1
0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2024-12-25 07:47:05 +00:00
Commit Graph

2230 Commits

Author SHA1 Message Date
Arno Hautala
a85c429a85
regex change to exclude comma from sasl_username (#2074)
as proposed in #2071 by @jvolkenant
2021-12-19 08:33:59 -05:00
github@kiekerjan.isdronken.nl
acfc71e7fd correct dns tag for DKIM key 2021-12-11 01:00:02 +01:00
github@kiekerjan.isdronken.nl
ded1b55ebd First steps in migrating to dkimpy-milter 2021-12-11 00:54:56 +01:00
kiekerjan
c1bfc20952
Merge pull request #11 from kiekerjan/upgrade-nextcloud
Upgrade nextcloud
2021-12-08 21:39:10 +01:00
KiekerJan
617dcbded9 merge upstream 2021-12-08 21:35:10 +01:00
KiekerJan
19be771769 upgraded nextcloud to 22 2021-12-07 22:41:00 +01:00
KiekerJan
507ac86999 updated readme 2021-12-06 23:32:24 +01:00
KiekerJan
fa9bcbe8d2 move command to web.sh setup 2021-12-06 23:25:31 +01:00
KiekerJan
9850ae5420 upgrade nextcloud to 21 2021-12-06 23:22:11 +01:00
Ilnahro
50a5cb90bc
Include rsync to the installed basic packages (#2067)
Some VPS providers strip this package from their Ubuntu 18.04 VM images. This will help avoid errors.
2021-11-30 19:50:01 -05:00
steadfasterX
aac878dce5
fix: key flag id for KSK, fix format (#2063)
as mentioned (https://github.com/mail-in-a-box/mailinabox/pull/2033#issuecomment-976365087) KSK is 257, not 256
2021-11-23 11:06:17 -05:00
KiekerJan
21fd62ef4f more elaborate logfile analysis 2021-11-22 07:05:10 +01:00
KiekerJan
53c6c0fcc4 update nextcloud to 2.0.14 2021-11-17 00:25:05 +01:00
KiekerJan
b8bf50b2f2 Merge branch 'master' of github.com:kiekerjan/mailinabox 2021-11-14 16:12:21 +01:00
KiekerJan
2e397aea62 postgrey remembers 2021-11-14 16:12:06 +01:00
github@kiekerjan.isdronken.nl
d96a0528e3 fixes to dynamic dns tool 2021-11-12 21:12:10 +01:00
KiekerJan
5da3803697 password needs to be editable in case totp is enabled in nextcloud, an application specific password is to be used to access nextcloud address book 2021-11-07 22:55:48 +01:00
KiekerJan
daff60ee13 add totp two factor auth to nextcloud 2021-11-07 22:54:43 +01:00
kiekerjan
d36b3e9030
Merge branch 'mail-in-a-box:main' into master 2021-11-06 23:39:28 +01:00
jvolkenant
58b0323b36
Update persistent_login for Roundcube 1.5 (#2055) 2021-11-04 18:59:10 -04:00
kiekerjan
5352668ba4
Update README.md 2021-11-04 00:35:43 +01:00
KiekerJan
2741affa48 Merge branch 'master' of github.com:kiekerjan/mailinabox 2021-11-04 00:32:14 +01:00
kiekerjan
d8dd4cb215
Merge pull request #9 from mail-in-a-box/main
Merge upstream
2021-11-04 00:31:43 +01:00
kiekerjan
63f018aab5
Merge pull request #8 from kiekerjan/merge-upstream
Merge upstream
2021-11-04 00:28:21 +01:00
github@kiekerjan.isdronken.nl
7c11022fb5 merge upstream 2021-11-04 00:26:53 +01:00
kiekerjan
646f971d8b
Update mailinabox.yml (#2054)
The examples for login and logout use GET instead of POST. GET gives me an error when using it, while POST seems to work.
2021-10-31 12:49:26 -04:00
kiekerjan
ef407db239
Update README.md 2021-10-31 17:29:45 +01:00
KiekerJan
9c35f4d5f5 add totp two factor auth to roundcube 2021-10-28 21:56:50 +02:00
Felix Spöttel
86067be142
fix(docs): set a schema for /logout responses (#2051)
* this remedies an OpenAPI syntax violation resulting in a redoc-cli crash
2021-10-27 12:27:54 -04:00
KiekerJan
be899f2b9e avoid a runaway /64 in jail.conf 2021-10-25 16:44:25 +02:00
kiekerjan
ac24421cc3
Merge pull request #6 from kiekerjan/update-nextcloud
Update nextcloud
2021-10-25 16:25:43 +02:00
KiekerJan
91d4dfc88c fix downloaded version of nextcloud contacts app 2021-10-25 16:24:18 +02:00
KiekerJan
5403f7eea7 updated version nextcloud 2021-10-25 00:09:32 +02:00
Joshua Tauberer
c67ff241c4
Updates to security.md 2021-10-23 08:57:05 -04:00
Joshua Tauberer
7b4cd443bf
How to report security issues 2021-10-22 18:49:16 -04:00
Joshua Tauberer
34017548d5 Don't crash if a custom DNS entry is not under a zone managed by the box, fixes #1961 2021-10-22 18:39:53 -04:00
kiekerjan
6037e47da5
Merge pull request #5 from kiekerjan/merge-upstream-v55
Merge upstream v55
2021-10-19 23:28:13 +02:00
github@kiekerjan.isdronken.nl
3ce59172cf remove ignoring MFA for munin 2021-10-19 23:23:49 +02:00
github@kiekerjan.isdronken.nl
eeada2b9b5 merge changes from V55 upstream 2021-10-19 23:07:02 +02:00
kiekerjan
4f3f35a10b
Merge pull request #4 from kiekerjan/check_dns
slightly change dns resolver call
2021-10-19 22:40:47 +02:00
Joshua Tauberer
65861c68b7 Version 55 2021-10-18 20:40:51 -04:00
Joshua Tauberer
71a7a3e201 Upgrade to Roundcube 1.5 2021-10-18 20:40:51 -04:00
Richard Willis
1c3bca53bb
Fix broken link in external-dns.html (#2045) 2021-10-18 07:36:48 -04:00
ukfhVp0zms
b643cb3478
Update calendar/contacts android app info (#2044)
DAVdroid has been renamed to DAVx⁵ and price increased from $3.69 to $5.99.
CardDAV-Sync free is no longer in beta.
CalDAV-Sync price increased from $2.89 to $2.99.
2021-10-13 19:09:05 -04:00
Joshua Tauberer
113b7bd827 Disable SMTPUTF8 in Postfix because Dovecot LMTP doesn't support it and bounces messages that require SMTPUTF8
By not advertising SMTPUTF8 support at the start, senders may opt to transmit recipient internationalized domain names in IDNA form instead, which will be deliverable.

