By the way: We update the code on a regular basis, you do not need to wait until we post these overviews. 🙂

Notable changes for all cows

  • Please contact me, if you want to share your spam with mailcow => info@servercow.de
  • We sponsored a better identity management in SOGo
  • .doc and .xls are now only rejected when they contain macros
  • mailcow speaks Chinese! Thanks to @EHfive!
  • You can now limit access to IMAP, POP3 and SMTP per user
  • Rspamd 2.6 with new neural logic
  • A vmail-index-vol-1 volume was created. The mail index will be recreated on the fly when accessing a mailbox. You can move this volume to fast disk and keep vmail-vol-1 on slower/spinning disks.
  • Show last SMTP login
  • We do now fully encrypt connections to the fuzzy storage
  • iso/img are now bad attachments
  • Disable extension cloaking detection (i.e. "doc.exe") due to false positives and other checks catching these bad extensions
  • rspamd-stats are available via mailcow API (/api/v1/get/logs/rspamd-stats)
  • Watchdog is enabled by default now when installing mailcow
  • New ACL to allow or disallow a domain administrator to change the domain description
  • Update MariaDB to 10.4

There are many more useful changes, please see the list below. I could not decide between important and less important this time. Many changes are quite useful or simply important bug fixes. So: update time!

A BIG THANK YOU to all supporters! Thank you so much for keeping mailcow alive. 🙂
Another BIG THANK YOU goes out to all contributors!

