docker/docker-mail
1
0
Fork 0
Code Issues 4 Pull Requests Actions Projects Releases 6 Wiki Activity

Initial mail server docker image #1

New Issue
Open
opened 2022-02-11 09:21:11 +00:00 by jon_nfc · 108 comments
jon_nfc commented 2022-02-11 09:21:11 +00:00 (Migrated from gitlab.com)
Copy Link

📝 Summary

Create a docker container that can be used as a complete mail server. (mailboxes, mta and lmtp)

Requirements

  • release version bumps and tags

  • release on dev branch use tag nightly?

  • on git tag publish to docker hub with tag label

  • has backup and restore capabilities (create backup and restore backup)

🔗 References

🚧 Tasks

  • pages directory to contain docs for website publishing

  • gitlab-ci linked as git submodule

  • repo syncs to github

  • commitizen added (.cz.yaml file)

  • use pytest to create unit tests

  • passes open relay tests

  • post screen

  • ~Documentation for log rotate

    explain how runs at 0001h so that logs are daily and that 30 days is kept. this should probably be reduced to 3-4 days as logs should be pushed off of server to logging server

from prev issue

📝 Description

As G-Suite is closing down, we now requure an email server. one needs to be built within a docker container that meets the requirements below. SSO auth will be required to tie all of our services together.

Requirements

  • Secure cyphers only with imap/smtps/submission smtpd_tls_mandatory_protocols=>=TLSv1 (Postfix ≥ 3.6)

    • tlsv1 secure and suitable for smtp inbound?

  • IMAPS

  • SMTPS

    • default no plaintext auth smtpd_tls_auth_only = yes

    • prefer inbound tcp/25 ssl smtpd_tls_security_level=may

    • submission tcp/587 enforced encryption smtpd_tls_security_level = encrypt

    • submission authentication

    • smtps tcp/465 enforced encryption smtpd_tls_security_level = encrypt

    • smtps authentication

  • LDAP Authentication

  • Back-ups

  • fetchmail for yahoo and gmail accounts

  • docker container health check

  • Webmail

Privacy / security config

Nice to haves

To Do

  • what happens between smtp server connections? can my smtp request encryption on inbound and fallback to non encrypted if ot support by inbound smtp server

  • can a user be a part of two domains?

  • can i get a free google vps with my gmail account

  • what performance settings are recommended?

  • webmail

  • prevent out of office from going to non hosted domains

  • read receipts not automatically sent

🔗 Links / References

dovecot

Postfix:

Spamassassin

Other:

