Commit graph

661 commits

Author SHA1 Message Date
André Stein a9c4bb3615 Adapted Postfix configuration to block typical spam sending
mail servers using an enhanced client, sender and helo
restriction configuration.

The configuration has been adapted using this blog post:
https://www.webstershome.co.uk/2014/04/07/postfix-blocking-spam-enters-server/

Basically mail servers having invalid configuration (as e.g. sending
from and dynamic IP or a misconfigured hostname) will have their
mails rejected.

Additionnally three RBL servers are used to detect spam sending
IPs: dnsbl.sorbs.net, zen.spamhaus.org and bl.spamcop.net.

The results of a 12h test drive using a 100+ daily spam
mail account (SpamAssasin was always enabled, just counting
delivered mails to inbox not counting what SA detected):
- Before: 34 incoming mails
- Afer change: 6 incoming mails (82% reduction)

Fixes #161.
2016-04-27 08:23:12 +02:00
Thomas VIAL 049033f4c5 Merge pull request #164 from tomav/added-tests-on-letsencrypt
Added tests on letsencrypt - #109
2016-04-26 21:00:24 +02:00
Thomas VIAL b49f887bad
Added missing newline 2016-04-26 20:20:54 +02:00
Thomas VIAL 9fbe20f3d0
Added tests on letsencrypt - #109 2016-04-26 19:39:08 +02:00
Thomas VIAL 3328e4c79d Merge pull request #163 from 00angus/v2_tests_with_docker
Changed few docker commands used in tests:
2016-04-26 10:49:55 +02:00
angus 86080ba378 Changed few docker commands used in tests:
removed hardcoded image name. Now the image to be used
is extracted directly from running instances.
2016-04-26 09:50:10 +02:00
Thomas VIAL e8d4cc815b Merge pull request #160 from tomav/issue-159
Fixed #159: postfix-accounts.cf now generated with script + fixed lin…
2016-04-25 16:14:11 +02:00
Thomas VIAL 9415c099cc
Fixed #159: postfix-accounts.cf now generated with script + fixed line endings using sed in start-mailserver.sh 2016-04-25 16:00:39 +02:00
Thomas VIAL f8268f641a
Fixed link to script 2016-04-24 18:12:36 +02:00
Thomas VIAL afe8cfb610 Merge pull request #157 from tomav/refactored-documentation-in-readme-and-wiki
Refactored documentation and Wiki
Moved docker-compose.yml.dist to version 2 with data volume container
Renamed DMS_SSL to SSL_TYPE
Refactored start-mailserver to avoid DKIM errors
2016-04-24 17:51:51 +02:00
Thomas VIAL 9e1c4783a8
Refactored documentation and Wiki
Moved docker-compose.yml.dist to version 2 with data volume container
Renamed DMS_SSL to SSL_TYPE
Refactored start-mailserver to avoid DKIM errors
2016-04-24 17:37:10 +02:00
Thomas VIAL 2b4b829067 Merge pull request #156 from tomav/refactored-dockerfile
Refactored Dockerfile to reduce layers and image size
2016-04-24 14:22:58 +02:00
Thomas VIAL 6faf5ce88b
Refactored Dockerfile to reduce layers and image size 2016-04-24 13:46:48 +02:00
Thomas VIAL 070285d305 Merge pull request #155 from tomav/moving-fail2ban-to-0.9.x
Moved Fail2ban to 0.9.x because OS version was buggy
2016-04-23 21:06:46 +02:00
Thomas VIAL 8d23df41fa
Kept @00angus filter file for dovecot 2016-04-23 20:20:25 +02:00
Thomas VIAL b9e1903083
- Fixed #152
- Moved Fail2ban to 0.9.x because OS version was buggy
- Improved documentation
- Reduce image size
2016-04-23 12:09:28 +02:00
Thomas VIAL 2f1be46c91
Fixed typo 2016-04-23 09:27:47 +02:00
Thomas VIAL 81bd1f5212
Fixed formatting 2016-04-23 00:35:40 +02:00
Thomas VIAL b78ae12cf0
Fixed typo 2016-04-23 00:34:03 +02:00
Thomas VIAL 4414976e32
Added information regarding default value 2016-04-23 00:32:43 +02:00
Thomas VIAL 43d2c0c4a5
Improved documentation 2016-04-23 00:31:15 +02:00
