1
0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2024-12-25 07:47:05 +00:00
Commit Graph

2182 Commits

Author SHA1 Message Date
github@kiekerjan.isdronken.nl
99c960fc56 dkimpy dev and nextcloud installation details 2022-02-01 21:36:06 +01:00
github@kiekerjan.isdronken.nl
3350fecd92 backport fix for dns resolver in python3-dkim 2022-02-01 21:36:06 +01:00
github@kiekerjan.isdronken.nl
8d5f52db0f update nextcloud and webmail plugins 2022-02-01 21:36:06 +01:00
jvolkenant
28b801607d Don't die if column already exists on Nextcloud 18 upgrade (#2078) 2022-02-01 21:36:02 +01:00
Arno Hautala
464c36ee3d regex change to exclude comma from sasl_username (#2074)
as proposed in #2071 by @jvolkenant
2022-02-01 21:31:30 +01:00
KiekerJan
2f86aa4eee upgraded nextcloud to 22 2022-02-01 21:31:30 +01:00
KiekerJan
59cf51ab30 updated readme 2022-02-01 21:31:30 +01:00
KiekerJan
a041737f88 move command to web.sh setup 2022-02-01 21:31:30 +01:00
KiekerJan
2496f4783f upgrade nextcloud to 21 2022-02-01 21:31:30 +01:00
Ilnahro
e952a69486 Include rsync to the installed basic packages (#2067)
Some VPS providers strip this package from their Ubuntu 18.04 VM images. This will help avoid errors.
2022-02-01 21:31:15 +01:00
steadfasterX
3a739823af fix: key flag id for KSK, fix format (#2063)
as mentioned (https://github.com/mail-in-a-box/mailinabox/pull/2033#issuecomment-976365087) KSK is 257, not 256
2022-02-01 21:28:33 +01:00
github@kiekerjan.isdronken.nl
acfc71e7fd correct dns tag for DKIM key 2021-12-11 01:00:02 +01:00
github@kiekerjan.isdronken.nl
ded1b55ebd First steps in migrating to dkimpy-milter 2021-12-11 00:54:56 +01:00
KiekerJan
21fd62ef4f more elaborate logfile analysis 2021-11-22 07:05:10 +01:00
KiekerJan
53c6c0fcc4 update nextcloud to 2.0.14 2021-11-17 00:25:05 +01:00
KiekerJan
b8bf50b2f2 Merge branch 'master' of github.com:kiekerjan/mailinabox 2021-11-14 16:12:21 +01:00
KiekerJan
2e397aea62 postgrey remembers 2021-11-14 16:12:06 +01:00
github@kiekerjan.isdronken.nl
d96a0528e3 fixes to dynamic dns tool 2021-11-12 21:12:10 +01:00
KiekerJan
5da3803697 password needs to be editable in case totp is enabled in nextcloud, an application specific password is to be used to access nextcloud address book 2021-11-07 22:55:48 +01:00
KiekerJan
daff60ee13 add totp two factor auth to nextcloud 2021-11-07 22:54:43 +01:00
kiekerjan
d36b3e9030
Merge branch 'mail-in-a-box:main' into master 2021-11-06 23:39:28 +01:00
jvolkenant
58b0323b36
Update persistent_login for Roundcube 1.5 (#2055) 2021-11-04 18:59:10 -04:00
kiekerjan
5352668ba4
Update README.md 2021-11-04 00:35:43 +01:00
KiekerJan
2741affa48 Merge branch 'master' of github.com:kiekerjan/mailinabox 2021-11-04 00:32:14 +01:00
kiekerjan
d8dd4cb215
Merge pull request #9 from mail-in-a-box/main
Merge upstream
2021-11-04 00:31:43 +01:00
kiekerjan
63f018aab5
Merge pull request #8 from kiekerjan/merge-upstream
Merge upstream
2021-11-04 00:28:21 +01:00
github@kiekerjan.isdronken.nl
7c11022fb5 merge upstream 2021-11-04 00:26:53 +01:00
kiekerjan
646f971d8b
Update mailinabox.yml (#2054)
The examples for login and logout use GET instead of POST. GET gives me an error when using it, while POST seems to work.
2021-10-31 12:49:26 -04:00
kiekerjan
ef407db239
Update README.md 2021-10-31 17:29:45 +01:00
KiekerJan
9c35f4d5f5 add totp two factor auth to roundcube 2021-10-28 21:56:50 +02:00
Felix Spöttel
86067be142
fix(docs): set a schema for /logout responses (#2051)
* this remedies an OpenAPI syntax violation resulting in a redoc-cli crash
2021-10-27 12:27:54 -04:00
KiekerJan
be899f2b9e avoid a runaway /64 in jail.conf 2021-10-25 16:44:25 +02:00
kiekerjan
ac24421cc3
Merge pull request #6 from kiekerjan/update-nextcloud
Update nextcloud
2021-10-25 16:25:43 +02:00
KiekerJan
91d4dfc88c fix downloaded version of nextcloud contacts app 2021-10-25 16:24:18 +02:00
KiekerJan
5403f7eea7 updated version nextcloud 2021-10-25 00:09:32 +02:00
Joshua Tauberer
c67ff241c4
Updates to security.md 2021-10-23 08:57:05 -04:00
Joshua Tauberer
7b4cd443bf
How to report security issues 2021-10-22 18:49:16 -04:00
Joshua Tauberer
34017548d5 Don't crash if a custom DNS entry is not under a zone managed by the box, fixes #1961 2021-10-22 18:39:53 -04:00
kiekerjan
6037e47da5
Merge pull request #5 from kiekerjan/merge-upstream-v55
Merge upstream v55
2021-10-19 23:28:13 +02:00
github@kiekerjan.isdronken.nl
3ce59172cf remove ignoring MFA for munin 2021-10-19 23:23:49 +02:00
github@kiekerjan.isdronken.nl
eeada2b9b5 merge changes from V55 upstream 2021-10-19 23:07:02 +02:00
kiekerjan
4f3f35a10b
Merge pull request #4 from kiekerjan/check_dns
slightly change dns resolver call
2021-10-19 22:40:47 +02:00
Joshua Tauberer
65861c68b7 Version 55 2021-10-18 20:40:51 -04:00
Joshua Tauberer
71a7a3e201 Upgrade to Roundcube 1.5 2021-10-18 20:40:51 -04:00
Richard Willis
1c3bca53bb
Fix broken link in external-dns.html (#2045) 2021-10-18 07:36:48 -04:00
ukfhVp0zms
b643cb3478
Update calendar/contacts android app info (#2044)
DAVdroid has been renamed to DAVx⁵ and price increased from $3.69 to $5.99.
CardDAV-Sync free is no longer in beta.
CalDAV-Sync price increased from $2.89 to $2.99.
2021-10-13 19:09:05 -04:00
Joshua Tauberer
113b7bd827 Disable SMTPUTF8 in Postfix because Dovecot LMTP doesn't support it and bounces messages that require SMTPUTF8
By not advertising SMTPUTF8 support at the start, senders may opt to transmit recipient internationalized domain names in IDNA form instead, which will be deliverable.

