external/mailinabox
1
0
Fork 0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2026-03-15 17:37:22 +01:00
Code Issues Releases Wiki Activity
1,880 Commits 6 Branches 88 Tags
4b7f6e20da09bb20716fa8be69915d36b0e4ecf0
Commit Graph

687 Commits

Author SHA1 Message Date
David Duque
4b7f6e20da Update nginx files to discard non-essential locations for non-primary domains 2020-09-27 02:01:17 +01:00
David Duque
7725e6efe6 Revert .nginx.conf file features 2020-09-27 01:31:51 +01:00
David Duque
7de99aa690 Merge v0.50 from upstream 2020-09-26 10:21:01 +01:00
Joshua Tauberer
51aedcf6c3 Drop the MTA-STS TLSRPT record unless set explicitly 2020-09-21 15:57:17 -04:00
David Duque
94da7bb088 status_checks.py: Properly terminate the process pools (#1795) 
* Only spawn a thread pool when strictly needed

For --check-primary-hostname, the pool is not used.
When exiting, the other processes are left alive and will hang.

* Acquire pools with the 'with' statement
 2020-08-09 11:42:39 -04:00
Richard Willis
c50170b816 Update "Remove Alias" modal title (#1800) 2020-07-29 10:01:20 -04:00
David Duque
5e597bb536 Update deprecated function from dnspython 2020-07-26 01:00:17 +01:00
David Duque
fc0bd12631 Acquire pools with the 'with' statement 2020-07-22 12:42:10 +01:00
David Duque
311e6c63e8 Render the 'Backup now' buttons even if there are already backups 2020-07-21 19:25:48 +01:00
David Duque
a0da88834c Terminate the status checks process pool before exiting 2020-07-21 19:21:46 +01:00
David Duque
967409b157 Drop requirement for passwords to have no spaces (#1789) 2020-07-16 07:23:11 -04:00
David Duque
1b2711fc42 Add 'always' modifier to the HSTS add_header directive (#1790) 
This will make it so that the HSTS header is sent regardless of the request status code (until this point it would only be sent if "the response code equals 200, 201, 206, 301, 302, 303, 307, or 308." - according to thttp://nginx.org/en/docs/http/ngx_http_headers_module.html#add_header)
 2020-07-16 07:21:14 -04:00
David Duque
c8fbe2dd5d Determine the PHP version at runtime (instead of at setup-time) 2020-07-15 15:28:02 +01:00
David Duque
515a74ba11 Render the lsb_release at flask init time 
Don't change the index.html file at setup time
 2020-07-14 11:51:25 +01:00
David Duque
b562e7eefa Hide the 'Create Backup' buttons when backups are turned off 2020-07-11 15:45:50 +01:00
David Duque
ccf60c7017 Backups: User-initiated and cron-initiated jobs will have the same lockname 
So that some poor timing (initiating a backup when there's a cron-initiated backup)
doesn't screw everything up.
 2020-07-11 09:16:32 +01:00
David Duque
79e2398d71 Fix comment 2020-07-11 08:30:05 +01:00
David Duque
af9ef186b3 Add manual backup option 2020-07-10 15:48:37 +01:00
David Duque
e6102eacfb AXFR Transfers (for secondary DNS servers): Allow IPv6 addresses (#1787) 2020-07-08 18:26:47 -04:00
David Duque
199c2c50ba Backups: Fix backup target selector width 2020-07-08 19:32:24 +01:00
David Duque
b98111b4e1 Fix unassigned php version 2020-06-29 09:13:50 +01:00
David Duque
fcb44dafa3 Let's encrypt certbot hotfix 2020-06-27 21:32:36 +01:00
David Duque
022a11e159 Merge remote-tracking branch 'up/master' 2020-06-21 15:52:31 +01:00
David Duque
5d6c23cff9 Finalize php configuration 2020-06-21 15:18:46 +01:00
David Duque
0ccbf1b809 Only spawn a thread pool when strictly needed 
For --check-primary-hostname, the pool is not used.
When exiting, the other processes are left alive and will hang.
 2020-06-21 15:05:17 +01:00
Joshua Tauberer
6fd3195275 Fix MTA-STS policy id so it does not have invalid characters, fixes #1779 2020-06-12 13:09:11 -04:00
David Duque
d01069f7f2 Automatically agree to ToS on SSL provision 2020-06-12 09:27:08 +01:00
Joshua Tauberer
9db2fc7f05 In web proxies, add X-{Forwarded-{Host,Proto},Real-IP} and 'proxy_set_header Host' when there is a flag 
Merges #1432, more or less.
 2020-06-11 12:20:17 -04:00
Joshua Tauberer
e03a6541ce Don't make autoconfig/autodiscover subdomains and SRV records when the parent domain has no user accounts 
These subdomains/records are for automatic configuration of mail clients, but if there are no user accounts on a domain, there is no need to publish a DNS record, provision a TLS certificate, or create an nginx server config block.
 2020-06-11 12:20:17 -04:00
Vasek Sraier
df9bb263dc daily_tasks.sh: redirect stderr to stdout (#1768) 
When the management commands fail, they can print something to the standard error output.
The administrator would never notice, because it wouldn't be send to him with the usual emails.
Fixes #1763
 2020-06-07 09:56:45 -04:00
Joshua Tauberer
3a4b8da8fd More for MTA-STS for incoming mail 
* Create the mta_sts A/AAAA records even if there is no valid TLS certificate because we can't get a TLS certificate if we don't set up the domains.
* Make the policy id in the TXT record stable by using a hash of the policy file so that the DNS record doesn't change every day, which means no nightly notification and also it allows for longer caching by sending MTAs.
 2020-05-30 08:04:09 -04:00
Joshua Tauberer
37dad9d4bb Provision certificates from Let's Encrypt grouped by DNS zone 
Folks didn't want certificates exposing all of the domains hosted by the server (although this can already be found on the internet).

