docker/docker-mail
1
0
Fork 0
Code Issues 4 Pull Requests Actions Projects Releases 6 Wiki Activity

feat: ensure tracing is possible and lock down ssl ciphers #14

Merged
jon_nfc merged 20 commits from 1-tracing-features into development 2022-02-19 05:25:24 +00:00
Conversation 61 Commits 20 Files Changed 12 +50 -21
jon_nfc commented 2022-02-18 06:14:17 +00:00 (Migrated from gitlab.com)
Copy Link

intent is to enable integration with fail2ban and to ensure the flow of email can be traced.

🔗 References

🚧 Tasks

  • postfix smtpd_sasl_security_options = noanonymous

    prevent anonymous authentication.

  • amavis to add received header to messages comment out config line 33

    Currently this setting is turned off, as it was assumed it would be a pointless header. However, without it, tracing would be difficult to identify a lengthy period of time passing between received headers as there are many milters the message goes through.

  • dovecot logs auth success

  • dovecot logs auth failure auth_verbose=yes

    Enables logging of failed login attempts

  • sieve logs auth success

  • sieve logs auth failure

  • postfix logs auth failure

  • postfix logs auth success

  • ~Bug when a tag is created on dev branch, don't tag docker image as latest. tag it dev.

  • dovecot verbose_ssl

    Logs protocol ssl errors. might be handy to diagnose why a connection failed. Or repeated attempts to connect with a block ssl cipher.

  • dovecot has suitable and secure ssl ciphers enabled

- related to #1 intent is to enable integration with fail2ban and to ensure the flow of email can be traced. ### :link: References - [Mozilla SSL/TLS Config for software](https://ssl-config.mozilla.org/) > provides up to date config for many server software including postfix and dovecot ### :construction: Tasks - [x] postfix [`smtpd_sasl_security_options = noanonymous`](http://www.postfix.org/postconf.5.html#smtpd_sasl_security_options) > prevent anonymous authentication. - [x] amavis to add received header to messages _comment out [config line 33](https://gitlab.com/nofusscomputing/projects/docker-mail/-/blob/1581d45d8925340e9cdee128e1168bfd47a6f74b/include/etc/amavis/conf.d/50-user#L33)_ > Currently this setting is turned off, as it was assumed it would be a pointless header. However, without it, tracing would be difficult to identify a lengthy period of time passing between received headers as there are many milters the message goes through. - [x] dovecot logs auth success - [x] dovecot logs auth failure `auth_verbose=yes` > Enables logging of failed login attempts - [x] sieve logs auth success - [ ] sieve logs auth failure - [x] postfix logs auth failure - [x] postfix logs auth success - [x] ~Bug when a tag is created on dev branch, don't tag docker image as latest. tag it dev. - [x] dovecot `verbose_ssl` > Logs protocol ssl errors. might be handy to diagnose why a connection failed. Or repeated attempts to connect with a block ssl cipher. - dovecot has suitable and secure ssl ciphers enabled - [x] dovecot [ssl_cipher_list](https://doc.dovecot.org/settings/core/#core_setting-ssl_cipher_list) - [x] dovecot [ssl_cipher_suites](https://doc.dovecot.org/settings/core/#core_setting-ssl_cipher_suites) - [x] dovecot [ssl_min_protocol](https://doc.dovecot.org/settings/core/#core_setting-ssl_min_protocol) - [x] dovecot [`ssl_prefer_server_ciphers=yes`](https://doc.dovecot.org/settings/core/#core_setting-ssl_prefer_server_ciphers)
jon_nfc (Migrated from gitlab.com) approved these changes 2022-02-18 06:14:17 +00:00
jon_nfc commented 2022-02-18 06:16:42 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:22:55 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:27:13 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:30:44 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:32:37 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:34:44 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:39:00 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 06:39:00 +00:00 (Migrated from gitlab.com)
Copy Link

assigned to @jon_nfc

assigned to @jon_nfc
jon_nfc commented 2022-02-18 07:15:11 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 07:16:58 +00:00 (Migrated from gitlab.com)
Copy Link

