1
0
mirror of https://github.com/mail-in-a-box/mailinabox.git synced 2025-04-19 02:42:15 +00:00
Commit Graph

197 Commits

Author SHA1 Message Date
Michael Kroes
08a5702a9d Merge remote-tracking branch 'upstream/master' 2020-11-16 05:01:02 +01:00
gumida
7ce41e3865
Changed mta-sts.txt end of line from LF to CRLF per RFC 8461 (#1863) 2020-11-15 07:54:34 -05:00
Michael Kroes
12d7fc5f78 Merge remote-tracking branch 'upstream/master' 2020-10-23 07:33:36 +02:00
Felix Spöttel
7d6c7b6610
Increase mta-sts max_age to one week (#1829)
This aligns the policy with the example policy found in the  spec
see https://tools.ietf.org/html/rfc8461#section-3.2
2020-10-02 21:27:21 -04:00
0pis
7f0f28f8e3
Use tabs instead of spaces in nginx conf (#1827)
* conf/nginx-primaryonly.conf: Use tabs instead of spaces
* management/web_update.py: Includes the tabs so they display with the correct indentation when added to the local.conf

Co-authored-by: 0pis <0pis>
2020-09-27 07:13:33 -04:00
Michael Kroes
f8677694bc update whitelist 2020-08-29 08:48:32 +02:00
Michael Kroes
2bb7753c10 Merge remote-tracking branch 'upstream/master' 2020-08-10 07:30:45 +02:00
Hilko
1098e2b48e
Add noindex to www_default meta tags (#1791) 2020-07-29 10:03:33 -04:00
Michael Kroes
38327ae6b3 Merge remote-tracking branch 'upstream/master' 2020-05-30 05:31:26 +02:00
A. Schippers
afc9f9686a
Publish MTA-STS policy for incoming mail (#1731)
Co-authored-by: Daniel Mabbett <triumph_2500@hotmail.com>
2020-05-29 15:30:07 -04:00
Michael Kroes
c7ca7599ec Merge remote-tracking branch 'upstream/master' 2020-05-17 06:41:36 +02:00
yeuna92
c87b62b8c2
Fix path to Roundcube error log in fail2ban jails.conf (#1761) 2020-05-11 08:59:42 -04:00
Joshua Tauberer
c19f8c9ee6 Change Mozilla autoconfig useGlobalPreferredServer property to false
Fixes #1736.
2020-05-10 19:29:01 -04:00
Michael Kroes
9d5bd441c5 Merge remote-tracking branch 'upstream/master' 2019-12-02 06:34:45 +01:00
Joshua Tauberer
f53b18ebb9 Upgrade TLS settings 2019-12-01 17:49:36 -05:00
Michael Kroes
ca07ced0b0 Updated postgrey whitelist 2019-11-13 11:40:44 +01:00
Michael Kroes
baf58986d2 Updated postgrey whitelist 2019-10-14 10:10:31 +02:00
Michael Kroes
fc9027ad39 Further remove solr 2019-10-02 08:38:54 +02:00
Michael Kroes
1d8f9a87a7 Updated postgrey whitelist 2019-09-30 11:41:14 +02:00
Michael Kroes
efe50a3f74 Merge remote-tracking branch 'upstream/master' 2019-09-30 11:40:50 +02:00
Joshua Tauberer
46f64e0e0a fail2ban should watch for managesieve logins too, fixes #1622 2019-08-31 09:04:17 -04:00
Michael Kroes
4f7cf47be1 Updated whitelist 2019-08-17 08:56:31 +02:00
Michael Kroes
0b3aa75685 Updated greylist 2019-08-17 07:03:54 +02:00
Michael Kroes
a05af43478 Updated postgrey whitelist 2019-08-17 06:36:42 +02:00
Michael Kroes
db47bcb94a Updated postgrey whitelist 2019-08-17 06:26:15 +02:00
Michael Kroes
81f089af18 Update whitelist 2019-07-17 09:02:07 +02:00
Michael Kroes
3d8586702e Update whitelist and check if custom whitelist exists 2019-07-16 21:40:40 +02:00
Michael Kroes
2aa2e918f0 Update greylist 2019-07-16 17:52:33 +02:00
Michael Kroes
7b1adb3806 Add custom whitelist 2019-07-16 17:03:04 +02:00
root
5a7a4e643f Merge remote-tracking branch 'origin/pr/1584' 2019-07-10 05:37:26 +02:00
Jeff Volkenant
2f4bc0876d Added shebang for dovecot cron 2019-06-27 08:24:18 -07:00
jvolkenant
193763f8f0 Update to Nextcloud 15.0.8, Contacts to 3.1.1, and Calendar to 1.6.5 (#1577)
* Update to Nextcloud 15.0.7, Contacts to 3.1.1, and Calendar to 1.6.5
* Enabled localhost-only insecure IMAP login for localhost Nextcloud auth
* Add package php-imagick and BigInt conversion
* added support for /cloud/oc[sm]-provider/ endpoint
2019-06-16 11:10:52 -04:00
root
028e8874ef Merge remote-tracking branch 'origin/pr/1584' 2019-05-27 10:21:49 +02:00
root
106ec14c19 Merge remote-tracking branch 'origin/pr/1577' 2019-05-27 10:20:52 +02:00
root
7cb9e78c5d Merge remote-tracking branch 'upstream/master' 2019-05-27 10:19:32 +02:00
Jeff Volkenant
8957d0e87c added support for /cloud/oc[sm]-provider/ endpoint 2019-05-21 07:35:56 -07:00
jvolkenant
aff80ac58c Autodiscovery fix for additional hosted email domains, Fixes #941 (#1467) 2019-05-09 10:13:23 -07:00
root
1d625d7649 Merge remote-tracking branch 'upstream/master' 2019-01-20 06:43:45 +01:00
jvolkenant
c60e3dc842 fail2ban ssh/ssh-ddos and sasl are now sshd and postfix-sasl (fixes #1453, merges #1454)
* fail2ban ssh/ssh-ddos and sasl are now sshd and postfix-sasl

