4200 Commits (64a132fdd98b1a359e02dff74fc4210829b8007e)
 

Author SHA1 Message Date
Florent Daigniere f6ebf9fda2
Update tls.conf 3 years ago
Florent Daigniere 68ff6c8337
Use ISRG_ROOT_X1 as DST_ROOT is not available 3 years ago
Sebastian Klemke a6b4b9ae52 Removed ssl_trusted_certificate configuration setting from nginx.
Resolves an nginx startup issue when letsencrypt or
mail-letsencrypt is enabled.

Fixes #2199
3 years ago
bors[bot] 51a70bcc54
Merge #2193
2193: Update php.ini r=mergify[bot] a=audioscavenger

matching rainloop php to roundcube's: timezone is a parameter in mailu.env

## What type of PR?

bug-fix

## What does this PR do?

### Related issue(s)
- none


Co-authored-by: Eric <dev@derewonko.com>
3 years ago
bors[bot] 3c99bbf695
Merge #2190
2190: Tag for release is correctly tagged to branch x.y. r=mergify[bot] a=Diman0

## What type of PR?

Bug-fix

## What does this PR do?
CI/CD had two issues which are addressed by this PR.
- calculating new x.y.z failed for x.y.10+
- tag was not created for branch x.y, but master. This resulted in the release pointing to the wrong commit.

backport is required to make this workflow available for 1.9.

### Related issue(s)
- closes #2124 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
3 years ago
bors[bot] 422653a56e
Merge #2182
2182: disabled rsyslogd pidfile r=mergify[bot] a=packet23

## What type of PR?

bug-fix

## What does this PR do?

The change disables the pidfile for rsyslog in the mailu/postfix container image. This fixes an issue where rsyslogd exits after `docker-compose up -d` / `docker-compose stop` / `docker-compose start` with
```
smtp_1      | rsyslogd: pidfile '/var/run/rsyslogd.pid' and pid 8 already exist.
smtp_1      | rsyslogd: run failed with error -3000 (see rsyslog.h or try https://www.rsyslog.com/e/3000 to learn what that number means)
```
due to a conflict with already existing pidfile.

### Related issue(s)

## Prerequisites


Co-authored-by: Sebastian Klemke <3669903+packet23@users.noreply.github.com>
3 years ago
mnival 71d0ec5eda Create 2196.bugfix 3 years ago
mnival 42118109fb Create 2195.bugfix 3 years ago
mnival 5695bbb0f6 Configuring pwstore_scheme in carddav plugin with des_key because Mailu is incompatible with encrypted 3 years ago
Eric c6d220cce2
Create 2193.bugfix
matching rainloop php to roundcube's: timezone is a parameter in mailu.env
3 years ago
Eric d9ea9f7009
Update php.ini
matching rainloop php to roundcube's: timezone is a parameter in mailu.env
3 years ago
mnival 4b9781210f Add /overrides directory in include 3 years ago
Dimitri Huisman 413ecea479 Switched from "$(/usr/bin/git log -1 --format='%H')" to "$(/usr/bin/git rev-parse HEAD)" 3 years ago
Dimitri Huisman 5cef8925dc Remove superfluous parentheses 3 years ago
Dimitri Huisman cf328cdf33 Tag for release is correctly tagged to branch x.y. 3 years ago
bors[bot] 2c1d1e995d
Merge #2161
2161: fix typo r=mergify[bot] a=erikvimz

## What type of PR?

documentation

## What does this PR do?

fixes a typo

Co-authored-by: Erik Kralj <erik@kralj.dev>
3 years ago
Eric c62947aec1
Update reverse.rst
updated the external proxy location pattern and added a note: do not add a / at the end
3 years ago
Sebastian Klemke 89a86e9dda disabled rsyslogd pidfile 3 years ago
bors[bot] d3db047fcc
Merge #2179
2179: Fix resolver r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Switch to the new API to solve a k8s specific problem

### Related issue(s)
- #2177


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Billy Chan <shing@PC1>
3 years ago
Florent Daigniere b9e614145f there too 3 years ago
Billy Chan 27d917e3f1 🎨 use resolver.resolve 3 years ago
Florent Daigniere b7fb8c661a switch to new API 3 years ago
bors[bot] 23bd9075ce
Merge #2177
2177: Update start.py to fix the resolver test r=mergify[bot] a=shing6326

