Ben
2ee280dcb3
Update dovecot-ldap.conf.ext
...
add auth_bind = no so that it can be overridden via the env-mailserver file used by docker compose. This is related to #1526
2020-07-04 11:50:25 -07:00
Erik Wramner
df4e04f033
Merge pull request #1547 from MrFreezeex/master
...
Fix dovecot variable with whitespace
2020-06-28 11:02:58 +02:00
Erik Wramner
7c55723609
Merge pull request #1551 from GiovanH/typo
...
Fix typo
2020-06-28 10:53:32 +02:00
Gio
d888dbcf7f
Fix typo
2020-06-27 23:07:17 -05:00
Arthur Outhenin-Chalandre
c7f9fbd439
Fix dovecot variable with whitespace
...
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-06-27 11:17:25 +02:00
Erik Wramner
e150307339
Merge pull request #1537 from casperklein/patch-3
...
Typo fixed
2020-06-14 20:11:33 +02:00
Erik Wramner
3ce36407b4
Merge pull request #1535 from casperklein/patch-2
...
Improve container/image name detection
2020-06-14 20:10:51 +02:00
Casper
c359521121
Typo fixed
2020-06-14 04:39:34 +02:00
Casper
e95bd156a5
Multi-line format
2020-06-14 04:34:25 +02:00
Casper
29406ff34d
Return only one result, if there are multiple matches
...
Among other things, this is the case, when running tests with multiple containers.
2020-06-12 18:52:32 +02:00
Casper
8c7597f546
Improve container/image name detection
...
Problem: `setup.sh` fails, if more than one container uses `CMD ["supervisord", "-c", "/etc/supervisor/supervisord.conf"]`
Current container/image name detection: List all containers, grep for "supervisor".
New approach: List container, with label `org.label-schema.name="docker-mailserver"`
2020-06-12 01:33:30 +02:00
Erik Wramner
6abcc8ce5f
Merge pull request #1527 from m-a-v/patch-1
...
hint: keyword _SCORE_ for SA_SPAM_SUBJECT
2020-06-01 14:08:11 +02:00
Sascha Scandella
858facb790
hint: keyword _SCORE_ for SA_SPAM_SUBJECT
2020-05-31 22:06:31 +02:00
Erik Wramner
b99bce1c2e
Nonsense commit to trigger rebuild
2020-05-21 08:13:10 +02:00
Erik Wramner
c6a535c8cb
Merge pull request #1514 from gmasse/fix-1507
...
Fix #1507 - Do not try to reload freshclam daemon after log rotation
2020-05-19 11:45:55 +02:00
Germain Masse
452fe3609f
Do not try to reload freshclam daemon after log rotation
2020-05-18 10:10:37 +02:00
Erik Wramner
f19fb9abc6
Merge pull request #1509 from neuralp/master
...
Letsencrypt check domain name in addition to host name
2020-05-15 08:38:12 +02:00
Nicholas Pepper
1b659a5574
Modified letsencrypt support to add domain name checking in addition to
...
hostname checking. Added necessary tests and renamed original manual
ssl test to a name that supports adding the other SSL tests.
2020-05-15 04:52:26 +00:00
Erik Wramner
f0defda2a1
Merge pull request #1506 from youtous/fix-postfix-information-banner
...
Show only host name in Postfix information banner
2020-05-11 09:14:35 +02:00
youtous
04059cd618
MAIL-8818 - Postfix information leakage
...
To prevent announcing software or version to malicious people or scripts, it is advised to hide such information.
This information is provided as part of the Lynis community project. It is related to Lynis control MAIL-8818 and should be considered as-is and without guarantees.
https://cisofy.com/lynis/controls/MAIL-8818/
2020-05-10 16:04:53 +02:00
Erik Wramner
356fb0793e
Merge pull request #1505 from youtous/test-postfix-inet
...
test postfix inet
2020-05-10 08:32:08 +02:00
youtous
c65ffb44a1
test postfix inet
2020-05-09 22:42:56 +02:00
Erik Wramner
5859c8b0e3
Merge pull request #1495 from youtous/update-issue-template
...
new issue format
2020-05-07 18:58:47 +02:00
youtous
6b071c5c26
new issue format
2020-05-07 10:19:29 +02:00
Erik Wramner
43621e744e
Merge pull request #1494 from youtous/fix-comments-configs
...
support comments in .cf files
2020-05-07 08:32:40 +02:00
youtous
d0f7257333
support comments in .cf files
2020-05-06 22:59:55 +02:00
Erik Wramner
b6bc3bc073
Merge pull request #1491 from youtous/fix-global-sieve
...
