71718f3b05
Add ECDSA support
...
This is a squashed commit of the following:
commit db8051bc234c5fa67aa87a7a94f9e89eaf0e7dac
Merge: 2634fdf0 04020685116c7919d90d4f96642647670846013ec1034b899685b4b5becc5059b933a3097fa10cc3a9947e99b5c844d7e6bb3069ff74b8aa4e8b2bfc1d1a9a27ea4da60c573e62f1#1 from mhofer117/tls-sni-ecdsa
Change line endings in functions.inc.php back to CRLF
commit c43161507bcb48750b865a657e6fe80c02812c83
Author: Marcel Hofer <m.hofer117@gmail.com>
Date: Sun Oct 20 19:02:17 2019 +0200
remove empty docker-entrypoint.sh
commit efd6cd1847f718900be72d20fa6361fda975bf1c
Merge: a2a0821a 6a6d6c4a
Author: Marcel Hofer <m.hofer117@gmail.com>
Date: Sun Oct 20 19:00:07 2019 +0200
Merge remote-tracking branch 'OpenLarry/add-ecdsa-support' into tls-sni-ecdsa
# Conflicts:
# data/Dockerfiles/acme/docker-entrypoint.sh
# data/conf/dovecot/dovecot.conf
# data/conf/nginx/site.conf
# data/conf/postfix/main.cf
# data/web/inc/ajax/dns_diagnostics.php
# data/web/inc/functions.inc.php
# docker-compose.yml
# generate_config.sh
# update.sh
commit a2a0821a38a55cb99ba1dd32383344ed6504f451
Merge: 4a62809d 05e7c9589f66b83a048537946e82a359f21cf1347665cc2a69fb7f7ab20ff13ecd8816524aae7277
2023-03-19 14:24:46 +01:00
549ff7d100
Add Domain and Mailbox tagging ( #4569 )
...
* [Web] define tag tables
* [Web] add mailbox tag functions
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* Include new tags lang in language.en.json
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
* [Web] add domain/mailbox tagging
Co-authored-by: Niklas Meyer <62480600+DerLinkman@users.noreply.github.com>
2022-05-05 08:25:01 +02:00
372e381a85
[Web] Fix wrong lang string for filter deletion confirmation
2022-04-08 09:39:32 +02:00
a2ccf7ef03
[Nginx] Fix Nginx buffer sizes by moving parameters to correct location
2022-04-05 22:34:26 +02:00
b04faddac4
Modified Buffer Size in site-defaults.conf
2022-03-23 11:14:07 +01:00
eec75690e0
[Nginx] Deny inc/lib location
2021-08-08 16:06:26 +02:00
8b08d09ca2
[Web] Remove XMPP options
...
[Web] Add Rspamd preset #4
[Web] Do not show failed SASL logins (and also remove them from db)
2021-06-30 10:13:29 +02:00
3045bcf49d
[Nginx] Allow SOGo SSO
2021-06-23 14:12:14 +02:00
1cd0a96ad0
[Nginx, SOGo] Set mime type text/plain instead of returning 403 when opening risky attachments
2021-05-17 21:21:35 +02:00
6a8aa699d9
[SOGo, Nginx] Deny access to some extensions from SOGo web ui to mitigate security concerns
2021-05-12 10:44:42 +02:00
5df8a24c84
server_tokens off in default settings ( #4073 )
...
Co-authored-by: Maximilian Leith <accounts.maximilan@leith.de>
2021-04-26 13:20:23 +02:00
b11764dff0
[Config] Add ADDITIONAL_SERVER_NAMES as optional config to define additional server_name parameters for mailcow UI
2021-02-16 16:38:28 +01:00
666d344322
[Web] Remove XMPP site when disabling XMPP
2021-02-14 21:33:43 +01:00
9407b55661
[PHP-FPM] Fix fastcgi timeouts
2020-12-26 10:19:52 +01:00
8e15c56330
[SOGo] Increase timeout for SOGo to prevent failure on uploads
2020-11-25 16:11:02 +01:00
93ac0d3864
Update site-defaults.conf ( #3780 )
2020-09-27 12:38:40 +02:00
ba0b6963c7
Revert "Update site-defaults.conf ( #3778 )" ( #3779 )
...
This reverts commit b8ec9ad536
2020-09-26 22:53:53 +02:00
b8ec9ad536
Update site-defaults.conf ( #3778 )
2020-09-26 22:15:43 +02:00
c31d0cee86
[Nginx] Refresh cipher suites ( #3669 )
...
Also turn ssl_prefer_server_ciphers off.
"The cipher suites are all strong and so we allow the client to choose, as they will know best if they have support for hardware-accelerated AES" - https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29
2020-09-24 07:30:09 +02:00
06c8f140b5
[Nginx] Mark script not executable
2020-07-14 13:24:37 +02:00
4cd51017a7
[Nginx] Mark script executable
2020-07-14 13:20:50 +02:00
d931083e0e
[SOGo] Disable EAS when SKIP_SOGO=y
2020-07-14 13:16:26 +02:00
ad8acefb96
[SOGo] Disable EAS when SKIP_SOGO=y
2020-07-14 13:13:32 +02:00
5fe9de0500
[API] Removed api_blueprint docs and use swagger ( #3595 )
...