Changes since last post

We are now on commit 79802a9d1d0eaf583bcb55c96f6ff011b22a2cca

2020-10-10 – [Web] Do not expand IPv6 as found by SPF lookup
2020-10-10 – [Rspamd] Rebuilt 2.6-156\~buster
2020-10-09 – [Watchdog] Watch milter status with a dirty workaround, waiting for proxy ping pong event to implement a better check
2020-10-09 – [Update] Show commits on update check
2020-10-09 – [Rspamd] Delete deprecated reputation files
2020-10-08 – [Web] Update lang.sk.json + small typos (#3797)
2020-10-08 – [Rspamd] Add reputation plugin, remove deprecated plugins
2020-10-08 – [Rspamd] Use reputation plugin instead of ip_ and url_reputation
2020-10-08 – [Helper] Install Nextcloud 20
2020-10-08 – [Web] Higher timeout for long delays in transport checks
2020-10-08 – [Config] Change order of generate_config watchdog values
2020-10-06 – [Compose] Added SELinux support / volume labeling (#3766)
2020-10-04 – [API docs] Fixed spelling mistakes
2020-10-03 – [Rspamd] 2.6 stable, switched repo back to release
2020-10-03 – [Helper] Allow to run backup script everywhere
2020-10-02 – [Update] Add new args to update.sh -h output (#3787)
2020-10-02 – [Web] Add simplified Chinese language translations (#3784)
2020-09-29 – [Dovecot] Quota template – better compatibility (#3783)
2020-09-28 – [Compose] Update Rspamd to latest 2.6, update ACME image
2020-09-28 – [ACME] Add more checks, avoid cert/key mismatch on some installations, fix some output
2020-09-28 – [Compose] Update Postfix and Watchdog images
2020-09-28 – [Postfix] Fix smtp last login on replicated setups
2020-09-27 – [Web] lang.fr.json to reflect 6da5ee8
2020-09-27 – [Web] lang.sv.json (#3781)
2020-09-27 – [Nginx] Update site-defaults.conf (TLS cipher fixes) (#3780)
2020-09-27 – [Compose] Fix Postfix version
2020-09-27 – [Watchdog] Increase threshold for cert check
2020-09-27 – [Watchdog] Add certificate check for primary certificate; Add mail delay
2020-09-27 – [SOGo] SOGo 5.0.0.20200927-1, Sope 4.9.r1664.20200927
2020-09-26 – [ACME] Do check for restart of Postfix and Dovecot service more thoroughly
2020-09-26 – [Compose] Update SOGo image
2020-09-26 – [Web] Minor DB schema update
2020-09-26 – [Web] Some language additions for new functions and minor changes
2020-09-26 – [Web] Compatibility: Re-add _int vars
2020-09-26 – [Web] Allow to overwrite DKIM keys while importing a new key
2020-09-26 – [Web] Add TLS policy toggle to edit/mailbox; Add WIP smtp_ip_access (hidden)
2020-09-26 – [Web] Add toggle to overwrite DKIM key while importing
2020-09-26 – [Rspamd] Quarantine, Pushover: Respect active = 2 while processing
2020-09-26 – [Rspamd] Pushover, quarantine: also process
2020-09-26 – [Postfix] Update alias map;
2020-09-26 – [SOGo] SOGo 5.0.0.20200926-1, Sope 4.9.r1664.20200926
2020-09-25 – [Rspamd] 2.6-0~git32~1c3e0910b~buster
2020-09-25 – [SOGo] Update to 5.0.0.20200925-1
2020-09-24 – [SOGo] Re-enable TLS for internal IMAP connections, enable TLS for internal SMTP connections
2020-09-24 – [Web] Minor fix in quarantine view
2020-09-24 – [Rspamd] Fix prio for includes in overrides
2020-09-24 – [Nginx] Refresh cipher suites (#3669)
2020-09-23 – [Dovecot] IMPORTANT: New volume for mail index
2020-09-23 – [Config] New defaults: MAILDIR_GC_TIME=7200, WATCHDOG_NOTIFY_BAN=n
2020-09-23 – [Rspamd] Prepare SMTP ip restriction, WIP
2020-09-23 – [Dovecot] Move mail index to new volume
2020-09-23 – [Web] Add autocomplete to OTP (#3774)
2020-09-20 – [Web] Replace JSON_EXTRACT by JSON_VALUE in init script
2020-09-20 – [Dovecot] Remove like from query
2020-09-20 – [SOGo, Dovecot] Remove unnecessary likes from sql queries
2020-09-20 – [Web] Filter transport destinations to prevent empty destinations
2020-09-20 – [Config] Support mailcow.conf being a symlink (#3770)
2020-09-20 – [Web] lang.sv.json, lang.de.json, lang.en.json (#3771)
2020-09-19 – [Dovecot] Fix sieve with new protocol toggling implementation, fixes #3769
2020-09-18 – [Web] Add quick toggle for imap/pop3/smtp access; small rework of buttons on /mailbox; Minor fixes and changes
2020-09-17 – [ClamAV] Set to ConcurrentDatabaseReload and (todo:) add note to docs
2020-09-17 – [API docs] Removed all occurrences of _int
2020-09-17 – [API docs] Removed active_int
2020-09-17 – [Web] Important: Removed unnecessary *_int attributes from GET elements, _only_ returning int values now (same for all attributes which were provided as html char and int)
2020-09-17 – [Web] Feature: Allow to toggle protocols (imap, pop3, smtp) per user (defaults can be configured using vars.local.inc.php, see vars.inc.php)
2020-09-17 – [Compose] Update Dovecot and Postfix images
2020-09-17 – [Postfix] Merge syslog filters
2020-09-17 – [Postfix] Create sasl_access map; Use JSON_VALUE and remove unnecessary like command
2020-09-17 – [Dovecot] For future use: pass used protocol; Check if user has protocol access while authenticating
2020-09-17 – [Postfix] Add sasl check to deny specific users from using smtp relay
2020-09-17 – [Dovecot] Postlogin socket owned by vmail
2020-09-15 – [Rspamd] Latest 2.5
2020-09-15 – [ClamAV] Update to 0.103.0
2020-09-15 – [Compose] Update Rspamd and Postfix
2020-09-15 – [Postfix, Web] Feature: Show last SMTP login
2020-09-15 – [Rspamd] Encrypt fuzzy communication, switch to Rspamd 2.6
2020-09-13 – [Rspamd] Add open-relay-check@mailcow.email to monitoring_nolog.map (#3757)
2020-09-12 – [Rspamd] Add filter to global mime black- and whitelists to only match addr
2020-09-12 – [Web] Update lang.ru.json
2020-09-12 – [Rspamd] Add iso/img to bad extensions (#3753)
2020-09-12 – [Rspamd] Disable extension cloaking (#3754)
2020-09-10 – [SOGo] Update to 5.0.0.20200910-1, fixes #3719
2020-09-09 – [Rspamd] Macro check was fixed, remove doc and xls ban for now…
2020-09-09 – [Compose] Update olefy-mailcow
2020-09-09 – [Rspamd] Minor: Fix text
2020-09-09 – [Oletools] Fix olevba.py manually until fix is merged
2020-09-07 – [Web] Removed typo when adding a row (#3741)
2020-09-06 – [Web] Return json array when mailq empty, fixes #3738
2020-09-06 – [Rspamd] Meta exporter and settings map: read vars.local.inc.php
2020-09-06 – [Web] Add rspamd-stats route to API
2020-09-03 – [Config] Watchdog is stable
2020-09-03 – [Rspamd] doc and xls are blocked
2020-09-02 – [Web] Disable API regen button when key empty
2020-08-27 – [Netfilter] Skip invalid regex
2020-08-27 – [Web] Fail2ban: Only write regex filters if not empty
2020-08-27 – [Netfilter] Replace query by resolve (deprecated)
2020-08-27 – [Compose] Update images: PHP-FPM, Dovecot, ACME, Netfilter, Watchdog
2020-08-27 – [Web] Sync jobs: Use STARTTLS instead of TLS; Feature: Allow to edit fail2ban-like regex filters in UI
2020-08-27 – [Config] Better safe than sorry: Add a hint to use lowercase project names
2020-08-27 – [Netfilter] Reload regex filters from Redis
2020-08-27 – [Various] Always use lowercase for COMPOSE_PROJECT_NAME
2020-08-25 – [Web] Added new options to API docs
2020-08-23 – [Web] oAuth: Fix content type in profile reply, thanks to @this-user – fixes #3716
2020-08-22 – [Web] Allow to set force_pw_update, tls_enforce_in, tls_enforce_out, sogo_access and quarantine_notification when adding a domain (via API)
2020-08-19 – [Web] Create ACL to toggle permission of a domain administrator to change a domain desc
2020-08-19 – [Web] Fix da_acl when adding DA without domain
2020-08-18 – [Web] update lang.sk.json (#3714)
2020-08-16 – [Web] Fix checkbox for announcements
2020-08-16 – [SOGo] Update to 5.0.0.20200816-1
2020-08-16 – [Web] Rot announcements
2020-08-15 – [Web] Always display app_links (#3664)
2020-08-14 – [API docs] Added request body for sync job creation endpoint
2020-08-13 – [Web] MAILCOW_HOSTNAME should not be a CNAME
2020-08-13 – [Dovecot] Update to 2.3.11.3
2020-08-07 – [Compose] Update MariaDB to 10.4; Update PHP-FPM image to include fix
2020-08-07 – [PHP-FPM] Fix lookup of Postfix container when SQL applied an update