🚧 Tasks

## :memo: Summary Create a docker container that can be used as a complete mail server. _(mailboxes, mta and lmtp)_ ### :white_check_mark: Requirements - [x] release version bumps and tags - [x] release on dev branch use tag `nightly`? - [x] on `git tag` publish to docker hub with tag label - [ ] has backup and restore capabilities _(create backup and restore backup)_ ### :link: References ### :construction: Tasks - [x] `pages` directory to contain docs for website publishing - [x] [gitlab-ci](https://gitlab.com/nofusscomputing/projects/gitlab-ci) linked as git submodule - [x] repo syncs to [github](https://github.com/NoFussComputing/docker-mail) - [x] commitizen added _(`.cz.yaml` file)_ - [ ] use pytest to create unit tests - [ ] passes [open relay](https://mxtoolbox.com/diagnostic.aspx) tests - [ ] [post screen](http://www.postfix.org/POSTSCREEN_3_5_README.html) - [ ] ~Documentation for log rotate > explain how runs at 0001h so that logs are daily and that 30 days is kept. _this should probably be reduced to 3-4 days as logs should be pushed off of server to logging server_ # from prev issue ## :memo: Description As G-Suite is closing down, we now requure an email server. one needs to be built within a docker container that meets the requirements below. SSO auth will be required to tie all of our services together. #### Requirements - [x] Secure cyphers only with imap/smtps/submission `smtpd_tls_mandatory_protocols=>=TLSv1` _(Postfix ≥ 3.6)_ - [x] tlsv1 secure and suitable for smtp inbound? - [x] IMAPS - SMTPS - [x] default no plaintext auth `smtpd_tls_auth_only = yes` - [x] prefer inbound tcp/25 ssl `smtpd_tls_security_level=may` - [x] submission tcp/587 enforced encryption `smtpd_tls_security_level = encrypt` - [x] submission authentication - [ ] smtps tcp/465 enforced encryption `smtpd_tls_security_level = encrypt` - [ ] smtps authentication - [x] LDAP Authentication - [ ] Back-ups - [x] fetchmail for yahoo and gmail accounts - [ ] docker container health check - Webmail - [x] [roundcube docker](https://github.com/roundcube/roundcubemail-docker) - [x] [docker hub](https://hub.docker.com/r/roundcube/roundcubemail/tags) - [x] [nginx to php-fpm container](https://stackoverflow.com/a/32999924) - [x] [roundcube fetchmail setup](https://github.com/PF4Public/fetchmail#settings) _note the useage of `fetchmail.pl` from postfix as it reads fetchmail config from the setup database_ #### Privacy / security config - [x] `postconf -e disable_vrfy_command=yes` Disables being able to find a valid address - [x] dkim and spf signing by postfix - https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-dkim-with-postfix-on-debian-wheezy - https://kb.kolabenterprise.com/guides/configure-dkim-signing-and-verification-using-amavis - [x] versions of software removed from email headerd - [x] versions of software removed form protocols _(i.e. as seen when telneting)_ - [x] reconfigure port 25 to only serve inbound from email servers ### Nice to haves ### To Do - [ ] what happens between smtp server connections? can my smtp request encryption on inbound and fallback to non encrypted if ot support by inbound smtp server - [x] can a user be a part of two domains? - [ ] can i get a free google vps with my gmail account - [ ] what performance settings are recommended? - [x] webmail - [ ] prevent out of office from going to non hosted domains - [ ] read receipts not automatically sent ### :link: Links / References - child of nofusscomputing/ops#47 - [Dovecot Migration from Gmail](https://wiki.dovecot.org/Migration/Gmail) and [Dovecot Migration from Gmail No2](https://doc.dovecot.org/admin_manual/migrating_mailboxes/#migration-from-gmail-to-dovecot) - [LDAP](https://doc.dovecot.org/configuration_manual/authentication/ldap/) - use this for ldap [Passdb LDAP with authentication binds](https://wiki.dovecot.org/AuthDatabase/LDAP/AuthBinds) - [a blog on dovecot, postfix and ldap](https://www.vennedey.net/resources/2-LDAP-managed-mail-server-with-Postfix-and-Dovecot-for-multiple-domains) - [x] use a unix socket from dovecot for post fix to auth against. - [x] [dovecot lmtp setup for postfix](https://doc.dovecot.org/configuration_manual/howto/postfix_dovecot_lmtp/?highlight=quota%20plugin) - [dovecot sasl auth postfix](https://doc.dovecot.org/configuration_manual/howto/postfix_and_dovecot_sasl/) - [more extensive use of ldap](https://kb.leuxner.net/article/mail-server-using-ldap-backend-w-postfix-dovecot/) **dovecot** - [Public Namespace quota](https://doc.dovecot.org/configuration_manual/quota/#quota-for-public-namespaces) - [dovecot mailbox sharing](https://doc.dovecot.org/configuration_manual/shared_mailboxes/shared_mailboxes/#user-shared-mailboxes) - [ ] [Virtual Mailboxes](https://doc.dovecot.org/configuration_manual/virtual_plugin/) **Postfix:** - [postfix ldap lookups examples](https://b.aklein.me/postfix-with-ldap) - [postfix manual](http://www.postfix.org/postconf.5.html#bounce_notice_recipient) **Spamassassin** - [docs v3.4](https://spamassassin.apache.org/full/3.4.x/doc/) **Other:** - [docker container with all the bells email](https://github.com/docker-mailserver/docker-mailserver) - [ ] [hardening](https://linux-audit.com/postfix-hardening-guide-for-security-and-privacy/) - [Non-Postfix mailbox store: separate domains, non-UNIX accounts](http://www.postfix.org/VIRTUAL_README.html) - [dovecot LDAP groups](https://lunch.org.uk/wiki/sogodovecotldapandgroups) - [ACL setup, dovecot](https://wiki.rockstable.it/dovecot#ACLs) - [dovecot shared howto](https://vogasec.wordpress.com/2012/07/01/ubuntu-postfix-dovecot-shared-mailboxes/) - [Server fault, working config but only wants to show inbox](https://serverfault.com/questions/1078510/dovecot-shared-mailbox-access-all-folders-at-the-root-doveadm) - [x] [log rotate](https://doc.dovecot.org/admin_manual/logging/#rotating-logs) setup for role - [ ] [winmail.dat conversion](https://www.rigacci.org/wiki/doku.php/doc/appunti/linux/sa/sieve_filtering_tnef) - [ ] [Send E-Mail on behalf of](https://serverfault.com/questions/40215/send-email-on-behalf-of-clients/40268#40268) - [ ] [sieve scripts stored in ldap](https://doc.dovecot.org/configuration_manual/sieve/ldap/). useful for filtering. - [ ] [sa-learn (spamassassin) database backup](https://www.faqforge.com/linux/server/email/how-to-backup-clear-restore-a-spamassassin-bayes-database/) - [ ] [DKIM, SPF and DMARC](https://www.sidn.nl/en/modern-internet-standards/hands-on-implementing-spf-dkim-and-dmarc-in-postfix) - [RFC7208 Sender Policy Framework (SPF)](https://datatracker.ietf.org/doc/html/rfc7208) ### :construction: Tasks - [x] services in a docker container - [ ] migrate emails from google to this server - [ ] backup smtp mta to have a long > 3week wait before failing message it cant forward to dovecot primary, if primary offline - [x] [remove users IP address when sending mail](https://serverfault.com/a/998993) - [x] new user welcome message - [x] email [quota messages](https://doc.dovecot.org/configuration_manual/quota/#quota-configuration-warning-scripts) - [x] restrict what can be done with dovecot sieve - [x] user notified if banned for sending email with bad extensions - [x] bounce emails that are [spam that was sent by users](https://serverfault.com/a/623989) - [x] add postfix spool to docker volumes - [ ] when a tag is created on dev branch, don't tag docker image as latest. tag it dev. - [ ] disable backscatter emailing from postfix - [x] postfix [notify submission user of spam block](https://serverfault.com/a/623989) _[submission policy lines 6-9](https://gitlab.com/nofusscomputing/projects/docker-mail/-/blob/1581d45d8925340e9cdee128e1168bfd47a6f74b/include/etc/amavis/conf.d/90-dkim#L6-L9)_
jon_nfc commented 2022-02-11 09:21:11 +00:00 (Migrated from gitlab.com)
Copy Link