Thomas VIAL c441a55476 Merge pull request #153 from tomav/fixed-fail2ban-config-and-tests
Fixed #152 Fail2ban config and tests
2016-04-22 21:16:20 +02:00
Thomas VIAL 0322d890cd
Fixed i#152 Fail2ban config and tests 2016-04-22 17:51:14 +02:00
Thomas VIAL 2c4d7a425a Merge pull request #149 from tomav/reduce-v2-size
Changed Dockerfile to reduce image size on #109
2016-04-21 18:23:02 +02:00
Thomas VIAL 0a0a0cab80
Changed Dockerfile to reduce image size on #109 2016-04-21 18:04:33 +02:00
Thomas VIAL 1539fd6b82 Merge pull request #148 from KyleOndy/v2-Readme-Formatting
V2 readme formatting
2016-04-21 17:13:55 +02:00
Kyle Ondy ef2759c6c6
Convert tab to spaces in the readme
Call me petty, but things like this bother me more than they should.
2016-04-21 09:29:57 -04:00
Kyle Ondy d9295ccc13
Remove trailing whitespace in the readme 2016-04-21 09:28:23 -04:00
Thomas VIAL bc7b42e4bc Fixed tests for #143 2016-04-21 12:15:34 +02:00
Thomas VIAL f5f6637233 Fixed tests for #143 2016-04-21 11:42:41 +02:00
Thomas VIAL b58d0d33d6 Fixing #143 2016-04-21 01:08:14 +02:00
Thomas VIAL a2109ff287 Merge branch 'v2' of github.com:tomav/docker-mailserver into v2 2016-04-20 23:02:23 +02:00
Thomas VIAL 4f611eec1d Fixed #143 adding a OpenDKIM keys generator and its integration tests 2016-04-20 23:01:32 +02:00
Thomas VIAL 7579be4e61 Merge pull request #144 from 00angus/v2-fix_cron
Fix a problem in the reload function of spamassassin cron.daily script.
2016-04-20 22:52:31 +02:00
angus e25bbb965c Fix a problem in the reload function of spamassassin cron.daily script.
(see issue #137 on github).
2016-04-20 22:37:06 +02:00
Thomas VIAL c311ef0b5a Fixed typos 2016-04-20 11:40:31 +02:00
Thomas VIAL 2b8bf1b80d Changed documentation for #109 2016-04-20 10:15:51 +02:00
Thomas VIAL 003b89c98b Fixed typo / text format 2016-04-19 23:25:54 +02:00
Thomas VIAL c8d6f7451c Merge pull request #139 from 00angus/v2-fixes
Fixes paths for SSL setup, spamassassin and postfix addon config.
2016-04-19 09:24:12 +02:00
angus d90e67e920 Fixes paths for SSL setup, spamassassin and postfix addon config.
Fixes error from logrotate when fail2ban is disabled (failure
when reloading the service).
2016-04-19 00:30:56 +02:00
Thomas VIAL c63af94788 Changed log location using Dockerfile #109 2016-04-18 23:38:52 +02:00
Thomas VIAL 3f79b6ef7a Changed log configuration to Dockerfile #109 2016-04-18 23:21:03 +02:00
Thomas VIAL 2c6fdf51c1 Changed log configuration to Dockerfile instead of start-mailserver.cf 2016-04-18 23:18:19 +02:00
Thomas VIAL 180390107e Changed Fail2ban config for #109 2016-04-18 22:57:39 +02:00
Thomas VIAL eb11714550 Fixing tests 2016-04-17 23:44:41 +02:00
Thomas VIAL 341aaab9d5 Fixing tests 2016-04-17 23:16:13 +02:00
Thomas VIAL 72d7207690 Fixing last tests on fail2ban regarding #102 and docker-mailserver v2 2016-04-17 22:59:35 +02:00
Thomas VIAL 4d2ec79c18 Merge pull request #136 from 00angus/v2-CItests
V2 CI-tests
2016-04-17 22:41:31 +02:00
angus a6d666b450 Improvements on CI tests: now user account checks are working.
Need to work on fail2ban tests.
2016-04-17 20:10:09 +02:00
angus b35c79a8dd Adapted the user account setup for the test environment to the new v2 approach
(encrypted passwords).
Modified integration tests to adapt to dovecot.

Need to be worked out:
- user accounts checks: dir layout under dovecot probably include dynamic filenames.
  How can we handle that ?
- fail2ban container cannot ban via iptables if we do not run it with special
  privileges.
2016-04-17 12:01:05 +02:00