Use method resolve instead of query to fix the resolver test

## What type of PR?

bug-fix

## What does this PR do?

### Related issue(s)
- Mention an issue like: #001
- Auto close an issue like: closes #001

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: shing6326 <42719827+shing6326@users.noreply.github.com>
Co-authored-by: Billy Chan <shing@PC1>
3 years ago
Billy Chan 90394d7d8c 🎨 use resolver.resolve 3 years ago
shing6326 32446f03e7
Update start.py
fix missing leading . for the resolver test
3 years ago
bors[bot] c3af62ab03
Merge #2171
2171: fixed plugin path r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

use correct plugin path to verify plugin list

### Related issue(s)

closes: #2168

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
3 years ago
Alexander Graf 37855153b8
fixed plugin path 3 years ago
Erik Kralj 384d964f58
fix typo 3 years ago
bors[bot] 1e53530164
Merge #2144
2144: Enable unbound by default, warn if the DNS resolver doesn't work r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Enable unbound by default, warn if the DNS resolver doesn't work

### Related issue(s)
- close #2135

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Florent Daigniere <nextgens@users.noreply.github.com>
3 years ago
Florent Daigniere a9da0c084a
syntax error 3 years ago
Florent Daigniere a2f6243382
remove the error variable 3 years ago
Florent Daigniere b12616b93f
Make the recommendation clearer 3 years ago
bors[bot] e5aa48ad81
Merge #2158
2158: supply missing fields argument r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

adds missing argument "fields" to login form.

### Related issue(s)

- closes #2155

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
3 years ago
Alexander Graf f809be39bf
supply missing fields argument 3 years ago
bors[bot] e3e3700187
Merge #2150
2150: fix 2145: exceptions may be thrown when login is invalid or rate-limits exceeded r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Exceptions may be thrown when login is invalid or rate-limits exceeded for those running very recent builds of 1.9

For some reason I haven't caught it while testing #2130... that's when it was introduced.

### Related issue(s)
- close #2145
- close #2146
- #2130



Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3 years ago
bors[bot] 42fceb622b
Merge #2149
2149: fix 2147: MESSAGE_SIZE_LIMIT wasn't working r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Set client_max_body_size in the server's scope.

I haven't tested it but it makes sense regardless.

### Related issue(s)
- closes #2147


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3 years ago
Florent Daigniere 7bd1fd3489 fix 2145 3 years ago
Florent Daigniere 6425f440d3 fix 2147 3 years ago
Florent Daigniere 70ea2a5be0 all containers 3 years ago
Florent Daigniere 8595893af9 doh 3 years ago
Florent Daigniere f4cb9de460 enable the resolver everywhere 3 years ago
Florent Daigniere 0f25075fa3 fix test 3 years ago
Florent Daigniere 0e9880f289 towncrier 3 years ago
Florent Daigniere 984ae8b2d3 enable unbound by default 3 years ago
Florent Daigniere 379fe18f7a test dns resolvers at startup 3 years ago
bors[bot] 94bbd25fe8
Merge #2141
2141: update roundcube to 1.5.2 (security fix) r=mergify[bot] a=willofr

New roundcube release (1.5.2) where a XSS is addressed: https://roundcube.net/news/2021/12/30/update-1.5.2-released

## What type of PR?
security fix

## What does this PR do?
Update roundcube from 1.5.1 to 1.5.2
This update fixes an XSS: https://roundcube.net/news/2021/12/30/update-1.5.2-released

### Related issue(s)
None

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: willofr <willofr@users.noreply.github.com>
3 years ago
bors[bot] a5f6f9676b
Merge #2140
2140: Fix 2138: Pin DANE with the full cert r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Pin the intermediates rather than the root for DANE. If you have setup TLSA records following previous suggestion from Mailu please update them.

This hasn't been tested.

The four options here are:
- stop suggesting DANE records
- send the root CA (4096 bits extra per handshake!)
- pin the intermediates : the downside is that these are only valid for 3y, see https://letsencrypt.org/certificates/ and we should pin 4: R3,R4,E1,E2
- setup a 'full' DANE record in DNS (this is what this PR does)

The high priority is warranted by the fact that some SMTP servers may not trust root CAs and may enforce DANE strictly (it may break things).

### Related issue(s)
- close #2138

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Florent Daigniere <nextgens@users.noreply.github.com>
3 years ago
Florent Daigniere 98973223fd
reduce TTL to 1d 3 years ago
willofr f330a518fa
Create 2141.bugfix 3 years ago
willofr 93a94d33ce
update roundcube to 1.5.2 (security fix)
New roundcube release (1.5.2) where a XSS is addressed: https://roundcube.net/news/2021/12/30/update-1.5.2-released
3 years ago