assigned to @jon_nfc

assigned to @jon_nfc
jon_nfc commented 2022-02-11 09:23:52 +00:00 (Migrated from gitlab.com)
Copy Link

marked this issue as related to nofusscomputing/infrastructure/config#15

marked this issue as related to nofusscomputing/infrastructure/config#15
jon_nfc commented 2022-02-11 09:24:53 +00:00 (Migrated from gitlab.com)
Copy Link

marked this issue as related to nofusscomputing/ops#47

marked this issue as related to nofusscomputing/ops#47
jon_nfc commented 2022-02-11 09:25:23 +00:00 (Migrated from gitlab.com)
Copy Link

removed the relation with nofusscomputing/ops#47

removed the relation with nofusscomputing/ops#47
jon_nfc commented 2022-02-11 09:26:38 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request nofusscomputing/infrastructure/config!11

mentioned in merge request nofusscomputing/infrastructure/config!11
jon_nfc commented 2022-02-11 09:27:27 +00:00 (Migrated from gitlab.com)
Copy Link

removed the relation with nofusscomputing/infrastructure/config#15

removed the relation with nofusscomputing/infrastructure/config#15
jon_nfc commented 2022-02-11 09:27:39 +00:00 (Migrated from gitlab.com)
Copy Link

marked this issue as related to nofusscomputing/infrastructure/config#15

marked this issue as related to nofusscomputing/infrastructure/config#15
jon_nfc commented 2022-02-11 09:30:21 +00:00 (Migrated from gitlab.com)
Copy Link