added 1h 10m of time spent

added 1h 10m of time spent
jon_nfc commented 2022-02-18 08:10:24 +00:00 (Migrated from gitlab.com)
Copy Link

changed title from feat: ensure tracing is possible {-with container service-}s to feat: ensure tracing is possible {+and lock down ssl cipher+}s

changed title from **feat: ensure tracing is possible {-with container service-}s** to **feat: ensure tracing is possible {+and lock down ssl cipher+}s**
jon_nfc commented 2022-02-18 08:10:24 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 08:11:59 +00:00 (Migrated from gitlab.com)
Copy Link

changed the description

changed the description
jon_nfc commented 2022-02-18 08:21:46 +00:00 (Migrated from gitlab.com)
Copy Link

added 35m of time spent

added 35m of time spent
jon_nfc commented 2022-02-18 23:24:04 +00:00 (Migrated from gitlab.com)
Copy Link

added 2 commits

  • 478336ca - feat(dovecot): log failed authentication attempts
  • 274ade2d - feat(dovecot): log SSL/TLS porotocol errors

Compare with previous version

added 2 commits <ul><li>478336ca - feat(dovecot): log failed authentication attempts</li><li>274ade2d - feat(dovecot): log SSL/TLS porotocol errors</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335395727&start_sha=1581d45d8925340e9cdee128e1168bfd47a6f74b)
jon_nfc commented 2022-02-18 23:30:58 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot logs auth failure auth_verbose=yes as completed

marked the checklist item **dovecot logs auth failure `auth_verbose=yes`** as completed
jon_nfc commented 2022-02-18 23:31:01 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot verbose_ssl as completed

marked the checklist item **dovecot `verbose_ssl`** as completed
jon_nfc commented 2022-02-19 00:45:18 +00:00 (Migrated from gitlab.com)
Copy Link

added 5 commits

  • 24f10af6 - feat(postfix): prevent anonymous users on submission
  • 7f7a259a - fix(local_group): amavis and opendkim added to vmail
  • fbdf6efa - fix(file_permission): set spamd to own spamassassin folder
  • 967fd04f - fix(bayes_learn): ensure journal is synced after scan
  • e9718c97 - fix(cron): sa-learn must run as spamd user

Compare with previous version

added 5 commits <ul><li>24f10af6 - feat(postfix): prevent anonymous users on submission</li><li>7f7a259a - fix(local_group): amavis and opendkim added to vmail</li><li>fbdf6efa - fix(file_permission): set spamd to own spamassassin folder</li><li>967fd04f - fix(bayes_learn): ensure journal is synced after scan</li><li>e9718c97 - fix(cron): sa-learn must run as spamd user</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335411815&start_sha=274ade2d8407ff91e448bff4c838a67f53074dde)
jon_nfc commented 2022-02-19 00:46:24 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item postfix smtpd_sasl_security_options = noanonymous as completed

marked the checklist item **postfix [`smtpd_sasl_security_options = noanonymous`](http://www.postfix.org/postconf.5.html#smtpd_sasl_security_options)** as completed
jon_nfc commented 2022-02-19 00:49:58 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item postfix logs auth success as completed

marked the checklist item **postfix logs auth success** as completed
jon_nfc commented 2022-02-19 00:50:02 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item postfix logs auth failure as completed

marked the checklist item **postfix logs auth failure** as completed
jon_nfc commented 2022-02-19 00:50:55 +00:00 (Migrated from gitlab.com)
Copy Link

postfix log failure doesn't include the username. however looking at dovecot logs, you can view the username.

this should be enough to use fail2ban on the postfix logs to ban a user.

postfix log failure doesn't include the username. however looking at dovecot logs, you can view the username. this should be enough to use fail2ban on the postfix logs to ban a user.
jon_nfc commented 2022-02-19 00:51:04 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot logs auth success as completed

marked the checklist item **dovecot logs auth success** as completed
jon_nfc commented 2022-02-19 00:51:55 +00:00 (Migrated from gitlab.com)
Copy Link

dovecot logging auth success only works on imap login. if the user logs in using postfix smtp with dovecot sasl auth, there is no success logging.

