Git Repository
9bb9268ff4
CHANGELOG: Updates to jQuery CDN/Version
2017-05-03 19:44:37 -07:00
Michael Kroes
68ebca8a15
Update Z-Push to 2.3.6 ( #1166 )
2017-04-30 07:24:36 -04:00
Joshua Tauberer
0c4c2e51bb
bump to Nextcloud 10.0.5
2017-04-24 17:31:54 -04:00
Joshua Tauberer
828512b95a
changelog entries
2017-04-17 07:51:01 -04:00
Joshua Tauberer
add985ce5d
letencrypt now supports idna, remove the check/block
2017-04-17 07:45:08 -04:00
Joshua Tauberer
00c61dbcdd
changelog entry for migration to Nextcloud
2017-04-02 07:53:56 -04:00
Joshua Tauberer
453091f1fb
v0.22 released
2017-04-02 07:34:14 -04:00
Joshua Tauberer
653cb7ce10
roundcube 1.2.4, persistent login plugin
2017-03-26 09:50:00 -04:00
Joshua Tauberer
d7d8964afc
changlog entries
2017-03-26 09:31:35 -04:00
Rinze de Laat
9c9cae2096
Added an alternative mail log scanning script for use from the command line (and monitoring, at a later stage)
...
merges #970
2017-03-26 09:13:35 -04:00
Sean Watson
86621392f6
support SSHFP records for custom domains ( #1114 )
2017-03-09 09:05:52 -05:00
Sean Watson
368b9c50d0
add DSA and ED25519 SSHFP records if those keys are present ( #1078 )
2017-03-01 08:02:41 -05:00
Joshua Tauberer
2c86fa3755
merge v0.21c hot fix release
2017-02-01 11:26:32 -05:00
Joshua Tauberer
3c05fc94ff
v0.21c
2017-02-01 11:01:11 -05:00
Joshua Tauberer
e694f57673
changelog entries
2017-01-15 11:23:59 -05:00
Joshua Tauberer
ab2367e98a
v0.21b
2016-12-05 17:36:11 -05:00
Joshua Tauberer
e03b071e8b
missed changelog header
2016-11-30 12:50:38 -05:00
Joshua Tauberer
df93d82d0f
v0.21 released
2016-11-30 12:42:24 -05:00
Joshua Tauberer
abb6a1a070
changelog entries
2016-11-12 09:34:52 -05:00
Michael Kroes
155bcfc654
Add ownCloud 9.1.1 to the changelog ( #984 )
2016-10-21 10:12:46 -04:00
Tristan Hill
4b07a6aa8f
disable nested checker checks ( #972 )
...
fixes #967
2016-10-18 14:15:33 -04:00
Michael Kroes
fd6226187a
lower memory requirements to 512MB, display a warning if system memory is below 768MB. ( #952 )
2016-10-15 15:41:25 -04:00
rxcomm
bbe27df413
SSHFP record creation should scan nonstandard SSH port if necessary ( #974 )
...
* sshfp records from nonstandard ports
If port 22 is not open, dns_update.py will not create SSHFP records
because it only scans port 22 for keys. This commit modifies
dns_update.py to parse the sshd_config file for open ports, and
then obtains keys from one of them (even if port 22 is not open).
* modified test of s per JoshData request
* edit CHANGELOG per JoshData
* fix typo
2016-10-15 15:36:13 -04:00
Michael Kroes
a658abc95f
Fix status checks for ufw when the system doesn't support iptables ( #961 )
2016-10-08 14:35:19 -04:00
yodax
da5497cd1c
Update changelog entries
2016-09-28 08:37:24 +02:00
Joshua Tauberer
4e4fe90fc7
v0.20
2016-09-23 07:49:13 -04:00
Joshua Tauberer
3cd5a6eee7
changelog entries
2016-09-23 07:46:01 -04:00
Joshua Tauberer
c26bc841a2
more for dnspython exception with IPv6 addresses
...
fixes #945 , corrects prev commit (#947 ) in case of multiple AAAA records, adds changelog
2016-09-23 07:41:24 -04:00
Joshua Tauberer
d73d1c6900
changelog typos
2016-08-24 07:47:55 -04:00
Joshua Tauberer
27b4edfc76
v0.19b
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAABAgAGBQJXuHvJAAoJELkgQfTBC92B2IsIAJl+tQkkVp5cu4zuSLOpHj73
LFGGCrGTSMwuyNbnklkLmLIfRxlmNfHNfQqHYhxJQq7JVLuDRJS2rTJnSWGg4PuE
vyrjOEFNNqFp9cy00j6NMUUcJa4kte4cvMg3Sonz7JkVwS3fxp7hSgZknYOjlLvh
R/FmrqVhpDtTZRtMjcQaCtCTWUEETYFLsJZ2iZkIlpGhoxPGEhKZquNrT0s3qrNv
Rwf6O3i9RIS/bOu2lWI+ymdStPVJnn+deRTBWPpsxXdNC/NG9+gWiqGgRnjTBbMO
uzH1hYct+J6TWeNpesECfMMjTOZ+T7yrRJc1s9ThuLokyAlo9yf4E5YFziZ0hi4=
=JxNp
-----END PGP SIGNATURE-----
merge v0.19b hot fix release
2016-08-20 11:50:26 -04:00
Joshua Tauberer
ba75ff7820
v0.19b
2016-08-20 11:48:08 -04:00
Joshua Tauberer
a14b17794b
simplify how munin-cgi-graph is called to reduce the attack surface area
...
