public/mailcow-dockerized
1
0
Fork 0
mirror of https://github.com/mailcow/mailcow-dockerized.git synced 2025-12-17 20:01:31 +00:00
Code Issues Releases Wiki Activity
7,407 Commits 39 Branches 82 Tags
renovate/phpredis-phpredis-6.x
Commit Graph

156 Commits

Author SHA1 Message Date
Patrik Kernstock
7b29c1f304 Disable nginx server_tokens in http context (#6873) 2025-11-13 15:19:11 +01:00
Patrik Kernstock
ae3ef391ee Remove deprecated 'X-XSS-Protection' header (#6871) 2025-11-13 15:16:44 +01:00
patr_
84e230de8f [Nginx] fix: Disable IPv6 support in Nginx configuration (#6736) 
Co-authored-by: patr_ <patbernh@gmail.com>
 2025-09-12 11:17:18 +02:00
DerLinkman
c39712af67 pf/php: add mta-sts support (outbound) (#6686) 
* added mta-sts-resolver into postfix config + daemon

* [Web] Add MTA-STS support

* [Web] Fix mta-sts server_name

* updated .gitignore

* [ACME] fetch cert for mta-sts subdomain

* [Web] change MTA-STS id to human-readable timestamp

* [Web] Remove MTA-STS version STSv2

* [Web] Fix MTA-STS DNS check

* [Web] add max_age limit for MTA-STS policy

* Added tooltips and info texts to mta-sts webui page

* postfix: replace mta-sts-resolver with postfix-tlspol

---------

Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
 2025-08-26 09:57:05 +02:00
FreddleSpl0it
65fb4c2aa8 [Nginx] Move conf.d include before SNI vhosts 2025-03-26 13:04:43 +01:00
FreddleSpl0it
fcebe98557 Merge branch 'staging' into nightly 2025-02-24 15:09:36 +01:00
FreddleSpl0it
a567d5dc31 [Nginx] Add support for trusted proxies via env var 2025-02-18 11:03:34 +01:00
FreddleSpl0it
f64c6aa1d4 Merge pull request #6269 from mailcow/staging 
Automatic PR to nightly from 2025-01-27T10:00:26Z
 2025-02-07 15:10:10 +01:00
FreddleSpl0it
e645f931dc [Nginx] Add env var for HTTP to HTTPS redirection 2025-02-03 12:05:08 +01:00
FreddleSpl0it
bbdec0960a Merge pull request #6290 from mailcow/fix/nginx-vhosts 
[Nginx] Use vhosts for additional server names
 2025-02-03 11:35:09 +01:00
FreddleSpl0it
3a81b84cf7 [Nginx] Fix #6275 2025-01-30 14:49:18 +01:00
FreddleSpl0it
0ad327bbe5 [Nginx] Use separate vhosts for additional server names 2025-01-29 09:51:45 +01:00
FreddleSpl0it
36d4fcbf39 Merge pull request #6255 from mailcow/staging 
Automatic PR to nightly from 2025-01-23T11:01:42Z
 2025-01-23 15:21:39 +01:00
FreddleSpl0it
04058ab06e [Nginx] move conf.d include to end of nginx.conf 2025-01-23 14:54:28 +01:00
FreddleSpl0it
d430b595c1 Merge branch 'staging' into nightly 2025-01-23 08:11:45 +01:00
FreddleSpl0it
1fca328266 [Nginx] Disable IPv6 listener for Rspamd dynmaps when DISABLE_IPv6=y 2025-01-22 15:11:46 +01:00
FreddleSpl0it
7bcd61ecb5 [Nginx] Generate includes for custom configs 2025-01-22 14:30:47 +01:00
FreddleSpl0it
a41bb55c83 Merge remote-tracking branch 'origin/staging' into nightly 2024-12-05 14:33:41 +01:00
FreddleSpl0it
70ca5fde95 [Nginx] Use jinja2 for templating nginx configuration 2024-11-19 08:39:52 +01:00
FreddleSpl0it
dca5f1baab [Web] move /process/login to internal endpoint 2024-02-08 12:42:11 +01:00
Josef Fröhle
095d59c01b Update listen_ssl.template deprecated http2 on listener 2023-08-12 16:59:15 +02:00
Josef Fröhle
1a2f145b28 Update site.conf: server_names_hash_bucket_size 128 2023-08-12 16:58:26 +02:00
Peter
7a582afbdc Rspamd returns 401 on unsuccesful logins 2023-05-28 22:43:26 +02:00
FreddleSpl0it
549ff7d100 Add Domain and Mailbox tagging (#4569) 
* [Web] define tag tables

