youtous
d829905cf7
init spams to junk
2020-05-03 10:33:28 +02:00
Erik Wramner
7eacb4cfc0
Merge pull request #1488 from VanVan/patch-2
...
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
2020-05-03 09:12:45 +02:00
VanVan
df55196d69
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
...
SPAMASSASSIN_SPAM_TO_INBOX=1 default for new user
2020-05-02 21:13:54 +02:00
Erik Wramner
23eb7c42ab
Merge pull request #1481 from youtous/fix-sieve-folder
...
Prevent sieve symlink to be evaluated as a directory by dovecot
2020-05-02 08:09:09 +02:00
Erik Wramner
0537c6f046
Merge pull request #1482 from youtous/feature-quota-optional
...
Feature quota optional.
2020-05-02 08:07:38 +02:00
Erik Wramner
2aa857ab6d
Merge pull request #1483 from youtous/sec-resource-exhaustion-attack
...
Reduce potential CPU exhaustion attack with `NO_RENEGOTIATION`
2020-05-02 08:03:48 +02:00
youtous
a2104d0802
update README.md / dovecot introduction
2020-05-02 00:47:32 +02:00
youtous
16cd4f9d2d
Reduce opportunities for a potential CPU exhaustion attack with NO_RENEGOTIATION
...
See https://en.wikipedia.org/wiki/Resource_exhaustion_attack
2020-05-02 00:04:05 +02:00
youtous
0c838706d0
Option to disable dovecot quota
2020-05-01 23:42:21 +02:00
youtous
e8581be2d3
Prevent sieve symlink to be evaluated as a directory by dovecot
2020-05-01 23:20:15 +02:00
Erik Wramner
46c50f93ad
Merge pull request #1479 from youtous/fix-ldap-quotas
...
fix 1478
2020-04-30 16:54:55 +02:00
youtous
3aeacef125
remove start-mailserver nested conditions dovecot quota
2020-04-30 16:11:45 +02:00
youtous
d45e6b1c22
#fix 1478
2020-04-30 12:47:12 +02:00
Erik Wramner
35f473ad12
Merge pull request #1474 from polarathene/chore/remove-obsolete-param-usetls
...
chore: Remove obsolete postfix parameter `smtpd_use_tls`
2020-04-30 08:02:11 +02:00
Brennan Kinney
76594c21c4
Add note about tls_ssl_options = NO_COMPRESSION
...
[Postfix docs](http://www.postfix.org/postconf.5.html#tls_ssl_options ):
> Disable SSL compression even if supported by the OpenSSL library. Compression is CPU-intensive, and compression before encryption does not always improve security.
[Postfix mailing list discussion](http://postfix.1071664.n5.nabble.com/patch-mitigate-CRIME-attack-td57978.html ):
> The CRIME attack does not apply to SMTP, because unlike SMTP, there is no javascript in SMTP clients that makes them send thousands of email messages with chosen plaintext compressed together in the same packet with SASL credentials or other sensitive data.
> The auditor completely failed to take the context into account.
[Mailing list discussion of potential compression CRIME-like attack](https://lists.cert.at/pipermail/ach/2014-December/001660.html )
> keeping compression disabled is a good idea.
If you need a good test score, PCI compliance will likely flag compression despite not having any known risk with non-HTTP TLS.
2020-04-29 19:41:08 +12:00
Erik Wramner
41ea52847c
Merge pull request #1473 from polarathene/chore/docs/clarify-port-descriptions
...
chore: Clarify exposed ports section on README
2020-04-29 08:21:03 +02:00
Erik Wramner
4a1cbd705b
Merge pull request #1463 from youtous/pr-fix-dhe
...
Fix issue #1461- use a recommended dh group instead of a self-generated one
2020-04-29 08:00:16 +02:00
Brennan Kinney
e7de9bceaf
chore: Remove obsolete postfix parameter smtpd_use_tls
...
See: http://www.postfix.org/postconf.5.html#smtpd_tls_security_level
> this overrides the obsolete parameters `smtpd_use_tls` and `smtpd_enforce_tls`.
2020-04-27 23:24:26 +12:00
youtous
80bd3a8c85
Update test/mail_dhparams_manual_not_one_dir.bats
...
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2020-04-27 10:42:47 +02:00
youtous
3e3f5d557b
Update test/mail_dhparams_manual_one_dir.bats
...
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2020-04-27 10:42:39 +02:00
youtous
27cbdeeb6a
Update test/mail_dhparams_default.bats
...
Co-Authored-By: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2020-04-27 10:42:24 +02:00
youtous
e680c349b1
test wait setup for // containers
2020-04-27 10:28:24 +02:00
youtous
149a10272c
improve dhe tests documentation
2020-04-27 09:57:36 +02:00
Brennan Kinney
9882fc54f7
chore: Clarify exposed ports section on README
2020-04-27 18:23:32 +12:00
youtous
dff7355fa9
fix #1459
2020-04-26 23:07:34 +02:00
youtous
4d031f73e3
test dhparams ONE_DIR both cases
2020-04-26 22:25:48 +02:00
youtous
03b8f87ffc
update dovecot conf comment
2020-04-26 22:23:51 +02:00
youtous
47fac2706f
use ffdhe4096 for DHE params
...
use by default ffdhe4096 for DHE params
use by default ffdhe4096 for DHE params
2020-04-26 22:23:51 +02:00
youtous
f60de0c66e
init tests cases ffdhe4096
2020-04-26 22:23:51 +02:00
Erik Wramner
b168b73910
Merge pull request #1469 from youtous/pr-quota-feature
...
