github-com-docker-mailserver/docker-mailserver
1
0
Fork 0
mirror of https://github.com/docker-mailserver/docker-mailserver.git synced 2024-01-19 02:48:50 +00:00
Code Issues Projects Releases Wiki Activity
2533 commits 5 branches 24 tags 30 MiB
Commit graph

2533 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
rhyst 087a4ae750 Adding instructions for Caddy V2 2020-05-11 17:52:25 +01:00
Erik Wramner 20ec089dd0 Added mail_max_userip_connections 2020-05-11 11:54:36 +02:00
Erik Wramner f0defda2a1
Merge pull request #1506 from youtous/fix-postfix-information-banner 
Show only host name in Postfix information banner
 2020-05-11 09:14:35 +02:00
youtous 04059cd618
MAIL-8818 - Postfix information leakage 
To prevent announcing software or version to malicious people or scripts, it is advised to hide such information.


This information is provided as part of the Lynis community project. It is related to Lynis control MAIL-8818 and should be considered as-is and without guarantees.

https://cisofy.com/lynis/controls/MAIL-8818/
 2020-05-10 16:04:53 +02:00
Erik Wramner 356fb0793e
Merge pull request #1505 from youtous/test-postfix-inet 
test postfix inet
 2020-05-10 08:32:08 +02:00
youtous 215c042bbe update image: tvial/docker-mailserver ---> always use latest (https://github.com/tomav/docker-mailserver/issues/1504) 2020-05-09 23:37:34 +02:00
youtous c65ffb44a1
test postfix inet 2020-05-09 22:42:56 +02:00
msheakoski fa387eff1f Update config file mentioned in cron instructions to env-mailserver 2020-05-08 18:15:06 -04:00
msheakoski 8b9b4d3b69 Update config file mentioned in cron instructions to env-mailserver 2020-05-08 18:12:24 -04:00
Erik Wramner 5859c8b0e3
Merge pull request #1495 from youtous/update-issue-template 
new issue format
 2020-05-07 18:58:47 +02:00
youtous 6b071c5c26
new issue format 2020-05-07 10:19:29 +02:00
Erik Wramner 43621e744e
Merge pull request #1494 from youtous/fix-comments-configs 
support comments in .cf files
 2020-05-07 08:32:40 +02:00
youtous d0f7257333
support comments in .cf files 2020-05-06 22:59:55 +02:00
Erik Wramner b6bc3bc073
Merge pull request #1491 from youtous/fix-global-sieve 
Fix sieve scripts not loaded
 2020-05-05 07:47:23 +02:00
youtous 32d16084ec
sieve scripts using alphabetical order 2020-05-04 16:13:47 +02:00
Erik Wramner 2e0284ded3 Added note about caddy 2020-05-04 08:01:53 +02:00
youtous 92414b7eba
sieve after/before use folder instead of individual listing 
Loading sieve scripts using a directory scheme permits to handle multi scripts wtihout defining individual sieve_before/sieve_after
 2020-05-04 00:27:29 +02:00
Erik Wramner a12cd9a26d
Merge pull request #1485 from youtous/feature-spam-to-junk 
Feature: Spam to Junk folder
 2020-05-03 12:56:02 +02:00
youtous 30262128f4
raise a warning when SPAMASSASSIN_SPAM_TO_INBOX isn't explicitly defined 2020-05-03 10:33:50 +02:00
youtous a37049b3fe
updating default env values 2020-05-03 10:33:50 +02:00
youtous 578d6c528f
Update SPAMASSASSIN_SPAM_TO_INBOX doc 2020-05-03 10:33:28 +02:00
youtous 15dd63d566
add test case no move to Junk 2020-05-03 10:33:28 +02:00
youtous d829905cf7
init spams to junk 2020-05-03 10:33:28 +02:00
Erik Wramner 7eacb4cfc0
Merge pull request #1488 from VanVan/patch-2 
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
 2020-05-03 09:12:45 +02:00
VanVan df55196d69
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user 
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
 2020-05-02 21:13:54 +02:00
youtous 5bb68e9905 Update SA-learn 2020-05-02 19:41:36 +02:00
youtous f5f7fc8879 Add MOVE_SPAM_TO_JUNK 2020-05-02 19:40:16 +02:00
lukas 57837ccd92 Updated FAQ and Tips (markdown) 2020-05-02 11:55:27 +02:00
Erik Wramner 23eb7c42ab
Merge pull request #1481 from youtous/fix-sieve-folder 
Prevent sieve symlink to be evaluated as a directory by dovecot
 2020-05-02 08:09:09 +02:00
Erik Wramner 0537c6f046
Merge pull request #1482 from youtous/feature-quota-optional 
Feature quota optional.
 2020-05-02 08:07:38 +02:00
Erik Wramner 2aa857ab6d
Merge pull request #1483 from youtous/sec-resource-exhaustion-attack 
Reduce potential CPU exhaustion attack with `NO_RENEGOTIATION`
 2020-05-02 08:03:48 +02:00
youtous a2104d0802
update README.md / dovecot introduction 2020-05-02 00:47:32 +02:00
youtous 16cd4f9d2d
Reduce opportunities for a potential CPU exhaustion attack with NO_RENEGOTIATION 
See https://en.wikipedia.org/wiki/Resource_exhaustion_attack
 2020-05-02 00:04:05 +02:00
youtous 19a86565d7 Updated Configure Accounts (markdown) 2020-05-01 23:53:37 +02:00
youtous 478d073deb quota update 2020-05-01 23:53:23 +02:00
youtous 0c838706d0
Option to disable dovecot quota 2020-05-01 23:42:21 +02:00
youtous e8581be2d3
Prevent sieve symlink to be evaluated as a directory by dovecot 2020-05-01 23:20:15 +02:00
Erik Wramner 46c50f93ad
Merge pull request #1479 from youtous/fix-ldap-quotas 
fix 1478
 2020-04-30 16:54:55 +02:00
youtous 3aeacef125
remove start-mailserver nested conditions dovecot quota 2020-04-30 16:11:45 +02:00
youtous d45e6b1c22
#fix 1478 2020-04-30 12:47:12 +02:00
Erik Wramner 35f473ad12
Merge pull request #1474 from polarathene/chore/remove-obsolete-param-usetls 
chore: Remove obsolete postfix parameter `smtpd_use_tls`
 2020-04-30 08:02:11 +02:00
Brennan Kinney 76594c21c4
Add note about tls_ssl_options = NO_COMPRESSION 
[Postfix docs](http://www.postfix.org/postconf.5.html#tls_ssl_options):