Incoming mail with internationalized domains was probably working prior to our move to Ubuntu 18.04 when postfix's SMTPUTF8 support became enabled by default.

The previous commit is retained because Mail-in-a-Box users might prefer to keep SMTPUTF8 on for outbound mail, if they are not using internationalized domains for email, in which case the previous commit fixes the 'relay access denied' error even if the emails aren't deliverable.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
3e19f85fad Add domain maps from Unicode forms of internationalized domains to their ASCII forms
When an email is received by Postfix using SMTPUTF8 and the recipient domain is a Unicode internationalized domain, it was failing to be delivered (bouncing with 'relay access denied') because our users and aliases tables only store ASCII (IDNA) forms of internationalized domains. In this commit, domain maps are added to the auto_aliases table from the Unicode form of each mail domain to its IDNA form, if those forms are different. The Postfix domains query is updated to look at the auto_aliases table now as well, since it is the only table with Unicode forms of the mail domains.

However, mail delivery is still not working since the Dovecot LMTP server does not support SMTPUTF8, and mail still bounces but with an error that SMTPUTF8 is not supported.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
11e84d0d40 Move automatically generated aliases to a separate database table
They really should never have been conflated with the user-provided aliases.

Update the postfix alias map to query the automatically generated aliases with lowest priority.
2021-09-24 08:11:36 -04:00
Joshua Tauberer
79966e36e3 Set a cookie for /admin/munin pages to grant access to Munin reports
The /admin/munin routes used the same Authorization: header logic as the other API routes, but they are browsed directly in the browser because they are handled as static pages or as a proxy to a CGI script.

This required users to enter their email username/password for HTTP basic authentication in the standard browser auth prompt, which wasn't ideal (and may leak the password in browser storage). It also stopped working when MFA was enabled for user accounts.

A token is now set in a cookie when visiting /admin/munin which is then checked in the routes that proxy the Munin pages. The cookie's lifetime is kept limited to limit the opportunity for any unknown CSRF attacks via the Munin CGI script.
2021-09-24 08:11:36 -04:00