evgeny/modoboa-installer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
552 Commits 10 Branches 0 Tags
20b6ede21173441284efe533627e95ba91bfeb53
Commit Graph

121 Commits

Author SHA1 Message Date
FranMercedesG
1bb108c62c feature: improve security on postfix 2024-09-18 15:00:55 -04:00
Antoine Nguyen
81f1332e84 Merge branch 'feature/dovecot_oauth2_setup' of github.com:modoboa/modoboa-installer into feature/dovecot_oauth2_setup 2024-08-02 11:28:37 +02:00
Antoine Nguyen
7dbe1ea093 Few fixes 2024-08-02 11:27:57 +02:00
Spitfireap
997478704d Added uwsgi buffer-size 2024-07-22 16:02:47 +02:00
Antoine Nguyen
2572dd64d1 Added setup instructions for Dovecot oauth2 support 2024-07-07 10:48:05 +02:00
Antoine Nguyen
290c50326e Removed SORBS dnsbl 2024-06-13 09:29:29 +02:00
Antoine Nguyen
367c8a31eb Merge pull request #530 from gsloop/patch-1 
Update master.cf.tpl - add missing headers
 2024-04-24 08:08:30 +02:00
Antoine Nguyen
e7995ada3f Quickfix against SMTP smuggling 
https://www.postfix.org/smtp-smuggling.html
 2023-12-22 16:50:26 +01:00
Antoine Nguyen
7097e15ae9 Deploy supervisor config for new RQ worker 2023-12-22 16:43:33 +01:00
Antoine Nguyen
b7f378fc63 Disable all required lines when dovecot is not installed 2023-12-15 11:59:03 +01:00
Antoine Nguyen
7b990c9ff6 Replace EDH key generation by DHE group file 2023-12-15 11:55:11 +01:00
as_you_wish
24e334c06f Update master.cf.tpl - add missing headers 
Add missing headers for mail from sasl auth'd users and mynetworks.
 2023-11-22 12:12:11 -08:00
Spitap
f658e5e85e Fixed escape character on dovecot config tpl 2023-08-30 17:13:59 +02:00
Spitap
941142f5f5 Fixed dkim user 2023-08-30 08:48:58 +02:00
Spitap
0b0e2a4e6a Updated for 2.2 2023-08-29 20:07:26 +02:00
Floréal Cabanettes
2cc34e9033 Merge branch 'modoboa:master' into master 2023-07-13 11:21:29 +02:00
Floréal Cabanettes
5704a0a236 Add amavis 2.13.X as a copy of 2.12.X for debian12, for postgresql too 2023-07-10 23:47:32 +02:00
Floréal Cabanettes
187790149d Add amavis 2.13.X as a copy of 2.12.X for debian12 2023-07-07 23:52:44 +02:00
Zzzz
9ad6c4db68 Fix http2 wrong port 2023-07-07 09:54:05 -11:00
Spitap
6e3a232e83 Added http2 for nginx 2023-05-25 11:16:32 +02:00
Spitap
2873a5ae69 Updated automx config 2023-05-09 19:34:22 +02:00
Antoine Nguyen
76ec16cd45 Added missing files 2023-01-31 09:08:34 +01:00
Spitap
81129d2875 Removed globally set mail_uid and mail_gid 
Co-Authored-By: Antoine Nguyen <tonio@ngyn.org>
 2023-01-24 09:29:51 +01:00
Spitap
7cae12b32e Fix multiple hard-coded vmail 2023-01-23 19:24:28 +01:00
Spitap
bcdbb4a2ce fix typo 2022-11-29 14:53:05 +01:00
Spitap
bd1ddcef21 randomize api call time 2022-11-29 13:45:31 +01:00
Spitap
bd0ecd0949 fix typo in dovecot configuration file 2022-11-10 14:57:43 +01:00
Spitap
fe7df276fc Check dovecot version greater 2022-10-27 17:25:39 +02:00
Spitap
8f34f0af6f Fixes ssl permission error, updated ssl_protocol parameter 2022-10-27 17:00:58 +02:00
Spitap
fe6dc82796 fixed typo 2022-10-03 15:13:53 +02:00
Spitap
82c4b1033a Better fix 2022-09-27 09:32:55 +02:00
Antoine Nguyen
b391de5937 Merge branch 'master' of github.com:modoboa/modoboa-installer 2022-09-22 10:53:25 +02:00
Antoine Nguyen
47a5d29043 Fixed opendkim dsn syntax. 
fix #2602
 2022-09-22 10:52:41 +02:00
Antoine Nguyen
1f8dd1b5df Merge pull request #426 from Spitfireap/mitigate-spamhaus-dns 
mitigate false spamhaus reject
 2022-09-16 17:11:21 +02:00
Antoine Nguyen
23ac0bf172 Complete custom database port support 2022-09-15 10:43:44 +02:00
Spitap
199a90c9e8 Set up return codes for other spamlist 2022-07-30 18:48:51 +02:00
Spitap
1ae5061dfa mitigate false spamhaus reject 2022-07-29 16:23:32 +02:00
Antoine Nguyen
f30201d32b Fixed ipv6 issue 2022-07-28 15:17:46 +02:00
Antoine Nguyen
2123ccf9c3 Merge pull request #415 from saaditDE/saaditDE-PatchTLSVAndCiphers-1 
Replacing old TLS versions and insecure ciphers
 2022-07-22 09:49:44 +02:00
Antoine Nguyen
578fc05981 Added support for amavis 2.12.X (ubuntu 22.04) 
see #413
 2022-05-18 10:48:53 +02:00
Karim
85dc113fe4 Replaceing old TLS versions and insecure ciphers 
NEVER use SSL / TLS in outdated versions or insecure / oudated ciphers. Current state-of-the-art TLS Versions are TLSv1.2 and TLSv1.3. TLSv1.2 is only enabled for backwards compatibility. Ciphers are taken out of the guide. 

```ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;```

Are the recommended ciphers out of  source 4 in combination of all other sources.
 
source 1: https://www.linuxtechi.com/harden-secure-nginx-web-server-linux
source 2: https://beaglesecurity.com/blog/article/nginx-server-security.html
source 3: https://www.acunetix.com/blog/articles/tls-ssl-cipher-hardening/
source 4: https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
 2022-05-18 01:22:45 +02:00
Antoine Nguyen
7f87c2518c Merge pull request #358 from staticsafe/patch-1 
Update Postfix main.cf template to allow IPv6
 2021-10-14 10:09:28 +02:00
Antoine Nguyen
5b506a2eb9 fix #392 2021-09-22 16:12:21 +02:00
Antoine Nguyen
58f5a8af09 Fixed issue with Debian bullseye (11). 2021-09-22 11:32:55 +02:00
Antoine Nguyen
c9d67250ba Revert change since it prevents opendkim to work properly. 2021-04-23 09:32:22 +02:00
Antoine Nguyen
33a909a264 Disable milters for amavis receiver. 2021-03-20 09:20:45 +01:00
Sadiq Saif
becd427f6b Update Postfix main.cf template to allow IPv6 
setting inet_protocols to all allows Postfix to use IPv6 if available on a host

fixes issue #344
 2020-12-28 13:01:27 -05:00
Antoine Nguyen
c39adcbd14 Added support for Modoboa 1.16 2020-10-05 09:15:59 +02:00
Antoine Nguyen
1960e29c97 Fixed radicale setup. 2020-09-17 21:19:54 +02:00
Antoine Nguyen
68ec298fc9 Disabled radicale-storage-by-index plugin. 2020-06-09 11:08:39 +02:00