WHY?

dovecot logging auth success only works on imap login. if the user logs in using postfix smtp with dovecot sasl auth, there is no success logging. WHY?
jon_nfc commented 2022-02-19 00:59:05 +00:00 (Migrated from gitlab.com)
Copy Link

added 2 commits

  • 396cb15a - feat(dovecot): Disable SSL/TLS protocol logging
  • 3741b926 - ci(docker_hub): fix rc release must be tagged 'dev'

Compare with previous version

added 2 commits <ul><li>396cb15a - feat(dovecot): Disable SSL/TLS protocol logging</li><li>3741b926 - ci(docker_hub): fix rc release must be tagged &#39;dev&#39;</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335413694&start_sha=e9718c97a678223257c2450cede863757e376b90)
jon_nfc commented 2022-02-19 00:59:25 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item ~Bug when a tag is created on dev branch, don't tag docker image as latest. tag it dev. as completed

marked the checklist item **~Bug when a tag is created on dev branch, don't tag docker image as latest. tag it dev.** as completed
jon_nfc commented 2022-02-19 01:00:01 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot ssl_prefer_server_ciphers=yes as completed

marked the checklist item **dovecot [`ssl_prefer_server_ciphers=yes`](https://doc.dovecot.org/settings/core/#core_setting-ssl_prefer_server_ciphers)** as completed
jon_nfc commented 2022-02-19 01:00:14 +00:00 (Migrated from gitlab.com)
Copy Link

task was completed some time ago

task was completed some time ago
jon_nfc commented 2022-02-19 01:14:12 +00:00 (Migrated from gitlab.com)
Copy Link

added 1 commit

  • 2a222df7 - feat(ssl_tls): updated dovecot and postfix accepted ciphers

Compare with previous version

added 1 commit <ul><li>2a222df7 - feat(ssl_tls): updated dovecot and postfix accepted ciphers</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335416115&start_sha=3741b92606281ddabfa9df50186818d54c0602e1)
jon_nfc commented 2022-02-19 01:14:38 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot ssl_min_protocol as completed

marked the checklist item **dovecot [ssl_min_protocol](https://doc.dovecot.org/settings/core/#core_setting-ssl_min_protocol)** as completed
jon_nfc commented 2022-02-19 01:14:48 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot ssl_cipher_list as completed

marked the checklist item **dovecot [ssl_cipher_list](https://doc.dovecot.org/settings/core/#core_setting-ssl_cipher_list)** as completed
jon_nfc commented 2022-02-19 01:20:54 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item dovecot ssl_cipher_suites as completed

marked the checklist item **dovecot [ssl_cipher_suites](https://doc.dovecot.org/settings/core/#core_setting-ssl_cipher_suites)** as completed
jon_nfc commented 2022-02-19 01:21:27 +00:00 (Migrated from gitlab.com)
Copy Link

task marked as complete as cipher suites is not required when cipher lis is used to set min.

task marked as complete as cipher suites is not required when cipher lis is used to set min.
jon_nfc commented 2022-02-19 01:25:14 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item sieve logs auth success as completed

marked the checklist item **sieve logs auth success** as completed
jon_nfc commented 2022-02-19 01:34:48 +00:00 (Migrated from gitlab.com)
Copy Link

added 1 commit

  • e9fb4123 - fix(dovecot): sieve extensions debug error.

Compare with previous version

added 1 commit <ul><li>e9fb4123 - fix(dovecot): sieve extensions debug error.</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335419045&start_sha=2a222df7784e85f13a477c3859ca10709734c199)
jon_nfc commented 2022-02-19 01:53:15 +00:00 (Migrated from gitlab.com)
Copy Link

added 1 commit

  • 43f6a356 - fix(sa-learn): amavis can't do bayes check if not mask 777

Compare with previous version

added 1 commit <ul><li>43f6a356 - fix(sa-learn): amavis can&#39;t do bayes check if not mask 777</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335421109&start_sha=e9fb4123e9c6aad6d0793f4de0d21da46ba332fd)
jon_nfc commented 2022-02-19 01:56:59 +00:00 (Migrated from gitlab.com)
Copy Link

