github@kiekerjan.isdronken.nl
141e12a8a8
update 2fa plugin because of security issue
2022-04-21 00:08:28 +02:00
github@kiekerjan.isdronken.nl
e2bfe62939
merge upstream V56
2022-02-01 21:02:18 +01:00
Joshua Tauberer
34b7a02f4f
Update Roundcube to 1.5.2
2022-01-08 09:00:12 -05:00
github@kiekerjan.isdronken.nl
acc9ebd68f
update nextcloud and webmail plugins
2021-12-29 22:27:15 +01:00
KiekerJan
5da3803697
password needs to be editable in case totp is enabled in nextcloud, an application specific password is to be used to access nextcloud address book
2021-11-07 22:55:48 +01:00
kiekerjan
d36b3e9030
Merge branch 'mail-in-a-box:main' into master
2021-11-06 23:39:28 +01:00
jvolkenant
58b0323b36
Update persistent_login for Roundcube 1.5 ( #2055 )
2021-11-04 18:59:10 -04:00
KiekerJan
9c35f4d5f5
add totp two factor auth to roundcube
2021-10-28 21:56:50 +02:00
github@kiekerjan.isdronken.nl
eeada2b9b5
merge changes from V55 upstream
2021-10-19 23:07:02 +02:00
Joshua Tauberer
71a7a3e201
Upgrade to Roundcube 1.5
2021-10-18 20:40:51 -04:00
Joshua Tauberer
700188c443
Roundcube 1.5 RC
2021-09-06 09:23:58 -04:00
KiekerJan
9b39251469
active roundcube markasjunk plugin
2021-09-03 22:23:00 +02:00
github@kiekerjan.isdronken.nl
4b260354c2
revert carddav plugin install
2021-08-02 22:47:42 +02:00
github@kiekerjan.isdronken.nl
75f14a0735
make plugin installation of carddav like other git based installs
2021-08-02 22:09:04 +02:00
github@kiekerjan.isdronken.nl
a3b7878ef4
add contextmenu plugin
2021-08-02 00:44:47 +02:00
github@kiekerjan.isdronken.nl
ca5fb3c2e0
Merge changes from upstream v0.54
2021-06-20 23:36:54 +02:00
Joshua Tauberer
9b07d86bf7
Use $(...) notation instead of legacy backtick notation for embedded shell commands
...
shellcheck reported
SC2006: Use $(...) notation instead of legacy backticked `...`.
Fixed by applying shellcheck's diff output as a patch.
2021-05-03 19:28:23 -04:00
github@kiekerjan.isdronken.nl
f60d0f4f1e
merge upstram v0.53
2021-04-26 21:50:15 +02:00
Joshua Tauberer
2c295bcafd
Upgrade the Roundcube persistent login cookie encryption to AES-256-CBC and increase the key length accordingly
...
This change will force everyone to be logged out of Roundcube since the encryption key and cipher won't match anyone's already-set cookie, but this happens anyway after every Mail-in-a-Box update since we generate a new key each time already.
Fixes #1968 .
2021-04-23 17:04:56 -04:00
github@kiekerjan.isdronken.nl
4aaee13c1c
Add solr full text search based on https://github.com/jvolkenant/mailinabox/tree/solr-jetty
2021-04-17 23:00:14 +02:00
github@kiekerjan.isdronken.nl
c24ca5abd4
include changes from v0.53. Remove some POWER modifications to closer follow original mialinabox
2021-04-13 09:50:23 +02:00
github@kiekerjan.isdronken.nl
40adef2261
Fix carddav url and file handling
2021-04-12 22:04:06 +02:00
github@kiekerjan.isdronken.nl
12d0aee27a
Add own changes
2021-04-11 12:14:41 +02:00
github@kiekerjan.isdronken.nl
98c6bdbf27
Move editconf.py
2021-03-11 23:25:58 +01:00
davDevOps
055ac07663
Update roundcube to 1.4.11
...
roundcube Bug Fixes:
Fix for Cross-Site Scripting (XSS) via HTML messages with malicious CSS content
General Improvements from roundcube's Issue Tracker
2021-02-28 08:14:17 -05:00
David Duque
4829e687ff
Merge changes from master
2021-01-31 16:20:15 +00:00
jcm-shove-it
e2f9cd845a
Update roundcube to 1.4.10 ( #1891 )
2020-12-28 08:11:33 -05:00
David Duque
a67a57913d
v0.51 (November 14, 2020)
...