> Disable SSL compression even if supported by the OpenSSL library. Compression is CPU-intensive, and compression before encryption does not always improve security.

[Postfix mailing list discussion](http://postfix.1071664.n5.nabble.com/patch-mitigate-CRIME-attack-td57978.html):

> The CRIME attack does not apply to SMTP, because unlike SMTP, there is no javascript in SMTP clients that makes them send thousands of email messages with chosen plaintext compressed together in the same packet with SASL credentials or other sensitive data.
> The auditor completely failed to take the context into account.

[Mailing list discussion of potential compression CRIME-like attack](https://lists.cert.at/pipermail/ach/2014-December/001660.html)

> keeping compression disabled is a good idea.

If you need a good test score, PCI compliance will likely flag compression despite not having any known risk with non-HTTP TLS.
 2020-04-29 19:41:08 +12:00
Erik Wramner 41ea52847c
Merge pull request #1473 from polarathene/chore/docs/clarify-port-descriptions 
chore: Clarify exposed ports section on README
 2020-04-29 08:21:03 +02:00
Erik Wramner 4a1cbd705b
Merge pull request #1463 from youtous/pr-fix-dhe 
Fix issue #1461- use a recommended dh group instead of a self-generated one
 2020-04-29 08:00:16 +02:00
Brennan Kinney e7de9bceaf
chore: Remove obsolete postfix parameter smtpd_use_tls 
See: http://www.postfix.org/postconf.5.html#smtpd_tls_security_level

> this overrides the obsolete parameters `smtpd_use_tls` and `smtpd_enforce_tls`.
 2020-04-27 23:24:26 +12:00
youtous 80bd3a8c85
Update test/mail_dhparams_manual_not_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:47 +02:00
youtous 3e3f5d557b
Update test/mail_dhparams_manual_one_dir.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:39 +02:00
youtous 27cbdeeb6a
Update test/mail_dhparams_default.bats 
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
 2020-04-27 10:42:24 +02:00
youtous e680c349b1
test wait setup for // containers 2020-04-27 10:28:24 +02:00
youtous 149a10272c
improve dhe tests documentation 2020-04-27 09:57:36 +02:00