-
deploy
iroh-relayand also update "realtime relay services" in privacy policy. (#434) (#451) -
add guide to migrate chatmail to a new server (#429)
-
disable anvil authentication penalty (#414
-
increase
request_queue_sizefor UNIX sockets to 1000. (#437) -
add argument to
cmdeploy runfor specifying a different SSH host thanmail_domain(#439) -
query autoritative nameserver to bypass DNS cache (#424)
-
add mtail support (new optional
mtail_addressini value) This defines the address on whichmtailexposes its metrics collected from the logs. If you want to collect the metrics with Prometheus, setup a private network (e.g. WireGuard interface) and assign an IP address from this network to the host. If you do not plan to collect metrics, keep this setting unset. (#388) -
fix checking for required DNS records (#412)
-
add support for specifying whole domains for recipient passthrough list (#408)
-
add a paragraph about "account deletion" to info page (#405)
-
avoid nginx listening on ipv6 if v6 is dsiabled (#402)
-
refactor ssh-based execution to allow organizing remote functions in modules. (#396)
-
trigger "apt upgrade" during "cmdeploy run" (#398)
-
drop hispanilandia passthrough address (#401)
-
set CAA record flags to 0
-
add IMAP capabilities instead of overwriting them (#413)
-
fix OpenPGP payload check (#435)
-
fix Dovecot quota_max_mail_size to use max_message_size config value (#438)
-
fix metadata dictproxy which would confuse transactions resulting in missed notifications and other issues. (#393) (#394)
-
add optional "imap_rawlog" config option. If true, .in/.out files are created in user home dirs containing the imap protocol messages. (#389)
-
Add
disable_ipv6config option to chatmail.ini. Required if the server doesn't have IPv6 connectivity. (#312) -
allow current K9/Thunderbird-mail releases to send encrypted messages outside by accepting their localized "encrypted subject" strings. (#370)
-
Migrate and remove sqlite database in favor of password/lastlogin tracking in a user's maildir.
(#379) -
Require pyinfra V3 installed on the client side, run
./scripts/initenv.shto upgrade locally. (#378) -
don't hardcode "/home/vmail" paths but rather set them once in the config object and use it everywhere else, thereby also improving testability.
(#351) temporarily introduced obligatory "passdb_path" and "mailboxes_dir" settings but they were removed/obsoleted in (#380) -
BREAKING: new required chatmail.ini value 'delete_inactive_users_after = 100' which removes users from database and mails after 100 days without any login. (#350)
-
Refine DNS checking to distinguish between "required" and "recommended" settings (#372)
-
reload nginx in the acmetool cronjob (#360)
-
remove checking of reverse-DNS PTR records. Chatmail-servers don't depend on it and even in the wider e-mail system it's not common anymore. If it's an issue, a chatmail operator can still care to properly set reverse DNS. (#348)
-
Make DNS-checking faster and more interactive, run it fully during "cmdeploy run", also introducing a generic mechanism for rapid remote ssh-based python function execution. (#346)
-
Don't fix file owner ship of /home/vmail (#345)
-
Support iterating over all users with doveadm commands (#344)
-
Test and fix for attempts to create inadmissible accounts (#333)
-
check that OpenPGP has only PKESK, SKESK and SEIPD packets (#323, #324)
-
improve filtermail checks for encrypted messages and drop support for unencrypted MDNs (#320)
-
replace
bashwith/bin/sh(#334) -
Increase number of logged in IMAP sessions to 50000 (#335)
-
filtermail: do not allow ASCII armor without actual payload (#325)
-
Remove sieve to enable hardlink deduplication in LMTP (#343)
-
dovecot: enable gzip compression on disk (#341)
-
DKIM-sign Content-Type and oversign all signed headers (#296)
-
Add nonci_accounts metric (#347)
-
doveauth: log when a new account is created (#349)
-
Multiplex HTTPS, IMAP and SMTP on port 443 (#357)
-
don't check necessary DNS records on cmdeploy init anymore (#316)
-
change default for delete_mails_after from 40 to 20 days (#300)
-
save journald logs only to memory and save nginx logs to journald instead of file (#299)
-
fix writing of multiple obs repositories in
/etc/apt/sources.list(#290) -
metadata: add support for
/shared/vendor/deltachat/irohrelay(#284) -
Emit "XCHATMAIL" capability from IMAP server (#278)
-
Move echobot
into /var/lib/echobot(#281) -
Accept Let's Encrypt's new Terms of Services (#275)
-
Reload Dovecot and Postfix when TLS certificate updates (#271)
-
Use forked version of dovecot without hardcoded delays (#270)
-
Install dig on the server to resolve DNS records (#267)
-
preserve notification order and exponentially backoff with retries for tokens where we didn't get a successful return (#265)
-
Run chatmail-metadata and doveauth as vmail (#261)
-
Apply systemd restrictions to echobot (#259)
-
re-enable running the CI in pull requests, but not concurrently (#258)
-
Move systemd unit templates to cmdeploy package (#255)
-
Persist push tokens and support multiple device per address (#254)
-
Avoid warning for regular doveauth protocol's hello message. (#250)
-
Fix various tests to pass again with "cmdeploy test". (#245, #242
-
Ensure lets-encrypt certificates are reloaded after renewal ([#244]) #244
-
Persist tokens to avoid iOS users loosing push-notifications when the chatmail metadata service is restarted (happens regularly during deploys) (#238
-
Fix failing sieve-script compile errors on incoming messages (#237
-
Fix quota reporting after expunging of old mails (#233