2820 Commits (60be06e298bf727c883465cf43b10ede6475c7df)
 

Author SHA1 Message Date
Dimitri Huisman 4bc0962fb8
Update docs/webadministration.rst
typo

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 9f4e906534
Update docs/webadministration.rst
Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
bors[bot] 92bf736da4
Merge #1635
1635: Add support for AUTH LOGIN authentication mechanism for relaying emai… r=mergify[bot] a=Diman0

…l via smart hosts.

## What type of PR?

Feature

## What does this PR do?

This PR adds support to postfix for AUTH LOGIN authentication mechanism. This enables using smart hosts which only offer AUTH LOGIN. 

### Related issue(s)
- Auto close an issue like: closes #1633

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [n/a] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
4 years ago
bors[bot] bf77d7c59d
Merge #1613 #1617 #1636
1613: Add warnings about Dockers IPv6 solution r=mergify[bot] a=Simonmicro

## What type of PR?

enhancement

## What does this PR do?
Added some warnings and explanations about the current Docker ipv6 situation as suggested in https://github.com/Mailu/Mailu/issues/1578.

### Related issue(s)
closes #1578

## Prerequistes
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


1617: relax TLS settings on port 25 r=mergify[bot] a=lub

Because basically every MTA out there uses opportunistic TLS _in
the best case_, it's actually counter productive to use such strict
settings.

The alternative to a handshake error is often an unencrypted submission,
which is basically the opposite of what strict ssl_protocols and
ssl_ciphers tries to achieve.

Even big and established providers like Amazon SES are incompatible with the current
settings.

This reverts commit 2ddf46ad2b.

## What type of PR?

bug-fix

## What does this PR do?

### Related issue(s)
- this reverts #1398
- the settings in this PR were initially introduced in #1321 and intentionally divert from tls.conf

cc @bladeswords as they introduced the current config

1636: Add config file for the "stale" robot to clean up issues r=mergify[bot] a=Nebukadneza

## What type of PR?

enhancement

## What does this PR do?

With this, and the already activated github-app, the stale robot will
mark and subsequently close issues as specified in the config.

Currently we mark after 21 days, close after 7 more days, and ignore
issues with an assigned priority or milestone.

### Related issue(s)
Related: #1582 

## Prerequistes
- No: In case of feature or enhancement: documentation updated accordingly
- No: Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Simonmicro <simon@simonmicro.de>
Co-authored-by: lub <git@lubiland.de>
Co-authored-by: Dario Ernst <dario.ernst@rommelag.com>
4 years ago
bors[bot] 2640a95b6e
Merge #1629
1629: Add mergify team-members r=Nebukadneza a=Nebukadneza

## What type of PR?

enhancement

## What does this PR do?

Sync the newly added team-members to the mergify team-regex so that they will benefit from the "team needs only one approve" rule


### Related issue(s)

## Prerequistes
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Dario Ernst <dario.ernst@rommelag.com>
4 years ago
Dario Ernst 8f49bb8d53 Add config file for the "stale" robot to clean up issues
With this, and the already activated github-app, the stale robot will
mark and subsequently close issues as specified in the config.

Currently we mark after 21 days, close after 7 more days, and ignore
issues with an assigned priority or milestone.
4 years ago
Dimitri Huisman a662c3f6f1 Changed change log file to correct filename 4 years ago
Dimitri Huisman d9e7b8249b Add support for AUTH LOGIN authentication mechanism for relaying email via smart hosts. 4 years ago
Dario Ernst 957b6ac104 Revert "Remove whitespaces in newlines"
This reverts commit 6c29d232e7.
4 years ago
Jon Wilson 5e32447f07 Change unbound logfile to the empty string
This is defined to send log messages to stderr, which is
what we want - fixes #1536 ("Could not open logfile /dev/stdout:
Permission denied")
4 years ago
Dario Ernst 7e1150d9e5 Sync mergify team-member list to actualy members 4 years ago
Dario Ernst 6c29d232e7 Remove whitespaces in newlines 4 years ago
bors[bot] 2d68fa42d4
Merge #1615
1615: Create ISSUE_TEMPLATE.md r=Nebukadneza a=Diman0

Add bug template to be used for reporting issues.

## What type of PR?

Feature?

## What does this PR do?
Add bug template which we will use to get better quality bug reports.

### Related issue(s)
- Auto close an issue like: closes #1331

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [N/A] In case of feature or enhancement: documentation updated accordingly
- [N/A] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <52963853+Diman0@users.noreply.github.com>
Co-authored-by: Dario Ernst <dario@kanojo.de>
4 years ago
lub e8b6747080 add newsfragemnt for #1618 4 years ago
lub 66db1f8fd0 add OCSP stapling to nginx.conf
It's not added in tls.conf, because apparently the mail ssl module
doesnt' support OCSP stapling.

https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_stapling
^ exists

https://nginx.org/en/docs/mail/ngx_mail_ssl_module.html#ssl_stapling
^ missing

When the configured certificate doesn't have OCSP information, it'll
just log a warning during startup.
4 years ago
Dario Ernst f3313fa26c Remove <> tags as they break markdown rendering 4 years ago
Dario Ernst 2e574d7ffb Fix issue-template whitespacing; Add some small formatting 4 years ago
lub 0cb0a26d95 relax TLS settings on port 25
Because basically every MTA out there uses opportunistic TLS _in
the best case_, it's actually counter productive to use such strict
settings.

The alternative to a handshake error is often an unencrypted submission,
which is basically the opposite of what strict ssl_protocols and
ssl_ciphers tries to achieve.

