mailinabox-contributor
91079ab934
add numeric flag value to DNSSEC DS status message ( #2033 )
...
Some registrars (e.g. Porkbun) accept Key Data when creating a DS RR,
but accept only a numeric flags value to indicate the key type (256 for KSK, 257 for ZSK).
https://datatracker.ietf.org/doc/html/rfc5910#section-4.3
2021-09-10 16:12:41 -04:00
github@kiekerjan.isdronken.nl
52a5100265
align recidive search time to a week
2021-09-09 22:52:30 +02:00
Joshua Tauberer
e5909a6287
Allow non-admin login to the control panel and show/hide menu items depending on the login state
...
* When logged out, no menu items are shown.
* When logged in, Log Out is shown.
* When logged in as an admin, the remaining menu items are also shown.
* When logged in as a non-admin, the mail and contacts/calendar instruction pages are shown.
Fixes #1987
2021-09-06 09:23:58 -04:00
Joshua Tauberer
26932ecb10
Add a 'welcome' panel to the control panel and make it the default page instead of the status checks which take too long to load
...
Fixes #2014
2021-09-06 09:23:58 -04:00
Joshua Tauberer
e884c4774f
Replace HMAC-based session API keys with tokens stored in memory in the daemon process
...
Since the session cache clears keys after a period of time, this fixes #1821 .
Based on https://github.com/mail-in-a-box/mailinabox/pull/2012 , and so:
Co-Authored-By: NewbieOrange <NewbieOrange@users.noreply.github.com>
Also fixes #2029 by not revealing through the login failure error message whether a user exists or not.
2021-09-06 09:23:58 -04:00
Joshua Tauberer
53ec0f39cb
Use 'secrets' to generate the system API key and remove some debugging-related code
...
* Rename the 'master' API key to be called the 'system' API key
* Generate the key using the Python secrets module which is meant for this
* Remove some debugging helper code which will be obsoleted by the upcoming changes for session keys
2021-09-06 09:23:58 -04:00
Joshua Tauberer
700188c443
Roundcube 1.5 RC
2021-09-06 09:23:58 -04:00
KiekerJan
9b39251469
active roundcube markasjunk plugin
2021-09-03 22:23:00 +02:00
github@kiekerjan.isdronken.nl
42e9a5ae69
update readme
2021-09-03 20:40:53 +02:00
github@kiekerjan.isdronken.nl
36897b35ab
Update dns blacklist checker
2021-09-03 20:18:30 +02:00
KiekerJan
c4fa84b966
tuning fail2ban
2021-08-29 22:47:29 +02:00
kiekerjan
98c00d1c6a
Merge branch 'mail-in-a-box:main' into master
2021-08-28 13:38:15 +02:00
KiekerJan
63255d321a
tuning fail2ban
2021-08-28 13:34:37 +02:00
David Duque
ba80d9e72d
Show backup retention period form when configuring B2 backups ( #2024 )
2021-08-23 06:25:41 -04:00
Joshua Tauberer
a71a58e816
Re-order DS record algorithms by digest type and revise warning message ( #2002 )
2021-08-22 14:45:56 -04:00
Joshua Tauberer
67b5711c68
Recommend that DS records be updated to not use SHA1 and exclude MUST NOT methods (SHA1) and the unlikely option RSASHA1-NSEC3-SHA1 (7) + SHA-384 (4) from the DS record suggestions
2021-08-22 14:43:46 -04:00
myfirstnameispaul
20ccda8710
Re-order DS record algorithms by digest type and revise warning message.
...
Note that 7, 4 is printed last in the status checks page but does not appear in the file, and I couldn't figure out why.
2021-08-22 14:29:36 -04:00
NewbieOrange
0ba841c7b6
fail2ban now supports ipv6 ( #2015 )
...
Since fail2ban 0.10.0, ipv6 support has been added. The current Ubuntu 18.04 repository has fail2ban 0.10.2, which does have ipv6 protection.