Seems like if REQUEST_METHOD is set to GET, then we can drop two redundant ways the query string is given. munin-cgi-graph itself reads the environment variables only, but its calls to Perl's CGI::param will look at the command line if REQUEST_METHOD is not used, otherwise it uses environment variables like CGI used to work.
Since this is all behind admin auth anyway, there isn't a public vulnerability. #914 was opened without comment which lead me to notice the redundancy and worry about a vulnerability, before I realized this is admin-only anyway.
The vulnerability was created by 6d6f3ea391
.
See #914 .
This is the v0.19b hotfix commit.
2016-08-20 11:47:44 -04:00
Joshua Tauberer
86457e5bc4
merge: fail2ban broke, released v0.19a
2016-08-18 08:39:31 -04:00
Joshua Tauberer
7c9f3e0b23
v0.19a
2016-08-18 08:36:28 -04:00
Joshua Tauberer
83d8dbca3e
fail2ban won't start until the roundcube log file is created
...
fixes #911
2016-08-18 08:32:14 -04:00
Joshua Tauberer
e9368de462
[merge #902 ] Upgrade ownCloud from 8.2.3 to 8.2.7
...
Merge https://github.com/mar1u5/mailinabox
fixes #901
2016-08-13 17:36:08 -04:00
Joshua Tauberer
cdd0a821eb
v0.19
...
closes #898
2016-08-13 17:27:10 -04:00
Marius Blüm
6f165d0aeb
Update Changelog
...
Signed-off-by: Marius Blüm <marius@lineone.io>
2016-08-09 00:58:10 +02:00
Joshua Tauberer
fc5cc9753b
roundcube 1.2.1
2016-08-08 07:32:02 -04:00
Joshua Tauberer
cf3e1cd595
add SRV records for CardDAV/CalDAV
...
DavDroid's latest version's account configuration no longer just asked for a hostname. Its email address & password configuration mode did not work without a SRV record.
2016-07-31 20:53:57 -04:00
Joshua Tauberer
b044dda28f
put the ufw status checks in the network section, add a punctuation mark, add changelog entry
2016-07-29 09:23:36 -04:00
Joshua Tauberer
6de7d59f14
changelog entries
2016-07-29 09:12:01 -04:00
Joshua Tauberer
8844a9185f
Merge pull request #798 from mail-in-a-box/fail2banjails
...
add fail2ban jails for ownCloud, postfix submission, roundcube, and the Mail-in-a-Box management daemon
2016-07-29 08:52:44 -04:00
Joshua Tauberer
3055f9a79c
drop SSLv3, RC4 ciphers from SMTP port 25
...
Per http://googleappsupdates.blogspot.ro/2016/05/disabling-support-for-sslv3-and-rc4-for.html , Google is about to do the same.
fixes #611
2016-06-12 09:11:50 -04:00
Michael Kroes
01fa8cf72c
add fail2ban jails for ownCloud, postfix submission, roundcube, and the Mail-in-a-Box management daemon
...
(tests squashed into this commit by josh)
2016-06-06 09:13:10 -04:00
aspdye
61744095a8
Update Roundcube to 1.2.0
...
closes #840
2016-06-06 07:32:54 -04:00
Joshua Tauberer
6666d28c44
v0.18c
2016-06-02 15:47:45 -04:00
Joshua Tauberer
66675ff2e9
Dovecot LMTP accepted all mail regardless of whether destination was a user, broken by ae8cd4ef
, fixes #852
...
In the earlier commit, I added a Dovecot userdb lookup. Without a userdb lookup, Dovecot would use the password db for user lookups. With a userdb lookup we can support iterating over users.
But I forgot the WHERE clause in the query, resulting in every incoming message being accepted if the user database contained any users at all. Since the mailbox path template is the same for all users, mail was delivered correctly except that mail that should have been rejected was delivered too.
2016-06-02 08:05:34 -04:00
Joshua Tauberer
1ad5892acd
can't change roundcube's default_host setting, partially reverts 6d259a6e12
...
The default_host setting is a part of the internal username key. We can't change that without causing Roundcube to create new internal user accounts.
2016-05-16 07:14:45 -04:00
Joshua Tauberer
94b7c80792
v0.18
2016-05-15 20:41:31 -04:00