time tracking migrated

  • 27h 46m from config 15

  • 82h 34m from config mr 11

time tracking migrated - 27h 46m from config 15 - 82h 34m from config mr 11
jon_nfc commented 2022-02-11 09:30:22 +00:00 (Migrated from gitlab.com)
Copy Link

added 82h 34m of time spent

added 82h 34m of time spent
jon_nfc commented 2022-02-11 09:30:55 +00:00 (Migrated from gitlab.com)
Copy Link

added 27h 46m of time spent

added 27h 46m of time spent
jon_nfc commented 2022-02-11 09:36:16 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 09:41:47 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 09:43:19 +00:00 (Migrated from gitlab.com)
Copy Link

marked this issue as related to nofusscomputing/ops#41

marked this issue as related to nofusscomputing/ops#41
jon_nfc commented 2022-02-11 09:43:54 +00:00 (Migrated from gitlab.com)
Copy Link

changed title from {-Create initial-} docker image to {+Initial mail server+} docker image

changed title from **{-Create initial-} docker image** to **{+Initial mail server+} docker image**
jon_nfc commented 2022-02-11 09:46:50 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 09:48:47 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:13:18 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:22:17 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:25:50 +00:00 (Migrated from gitlab.com)
Copy Link

made the issue confidential

made the issue confidential
jon_nfc commented 2022-02-11 10:40:29 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:44:31 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:53:59 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-11 10:54:21 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 33m of time spent

added 1h 33m of time spent
jon_nfc commented 2022-02-11 12:35:57 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 20m of time spent

added 1h 20m of time spent
jon_nfc commented 2022-02-11 23:47:07 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 4a6f36d078

mentioned in commit 4a6f36d07835cbc7076833de129ed668cf1002ce
jon_nfc commented 2022-02-11 23:47:07 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit bbd2f14662

mentioned in commit bbd2f14662a05d58fd6e5a7062b0d1cc51268489
jon_nfc commented 2022-02-12 00:24:42 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !1

mentioned in merge request !1
jon_nfc commented 2022-02-12 07:59:11 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-12 08:47:09 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 10m of time spent

added 1h 10m of time spent
jon_nfc commented 2022-02-13 07:55:00 +00:00 (Migrated from gitlab.com)
Copy Link

moved orig mr time to !1

moved orig mr time to !1
jon_nfc commented 2022-02-13 07:55:00 +00:00 (Migrated from gitlab.com)
Copy Link

subtracted 82h 34m of time spent

subtracted 82h 34m of time spent
jon_nfc commented 2022-02-13 08:03:25 +00:00 (Migrated from gitlab.com)
Copy Link

Security and Feature Audit Checklist

IMAP

  • Default folders auto create Inbox, drafts, Sent, Trash, Spam, All Mail, Stared, archive

  • items marked for deletion are expunged

  • When added to a ldap group, it shows up under shared namespace

  • can send using an alias as from field

  • cant set any email in from field and send email

  • can't connect using no encryption

  • Shared Email. Reply from shared box states in from field user replied on behalf of

SMTP

  • tcp/587 access

  • can't connect without encryption

  • must be authenticated

  • only accept email to hosted virtual domains

  • open relay check conducted

  • can receive inbound email from another hosting provider

  • user can only send from themselves or an alias

  • All mail through postfix is scanned by amavis (inbound smtp and submission and/or tcp/465)

  • submission tcp/587 messages are DKIM Signed

  • inbound SMTP messages DKIM validated

  • inbound messages SPF validated

Applications

  • logs to /var/log/{appname}.log

  • No Warnings in mail.log

  • No Errors in mail.log

  • All apps that allow external connections, log success and failures to log file

Dovecot

  • No Warnings in log

  • No Errors in log

Postfix

  • prefer encryption for inbound mail from another smtp server

  • No Warnings in log

  • No Errors in log

amavis

  • No Warnings in log

  • No Errors in log

Audit checklist

Ensure that the checklist thought process covers each of the workflows of email: in, through and out.