Incoming mail with internationalized domains was probably working prior to our move to Ubuntu 18.04 when postfix's SMTPUTF8 support became enabled by default.

The previous commit is retained because Mail-in-a-Box users might prefer to keep SMTPUTF8 on for outbound mail, if they are not using internationalized domains for email, in which case the previous commit fixes the 'relay access denied' error even if the emails aren't deliverable.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
3e19f85fad Add domain maps from Unicode forms of internationalized domains to their ASCII forms
When an email is received by Postfix using SMTPUTF8 and the recipient domain is a Unicode internationalized domain, it was failing to be delivered (bouncing with 'relay access denied') because our users and aliases tables only store ASCII (IDNA) forms of internationalized domains. In this commit, domain maps are added to the auto_aliases table from the Unicode form of each mail domain to its IDNA form, if those forms are different. The Postfix domains query is updated to look at the auto_aliases table now as well, since it is the only table with Unicode forms of the mail domains.

However, mail delivery is still not working since the Dovecot LMTP server does not support SMTPUTF8, and mail still bounces but with an error that SMTPUTF8 is not supported.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
11e84d0d40 Move automatically generated aliases to a separate database table
They really should never have been conflated with the user-provided aliases.

Update the postfix alias map to query the automatically generated aliases with lowest priority.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
79966e36e3 Set a cookie for /admin/munin pages to grant access to Munin reports
The /admin/munin routes used the same Authorization: header logic as the other API routes, but they are browsed directly in the browser because they are handled as static pages or as a proxy to a CGI script.

This required users to enter their email username/password for HTTP basic authentication in the standard browser auth prompt, which wasn't ideal (and may leak the password in browser storage). It also stopped working when MFA was enabled for user accounts.

A token is now set in a cookie when visiting /admin/munin which is then checked in the routes that proxy the Munin pages. The cookie's lifetime is kept limited to limit the opportunity for any unknown CSRF attacks via the Munin CGI script.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
66b15d42a5 CHANGELOG entries 2021-09-24 08:11:36 -04:00
drpixie
df46e1311b
Include NSD config files from /etc/nsd/nsd.conf.d/*.conf (#2035)
And write MIAB dns zone config into /etc/nsd/nsd.conf.d/zones.conf. Delete lingering old zones.conf file.

Co-authored-by: Joshua Tauberer <jt@occams.info>
2021-09-24 08:07:40 -04:00