Commit Graph

152 Commits

Author SHA1 Message Date
Robin Raymond 12f16b2239 remove hostname from config, it breaks tests 2017-09-21 10:59:56 +02:00
r-raymond bc48b701c8 Merge pull request #15 from phdoerfler/patch-3
Added header filtering for removing sensitive information.
2017-09-20 15:31:06 +02:00
Robin Raymond 875db33579 comments on extra lines 2017-09-20 09:26:42 +02:00
Philipp Dörfler 4e5dd5db95 Removed superflous tls_auth_only = yes 2017-09-20 09:00:17 +02:00
Philipp Dörfler 893c6db5cd Now using pkgs.writeText
this places header cleanup rules into /store out of /etc and avoids the name clash.
2017-09-20 08:38:40 +02:00
Philipp Dörfler 16e31c6a0d Added header filtering for removing sensitive information. 2017-09-20 00:05:01 +02:00
Philipp Dörfler 46d14bcdf0 Increased security of TLS encryption 2017-09-19 23:54:40 +02:00
Robin Raymond b98654f99a fixes #9 2017-09-14 10:56:22 +02:00
Robin Raymond e226ed7fea remove obsolete comment 2017-09-13 15:24:11 +02:00
Robin Raymond 4b8669b2fe include junk sieve script 2017-09-13 13:06:44 +02:00
Robin Raymond 303448376b add sieve support to dovecot 2017-09-13 12:36:35 +02:00
Robin Raymond ba9db7cb3a fix missing rspamd service and activate extended xspam headers 2017-09-13 12:22:50 +02:00
Robin Raymond 73be826cca add redis and max_size to rmilter config to silence warning 2017-09-13 11:55:30 +02:00
Robin Raymond bf7099d389 fix issue #8
turns out this is a upstream bug. The fix should probably be pushed to nixpkgs.
2017-09-13 11:49:33 +02:00
Philipp Dörfler 71d6d41f9b Fixed issue #6 2017-09-12 22:47:13 +02:00
Robin Raymond d974be81e0 revert script exctraction 2017-09-03 16:20:47 +02:00
Robin Raymond 0c20bb3a85 move scripts to external files 2017-09-03 16:00:10 +02:00
Robin Raymond 0c414738e1 fix merge bug in systemd 2017-09-03 15:56:36 +02:00
Robin Raymond 1e0c203bf8 Merge branch 'module-rewrite' 2017-09-03 15:31:37 +02:00
Robin Raymond aa31e8fda6 add file missing in last commit 2017-09-03 11:15:18 +02:00
Robin Raymond e5d3786ff5 tyding up code 2017-09-03 11:15:01 +02:00
Robin Raymond 28225fb1d6 complete module rewrite 2017-09-03 11:13:34 +02:00
Robin Raymond 3eb363fc71 systemd to module 2017-09-02 15:08:50 +02:00
Robin Raymond 9ac491f87d networking to module 2017-09-02 14:58:33 +02:00
Robin Raymond 201c532a67 environment to module 2017-09-02 14:04:07 +02:00
Robin Raymond 26ac134660 make users into module 2017-09-02 13:58:42 +02:00
Robin Raymond ebb2a5caf7 camelCase 2 2017-09-02 13:29:49 +02:00
Robin Raymond b5fccc7e39 camelCase 2017-09-02 13:23:37 +02:00
Robin Raymond 061054926d make clamav a module 2017-09-02 12:59:07 +02:00
Robin Raymond 256d2c75a6 update comments 2017-09-02 12:15:22 +02:00
Danylo Hlynskyi c6e2de7180 don't enable firewall by default
It is default ON in NixOS and will conflict with `firewall.enable = false`, which some user may intentionally set.
In my opinion it is very high-level option to be set automatically.

Also, people who really don't want firewall, just do `lib.mkForce false` and won't even notice that this module requires it.
2017-08-31 14:42:14 +03:00
Robin Raymond b0ae2de5f4 Merge branch 'master' of https://github.com/Infinisil/nixos-mailserver into module-rewrite 2017-08-31 10:49:01 +02:00
Robin Raymond 42c4e18438 remove unnecessary after field in systemd 2017-08-30 15:56:24 +02:00
Silvan Mosberger 692a677194 make configuration a nixos module 2017-08-30 15:09:38 +02:00
Robin Raymond bb4717bf0b fix typo in opendkim key generation 2017-08-30 14:29:06 +02:00
Robin Raymond d05bd24040 make dovecot wait for postfix instead of other way around 2017-08-23 17:34:34 +02:00
Robin Raymond dbd8b88aca remove obsolete opendkim service 2017-08-23 17:29:51 +02:00
Robin Raymond 8551dcffff enable dkim signing 2017-08-23 17:22:44 +02:00
Robin Raymond 7d4809038f add virus scanning 2017-08-13 21:51:07 +02:00
Robin Raymond f51811b236 add password hashes 2017-08-13 15:51:41 +02:00
Robin Raymond ecd73f4e1c firewall respects settings 2017-08-13 14:20:02 +02:00
Robin Raymond 72f45af1ca fix submission port 2017-08-13 14:05:40 +02:00
Robin Raymond b68e64ec72 certificate scheme 2
On the fly create certificates via openssl (Maybe change this to
libressl in the future?). This is probably the best scheme to get
something that simply works. Self signed certificates only pose a
problem when connecting to retrieve the email via imap or pop3.
2017-08-13 11:51:07 +02:00
Robin Raymond be5d8c09d8 add rmilter and certificate files 2017-08-12 18:27:22 +02:00
Robin Raymond f3f30f2f24 add documentation 2017-08-12 16:41:43 +02:00
Robin Raymond f8b5e03b78 get postfix working
I still have to decide what to do with the certificate file
2017-08-12 16:14:16 +02:00
Robin Raymond 1d53a88a21 finish up dovecot configuration
also factor out users into own file
2017-08-12 12:28:46 +02:00
Robin Raymond e63b6ebda9 create maildir folder 2017-08-12 11:47:52 +02:00
Robin Raymond 60574841c6 restructuring; now works with 17.03/17.09-pre
I had to remove some of the features, they need to be slowely added in
again.
2017-08-12 11:27:19 +02:00
Robin Raymond 938158b3a6 fix arguments of functions 2017-08-11 14:05:58 +02:00
Robin Raymond 5faac4d735 factors out postfix 2016-07-25 17:48:40 +02:00
Robin Raymond 00649f7222 seperate dovecot into own file 2016-07-25 17:40:58 +02:00