3981 Ревизии (d4e5db508406fab0020d9b3e18cb9ddb06187398)
 

Автор SHA1 Съобщение Дата
parisni 49c5c0eba6 Split mailu / roundcube db config
There is no reason to share the flavor since at least the dbname shall be different.
преди 4 години
Alexander Graf 3f23e199f6 modified generation of session key and added refresh
- the session key is now generated using
  - a hash of the uid seeded by the apps secret_key (size: SESSION_KEY_BITS)
  - a random token (size: 128 bits)
  - the session's creation time (size: 32 bits)

- redis server side sessions are now refreshed after 1/2 the session lifetime
  even if not modified
- the cookie is also updated if necessary
преди 4 години
Alexander Graf 9ef8aaf698 removed double confiog and fixed shaker преди 4 години
Alexander Graf a1fd44fced added lmtp: prefix and documentation преди 4 години
lub 587901ca51 fix comment in compose .env преди 4 години
lub 18f5a2fc11 update newsfragment #1694 преди 4 години
lub 40ad3ca032 only load zlib when compression is used преди 4 години
lub 2316ef1162 update compression algorithms for dovecot 3.3.14
xz is deprecated; lz4 and zstd were not present in our configs before
преди 4 години
Dimitri Huisman 21a362fdae Changed config-update to config-import in config-import description. преди 4 години
Linus Gasser ffa7562079
configurations changed place in 1.8 преди 4 години
bors[bot] 42cefab4c2
Merge #1760
1760: Security updates to postgresql r=mergify[bot] a=WebSpider

## What type of PR?

Security update

## What does this PR do?

It fixes vulnerabilities in the sudo package in the postgresql optional container documented in
CVE-2021-23240, CVE-2021-3156 and CVE-2021-23239

### Related issue(s)

None

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Nils Vogels <n.vogels@aves-it.nl>
преди 4 години
Florent Daigniere 875308d405 Revert "In fact it could be global"
This reverts commit f52984e4c3.
преди 4 години
Florent Daigniere feff121a9b Merge remote-tracking branch 'upstream/master' into credential-cache-simple преди 4 години
Florent Daigniere f52984e4c3 In fact it could be global преди 4 години
Florent Daigniere ae9206e968 Implement a simple credential cache преди 4 години
Dario Ernst 4dbefe8e3a
Merge pull request #1631 from toastboy70/bug/#1536
Change unbound logfile to the empty string
преди 4 години
Linus Gasser 1f2aee278c
Reflect override settings for postfix
Also added a stumbling stone when changing postfix.cf
преди 5 години
DjVinnii 60766f6d80 Add CHANGELOG fragments преди 5 години
DjVinnii 419fed5e6e Add language selector преди 5 години
Alexander Graf 731ce8ede9 fix permanent sessions. hash uid using SECRET_KEY
clean session in redis only once when starting
преди 5 години
Alexander Graf 4b8bbf760b default to 128 bits преди 5 години
Alexander Graf 4b71bd56c4 replace flask_kvsession with mailu's own storage преди 5 години
DjVinnii 7dafa22762 Add /language/<language> route for changing the locale using a session variable преди 5 години
DjVinnii f30cca1263 Do imports based on AdminLTE plugins преди 5 години
DjVinnii a4bb42faeb Remove extra space between 'AdminLTE' and 'on' in footer преди 5 години
DjVinnii b2498e8c8f Refactor box macro to card преди 5 години
DjVinnii 5ddea07c9a Fix form input append class преди 5 години
DjVinnii 1db0a870f3 Fix log in icon in sidebar преди 5 години
DjVinnii 51346c4860 Fix pre- and append styling преди 5 години
DjVinnii e963e7495d Create datatable based on dataTable class instead of table class преди 5 години
DjVinnii 0984173504 Change label to badge преди 5 години
DjVinnii 8246497d16 Add card header to tables преди 5 години
DjVinnii 49d68fa6d1 Fix horizontal scrollbar in sidebar преди 5 години
DjVinnii 7d3c9d412d Change tables to datatables преди 5 години
DjVinnii cdfa94c243 Make main action float right преди 5 години
DjVinnii 0c5fda3fca Change macros.box to macros.card преди 5 години
DjVinnii deca6e0c4a update user/settings преди 5 години
DjVinnii 6b3170cb4c Update side menu преди 5 години
DjVinnii c97728289b Update node version for building the image (AdminLTE requires node 10 or higher) преди 5 години
DjVinnii e46d9e1fc9 Update admin-lte version in package.json преди 5 години
Vincent Kling d9a9cb409e
Merge pull request #1 from Mailu/master
Update branche from remote/master
преди 5 години
Vincent Kling c6d0ef229f
Update messages.po преди 5 години
bors[bot] ff4d3f4d37
Merge #1792
1792: Update fail2ban documentation r=mergify[bot] a=ronivay

## What type of PR?

documentation

## What does this PR do?

Update fail2ban documentation. Use DOCKER-USER chain instead of FORWARD chain for fail2ban rules so that they are always processed before any other rules added by docker itself. Also add instructions how to make fail2ban start after docker to prevent fail2ban from failing because of missing DOCKER-USER chain in iptables.

### Related issue(s)
closes #1727 

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.




Co-authored-by: ronivay <roni@vayrynen.info>
Co-authored-by: Dimitri Huisman <52963853+Diman0@users.noreply.github.com>
преди 5 години
Dimitri Huisman 0bdf84dd25
Update faq.rst
Some spelling improvements.
преди 5 години
ronivay 75baa1da99 Update fail2ban documentation преди 5 години
Alexander Graf f0f79b23a3 Allow cleanup of sessions by key&value in data
This can be used to delete all sessions belonging to a user/login.
For no it just iterates over all sessions.
This could be enhanced by using a prefix for and deleting by prefix.
преди 5 години
Alexander Graf 83b1fbb9d6 Lazy loading of KVSessionExtension
- call cleanup_sessions on first kvstore access
  this allows to run cmdline actions without redis (and makes it faster)
- Allow development using DictStore by setting REDIS_ADDRESS to the empty string in env
- don't sign 64bit random session id as suggested by nextgens
преди 5 години
Alexander Graf 8bc4445572 Sync update of localpart, domain_name and email преди 5 години
Alexander Graf 0c38128c4e Add pygments to requirements преди 5 години
Alexander Graf 9cb6962335 Moved MyYamlLexer into logger
now cmdline runs without pygments
преди 5 години