Fix sieve scripts not loaded
2020-05-05 07:47:23 +02:00
youtous
32d16084ec
sieve scripts using alphabetical order
2020-05-04 16:13:47 +02:00
youtous
92414b7eba
sieve after/before use folder instead of individual listing
...
Loading sieve scripts using a directory scheme permits to handle multi scripts wtihout defining individual sieve_before/sieve_after
2020-05-04 00:27:29 +02:00
Erik Wramner
a12cd9a26d
Merge pull request #1485 from youtous/feature-spam-to-junk
...
Feature: Spam to Junk folder
2020-05-03 12:56:02 +02:00
youtous
30262128f4
raise a warning when SPAMASSASSIN_SPAM_TO_INBOX isn't explicitly defined
2020-05-03 10:33:50 +02:00
youtous
a37049b3fe
updating default env values
2020-05-03 10:33:50 +02:00
youtous
578d6c528f
Update SPAMASSASSIN_SPAM_TO_INBOX doc
2020-05-03 10:33:28 +02:00
youtous
15dd63d566
add test case no move to Junk
2020-05-03 10:33:28 +02:00
youtous
d829905cf7
init spams to junk
2020-05-03 10:33:28 +02:00
Erik Wramner
7eacb4cfc0
Merge pull request #1488 from VanVan/patch-2
...
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
2020-05-03 09:12:45 +02:00
VanVan
df55196d69
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
...
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
2020-05-02 21:13:54 +02:00
Erik Wramner
23eb7c42ab
Merge pull request #1481 from youtous/fix-sieve-folder
...
Prevent sieve symlink to be evaluated as a directory by dovecot
2020-05-02 08:09:09 +02:00
Erik Wramner
0537c6f046
Merge pull request #1482 from youtous/feature-quota-optional
...
Feature quota optional.
2020-05-02 08:07:38 +02:00
Erik Wramner
2aa857ab6d
Merge pull request #1483 from youtous/sec-resource-exhaustion-attack
...
Reduce potential CPU exhaustion attack with `NO_RENEGOTIATION`
2020-05-02 08:03:48 +02:00
youtous
a2104d0802
update README.md / dovecot introduction
2020-05-02 00:47:32 +02:00
youtous
16cd4f9d2d
Reduce opportunities for a potential CPU exhaustion attack with NO_RENEGOTIATION
...
See https://en.wikipedia.org/wiki/Resource_exhaustion_attack
2020-05-02 00:04:05 +02:00
youtous
0c838706d0
Option to disable dovecot quota
2020-05-01 23:42:21 +02:00
youtous
e8581be2d3
Prevent sieve symlink to be evaluated as a directory by dovecot
2020-05-01 23:20:15 +02:00
Erik Wramner
46c50f93ad
Merge pull request #1479 from youtous/fix-ldap-quotas
...
fix 1478
2020-04-30 16:54:55 +02:00
youtous
3aeacef125
remove start-mailserver nested conditions dovecot quota
2020-04-30 16:11:45 +02:00
youtous
d45e6b1c22
#fix 1478
2020-04-30 12:47:12 +02:00
Erik Wramner
35f473ad12
Merge pull request #1474 from polarathene/chore/remove-obsolete-param-usetls
...
chore: Remove obsolete postfix parameter `smtpd_use_tls`
2020-04-30 08:02:11 +02:00
Brennan Kinney
76594c21c4
Add note about tls_ssl_options = NO_COMPRESSION
...
[Postfix docs](http://www.postfix.org/postconf.5.html#tls_ssl_options ):
> Disable SSL compression even if supported by the OpenSSL library. Compression is CPU-intensive, and compression before encryption does not always improve security.
[Postfix mailing list discussion](http://postfix.1071664.n5.nabble.com/patch-mitigate-CRIME-attack-td57978.html ):
> The CRIME attack does not apply to SMTP, because unlike SMTP, there is no javascript in SMTP clients that makes them send thousands of email messages with chosen plaintext compressed together in the same packet with SASL credentials or other sensitive data.
> The auditor completely failed to take the context into account.
[Mailing list discussion of potential compression CRIME-like attack](https://lists.cert.at/pipermail/ach/2014-December/001660.html )
> keeping compression disabled is a good idea.
If you need a good test score, PCI compliance will likely flag compression despite not having any known risk with non-HTTP TLS.
2020-04-29 19:41:08 +12:00
Erik Wramner
41ea52847c
Merge pull request #1473 from polarathene/chore/docs/clarify-port-descriptions
...
chore: Clarify exposed ports section on README
2020-04-29 08:21:03 +02:00