2021-08-22 14:13:58 -04:00
lamkin
daad122236
Ignore bad encoding in email addresses when parsing maillog files ( #2017 )
...
local/domain parts of email address should be standard ASCII or
UTF-8. Some email addresses contain extended ASCII, leading to
decode failure by the UTF-8 codec (and thus failure of the
Usage-Report script)
This change allows maillog parsing to continue over lines
containing such addresses
2021-08-16 11:46:32 -04:00
kiekerjan
60adba79a1
Update README.md
2021-08-16 13:15:33 +02:00
kiekerjan
f20a992bcb
Update README.md
2021-08-16 12:22:39 +02:00
KiekerJan
b036b09eb1
update readme
2021-08-16 12:12:20 +02:00
kiekerjan
19799fd5e6
Create codeql-analysis.yml
2021-08-16 11:53:31 +02:00
kiekerjan
ea452d5441
Merge branch 'mail-in-a-box:main' into master
2021-08-16 11:49:46 +02:00
github@kiekerjan.isdronken.nl
4b260354c2
revert carddav plugin install
2021-08-02 22:47:42 +02:00
github@kiekerjan.isdronken.nl
75f14a0735
make plugin installation of carddav like other git based installs
2021-08-02 22:09:04 +02:00
github@kiekerjan.isdronken.nl
a3b7878ef4
add contextmenu plugin
2021-08-02 00:44:47 +02:00
github@kiekerjan.isdronken.nl
bd9952704a
mute re indexing, could be lots of noise on existing installs
2021-08-02 00:27:45 +02:00
KiekerJan
cf6eac0d0c
add nginx security headers
2021-08-02 00:05:12 +02:00
KiekerJan
1f35158211
use predefined DHE field groups
2021-08-01 23:09:59 +02:00
github@kiekerjan.isdronken.nl
dbf029b399
remove old ciphers from postfix
2021-08-01 22:49:25 +02:00
KiekerJan
87be897d36
update DH security to 4096
2021-08-01 21:52:37 +02:00
KiekerJan
f6450c1cae
update obsolete settings
2021-07-31 21:43:25 +02:00
KiekerJan
104d40e819
add alternative sshd port to ssh jail
2021-07-31 21:42:57 +02:00
KiekerJan
128541d506
add alternative sshd port to ssh jail
2021-07-31 21:36:38 +02:00
NewbieOrange
21ad26e452
Disable auto-complete for 2FA code in the control panel login form ( #2013 )
2021-07-28 16:39:40 -04:00
KiekerJan
485ca18f35
Merge branch 'master' of github.com:kiekerjan/mailinabox
2021-07-26 10:05:28 +02:00
KiekerJan
aa360ee0c4
setup home for dovecot user outside ho
...
mail dir
2021-07-26 10:05:19 +02:00
KiekerJan
fa66b767af
add debugging info to email admin tool
2021-07-26 10:04:35 +02:00
github@kiekerjan.isdronken.nl
1315e02cba
mail homes and correct use of STORAGE PATH
2021-07-19 21:41:50 +02:00
github@kiekerjan.isdronken.nl
afe078ce32
remove compression for dovecot
2021-07-19 21:34:51 +02:00
KiekerJan
af079a1139
enable compression for dovecot mailboxes
2021-07-04 20:09:29 +02:00
KiekerJan
3592b6463d
add ipv6 localhost to ignore ip list
2021-07-04 20:09:07 +02:00
github@kiekerjan.isdronken.nl
050c77a49a
fix sed order
2021-06-27 22:14:57 +02:00
github@kiekerjan.isdronken.nl
212b9a31df
add definition of admin ipv6 address
2021-06-27 22:12:15 +02:00
KiekerJan
db612e91e5
do not generate dns zonefiles for www only websites with external DNS records
2021-06-25 00:36:12 +02:00
KiekerJan
eb36091d41
syntax error fix
2021-06-24 12:56:18 +02:00
github@kiekerjan.isdronken.nl
4f7957a5ab
check presence of dnssec key file before reading it
2021-06-24 12:47:46 +02:00
KiekerJan
56f9df738f
version recognition
2021-06-23 21:02:21 +02:00
KiekerJan
606e66fe80
fixes
2021-06-22 23:33:11 +02:00