investigate

X-Spam-Status: No, score=-1 tagged_above=-999 required=6.31
	tests=[ALL_TRUSTED=-1] autolearn=unavailable autolearn_force=no

when autolearn=unavailable there is a file permission error on /var/spool/spamassassin

syslog error

Feb 19 01:41:47 test amavis[414]: (00414-01) _WARN: plugin: eval failed: bayes: (in learn) locker: safe_lock: cannot create tmp lockfile /var/spool/spamassassin/bayes.lock.test.nodomain.org.414 for /var/spool/spamassassin/bayes.lock: Permission denied

even when ensuring that amavis is part of vmail group and a file mask of 770 amavis still produces the above syslog error.


root@test:/# ls -la /var/spool/
total 36
drwxr-xr-x 1 root root  4096 Feb 19 01:33 .
drwxr-xr-x 1 root root  4096 Jan 25 00:00 ..
drwxr-xr-x 3 root root  4096 Feb 17 02:33 cron
lrwxrwxrwx 1 root root     7 Jan 25 00:00 mail -> ../mail
drwxr-xr-x 1 root root  4096 Feb 19 01:41 postfix
drwx------ 2 root root  4096 Feb 17  2021 rsyslog
drwxrwxrwx 2 root vmail 4096 Feb 19 01:46 spamassassin
root@test:/# 

root@test:/# ls -la /var/spool/spamassassin
total 656
drwxrwxrwx 2 root         vmail   4096 Feb 19 01:46 .
drwxr-xr-x 1 root         root    4096 Feb 19 01:33 ..
-rw-rw-rw- 1 debian-spamd vmail  90112 Feb 19 01:46 bayes_seen
-rw-rw-rw- 1 debian-spamd vmail 675840 Feb 19 01:46 bayes_toks
root@test:/#
investigate ```text X-Spam-Status: No, score=-1 tagged_above=-999 required=6.31 tests=[ALL_TRUSTED=-1] autolearn=unavailable autolearn_force=no ``` when `autolearn=unavailable` there is a file permission error on `/var/spool/spamassassin` syslog error ``` text Feb 19 01:41:47 test amavis[414]: (00414-01) _WARN: plugin: eval failed: bayes: (in learn) locker: safe_lock: cannot create tmp lockfile /var/spool/spamassassin/bayes.lock.test.nodomain.org.414 for /var/spool/spamassassin/bayes.lock: Permission denied ``` even when ensuring that amavis is part of `vmail` group and a file mask of `770` amavis still produces the above syslog error. ``` bash root@test:/# ls -la /var/spool/ total 36 drwxr-xr-x 1 root root 4096 Feb 19 01:33 . drwxr-xr-x 1 root root 4096 Jan 25 00:00 .. drwxr-xr-x 3 root root 4096 Feb 17 02:33 cron lrwxrwxrwx 1 root root 7 Jan 25 00:00 mail -> ../mail drwxr-xr-x 1 root root 4096 Feb 19 01:41 postfix drwx------ 2 root root 4096 Feb 17 2021 rsyslog drwxrwxrwx 2 root vmail 4096 Feb 19 01:46 spamassassin root@test:/# root@test:/# ls -la /var/spool/spamassassin total 656 drwxrwxrwx 2 root vmail 4096 Feb 19 01:46 . drwxr-xr-x 1 root root 4096 Feb 19 01:33 .. -rw-rw-rw- 1 debian-spamd vmail 90112 Feb 19 01:46 bayes_seen -rw-rw-rw- 1 debian-spamd vmail 675840 Feb 19 01:46 bayes_toks root@test:/# ```
jon_nfc commented 2022-02-19 02:01:55 +00:00 (Migrated from gitlab.com)
Copy Link

added 1 commit

  • 93378dee - fix(backup): /var/spool/postfix needs to be backed up

Compare with previous version

added 1 commit <ul><li>93378dee - fix(backup): /var/spool/postfix needs to be backed up</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335421900&start_sha=43f6a356bd7f458ee33955151ff5609c2b599a70)
jon_nfc commented 2022-02-19 03:04:18 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in issue #1

mentioned in issue #1
jon_nfc commented 2022-02-19 03:04:34 +00:00 (Migrated from gitlab.com)
Copy Link

added 5 commits

  • 7ec97502 - feat(amavis): Add received header to message
  • f6b7bae3 - feat(amavis): move policy bank to own config file
  • c3739c4f - feat(amavis): Don't allow user to send spam/virus
  • 9f7ccabf - feat(amavis): don't allow user to send banned email
  • 37045ad4 - build(docker_container): Ensure amavis data is a volume