Feature: quota per mailbox
2020-04-26 18:03:23 +02:00
youtous
bdcf5e0cf1
fix send mail test quota
...
fix quota warning test: wait for postfix to be UP
increase postfix restart delay
2020-04-24 19:03:27 +02:00
youtous
2e149b74c2
fix async quota tests
2020-04-24 17:03:09 +02:00
youtous
04de46dc41
test quota reached
2020-04-24 15:53:44 +02:00
youtous
2527ebfaf2
added dovecot quota feature
...
add postfix service quota check
check-for-changes on quotas
setquota command
fix checkforchanges quota
addquota verify user exists
add setquota in setup.sh
merging addquota into setquota
test quota commands
add ldap tests for dovecot quota
fix smtp only quota postfix rules
test postfix conf
add quota test integration
add quota exceeded test
add wait analyze
fix tests
fix setup typo
add test fixes
fix error output
wip
update startup rules
fix setup
fix setup tests
fix output commands
remove quota on remove user
try to fix sync limit mails
check if file exists
fix path
change used quota user
fix post size
check if quota file exists
update tests
configure virtualmailbox limit for dovecot
last fix
fix quota expr
relax dovecot tests
auto create dovecot-quotas
fix dovecot apply quota test
wip quota warning
trying to fix get dovadm quota
dovecot applies fix
fix quota warning lda path
test count mail on quota
fix quota warning permissiosn
fix test
2020-04-24 14:56:15 +02:00
Erik Wramner
6cb3069c60
Merge pull request #1467 from casperklein/patch-1
...
rsyslog logrotate warning fixed
2020-04-23 14:16:57 +02:00
Casper
ccd838c027
rsyslog logrotate warning fixed
...
Fix for https://github.com/tomav/docker-mailserver/issues/1465
2020-04-23 00:39:56 +02:00
Erik Wramner
e85f3074fb
Merge pull request #1462 from casperklein/patch-1
...
AllowSupplementaryGroups change removed.
2020-04-22 21:44:36 +02:00
Casper
b21e14a1c2
AllowSupplementaryGroups change removed
...
1. "AllowSupplementaryGroups false" is no longer present in /etc/clamav/clamd.conf, therefore the command does not work anymore.
2. Since Clamd 0.100.0, "AllowSupplementaryGroups" is deprecated. See: https://blog.clamav.net/2018/04/clamav-01000-has-been-released.html
"Deprecation of the AllowSupplementaryGroups parameter statement in clamd, clamav-milter, and freshclam. Use of supplementary is now in effect by default."
2020-04-20 21:11:17 +02:00
Erik Wramner
8834242fc3
Merge pull request #1458 from casperklein/patch-1
...
Cleanup obsolete file removal
2020-04-20 11:20:37 +02:00
Casper
78fd5b8760
-f option removed from rm commands
...
Let build fail, if file does not exist.
2020-04-19 11:39:43 +02:00
Casper
5d79e56bf0
Cleanup obsolete file removal
...
`/etc/cron.weekly/fstrim` does not exist, so no need to remove it.
2020-04-18 13:09:50 +02:00
Erik Wramner
df26d35695
Merge pull request #1450 from casperklein/patch-1
...
Upgrade packages, Debian base image not updated often enough.
2020-04-12 08:31:40 +02:00
Casper
d56a0f86d5
hadolint ignore 3005 added
2020-04-12 03:18:08 +02:00
Erik Wramner
d92f0e2199
Merge pull request #1451 from erik-wramner/fix_792_error_mail
...
Fix error #792 in logrotate
2020-04-11 10:16:15 +02:00
Erik Wramner
e8a0cdc556
Fix error #792 in logrotate
2020-04-11 09:59:07 +02:00
Erik Wramner
fba3d785ae
Merge pull request #1424 from nknapp/master
...
Use upstream rules for dovecot fail2ban.
2020-04-11 09:33:30 +02:00
Nils Knappmeier
370d08fd33
fail2ban: use filter.d/dovecot.conf from distribution
...
closes #972
2020-04-10 22:21:40 +02:00
Casper
7e96ebe8b9
Upgrade packages
...
Some packages from the base image are upgradable. For example, that's the case for `libgnutls30` at the moment.
2020-04-10 12:47:58 +02:00
Erik Wramner
c24612e992
Removed commented lines
2020-04-05 12:01:57 +02:00
Erik Wramner
e81704483e
Merge pull request #1447 from erik-wramner/next_to_master
...
Merge next branch with Debian Buster into master.
2020-04-05 11:33:51 +02:00