Additionally, if one domain fails (usually because of a misconfiguration), it would be nice if not everything fails. So grouping them helps with that.

Fixes #690.
 2020-05-29 15:38:18 -04:00
Joshua Tauberer
b805f8695e Move status checks for www, autoconfig, autodiscover, and mta-sts to within the section for the parent domain 
Since we're checking the MTA-STS policy, there's no need to check that the domain resolves etc. directly.
 2020-05-29 15:38:13 -04:00
Joshua Tauberer
10bedad3a3 MTA-STS tweaks, add status check using postfix-mta-sts-resolver, change to enforce 2020-05-29 15:36:52 -04:00
A. Schippers
afc9f9686a Publish MTA-STS policy for incoming mail (#1731) 
Co-authored-by: Daniel Mabbett <triumph_2500@hotmail.com>
 2020-05-29 15:30:07 -04:00
David Duque
8ca58798e4 Typo fix 2020-05-28 16:17:10 +01:00
David Duque
235ebe9a4a Secondary nameservers: Allow IPv6 2020-05-28 15:47:43 +01:00
David Duque
1513655bc4 Make sure that the OS in the admin panel matches the actual system OS 2020-05-17 02:45:35 +01:00
David Duque
ad9979f9c6 Make the Show More link an actual button 2020-04-25 04:26:24 +01:00
David Duque
e75d89113a Test 2020-04-25 04:17:55 +01:00
David Duque
7984d103a4 Test 2020-04-25 04:13:46 +01:00
David Duque
4309a6a875 Swap show-button order 2020-04-25 03:51:38 +01:00
David Duque
32e42f14fb Do not apply custom nginx dotfiles to the default webroot 2020-04-24 17:03:13 +01:00
David Duque
d9567c0035 Use proper emojis for status checks 2020-04-24 15:50:01 +01:00
David Duque
372d5d9783 SMTP Relays: Wrap ternary operations correctly 2020-04-21 14:35:51 +01:00
David Duque
2176d59727 Version check will now use the correct endpoint 2020-04-20 23:35:11 +01:00
David Duque
ab9dbdf270 Default conf: don't repeat the upstream php conf 2020-04-20 20:01:19 +01:00
David Duque
502a4d2128 Uhhhh, yeah 2020-04-20 19:38:50 +01:00
David Duque
7ff5a336a6 Always assign default config to primary hostname 2020-04-20 19:35:20 +01:00
David Duque
c401625a01 Don't overwrite 2020-04-20 19:20:26 +01:00