Compare with previous version

added 5 commits <ul><li>7ec97502 - feat(amavis): Add received header to message</li><li>f6b7bae3 - feat(amavis): move policy bank to own config file</li><li>c3739c4f - feat(amavis): Don&#39;t allow user to send spam/virus</li><li>9f7ccabf - feat(amavis): don&#39;t allow user to send banned email</li><li>37045ad4 - build(docker_container): Ensure amavis data is a volume</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335428328&start_sha=93378dee86abe5f1ee86e824f2543656e1826e64)
jon_nfc commented 2022-02-19 03:05:13 +00:00 (Migrated from gitlab.com)
Copy Link

added 1 commit

  • 22a987a5 - feat(docker_container): Ensure amavis data is a volume

Compare with previous version

added 1 commit <ul><li>22a987a5 - feat(docker_container): Ensure amavis data is a volume</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335428398&start_sha=37045ad490e1afa7b17cece4e984ada5ffa46746)
jon_nfc commented 2022-02-19 03:24:42 +00:00 (Migrated from gitlab.com)
Copy Link

added 2 commits

  • acccf247 - fix(backup): ssl dir renamed to certs
  • e8eb6f90 - fix(backup.sh): exclude unix sockets from backup

Compare with previous version

added 2 commits <ul><li>acccf247 - fix(backup): ssl dir renamed to certs</li><li>e8eb6f90 - fix(backup.sh): exclude unix sockets from backup</li></ul> [Compare with previous version](/nofusscomputing/projects/docker-mail/-/merge_requests/9/diffs?diff_id=335430179&start_sha=22a987a5133e8e878f8c79e016e218ea5a8b76d1)
jon_nfc commented 2022-02-19 04:04:44 +00:00 (Migrated from gitlab.com)
Copy Link