* [NGINX] Removed api docs location
* [WEB] Removed api_blueprint api docs
* [WEB] Added openapi/swagger api viewer
* [WEB] Added openapi.yaml with api docs
* [WEB] Added request body for create app password endpoint
* [Web] Updated types in openapi.yaml
* [Web] Only define API docs auth header once
* [Web] Added 401 api response to docs
2020-06-07 20:46:17 +02:00
84d205d728
[Nginx] Drop X-Powered-By via fastcgi_hide_header
2020-05-06 20:14:34 +02:00
a4e5400f67
[Nginx] Add proxy_send_timeout and proxy_read_timeout of 300 to /SOGo
2020-02-19 21:40:45 +01:00
0e6dfdd0fe
[Nginx] Catch case-insensitive /sogo$ request and redirect to /SOGo
2019-12-02 10:55:17 +01:00
9257fa90d4
[Nginx] Fix 301 to SOGo
2019-11-28 19:14:23 +01:00
ce15dda990
[Nginx] Redirect /S|sogo* to /SOGo
2019-11-28 15:08:11 +01:00
cc1bf5d426
deliver CSS and JS as external request
2019-10-20 21:25:58 +02:00
f2b552c00d
Fix custom http redirects with TLS-SNI
...
Disable http listener for SNI ssl hosts in nginx. This allows the use of the following config again:
https://mailcow.github.io/mailcow-dockerized-docs/u_e-80_to_443/
However that documentation page should still be updated: https://github.com/mailcow/mailcow-dockerized-docs/pull/175/commits
2019-10-20 20:24:16 +02:00
05e7c95829
[SSL] fix wildcard compare for non-bash shell
2019-10-20 17:02:54 +02:00
dcd50b2245
[SSL] restore old nginx templates. fix possible issues with custom nginx sites
2019-10-20 16:41:53 +02:00
84c5f43438
[SSL] re-add nginx site.conf
2019-10-19 12:49:23 +02:00
2e35da6816
[SSL] create individual domain certificates, add SNI configs for Postfix/Dovecot/Nginx
2019-10-19 12:48:56 +02:00
a606f60b54
[Nginx] Modify site to catch failed logins to /rspamd
2019-10-12 13:16:49 +02:00
1580e4b2a5
[Nginx, SOGo] Adjustments for EAS
2019-10-06 10:12:46 +02:00
6ab1304579
[Nginx] Make api docs browsable using /api and /api/ uri
2019-10-03 11:27:44 +02:00
7c43e2e120
[Nginx] Fix nginx config for API docs
2019-10-03 11:19:17 +02:00
5cf74f6b85
[NGINX] Make API docs accessible using /api/
2019-10-02 22:13:47 +02:00
9b7668d912
[Nginx] Custom 502
2019-09-24 06:53:13 +02:00
fae34b8a89
I'm an idiot
2019-04-01 22:52:45 +02:00
bb12ce9edc
[Nginx] Fix site when ALLOW_ADMIN_EMAIL_LOGIN=y and reverse proxy is used, fixes #2489
2019-04-01 22:46:13 +02:00
a110378000
always check basic auth against user database for EAS and SOGo if ALLOW_ADMIN_EMAIL_LOGIN is enabled
2019-02-27 23:06:19 +01:00
38911034c3
Don't break DAV
2019-02-26 22:13:37 +01:00
dd6d253ac0
add random masterpass for sogo admin login
...
add required headers for sogo proxy auth with password
add SOGoEncryptionKey
add SOGoTrustProxyAuthentication only conditionally if feature is enabled
2019-02-26 09:02:35 +01:00
57312ad605
[Compose] Add ALLOW_ADMIN_EMAIL_LOGIN to sogo-mailcow to trigger bootstrap on change
...
[Compose] Static IPv4 for Dovecot
[SOGo] Remove SOGoIMAPServer from sogo.conf
[SOGo] Add SOGoIMAPServer to bootstrap process
[Nginx] Disallow editAccount for other accounts than 0 (own)
2019-02-25 00:00:32 +01:00
9a9079baa5
Update sogo.auth_request.template.sh
2019-02-23 22:29:14 +01:00
0c8f217f49
Update sogo.auth_request.template.sh
...
Don't want to split hairs! Just consistency. :)
2019-02-23 22:20:09 +01:00
cac67db203
add config ALLOW_ADMIN_EMAIL_LOGIN and implement password-less SOGo login admins
2019-02-23 17:59:18 +01:00
Aaron Larisch
FreddleSpl0it
andryyy
Niklas Meyer
Maximilian
mcmufffin
Jellyfrog
Timo N
tinect
Marcel Hofer
Marcel Hofer
Marcel Hofer