# Security and Feature Audit Checklist ## IMAP - [ ] Default folders auto create _Inbox, drafts, Sent, Trash, Spam, All Mail, Stared, archive_ - [ ] items marked for deletion are expunged - [ ] When added to a ldap group, it shows up under shared namespace - [ ] can send using an alias as from field - [ ] cant set any email in from field and send email - [ ] can't connect using no encryption - [ ] Shared Email. Reply from shared box states in from field `user replied on behalf of` ## SMTP - [ ] tcp/587 access - [ ] can't connect without encryption - [ ] must be authenticated - [ ] only accept email to hosted virtual domains - [ ] open relay check conducted - [ ] can receive inbound email from another hosting provider - [ ] user can only send from themselves or an alias - [ ] All mail through postfix is scanned by amavis _(inbound smtp and submission and/or tcp/465)_ - [ ] submission _tcp/587_ messages are DKIM Signed - [ ] inbound SMTP messages DKIM validated - [ ] inbound messages SPF validated ## Applications - [ ] logs to /var/log/{appname}.log - [ ] No `Warnings` in mail.log - [ ] No `Errors` in mail.log - [ ] All apps that allow external connections, log success and failures to log file ### Dovecot - [ ] No `Warnings` in log - [ ] No `Errors` in log ### Postfix - [ ] prefer encryption for inbound mail from another smtp server - [ ] No `Warnings` in log - [ ] No `Errors` in log ### amavis - [ ] No `Warnings` in log - [ ] No `Errors` in log ## Audit checklist _Ensure that the checklist thought process covers each of the workflows of email: in, through and out._
jon_nfc commented 2022-02-13 09:12:15 +00:00 (Migrated from gitlab.com)
Copy Link

added 2h 45m of time spent

added 2h 45m of time spent
jon_nfc commented 2022-02-13 11:50:48 +00:00 (Migrated from gitlab.com)
Copy Link
  • is it possible to set sieve rule on sent for shared boxes.

if in user1 sent folder and from filed is user 2 move to user2 sent folder

- [ ] is it possible to set sieve rule on sent for shared boxes. if in user1 sent folder and from filed is user 2 move to user2 sent folder
jon_nfc commented 2022-02-13 11:50:58 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h of time spent

added 1h of time spent
jon_nfc commented 2022-02-13 11:56:07 +00:00 (Migrated from gitlab.com)
Copy Link

sieve filter to move to dest user inbox

sieve filter to move to dest user inbox - https://serverfault.com/questions/1033068/auto-clean-mail-folder-with-dovecot-sieve
jon_nfc commented 2022-02-13 12:28:32 +00:00 (Migrated from gitlab.com)
Copy Link

added 20m of time spent

added 20m of time spent
jon_nfc commented 2022-02-13 12:35:35 +00:00 (Migrated from gitlab.com)
Copy Link

Docs virtual folder

# Docs virtual folder - https://www.mail-archive.com/dovecot@dovecot.org/msg85457.html
jon_nfc commented 2022-02-14 06:39:31 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item on git tag publish to docker hub with tag label as completed

marked the checklist item **on `git tag` publish to docker hub with tag label** as completed
jon_nfc commented 2022-02-14 06:39:39 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item release version bumps and tags as completed

marked the checklist item **release version bumps and tags** as completed
jon_nfc commented 2022-02-14 06:39:46 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item gitlab-ci linked as git submodule as completed

marked the checklist item **[gitlab-ci](https://gitlab.com/nofusscomputing/projects/gitlab-ci) linked as git submodule** as completed
jon_nfc commented 2022-02-14 06:39:49 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item repo syncs to github as completed

marked the checklist item **repo syncs to [github](https://github.com/NoFussComputing/docker-mail)** as completed
jon_nfc commented 2022-02-14 06:39:54 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item commitizen added (.cz.yaml file) as completed

marked the checklist item **commitizen added _(`.cz.yaml` file)_** as completed
jon_nfc commented 2022-02-14 06:40:11 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item Secure cyphers only with imap/smtps/submission smtpd_tls_mandatory_protocols=>=TLSv1 (Postfix ≥ 3.6) as completed

marked the checklist item **Secure cyphers only with imap/smtps/submission `smtpd_tls_mandatory_protocols=>=TLSv1` _(Postfix ≥ 3.6)_** as completed
jon_nfc commented 2022-02-14 06:40:13 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item IMAPS as completed