Software updates:
* Upgraded Nextcloud from 17.0.6 to 20.0.1 (with Contacts from 3.3.0 to 3.4.1 and Calendar from 2.0.3 to 2.1.2)
* Upgraded Roundcube to version 1.4.9.
Mail:
* The MTA-STA max_age value was increased to the normal one week.
Control Panel:
* Two-factor authentication can now be enabled for logins to the control panel. However, keep in mind that many online services (including domain name registrars, cloud server providers, and TLS certificate providers) may allow an attacker to take over your account or issue a fraudulent TLS certificate with only access to your email address, and this new two-factor authentication does not protect access to your inbox. It therefore remains very important that user accounts with administrative email addresses have strong passwords.
* TLS certificate expiry dates are now shown in ISO8601 format for clarity.
-----BEGIN PGP SIGNATURE-----
iQFDBAABCgAtFiEEX0wOcxPM10RpOyrquSBB9MEL3YEFAl+v8k4PHGp0QG9jY2Ft
cy5pbmZvAAoJELkgQfTBC92BMYUIAJTD1iKzY1SoDNSp8JMPn2sWusOnJNrnvYEV
vsrBM4AzwJv3DIZKSkYCitbTQW2FsTcjF6Jl5PCavEmAGe55AIKAPM/52Uq6jqDE
aR8EZvI9ca1i7yR7DOHEI043QSPmp/iCFD48vvmKgN/LZy67TaHaOlGJbc3nfpk0
y7ejMpF/6RP6ik4snnRQoWTFShaOpB9WcEVnUO7CHZdWcpSCZ55c9yi6A6ExGk7e
97R5+JN1MgOdZ6rzWZuMWiz7EZ/Ew4jYLZpOwg8qJm0HNbYJ6+/xxsQBwaQzyBw3
TsTl4GmunNPfoNrmKdJeLy0sBwiVBv/rysjWjim5v8jAYBoKoUQ=
=2oRU
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=ZMFZ
-----END PGP SIGNATURE-----
Merge upstream v0.51
2020-11-15 18:30:19 +00:00
David Duque
48c233ebe5
Update Roundcube to version 1.4.9 ( #1830 )
2020-10-31 10:01:14 -04:00
David Ferreira de Sousa Duque
d7d3561768
v0.48
...
Roundcube XSS vulnerability fixed.
-----BEGIN PGP SIGNATURE-----
iQFDBAABCgAtFiEEX0wOcxPM10RpOyrquSBB9MEL3YEFAl9GpkcPHGp0QG9jY2Ft
cy5pbmZvAAoJELkgQfTBC92BoYAH/2NjdfN2d6f45uPq/X32bBAc6wfI7Cs9yCKp
LOrAfPlmE0jRSm9ThATfZvaWci2r2IFhsFzQ9bWHpbIP5YD7mDD50I2uTnZa9BV4
MsI40VXoh0BAgkWRqK60rTw0lQ9YGT+1TNLDEs1Y7vBjfTCOh4MMn4jUXkIEHDQg
2pSHY1RUq7T0wRaHS+rTPDccotS/xCGg6uZJ+gSlvhRdxakAe9mo8139KD/4fjT8
HK6igpwHsn3POg7mmJoSYXtScmWRYfnSV9kyfYyVyjhu5/uIowdICwFOzX7G7ruM
yA/azBlyMs898e5jYFR1tQqQ1rVYVy/nqCQOiyJa34ngHGSi41U=
=a9fn
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=3X2X
-----END PGP SIGNATURE-----
Merge upstream v0.48
2020-08-26 23:09:14 +01:00
Joshua Tauberer
891de8d6c3
Upgrade Roundcube to 1.4.8
...
Merges #1809
2020-08-26 14:10:04 -04:00
David Duque
1ba62c6112
v0.47
...
v0.47 (July 29, 2020)
---------------------
Security fixes:
* Roundcube is updated to version 1.4.7 fixing a cross-site scripting (XSS) vulnerability with HTML messages with malicious svg/na$
* SSH connections are now rate-limited at the firewall level (in addition to fail2ban).