* [Web] add mailbox tag functions

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* Include new tags lang in language.en.json

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

Co-authored-by: Niklas Meyer <62480600+DerLinkman@users.noreply.github.com>
 2022-05-05 08:25:01 +02:00
andryyy
372e381a85 [Web] Fix wrong lang string for filter deletion confirmation 2022-04-08 09:39:32 +02:00
andryyy
a2ccf7ef03 [Nginx] Fix Nginx buffer sizes by moving parameters to correct location 2022-04-05 22:34:26 +02:00
Niklas Meyer
b04faddac4 Modified Buffer Size in site-defaults.conf 2022-03-23 11:14:07 +01:00
andryyy
eec75690e0 [Nginx] Deny inc/lib location 2021-08-08 16:06:26 +02:00
andryyy
8b08d09ca2 [Web] Remove XMPP options 
[Web] Add Rspamd preset #4
[Web] Do not show failed SASL logins (and also remove them from db)
 2021-06-30 10:13:29 +02:00
andryyy
3045bcf49d [Nginx] Allow SOGo SSO 2021-06-23 14:12:14 +02:00
andryyy
1cd0a96ad0 [Nginx, SOGo] Set mime type text/plain instead of returning 403 when opening risky attachments 2021-05-17 21:21:35 +02:00
andryyy
6a8aa699d9 [SOGo, Nginx] Deny access to some extensions from SOGo web ui to mitigate security concerns 2021-05-12 10:44:42 +02:00
Maximilian
5df8a24c84 server_tokens off in default settings (#4073) 
Co-authored-by: Maximilian Leith <accounts.maximilan@leith.de>
 2021-04-26 13:20:23 +02:00
andryyy
b11764dff0 [Config] Add ADDITIONAL_SERVER_NAMES as optional config to define additional server_name parameters for mailcow UI 2021-02-16 16:38:28 +01:00
andryyy
666d344322 [Web] Remove XMPP site when disabling XMPP 2021-02-14 21:33:43 +01:00
andryyy
9407b55661 [PHP-FPM] Fix fastcgi timeouts 2020-12-26 10:19:52 +01:00
andryyy
8e15c56330 [SOGo] Increase timeout for SOGo to prevent failure on uploads 2020-11-25 16:11:02 +01:00
mcmufffin
93ac0d3864 Update site-defaults.conf (#3780) 2020-09-27 12:38:40 +02:00
André Peters
ba0b6963c7 Revert "Update site-defaults.conf (#3778)" (#3779) 
This reverts commit b8ec9ad536.
 2020-09-26 22:53:53 +02:00
mcmufffin
b8ec9ad536 Update site-defaults.conf (#3778) 2020-09-26 22:15:43 +02:00
Jellyfrog
c31d0cee86 [Nginx] Refresh cipher suites (#3669) 
Also turn ssl_prefer_server_ciphers off.
"The cipher suites are all strong and so we allow the client to choose, as they will know best if they have support for hardware-accelerated AES" - https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29
 2020-09-24 07:30:09 +02:00
andryyy
06c8f140b5 [Nginx] Mark script not executable 2020-07-14 13:24:37 +02:00
andryyy
4cd51017a7 [Nginx] Mark script executable 2020-07-14 13:20:50 +02:00
andryyy
d931083e0e [SOGo] Disable EAS when SKIP_SOGO=y 2020-07-14 13:16:26 +02:00
andryyy
ad8acefb96 [SOGo] Disable EAS when SKIP_SOGO=y 2020-07-14 13:13:32 +02:00
Timo N
5fe9de0500 [API] Removed api_blueprint docs and use swagger (#3595) 
* [NGINX] Removed api docs location

* [WEB] Removed api_blueprint api docs

* [WEB] Added openapi/swagger api viewer

* [WEB] Added openapi.yaml with api docs

* [WEB] Added request body for create app password endpoint

* [Web] Updated types in openapi.yaml

* [Web] Only define API docs auth header once

* [Web] Added 401 api response to docs
 2020-06-07 20:46:17 +02:00
andryyy
84d205d728 [Nginx] Drop X-Powered-By via fastcgi_hide_header 2020-05-06 20:14:34 +02:00
andryyy
a4e5400f67 [Nginx] Add proxy_send_timeout and proxy_read_timeout of 300 to /SOGo 2020-02-19 21:40:45 +01:00
andryyy
0e6dfdd0fe [Nginx] Catch case-insensitive /sogo$ request and redirect to /SOGo 2019-12-02 10:55:17 +01:00
andryyy
9257fa90d4 [Nginx] Fix 301 to SOGo 2019-11-28 19:14:23 +01:00