marked the checklist item **IMAPS** as completed
jon_nfc commented 2022-02-14 06:40:23 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item submission tcp/587 enforced encryption smtpd_tls_security_level = encrypt as completed

marked the checklist item **submission tcp/587 enforced encryption `smtpd_tls_security_level = encrypt`** as completed
jon_nfc commented 2022-02-14 06:40:25 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item submission authentication as completed

marked the checklist item **submission authentication** as completed
jon_nfc commented 2022-02-14 06:40:31 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item LDAP Authentication as completed

marked the checklist item **LDAP Authentication** as completed
jon_nfc commented 2022-02-14 06:40:39 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item roundcube docker as completed

marked the checklist item **[roundcube docker](https://github.com/roundcube/roundcubemail-docker)** as completed
jon_nfc commented 2022-02-14 06:40:45 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item nginx to php-fpm container as completed

marked the checklist item **[nginx to php-fpm container](https://stackoverflow.com/a/32999924)** as completed
jon_nfc commented 2022-02-14 06:40:47 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item roundcube fetchmail setup note the useage of fetchmail.pl from postfix as it reads fetchmail config from the setup database as completed

marked the checklist item **[roundcube fetchmail setup](https://github.com/PF4Public/fetchmail#settings) _note the useage of `fetchmail.pl` from postfix as it reads fetchmail config from the setup database_** as completed
jon_nfc commented 2022-02-14 06:41:00 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item versions of software removed from email headerd as completed

marked the checklist item **versions of software removed from email headerd** as completed
jon_nfc commented 2022-02-14 06:41:04 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item versions of software removed form protocols (i.e. as seen when telneting) as completed

marked the checklist item **versions of software removed form protocols _(i.e. as seen when telneting)_** as completed
jon_nfc commented 2022-02-14 06:41:08 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item reconfigure port 25 to only serve inbound from email servers as completed

marked the checklist item **reconfigure port 25 to only serve inbound from email servers** as completed
jon_nfc commented 2022-02-14 06:41:20 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item can a user be a part of two domains? as completed

marked the checklist item **can a user be a part of two domains?** as completed
jon_nfc commented 2022-02-14 06:41:25 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item webmail as completed

marked the checklist item **webmail** as completed
jon_nfc commented 2022-02-14 06:41:45 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item use a unix socket from dovecot for post fix to auth against. as completed

marked the checklist item **use a unix socket from dovecot for post fix to auth against.** as completed
jon_nfc commented 2022-02-14 06:41:48 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot lmtp setup for postfix as completed

marked the checklist item **[dovecot lmtp setup for postfix](https://doc.dovecot.org/configuration_manual/howto/postfix_dovecot_lmtp/?highlight=quota%20plugin)** as completed
jon_nfc commented 2022-02-14 06:42:02 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item remove users IP address when sending mail as completed

marked the checklist item **[remove users IP address when sending mail](https://serverfault.com/a/998993)** as completed
jon_nfc commented 2022-02-14 06:42:05 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item services in a docker container as completed

marked the checklist item **services in a docker container** as completed
jon_nfc commented 2022-02-14 06:42:14 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item new user welcome message as completed

marked the checklist item **new user welcome message** as completed
jon_nfc commented 2022-02-14 06:42:16 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item new user welcome message as incomplete

marked the checklist item **new user welcome message** as incomplete
jon_nfc commented 2022-02-14 06:42:19 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item email quota messages as completed

marked the checklist item **email [quota messages](https://doc.dovecot.org/configuration_manual/quota/#quota-configuration-warning-scripts)** as completed
jon_nfc commented 2022-02-14 06:54:16 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !2

mentioned in merge request !2
jon_nfc commented 2022-02-14 07:21:30 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-14 07:41:14 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !3

mentioned in merge request !3
jon_nfc commented 2022-02-14 09:24:34 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 30m of time spent

added 1h 30m of time spent
jon_nfc commented 2022-02-15 23:07:37 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 02:34:13 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !4

mentioned in merge request !4
jon_nfc commented 2022-02-16 06:07:17 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !5

mentioned in merge request !5
jon_nfc commented 2022-02-16 06:54:56 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item release on dev branch use tag nightly? as completed