message headers now

Return-Path: <test@example.org>
Delivered-To: support@example.org
Received: from test.nodomain.org
	by test.nodomain.org with LMTP
	id AhDeJYJrEGILBAAABaSMnA
	(envelope-from <test@example.org>)
	for <support@example.org>; Sat, 19 Feb 2022 04:01:06 +0000
Received: from localhost (localhost [127.0.0.1])
	by test.nodomain.org (server) with ESMTP id 8366431E0922
	for <support@example.org>; Sat, 19 Feb 2022 04:01:06 +0000 (UTC)
Authentication-Results: test.nodomain.org (amavisd-new); dkim=pass
	reason="pass (just generated, assumed good)" header.d=example.org
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=example.org; h=
	date:date:content-transfer-encoding:content-type:content-type
	:subject:subject:from:from:content-language:mime-version
	:message-id:received:received; s=dkim; t=1645243261; x=
	1646107262; bh=frcCV1k9oG9oKj3dpUqdJg1PxRT2RSN/XKdLCPjaYaY=; b=G
	Uk21JveM1lxBBwu6ZCIqWL4rWMuudINgD8q7uYoHC1ocqDIF7g4E3GiMikcDhos2
	65IxDcdKLoLEOSJSKn76TP7vSRUAAifPOIv/9Wzace5IfOW1owJGxYRXWh2Mfb5L
	71F48kWNl4AYxxlL+s9XlNqC0AjxZeXFfjLUXY/48WlozgQ9Ed8VKDrUfgKR5VFb
	k5uw7DrsyqRzIqg7Xy2/h+Xa+6vQ+SoUm1kFaQXa74+wHl5g9M0bx0Cod7+kGAJn
	mGHJV+Pv4UyhORpw4z4gd8Rl21hEtb1VaoB9pr+YfsVxRVVjrq3qrBuA8c0Jot4s
	DbC2fN/RUxI1o+2TzfrbCCVRHvE1YroZ9Az2t4FtFUNatvKTjbqGWlIkHTEckPCk
	8doaAKhfwCWmXmk/CPWx91tXugyWXzdZ+15wvDIZNqNEDCW+1df2s9KjEogZlUhc
	0Fld0aMOtJMJeyOpAn678JnVG2aH4po6RR8g//4A3oUJEd7VjkIAkeQf2fz0fdbA
	wBm17oEKLRenaLZXqrC9v6C43+nRXBF24YXjG9PR7RxkGOYvdvMo/0UX5IfqJNBT
	Q6egXZl0djBpefy3Fv7vexozyCOObtbofycUrIH/fjWTdcrzRk8pMAa9/JiDgXuu
	U8nz/HDVkKpRTJh31mcElsuRzPgv3jadMya4dvYxtY=
X-Spam-Flag: NO
X-Spam-Score: -1
X-Spam-Level:
X-Spam-Status: No, score=-1 tagged_above=-999 required=6.31
	tests=[ALL_TRUSTED=-1] autolearn=ham autolearn_force=no
Received: from test.nodomain.org ([127.0.0.1])
	by localhost (test.nodomain.org [127.0.0.1]) (amavisd-new, port 10023)
	with ESMTP id knJH_k9lsfRZ for <support@example.org>;
	Sat, 19 Feb 2022 04:01:01 +0000 (UTC)
Received: from [127.0.0.1] (localhost [127.0.0.1])
	by test.nodomain.org (server) with ESMTPSA id 4164831E0920
	for <support@example.org>; Sat, 19 Feb 2022 04:01:01 +0000 (UTC)
Message-ID: <914458b7-9cc0-18af-c9f7-3e778a5ae421@example.org>
MIME-Version: 1.0
Content-Language: en-US
To: support@example.org
From: test <test@example.org>
Subject: 1330
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Date: Sat, 19 Feb 2022 04:01:01 +0000 (UTC)
message headers now ```text Return-Path: <test@example.org> Delivered-To: support@example.org Received: from test.nodomain.org by test.nodomain.org with LMTP id AhDeJYJrEGILBAAABaSMnA (envelope-from <test@example.org>) for <support@example.org>; Sat, 19 Feb 2022 04:01:06 +0000 Received: from localhost (localhost [127.0.0.1]) by test.nodomain.org (server) with ESMTP id 8366431E0922 for <support@example.org>; Sat, 19 Feb 2022 04:01:06 +0000 (UTC) Authentication-Results: test.nodomain.org (amavisd-new); dkim=pass reason="pass (just generated, assumed good)" header.d=example.org DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=example.org; h= date:date:content-transfer-encoding:content-type:content-type :subject:subject:from:from:content-language:mime-version :message-id:received:received; s=dkim; t=1645243261; x= 1646107262; bh=frcCV1k9oG9oKj3dpUqdJg1PxRT2RSN/XKdLCPjaYaY=; b=G Uk21JveM1lxBBwu6ZCIqWL4rWMuudINgD8q7uYoHC1ocqDIF7g4E3GiMikcDhos2 65IxDcdKLoLEOSJSKn76TP7vSRUAAifPOIv/9Wzace5IfOW1owJGxYRXWh2Mfb5L 71F48kWNl4AYxxlL+s9XlNqC0AjxZeXFfjLUXY/48WlozgQ9Ed8VKDrUfgKR5VFb k5uw7DrsyqRzIqg7Xy2/h+Xa+6vQ+SoUm1kFaQXa74+wHl5g9M0bx0Cod7+kGAJn mGHJV+Pv4UyhORpw4z4gd8Rl21hEtb1VaoB9pr+YfsVxRVVjrq3qrBuA8c0Jot4s DbC2fN/RUxI1o+2TzfrbCCVRHvE1YroZ9Az2t4FtFUNatvKTjbqGWlIkHTEckPCk 8doaAKhfwCWmXmk/CPWx91tXugyWXzdZ+15wvDIZNqNEDCW+1df2s9KjEogZlUhc 0Fld0aMOtJMJeyOpAn678JnVG2aH4po6RR8g//4A3oUJEd7VjkIAkeQf2fz0fdbA wBm17oEKLRenaLZXqrC9v6C43+nRXBF24YXjG9PR7RxkGOYvdvMo/0UX5IfqJNBT Q6egXZl0djBpefy3Fv7vexozyCOObtbofycUrIH/fjWTdcrzRk8pMAa9/JiDgXuu U8nz/HDVkKpRTJh31mcElsuRzPgv3jadMya4dvYxtY= X-Spam-Flag: NO X-Spam-Score: -1 X-Spam-Level: X-Spam-Status: No, score=-1 tagged_above=-999 required=6.31 tests=[ALL_TRUSTED=-1] autolearn=ham autolearn_force=no Received: from test.nodomain.org ([127.0.0.1]) by localhost (test.nodomain.org [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id knJH_k9lsfRZ for <support@example.org>; Sat, 19 Feb 2022 04:01:01 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) by test.nodomain.org (server) with ESMTPSA id 4164831E0920 for <support@example.org>; Sat, 19 Feb 2022 04:01:01 +0000 (UTC) Message-ID: <914458b7-9cc0-18af-c9f7-3e778a5ae421@example.org> MIME-Version: 1.0 Content-Language: en-US To: support@example.org From: test <test@example.org> Subject: 1330 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Date: Sat, 19 Feb 2022 04:01:01 +0000 (UTC) ```
jon_nfc commented 2022-02-19 04:31:00 +00:00 (Migrated from gitlab.com)
Copy Link

