Joshua Tauberer 39bca053ed add 2048 bits of DH params for nginx, postfix, dovecot ...

nginx/postfix use a new pre-generated dh2048.pem file. dovecot generates the bits on its own.

ssllabs.com reports that TLS_DHE ciphers went from 1024 to 2048 bits as expected. The ECDHE ciphers remain at 256 bits --- no idea what that really means. (This tests nginx only. I haven't tested postfix/dovecot.)

see https://discourse.mailinabox.email/t/fips-ready-for-ssl-dhec-key-exchange/76/3

2014-09-26 22:09:22 +00:00

..

zpush

z-push autodiscover should use the primary hostname for the mail server and not the domain part of the email address (both may work, but the primary hostname is more likely to have a signed SSL cert)

2014-08-19 11:49:20 +00:00

management-initscript

ensure Python operates in UTF-8 with a consistent locale for all users

2014-09-26 08:26:09 -04:00

nginx-primaryonly.conf

split CardDAV instrctions into a new page and add CalDAV instructions; create nice redirects at /cloud/calendar and /cloud/contacts

2014-09-03 10:51:19 +00:00

nginx-ssl.conf

add 2048 bits of DH params for nginx, postfix, dovecot

2014-09-26 22:09:22 +00:00

nginx-top.conf

put a sterner warning in nginx local.conf about not modifying it

2014-08-23 12:35:59 +00:00

nginx.conf

expose the control panel only on PRIMARY_HOSTNAME since /admin might conflict with other stuff hosted on other domains

2014-08-27 02:38:43 +00:00

postfix_outgoing_mail_header_filters

Filter privacy-sensitive headers on outgoing mail

2014-06-08 18:35:09 -04:00

sieve-spam.txt

use the Dovecot managesieve service to manage sieve scripts

2014-07-10 23:09:07 +00:00

www_default.html

update default www page to link to the website, fixes #96

2014-07-07 07:07:54 -04:00