* specified custom datepattern for miab-owncloud.conf
2019-01-18 09:40:51 -05:00
Jeff Volkenant
a3d7e0dfae Adapted MIAB Solr install script from https://github.com/jkaberg/ for Ubuntu Bionic 2019-01-16 10:21:19 -08:00
yodax
a9ffacb738 Merge remote-tracking branch 'upstream/master' 2019-01-10 04:22:05 +01:00
yodax
48ed564978 Added a dynamicdns proxy that accepts GET requests and transforms them into PUT requests 2019-01-08 06:53:48 +01:00
jvolkenant
8d5670068a fixes nginx warning about duplicate ssl configuration (#1460) 2018-10-25 15:18:21 -04:00
Joshua Tauberer
bbfa01f33a update to PHP 7.2
* drop the ondrej/php PPA since PHP 7.x is available directly from Ubuntu 18.04
* intall PHP 7.2 which is just the "php" package in Ubuntu 18.04
* some package names changed, some unnecessary packages are no longer provided
* update paths
2018-10-03 13:00:15 -04:00
Christopher A. DeFlumeri
d96613b8fe minimal changeset to get things working on 18.04
@joshdata squashed pull request #1398, removed some comments, and added these notes:

* The old init.d script for the management daemon is replaced with a systemd service.
* A systemd service configuration is added to configure permissions for munin on startup.
* nginx SSL settings are updated because nginx's options and defaults have changed, and we now enable http2.
* Automatic SSHFP record generation is updated to know that 22 is the default SSH daemon port, since it is no longer explicit in sshd_config.
* The dovecot-lucene package is dropped because the Mail-in-a-Box PPA where we built the package has not been updated for Ubuntu 18.04.
* The stock postgrey package is installed instead of the one from our PPA (which we no longer support), which loses the automatic whitelisting of DNSWL.org-whitelisted senders.
* Drop memcached and the status check for memcached, which we used to use with ownCloud long ago but are no longer installing.
* Other minor changes.
2018-10-03 13:00:06 -04:00
dev9
b0b5d8e792 Fix .mobileconfig so CalDAV calendar works on Mac OS X (#1402)
The previous CalDAVPrincipalURL "/cloud/remote.php/caldav/calendars/" causes an error in OS X.

See: https://discourse.mailinabox.email/t/caldav-with-macos-10-12-2-does-not-work/1649 and other similar issues.

The correct CalDAVPrincipalURL: https://discourse.mailinabox.email/t/caldav-with-macos-10-12-2-does-not-work/1649 but it turns out you can just leave the key/value out completely and OS X/iOS are able to auto discover the correct URL.
2018-07-19 11:17:38 -04:00
Joshua Tauberer
2a72c800f6 replace free_tls_certificates with certbot 2018-06-29 16:46:21 -04:00
Joshua Tauberer
0088fb4553 install Python 3 packages in a virtualenv
The cryptography package has created all sorts of installation trouble over the last few years, probably because of mismatches between OS-installed packages and pip-installed packages. Using a virtualenv for all Python packages used by the management daemon should make sure everything is consistent.

See #1298, see #1264.
2018-01-15 13:27:04 -05:00
Joshua Tauberer
cc7be13098 update nginx cipher list to Mozilla's current intermediate ciphers and update HSTS header to be six months
* The Mozilla recommendations must have been updated in the last few years.
* The HSTS header must have >=6 months to get an A+ at ssllabs.com/ssltest.
2017-10-03 11:47:32 -04:00
Joshua Tauberer
2556e3fbc2 HSTS header does not belong here, will result in multiple headers 2017-10-03 11:38:15 -04:00