marked the checklist item amavis to add received header to messages comment out config line 33 as completed

marked the checklist item **amavis to add received header to messages _comment out [config line 33](https://gitlab.com/nofusscomputing/projects/docker-mail/-/blob/1581d45d8925340e9cdee128e1168bfd47a6f74b/include/etc/amavis/conf.d/50-user#L33)_** as completed
jon_nfc commented 2022-02-19 04:39:10 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in issue #3

mentioned in issue #3
jon_nfc commented 2022-02-19 04:40:18 +00:00 (Migrated from gitlab.com)
Copy Link

moved to issue #3

moved to issue #3
jon_nfc commented 2022-02-19 04:42:14 +00:00 (Migrated from gitlab.com)
Copy Link

added 6h 15m of time spent

added 6h 15m of time spent
jon_nfc commented 2022-02-19 05:21:47 +00:00 (Migrated from gitlab.com)
Copy Link

as dovecot sasl auth has been setup as a unix socket for postfix and postfix does log auth attempts. This should not present as an issue.

as dovecot sasl auth has been setup as a unix socket for postfix and postfix does log auth attempts. This should not present as an issue.
jon_nfc commented 2022-02-19 05:21:48 +00:00 (Migrated from gitlab.com)
Copy Link

resolved all threads

resolved all threads
jon_nfc commented 2022-02-19 05:25:19 +00:00 (Migrated from gitlab.com)
Copy Link

approved this merge request

approved this merge request
jon_nfc (Migrated from gitlab.com) scheduled this pull request to auto merge when all checks succeed 2022-02-19 05:25:21 +00:00
jon_nfc commented 2022-02-19 05:25:24 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 2fdd4a8411

mentioned in commit 2fdd4a84116e30bbfab621a5f96283e76f622b77
jon_nfc (Migrated from gitlab.com) merged commit 2fdd4a8411 into development 2022-02-19 05:25:25 +00:00
jon_nfc commented 2022-02-19 05:26:12 +00:00 (Migrated from gitlab.com)
Copy Link

added 44m of time spent

added 44m of time spent
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 93378dee86

mentioned in commit 93378dee86abe5f1ee86e824f2543656e1826e64
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit c3739c4f19

mentioned in commit c3739c4f1964e4e315cd9eaa2a67e787aa121688
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit acccf24774

mentioned in commit acccf24774e100f0cda38941549099adc52b7b58
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 9f7ccabfa5

mentioned in commit 9f7ccabfa52dc71f14fa690ef9e7f0e3184f14c9
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 7ec9750216

