cqrenet/relay
4
0
Fork 0
mirror of https://github.com/chatmail/relay.git synced 2026-06-25 21:11:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
854 Commits 224 Branches 13 Tags
link2xt/unnecessary-opendkim
Commit Graph

854 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
link2xt eb4b2f5fd2 Remove unnecessary opendkim milter from reinjecting smtpd 
OpenDKIM milter is only needed on port 25,
it seems to do nothing on reinjecting port.
 2025-02-22 21:03:51 +00:00
missytake e928a33f95 opendkim: restart once every day (#498) 
fix #495
 2025-02-19 21:50:48 +01:00
missytake 2780f53d3b CI: accept ns.testrun.org host key (#499) 2025-02-19 21:24:23 +01:00
missytake c3f1bdca52 filtermail: strip any empty lines at the end (#496) 2025-02-19 16:38:01 +01:00
missytake f4e371676b chatmaild: fix umask for doveauth + metadata (#494) 
* chatmaild: fix umask for doveauth + metadata

fix #453
 2025-02-17 19:10:26 +01:00
link2xt 8ec6e6e985 opendkim: use su instead of sudo 2025-02-17 19:09:50 +01:00
missytake f4fc1a3f93 CI: stop nested acme directories on staging-ipv4 2025-02-17 01:17:11 +01:00
missytake 42bfb9f22f journald: remove old logs from disk. (#490) 
fix #486
 2025-02-17 00:27:04 +01:00
link2xt 1a35cdc7a9 Require TLS 1.3 on client-facing ports 
I tested with -tls1_2 option
of openssl s_client
that TLS 1.2 connections
are no longer possible
on any ports except port 25.

Port 25 requires at least TLS 1.2
for encrypted connections.
 2025-02-16 23:01:56 +00:00
link2xt 2daac76574 Replace subject with [...] for outgoing mail 
`authclean` cleanup server is used by
reinjecting smtpd running on localhost:10025 by default.
It runs after filtermail
and currently removes `Received` header
to avoid leaking IP address.
Can as well be used to replace `Subject` lines
with `Subject: [...]`.
If there are multiple `Subject` lines,
all of them should be replaced.

This allows us to avoid dealing with
localized subjects, including SecureJoin
messages `vc-request` and `vg-request`
which can have Subject lines like
Subject: =?utf-8?q?Nachricht_von_nrn178fi4=40nine=2Etestrun=2Eorg?=
 2025-02-16 22:35:51 +00:00
link2xt 5633582d31 Add changelog entry for MTA-STS daemon removal 2025-02-16 21:27:15 +00:00
link2xt 667a987dfc Remove MTA-STS daemon 2025-02-16 20:31:07 +00:00
link2xt 49907c78a3 Add changelog entry for crypt compatibility 2025-02-16 15:15:31 +00:00
adb 5cfdb0698f use old crypt lib in python < 3.11 (#483) 2025-02-16 12:18:42 +00:00
link2xt 7e6f8ddfba Simplify SPF record 
There is no need to explicitly specify domain for `a` rule.
 2025-02-15 03:51:49 +00:00
adb 4d915f9800 improve secure-join message detection (#473) 2025-01-28 04:48:07 +00:00
l 9e6ba1a164 fix: install gcc and python3-dev (#477) 
These are needed to build crypt-r
 2025-01-27 14:38:18 +00:00
adbenitez 20f76c83f8 replace deprecated crypt package with crypt-r 2025-01-26 19:48:46 +00:00
link2xt b2995551a2 ci: remove iroh relay from zonefiles 
iroh subdomain is not needed
since 95f8c4b269
 2025-01-26 19:22:45 +00:00
link2xt c8f46147e0 chore: ruff 0.9.2 fixes and formatting 2025-01-24 20:57:13 +01:00
missytake 9f6ea8121c added changelog 2025-01-08 17:21:18 +01:00
missytake 9c08cbfbec DNS: recommend DKIM record without space in between for some DNS web interfaces 2025-01-08 17:21:18 +01:00
missytake c3190dd51a doc: fix migration guide 
fix #464
 2025-01-08 16:55:10 +01:00
missytake 5b8de76c22 fix tests 1.5.0 2024-12-21 00:04:40 +01:00
missytake d6205d9a04 add changelog 2024-12-21 00:04:40 +01:00
missytake 6a32192e50 Revert rest of #462 
This reverts commit 88a8dc905b.
 2024-12-21 00:04:40 +01:00
missytake 5c78619750 DNS: make --all non-optional for cmdeploy dns 2024-12-21 00:04:40 +01:00
missytake a7b808ebaf Release 1.5.0 2024-12-20 10:53:36 +01:00
missytake d11038b7b3 DNS: out() instead of print() 2024-12-20 10:46:42 +01:00
missytake 88a8dc905b DNS: recommend cmdeploy dns --all in the README 2024-12-20 10:46:42 +01:00
missytake a2fbb5dc37 add changelog 2024-12-20 10:46:42 +01:00
missytake 97c31e3820 fix tests 2024-12-20 10:46:42 +01:00
missytake 08c88caa46 CI: test all DNS records 2024-12-20 10:46:42 +01:00
missytake 8e5174ae44 DNS: add -all to cmdeploy dns 2024-12-20 10:46:42 +01:00
missytake 69fe5eac2b DNS: more elegant solution to fix mta-sts record 2024-12-17 18:27:56 +01:00
missytake 46f6a07239 Revert "DNS: fix _mta-sts TXT record on initial setup" 
This reverts commit 6d4af3cf0c.
 2024-12-17 18:27:56 +01:00
missytake b268efbc6e DNS: fix _mta-sts TXT record on initial setup 2024-12-17 18:27:56 +01:00
link2xt 95f8c4b269 Update iroh and remove iroh. subdomain 2024-11-09 01:02:20 +00:00
missytake 12217437e3 cmdeploy: install curl for downloading iroh 2024-11-02 15:54:11 +00:00
missytake 35a254fc1c acmetool: only request iroh certificate if it's required 2024-10-31 18:10:58 +01:00
missytake 2c0b659893 dns: add iroh CNAME to zonefile 2024-10-31 18:10:58 +01:00
holger krekel fe51dbd844 streamline 2024-10-31 17:30:09 +01:00
holger krekel 99fbe1d4c4 Apply suggestions from code review 
Co-authored-by: missytake <missytake@systemli.org>
 2024-10-31 17:30:09 +01:00
holger krekel d3e71aa394 streamline intro, mention IP addresses 2024-10-31 17:30:09 +01:00
holger krekel 72df078d02 add support for specifying whole domains for passthrough 2024-10-30 17:17:08 +01:00
missytake 8ea96e505e dovecot: fix syntax error 2024-10-30 16:34:53 +01:00
missytake a5fd5cfb55 dovecot: disable anvil authentication penalty 
fix #441
 2024-10-30 16:34:53 +01:00
missytake 3098afb342 CI: fix accepting ns.testrun.org SSH Host Key 2024-10-30 13:30:44 +01:00
missytake dfc1042a3f CI: fix #422 nested acme&dkimkeys folders 2024-10-30 13:30:44 +01:00
holger krekel af17b459ba also change privacy policy to circumscribe iroh-relay services 2024-10-30 13:30:44 +01:00