-----BEGIN PGP SIGNATURE-----
iQFDBAABCgAtFiEEX0wOcxPM10RpOyrquSBB9MEL3YEFAl8hh4APHGp0QG9jY2Ft
cy5pbmZvAAoJELkgQfTBC92BD8EIAKuNEHxgL0C0kkpAhuTlVXuoNEH/2FF6hYS7
7NqVrqOO1iVPGkGPhAh77CLpnvvJEhu9GeSWFhTrpI//5CvfafUQowmELClmDcYL
yxHqgoHX9O0PAd+uCLgO3MdAzFMVLNbPmt/uPgEHufnrrQGIGieB2iGWnf9xnnpf
wFSyQQnLofFpq7nH6qQvLNvh//zPQd7l/YV3ieEuT0dV4izg/Sr7Q5W6Zwn/q/ed
Btp4CizRFRFTmulIEM8an+jSXMMvdVkut6WDcl6ct8LZLoWwtEkWVeru9IVu4n9L
Lj8Bkt+8aRR6updnI/2tm0d7ZgFXWHc/+dfLCaK+aOlMD3qV9p0=
=xsgn
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=CTVK
-----END PGP SIGNATURE-----
Merge upstream v0.47
2020-07-30 14:51:00 +01:00
Hilko
2c34a6df2b
Update roundcube to 1.4.7
2020-07-29 10:15:12 -04:00
David Duque
c8fbe2dd5d
Determine the PHP version at runtime (instead of at setup-time)
2020-07-15 15:28:02 +01:00
David Duque
022a11e159
Merge remote-tracking branch 'up/master'
2020-06-21 15:52:31 +01:00
Joshua Tauberer
12d60d102b
Update Roundcube to 1.4.6
...
Fixes #1776
2020-06-11 12:21:17 -04:00
Faye Duxovni
41642f2f59
[backport] Fix roundcube error log file path in setup script ( #1775 )
2020-06-11 12:16:53 -04:00
David Duque
de115fe01e
Merge remote-tracking branch 'up/master'
2020-05-11 19:42:54 +01:00
Joshua Tauberer
1353949e42
Upgrade Roundcube to 1.4.4, Nextcloud to 17.0.6, Z-Push to 2.5.2
2020-05-10 19:44:12 -04:00
David Duque
52e9afcf2f
Just use the script directly
2020-04-17 22:59:25 +01:00
David Duque
6cee029d15
Move php version to functions.sh
2020-04-12 00:56:55 +01:00
Joshua Tauberer
ddadb6c28a
Roundcube 1.4.2
2020-01-22 03:25:53 -05:00
jvolkenant
e6294049bc
Update Roundcube persistent_login plugin ( #1712 )
2020-01-22 02:58:04 -05:00
Francesco Montanari
6e3dee8b3b
Upgrade RoundCube to 1.4.1 and set the default skin to elastic ( #1673 )
...
* Upgrade RoundCube to 1.4.0 and set the default skin to elastic
* Install php-ldap extension
* Remove smtp parameters that are now the default
2019-12-01 16:10:04 -05:00
cmharper
295d481603
Upgraded roundcube to 1.3.10 ( #1634 )
2019-08-31 07:55:38 -04:00
dexbleeker
9b46637aff
Update Roundcube to version 1.3.9 ( #1546 )
2019-04-14 14:19:21 -04:00
Joshua Tauberer
a3add03706
Merge branch 'master' into ubuntu_bionic
2019-01-09 07:00:44 -05:00
jvolkenant
b7e9a90005
roundcube: upgrade carddav plugin to 3.0.3 & updated migrate.py ( #1479 )
...
* roundcube: upgrade carddav plugin to 3.0.3 & updated migrate.py
* Check for db first and clear sessions to force re-login
2018-12-03 15:33:36 -05:00
Joshua Tauberer
0d4565e71d
merge master branch
2018-12-02 18:19:15 -05:00
Holger Just
0335595e7e
Update Roundcube to version 1.3.8 ( #1475 )
...
https://github.com/roundcube/roundcubemail/releases/tag/1.3.8
2018-11-25 10:40:21 -05:00