
 2020-04-20 21:11:17 +02:00
Erik Wramner
8834242fc3
Merge pull request #1458 from casperklein/patch-1 
Cleanup obsolete file removal
 2020-04-20 11:20:37 +02:00
Casper
78fd5b8760
-f option removed from rm commands 
Let build fail, if file does not exist.
 2020-04-19 11:39:43 +02:00
Casper
5d79e56bf0
Cleanup obsolete file removal 
`/etc/cron.weekly/fstrim` does not exist, so no need to remove it.
 2020-04-18 13:09:50 +02:00
Erik Wramner
df26d35695
Merge pull request #1450 from casperklein/patch-1 
Upgrade packages, Debian base image not updated often enough.
 2020-04-12 08:31:40 +02:00
Casper
d56a0f86d5
hadolint ignore 3005 added 2020-04-12 03:18:08 +02:00
Erik Wramner
d92f0e2199
Merge pull request #1451 from erik-wramner/fix_792_error_mail 
Fix error #792 in logrotate
 2020-04-11 10:16:15 +02:00
Erik Wramner
e8a0cdc556 Fix error #792 in logrotate 2020-04-11 09:59:07 +02:00
Erik Wramner
fba3d785ae
Merge pull request #1424 from nknapp/master 
Use upstream rules for dovecot fail2ban.
 2020-04-11 09:33:30 +02:00
Nils Knappmeier
370d08fd33 fail2ban: use filter.d/dovecot.conf from distribution 
closes #972
 2020-04-10 22:21:40 +02:00
Casper
7e96ebe8b9
Upgrade packages 
Some packages from the base image are upgradable. For example, that's the case for `libgnutls30` at the moment.
 2020-04-10 12:47:58 +02:00
Erik Wramner
c24612e992 Removed commented lines 2020-04-05 12:01:57 +02:00
Erik Wramner
e81704483e
Merge pull request #1447 from erik-wramner/next_to_master 
Merge next branch with Debian Buster into master.
 2020-04-05 11:33:51 +02:00
Erik Wramner
73b8d65dd3 Merge next into master 2020-04-05 09:28:22 +02:00
Erik Wramner
04777fdb89
Merge pull request #1435 from Drakulix/master 
amavis: fix config permission
 2020-04-05 08:43:47 +02:00
Erik Wramner
bf3f7ed483
Merge pull request #1443 from phish108/issue_1442 
activate shortcircuit plugin if requested, fixes #1442
 2020-04-05 08:39:54 +02:00
Erik Wramner
cc25f1d6a2
Merge pull request #1445 from casperklein/patch-2 
"connected-networks" info added
 2020-04-03 08:00:20 +02:00
Casper
743e88e148
"connected-networks" info added 2020-04-02 23:50:10 +02:00
Christian Glahn
ff1248eeee activate shortcircuit plugin, fixes #1442 2020-03-31 17:09:23 +02:00
Jairo Llopis
a00dced8bc Allow to set comfortably inet_protocols 
Setting `inet_protocols = ipv4` is almost a requirement when running behind Docker. Provide a way to make it easy.

@Tecnativa TT22925
 2020-03-25 21:43:29 +01:00
Victor Brekenfeld
c491496b6e avavis fix config permission 2020-03-24 15:43:35 +01:00