marked the checklist item **release on dev branch use tag `nightly`?** as completed
jon_nfc commented 2022-02-16 06:55:02 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item pages directory to contain docs for website publishing as completed

marked the checklist item **`pages` directory to contain docs for website publishing** as completed
jon_nfc commented 2022-02-16 06:55:24 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item fetchmail for yahoo and gmail accounts as completed

marked the checklist item **fetchmail for yahoo and gmail accounts** as completed
jon_nfc commented 2022-02-16 06:55:46 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item docker hub as completed

marked the checklist item **[docker hub](https://hub.docker.com/r/roundcube/roundcubemail/tags)** as completed
jon_nfc commented 2022-02-16 07:28:17 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !6

mentioned in merge request !6
jon_nfc commented 2022-02-16 07:50:14 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 07:50:54 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item new user welcome message as completed

marked the checklist item **new user welcome message** as completed
jon_nfc commented 2022-02-16 08:31:14 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 08:32:39 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 4m of time spent

added 1h 4m of time spent
jon_nfc commented 2022-02-16 10:48:31 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 10:50:27 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 10:53:51 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-16 11:13:23 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-17 04:57:18 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !7

mentioned in merge request !7
jon_nfc commented 2022-02-18 04:24:29 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 05:35:11 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item tlsv1 secure and suitable for smtp inbound? as completed

marked the checklist item **tlsv1 secure and suitable for smtp inbound?** as completed
jon_nfc commented 2022-02-18 05:36:38 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item default no plaintext auth smtpd_tls_auth_only = yes as completed

marked the checklist item **default no plaintext auth `smtpd_tls_auth_only = yes`** as completed
jon_nfc commented 2022-02-18 05:36:40 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item prefer inbound tcp/25 ssl smtpd_tls_security_level=may as completed

marked the checklist item **prefer inbound tcp/25 ssl `smtpd_tls_security_level=may`** as completed
jon_nfc commented 2022-02-18 05:37:12 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item postconf -e disable_vrfy_command=yes as completed

marked the checklist item **`postconf -e disable_vrfy_command=yes`** as completed
jon_nfc commented 2022-02-18 05:37:18 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dkim and spf signing by postfix as completed

marked the checklist item **dkim and spf signing by postfix** as completed
jon_nfc commented 2022-02-18 05:38:32 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item log rotate setup for role as completed

marked the checklist item **[log rotate](https://doc.dovecot.org/admin_manual/logging/#rotating-logs) setup for role** as completed
jon_nfc commented 2022-02-18 05:38:51 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item restrict what can be done with dovecot sieve as completed

marked the checklist item **restrict what can be done with dovecot sieve** as completed
jon_nfc commented 2022-02-18 05:40:04 +00:00 (Migrated from gitlab.com)
Copy Link

added 10m of time spent

added 10m of time spent
jon_nfc commented 2022-02-18 06:03:21 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:14:17 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in merge request !9

mentioned in merge request !9
jon_nfc commented 2022-02-18 07:50:18 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 09:43:45 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 09:43:55 +00:00 (Migrated from gitlab.com)
Copy Link

added 10m of time spent

added 10m of time spent
jon_nfc commented 2022-02-18 09:46:49 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-19 03:04:08 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item postfix notify submission user of spam block submission policy lines 6-9 as completed

marked the checklist item **postfix [notify submission user of spam block](https://serverfault.com/a/623989) _[submission policy lines 6-9](https://gitlab.com/nofusscomputing/projects/docker-mail/-/blob/1581d45d8925340e9cdee128e1168bfd47a6f74b/include/etc/amavis/conf.d/90-dkim#L6-L9)_** as completed
jon_nfc commented 2022-02-19 03:04:18 +00:00 (Migrated from gitlab.com)
Copy Link

task complete in MR !9

task complete in MR !9
jon_nfc commented 2022-02-19 03:24:45 +00:00 (Migrated from gitlab.com)
Copy Link

backup ref https://stackoverflow.com/questions/11467698/how-to-backup-filesystem-with-tar-using-a-bash-script

backup ref https://stackoverflow.com/questions/11467698/how-to-backup-filesystem-with-tar-using-a-bash-script
jon_nfc commented 2022-02-19 05:59:33 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item user notified if banned for sending email with bad extensions as completed

