5 Incheckningar

Upphovsman SHA1 Meddelande Datum
  Luke Smith dc9552f420
Merge pull request #304 from amnweb/patch-1 10 månader sedan
  Luke Smith 48383e0829
Merge pull request #305 from aartoni/master 10 månader sedan
  aartoni 1d3d7e7ba9
Long term fix to prevent SMTP smuggling 10 månader sedan
  aartoni bcfba987e4
Short-term workaround to prevent SMTP smuggling 11 månader sedan
  amnweb a8f5d0fddd
Update emailwiz.sh 1 år sedan
1 ändrade filer med 5 tillägg och 1 borttagningar
Delad Vy
  1. +5
    -1
      emailwiz.sh

+ 5
- 1
emailwiz.sh Visa fil

@@ -30,7 +30,7 @@ ipv6=$(host "$domain" | grep "IPv6" | awk '{print $NF}')
[ -z "$ipv6" ] && echo "\033[0;31mPlease point your domain ("$domain") to your server's ipv6 address." && exit 1

# Open required mail ports, and 80, for Certbot.
for port in 80 993 465 25 587; do
for port in 80 993 465 25 587 110 995; do
ufw allow "$port" 2>/dev/null
done

@@ -314,6 +314,10 @@ postconf -e 'smtpd_milters = inet:localhost:12301'
postconf -e 'non_smtpd_milters = inet:localhost:12301'
postconf -e 'mailbox_command = /usr/lib/dovecot/deliver'

# Long-term fix to prevent SMTP smuggling
postconf -e 'smtpd_forbid_bare_newline = normalize'
postconf -e 'smtpd_forbid_bare_newline_exclusions = $mynetworks'

# A fix for "Opendkim won't start: can't open PID file?", as specified here: https://serverfault.com/a/847442
/lib/opendkim/opendkim.service.generate
systemctl daemon-reload


Laddar…
Avbryt
Spara