CHANGELOG.md

• repo ⚠️ Maintenance discontinued.

1.5.5

• amavis for consitency move Unix socket here /run/amavis/amavisd.sock.
• postfix MIGRATE_CONFIG=1 make sure files on persistent storage has the right ownership.

1.5.4

• amavis BREAKING! Now use bayes_store_module Mail::SpamAssassin::BayesStore::BDB (BerkeleyDB). In alpine:3.13 the package perl-db_file was dropped, preventing SpamAssassin from using the DBM (DB_File) database. To migrate a DBM database, use mlan/postfix-amavis:1.4 and run sa-learn --backup > /tmp/bayesian.database.bak and then enable BDB and run sa-learn --restore /tmp/bayesian.database.bak.
• postfix Install PostSRSd a sender rewriting scheme via TCP-based lookup tables for Postfix.

1.5.3

• postfix Old MAIL_DOMAIN, MAIL_BOXES and MAIL_ALIASES entries was not cleared when issuing FORCE_CONFIG. Fixed now.
• dovecot Old SMTPD_SASL_CLIENTAUTH entries was not cleared when issuing FORCE_CONFIG. Fixed now.

1.5.2

• postfix Fixed MAIL_ALIASES bug, due to, we now use virtual so table format is: pattern address, address.
• postfix Now make LDAP_QUERY_ATTRS_USER=mail configurable.
• postfix MAIL_BOXES can now take mailbox path; address:mailbox.
• dovecot Now install mysql and pop3d modules.
• dovecot Support for mysql authentication using MYSQL_QUERY_PASS.
• dovecot Parameters can now set by envvars prefixed with DOVECOT_.
• dovecot Renamed conf.d/*.conf files.
• test Now also test Dovecot IMAP.
• test Now also properly test MAIL_BOXES and MAIL_ALIASES.

1.5.1

• postfix Add MySQL mailbox and alias lookup.
• amavis Fixed annoying Razor warning message.

1.5.0

• docker Now use alpine:3.13 (postfix:3.5.9) BREAKING! Incompatible hash|btree, use FORCE_CONFIG to migrate to lmdb.
• postfix Install files needs to be updated on persistent volumes.
• docker Upgrading module.
• dovecot Configured local mailbox delivery.
• test Update to use mlan/openldap:2.
• demo Update to use mlan/openldap:2.

1.4.3

• dovecot Added SASL authentication methods LDAP and IMAP (RIMAP).
• dovecot SASL LDAP now use auth_bind = yes.
• demo Enable IMAP POP3 and CalDAV/iCAL in demo.
• docker Update docker-compose example.
• docker Update SMPTS SASL authentication sections.
• test Added LDAP SASL SMTPS and MSA test, using curl.
• postfix Check all required LDAP parameters in postfix_setup_domains().
• postfix Use smtpd_reject_unlisted_recipient=no in postfix_setup_domains().
• dovecot Remove smtps/inet/smtpd_recipient_restrictions and rely on smtpd_relay_restrictions instead in dovecot_setup_smtpd_sasl().
• postfix Allow recipient email address to be rewritten using regexp in REGEX_ALIAS.
• docker Print package versions function dc_pkg_versions() now supports both apk and apt.
• docker Better log message when FORCE_CONFIG active.

1.4.2

• docker Now use alpine:3.12.1 (postfix:3.5.7).
• docker Print package versions using dc_apk_versions().

1.4.1

• acme BREAKING change! When migrating from 1.3.7 or older you need to run postconf -e smtpd_tls_cert_file=/etc/ssl/postfix/cert.pem and postconf -e smtpd_tls_key_file=/etc/ssl/postfix/priv_key.pem from within the container.
• acme Introduce ACME_POSTHOOK="postfix reload" and run that after we have updated the certificates.
• docker Don't move DOCKER_APPL_SSL_DIR=$DOCKER_SSL_DIR/postfix to persistent storage. Data there is updated at container startup anyway. Moreover there is no need to remove old data when it is updated.