marked the checklist item **user notified if banned for sending email with bad extensions** as completed
jon_nfc commented 2022-02-19 05:59:41 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item bounce emails that are spam that was sent by users as completed

marked the checklist item **bounce emails that are [spam that was sent by users](https://serverfault.com/a/623989)** as completed
jon_nfc commented 2022-02-19 06:00:00 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item add postfix spool to docker volumes as completed

marked the checklist item **add postfix spool to docker volumes** as completed
jon_nfc commented 2022-02-19 06:10:39 +00:00 (Migrated from gitlab.com)
Copy Link

added 40m of time spent

added 40m of time spent
nfc_bot commented 2022-08-26 01:12:52 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in issue nofusscomputing/ops#55

mentioned in issue nofusscomputing/ops#55
nfc_bot commented 2022-09-26 00:31:13 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in issue nofusscomputing/ops#67

mentioned in issue nofusscomputing/ops#67
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Bug
Used in discussion about a bug in comments or commits
CVE-2023-5764
Denotes items related to the CVE
CodeReview
Used in comments (issues/MR/commits) to denote code review related items
Documentation
Documentation items
Feature
Used in discussion about a Feature in comments or commits
Lint
Used in comments (issues/MR/commits) to denote lint tasks todo, done, fixed
Privacy
Used in comments (issues/MR/commits) to denote privacy related items
Security
Used in comments (issues/MR/commits) to denote Security related items
breaking-change
label used to denote that the issue/Merge Request does/will introduce a breaking change
bug::reproducable
Given to an issue when the bug has been confirmed as re-producable. Can also be used in comments and commits.
bug::unable to reproduce
Given to an issue when the bug that is not able to be reproduced. Can also be used in comments and commits.
code review::complete
code review::not started
code review::rejected
code review::underway
difficulty::Full Development
Level 3. Difficulty representing that the task to complete must be planned and created.
difficulty::Good First Issue
Level 1. Difficulty representing that the task is very simple and with limited knowledge can be completed.
difficulty::Prior Knowledge
Level 2. Difficulty representing that the task requires some prior knowledge of either the technology or the project for task completion.
documentation::complete
Issues, Merge Requests
documentation::no change required
Issues, Merge Requests and used to denote no documentation changes required
documentation::not started
Issues, Merge Requests
documentation::stalled
Issues, Merge Requests
documentation::underway
Issues, Merge Requests
impact::0
impact::1
impact::2
impact::3
impact::4
impact::5
ops::ansible-roles
OPS project tag
ops::automation
ops::gitlab-ci
OPS project tag
ops::marcas
OPS project tag
ops::python-gitlab-management
OPS project tag
ops::website
priority::0
priority::1
priority::2
priority::3
priority::4
priority::5
stage::Ready for Development
stage::develop
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stage::feedback required
stage::planning
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stage::test
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stale
Label given to issues/merge requests that are considered stale due to no collaboration and is a mark for closure.
triage
Tag given to issues/merge requests requiring triaging by the team.
triage::not_confidential
This tag is given by the triage bot so that URLs can be added to an issue/comment. A triage policy for NFC wide should remove this label.
type::CI / CD
type::automation
This type is used to denote an automation job
type::bug
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::compliance
type::discussion
Type for Issues. Can also be used in discussion in comments.
type::documentation
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::feature
type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::invalid
label given to tickets that require no action or are deem as invalid.
type::quality assurance
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::question
Type for Issues. Can also be used in discussion in comments.
type::security
Type for Issues and Merge Requests.
type::specification
Design specification
workflow::complete
Issues, Merge Requests
workflow::not ready
workflow::not ready::blocked
workflow::not started
Issues, Merge Requests
workflow::ready to commence
Issues, Merge Requests
workflow::stalled
Label given to issues/merge requests where no work has occured in x days iaw triage policy.
workflow::underway
Issues, Merge Requests
workflow::underway::develop
No Label
impact::0
priority::0
type::feature
Milestone
No items
No Milestone docker-mail - v0.1.0
Projects
Clear projects
No project
Assignees
Clear assignees
jon
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: docker/docker-mail#1
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?