mentioned in commit 7ec975021659fee5ebaa78332fef0d9533ee769d
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit e8eb6f906f

mentioned in commit e8eb6f906f07b5044ec873327117dbf87e357797
jon_nfc commented 2023-11-06 08:32:46 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit f6b7bae3eb

mentioned in commit f6b7bae3eba7398ad6de11b9cb2b36594df6f891
jon_nfc commented 2023-11-06 08:32:48 +00:00 (Migrated from gitlab.com)
Copy Link

mentioned in commit 22a987a513

mentioned in commit 22a987a5133e8e878f8c79e016e218ea5a8b76d1
Sign in to join this conversation.
Reviewers
No Reviewers
jon_nfc
Labels
Clear labels
Bug
Used in discussion about a bug in comments or commits
CVE-2023-5764
Denotes items related to the CVE
CodeReview
Used in comments (issues/MR/commits) to denote code review related items
Documentation
Documentation items
Feature
Used in discussion about a Feature in comments or commits
Lint
Used in comments (issues/MR/commits) to denote lint tasks todo, done, fixed
Privacy
Used in comments (issues/MR/commits) to denote privacy related items
Security
Used in comments (issues/MR/commits) to denote Security related items
breaking-change
label used to denote that the issue/Merge Request does/will introduce a breaking change
bug::reproducable
Given to an issue when the bug has been confirmed as re-producable. Can also be used in comments and commits.
bug::unable to reproduce
Given to an issue when the bug that is not able to be reproduced. Can also be used in comments and commits.
code review::complete
code review::not started
code review::rejected
code review::underway
difficulty::Full Development
Level 3. Difficulty representing that the task to complete must be planned and created.
difficulty::Good First Issue
Level 1. Difficulty representing that the task is very simple and with limited knowledge can be completed.
difficulty::Prior Knowledge
Level 2. Difficulty representing that the task requires some prior knowledge of either the technology or the project for task completion.
documentation::complete
Issues, Merge Requests
documentation::no change required
Issues, Merge Requests and used to denote no documentation changes required
documentation::not started
Issues, Merge Requests
documentation::stalled
Issues, Merge Requests
documentation::underway
Issues, Merge Requests
impact::0
impact::1
impact::2
impact::3
impact::4
impact::5
ops::ansible-roles
OPS project tag
ops::automation
ops::gitlab-ci
OPS project tag
ops::marcas
OPS project tag
ops::python-gitlab-management
OPS project tag
ops::website
priority::0
priority::1
priority::2
priority::3
priority::4
priority::5
stage::Ready for Development
stage::develop
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stage::feedback required
stage::planning
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stage::test
Stage for use in Issues and Merge Requests. Can also be used in discussion in comments and commits
stale
Label given to issues/merge requests that are considered stale due to no collaboration and is a mark for closure.
triage
Tag given to issues/merge requests requiring triaging by the team.
triage::not_confidential
This tag is given by the triage bot so that URLs can be added to an issue/comment. A triage policy for NFC wide should remove this label.
type::CI / CD
type::automation
This type is used to denote an automation job
type::bug
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::compliance
type::discussion
Type for Issues. Can also be used in discussion in comments.
type::documentation
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::feature
type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::invalid
label given to tickets that require no action or are deem as invalid.
type::quality assurance
Type for Issues and Merge Requests. Can also be used in discussion in comments and commits
type::question
Type for Issues. Can also be used in discussion in comments.
type::security
Type for Issues and Merge Requests.
type::specification
Design specification
workflow::complete
Issues, Merge Requests
workflow::not ready
workflow::not ready::blocked
workflow::not started
Issues, Merge Requests
workflow::ready to commence
Issues, Merge Requests
workflow::stalled
Label given to issues/merge requests where no work has occured in x days iaw triage policy.
workflow::underway
Issues, Merge Requests
workflow::underway::develop
No Label
impact::0
priority::0
type::feature
Milestone
No items
No Milestone docker-mail - v0.1.0
Projects
Clear projects
No project
Assignees
Clear assignees
jon
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: docker/docker-mail#14
No description provided.
Delete Branch "1-tracing-features"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?