1.4.0

• repo Cut up monolithic configuration script (docker-entrypoint.sh) into, easily reusable, modules.
• repo Revisited .travis.yml.
• repo Revisited src/module/bin script names.
• docker Now use entry.d and exit.d.
• docker Harmonize script names.
• docker Use the native envvar SVDIR instead of DOCKER_RUNSV_DIR.
• docker Now use 80-docker-lock-config.
• docker Reintroduce dynamic updates of the loglevel.
• docker Renamed utility script run previously called conf.
• amavis Reintroduce amavis_register_razor().
• amavis make spamassassin use razor.
• docker Reintroduce dc_persist_dirs().
• docker Revert back to DOCKER_DKIM_LIB=/var/db/dkim.
• docker Now use an unlock file, instead of a lock file, since it unlikely to accidentally create a file.
• docker Improved configurability of Dockerfile.
• docker Now use alpine:3.12 (postfix:3.5.2).
• docker Moved function dc_is_installed() into docker-common.sh.
• docker Fixed minor issue in logging functionality.
• acme Added module providing Let's encrypt TLS certificates using ACME.
• acme Support both v1 and v2 formats of the acme.json file.
• acme Support both host and domain wildcard TLS certificates.
• amavis Added module providing amavis configuration.
• dovecot Added module providing dovecot configuration.
• postfix Reintroduce doveadm_pw() and postfix_update_dhparam().
• postfix Added module providing postfix configuration.
• demo Made service names shorter.
• demo Add app-show_sync.
• test Cleaned up test directory and files.

1.3.7

• docker Added spamd-spam/ham service uses sa-learn for spam or ham.
• docker Consolidated logging functionality.
• repo separate source code in by which service it belongs to.
• demo Activated kopano-spamd integration.

1.3.6

• demo Use host timezone by mounting /etc/localtime.
• docker Always run sa-update at container start, otherwise amavisd refuses to start with new versions.
• docker Don't install tzdata, instead mount host's /etc/localtime.
• docker Config lock studied.

1.3.5

• Now use alpine:3.11.

1.3.4

• Use refactored docker-service.sh.
• Fixed acme-extract.sh leaking to stdout. Have it write to logger instead.
• Fixed amavis-ls script that was broken.
• Added section "Managing the quarantine" in README.md.
• Health-check now tests all services.
• In demo/Makefile added config, web, -diff, mta-apk_list, mta-quarantine_list, mta-debugtools, app-test_lmtp.

1.3.3

• Now generate selfsigned certificate when needed; SMTPD_USE_TLS=yes but no certificates given.
• Hardening submission (port 587 using STARTTLS) by only accepting permit_auth_destination.
• Now also enable smtps (port 465 using implicit TLS).

1.3.2

• Now support configuring aliases database using environment variable MAIL_ALIASES.
• New utility script amavis-ls which lists contents of quarantine.
• Make sure duplicate entries are NOT created with FORCE_CONFIG.
• Use default value if MAIL_DOMAIN is empty and HOSTNAME is not FQDC.
• New behavior; DKIM_SELECTOR must be non empty for DKIM to be configured.
• Now use Multiple cleanup service architecture.
• Added smoke test.
• Changed test-mail in Makefile so that it connects to postfix smtp service (and not pickup).

1.3.1

• Fixed the ACME TLS hook.
• Fixed some minor bugs in demo/Makefile.

1.3.0

• Simplify registering with razor so that spam signatures can be checked and shared.
• Consolidated build targets into mini, base and full.
• Fixed razor installation.
• Moved hooks for integrating Let’s Encrypt ACME TLS certs to target base.
• Fixed the ACME TLS hook.

1.2.1

• Fixed new bug where the ACME TLS hook was not run in persistent setups.

1.2.0

• Supports SMTP client SASL authentication using Dovecot.
• Support multiple domains.
• Services' configuration and run files now consolidated under /srv.
• Now use AMaViS implementation of dkim, so dropping opendkim.
• Now use SpamAssassin implementation of SPF, so dropping postfix-policyd-spf-perl.
• AMaViS configuration is now possible using environment variables.
• AMaViS configuration file moved to /etc/amavis/amavisd.conf.
• Now all ClamAV logs are redirected as intended.
• Using alpine:latest since bug 9987 was resolved.
• Configured tests run on Travis CI.
• Now install tzdata in target full to allow time zone configuration.

1.1.1

• Make sure the .env settings are honored also for MYSQL.

1.1.0

• Demo based on docker-compose.yml and Makefile files.

1.0.0

• Using alpine:3.8 due to bug 9987.