Even big and established providers like Amazon SES are incompatible with the current
settings.

This reverts commit 2ddf46ad2b.
4 years ago
Wolfgang Jung 1f4e9165fa Disables unencrypted http on TLS_ERROR 4 years ago
Dimitri Huisman 8b0e2edc52
Create ISSUE_TEMPLATE.md
Add bug template to be used for reporting issues.
4 years ago
Simonmicro eca00905cf
Minor formulation 4 years ago
Simonmicro 4a5678f571
Added explaining message about the current ipv6 problem 4 years ago
Simonmicro db440d46be
Added line of warning 4 years ago
Alexander Graf 8e14aa80ee documented options and added help text 4 years ago
Alexander Graf 9d2327b0f1 add space for more human readable indentation
add a newline before main sections
add some spaces to indent
4 years ago
Wolfgang Jung f999e3de08 Adds own server on port 80 for letsencrypt and redirect 4 years ago
lub 05e2af1802
fix small typo in Auth-SSL 4 years ago
lub d348477efc add towncrier for 1610 4 years ago
lub f0f873ffe7 add option to enforce inbound starttls 4 years ago
lub 714fa044e0 add towncrier for #1607 4 years ago
lub 426355f6b8 add some docs about _FILE variables 4 years ago
lub 02cfe326d3 support using files for SECRET_KEY and DB_PW
this enables usage of e.g. docker swarm secrets instead of exposing the
passwords directly via environment variables

just use DB_PW_FILE and SECRET_KEY_FILE instead of DB_PW and SECRET_KEY
4 years ago
Alexander Graf ffbeabeb6f updated test to use --verbose flag
--verbose (or -v) is now a flag and not an option
4 years ago
Alexander Graf 85de702129 small typo. Change 'omitting' to 'commiting' 4 years ago
Alexander Graf 0cf91f35a4 moved change log entry to towncrier 4 years ago
bors[bot] 550065b043
Merge #1601
1601: Fixing documentation minor typo r=mergify[bot] a=akevinieron

## What type of PR?
Documentation

## What does this PR do?
Fixing minor typo on certificate section

## Related issue(s)
N/A

Co-authored-by: Kevin Jimenez <kevinjimenezlorenzo@gmail.com>
4 years ago
Alexander Graf bc9362685b Merge remote-tracking branch 'upstream/master' into import-export 4 years ago
Alexander Graf 3a5a15a5e6 updated documentation and changelog
added some documentation for cli commands config-dump and config-update
4 years ago
Alexander Graf 69ccf791d2 fixed data import via from_dict
- stabilized CommaSeparatedList by sorting values
- CommaSeparatedList can now handle list and set input

- from_dict now handles mapped keys
- from_dict now handles null values

- class Domain: handle dkim-key None correctly
- class User: delete obsolete keys after converting
- class Alias: now uses Email._dict_input
4 years ago
Alexander Graf 190e7a709b renamed config-dump option --verbose to --full 4 years ago
bors[bot] 61e06ebbf9
Merge #1603
1603: fixed workflow example in documentation r=mergify[bot] a=ghostwheel42

## What type of PR?

documentation

## What does this PR do?

fix error in workflow example. use "git remote add" to add upstream as remote.

### Related issue(s)

-/-

Co-authored-by: Alexander Graf <agraf@kevag-telekom.de>
4 years ago
Alexander Graf 5c0efe82cf implemented config_update and config_dump
enhanced data model with to_dict and from_dict methods
added config_dump function to manage command
config_update now uses new data model methods
4 years ago
Alexander Graf c26ddd3c68 fixed user's destination property
self.forward_destination is a list (and not string)
4 years ago
Alexander Graf 5dfccdafe9 fixed some minor typos, removed unused variable 4 years ago
Alexander Graf 669d8da9ac fixed workflow example in documentation
use "git remote add" instead of "git add remote"
4 years ago
Kevin Jimenez b86dc12c1f
Fixing documentation minor typo 4 years ago
bors[bot] f612758a4a
Merge #1599
1599: Fix hardcoded reference to admin container. r=mergify[bot] a=Nebukadneza

Superseding #1330 

## What type of PR?

big-fix

## What does this PR do?

Fixes a hardcoded reference to ``admin`` container which may or may not be called ``admin`` in reality, since the user may eventually to name the container otherwise.

### Related issue(s)
- closes #1323
- subsumes #1324 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- Minor bug-fix, no additional documentation needed.


Co-authored-by: Richard Gomes <rgomes.info@gmail.com>
4 years ago
bors[bot] 7e5991796f
Merge #1600
1600: Force setup-file download scheme to HTTPS r=mergify[bot] a=Nebukadneza



## What type of PR?

bug-fix

## What does this PR do?
Up until now HTTPS was only offered by redirect, making MitM possible
before server redirect hit the client.
Add scheme-force to HTTPS to the url-generation.

### Related issue(s)
- fixes #963 

## Prerequistes
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Dario Ernst <dario.ernst@rommelag.com>
4 years ago
bors[bot] ac3dfd5cde
Merge #1553
1553: Added FAQ about SMTP Banner r=mergify[bot] a=arother

## What type of PR?
documentation

## What does this PR do?
Adding FAQ about SMTP Banner

### Related issue(s)
- closes #1368 

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

Co-authored-by: Andreas Rother <andreas@rother.org>
Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dario Ernst 9a440e2604 Force setup-file download scheme to HTTPS
Up until now HTTPS was only offered by redirect, making MitM possible
before server redirect hit the client.
Add scheme-force to HTTPS to the url-generation.

fixes #963
4 years ago