🎃🐄 Mooctober 2023 Update | Domainwide Footer, cURL Fixes and more

What's Changed

• Update thollander/actions-comment-pull-request action to v2.4.1 by @renovate in #5377
• Update thollander/actions-comment-pull-request action to v2.4.2 by @renovate in #5379
• Update dependency nextcloud/server to v27.0.2 by @renovate in #5385
• Translations update from Weblate by @milkmaker in #5390
• Fix CPU load of dockerapi container by @mstilkerich in #5376
• Update config for nginx >=1.25.1 (http2, server_names_hash_max_size, server_names_hash_bucket_size) by @Dexus in #5383
• [Web] translated datatables to CZ and SK by @feldsam in #5404
• Update actions/checkout action to v4 by @renovate in #5409
• Translations update from Weblate by @milkmaker in #5410
• [Web] dark mode logo support by @feldsam in #5406
• [Web] Filter tables by Domain where possible by @feldsam in #5405
• [Web] BS5 styling fixes and enhancements by @feldsam in #5403
• [Web] apple config app passwords enhancements + translations by @feldsam in #4342
• Update rebuild_backup_image.yml by @MAGICCC in #5328
• Fix typo in German translation: by @papillon81 in #5414
• Update docker/build-push-action action to v5 by @renovate in #5415
• Update docker/login-action action to v3 by @renovate in #5416
• Update docker/setup-qemu-action action to v3 by @renovate in #5418
• Update docker/setup-buildx-action action to v3 - autoclosed by @renovate in #5417
• [Rspamd] add domain wide footer by @FreddleSpl0it in #5227
• Update dependency nextcloud/server to v27.1.0 by @renovate in #5422
• Update dependency nextcloud/server to v27.1.1 by @renovate in #5426
• Translations update from Weblate by @milkmaker in #5431
• mailcow.github.io -> docs.mailcow.email by @MAGICCC in #5432
• Translations update from Weblate by @milkmaker in #5434
• [Postfix] update postscreen_access.cidr by @milkmaker in #5398
• Update dependency nextcloud/server to v27.1.2 by @renovate in #5441
• Update ClamAV to latest LTS version 1.0.3 by @accolon in #5438
• Fix renovate to allow version extracts for Dockerfiles by @MAGICCC in #5436
• Improved the FQDN check and Ask before changing Git Repository URL in "update.sh" by @AlexHuebi in #5401
• Change column name in generate_config.sh by @MAGICCC in #5443
• [Unbound] Added Healthcheck for Unbound (Dockerfile and Compose) by @DerLinkman in #5451
• enable search in bodies from EAS by @cero1988 in #5402
• [Postfix] fix extra.cf updating by @Habetdin in #5372
• Update dependency phpredis/phpredis to v6 by @renovate in #5413
• Update dependency php/pecl-mail-mailparse to v3.1.6 by @renovate in #5442
• Update dependency composer/composer to v2.6.5 by @renovate in #5253

New Contributors

• @mstilkerich made their first contribution in #5376
• @Dexus made their first contribution in #5383
• @papillon81 made their first contribution in #5414
• @accolon made their first contribution in #5438
• @AlexHuebi made their first contribution in #5401
• @Habetdin made their first contribution in #5372

Full Changelog: 2023-09...2023-10
Blog Post for this Release: https://mailcow.email/posts/2023/release-2023-10/

Update 2023-09 (SOGo 5.9.0 Update)

⚠️ This Update only contains a critical fix with SOGo on macOS 14 (Sonoma). A bigger update will follow in early October 2023 ⚠️

What's Changed

• [SOGo] Update to 5.9.0 by @DerLinkman in #5433

Full Changelog: 2023-08...2023-09

🌻 🐄 Moogust Update 2023 - Spamhaus DQS Hotfixes

What's Changed

• Fix main.cf merging order by @sriccio in #5356
• [Postfix] rework dns_blocklists.cf generation by @FreddleSpl0it in #5359
• Add postscreen_dnsbl_reply_map to avoid disclosure of DQS key by @DocFraggle in #5357

Full Changelog: 2023-07a...2023-08

🍒 🐄 Mooly Update 2023 Revision A | SOGo 5.8.4 and Postfix Postscreen Fixes

What's Changed

• dns_blocklists.cf isn't appended to main.cf and therefore ineffective… by @DocFraggle in #5342
• Fix Reponse Code for ASN Checks by @DerLinkman in 6cf2775
• [Postfix] Reimplemented option for custom dnsbls by @DerLinkman in 0f33797
• [Postfix] Added dns_blocklists.cf for customizations by @DerLinkman in 6d17b9f
• [Postfix] update postscreen_access.cidr by @milkmaker in #5267
• Update SOGo to 5.8.4 by @DerLinkman in #5347
• Fix spamhaus query domains (.net only) by @DocFraggle in #5349

New Contributors

• @DocFraggle made their first contribution in #5342

Full Changelog: 2023-07...2023-07a

🍒 🐄 Mooly Update 2023 - Manageable CORS Settings and UI Improvements

Important

Before updating mailcow, make sure that the whois package is installed on your system.
A remote bad ASN Check has been implemented. Simply update your mailcow again to apply it :)

What's Changed

• [Dovecot] remove pass return in Dovecot lua auth by @DerLinkman in #5266
• Update thollander/actions-comment-pull-request action to v2.4.0 by @renovate in #5280
• Update dependency nextcloud/server to v27 by @renovate in #5284
• Update nextcloud heper script to disable SMTP TLS host verification by @superpuffin in #5283
• [API] Update swagger version to 5.1.0 by @MAGICCC in #5263
• Rspamd returns 401 on unsuccesful logins by @MAGICCC in #5262
• [Web] add cors to json_api by @FreddleSpl0it in #5213
• [Web] fix loading rspamd-history by @FreddleSpl0it in #5312
• [Dockerapi] add redis pubsub handler for broadcasting requests by @FreddleSpl0it in #5310
• [Rspamd] add dot-stuffing to bcc forwarding by @FreddleSpl0it in #5221
• [web] logger pdo exception handling workaround by @goodygh in #5215
• [Rspamd] Native mailcow Support for Securite ClamAV Signatures by @DerLinkman in #5316
• Fixes several instances of missing , extra role='tabpanel' and… by @SnailShea in #5315
• Update dependency nextcloud/server to v27.0.1 by @renovate in #5324
• Spamhaus DNSBL AS Detection by @DerLinkman #5295

New Contributors

• @superpuffin made their first contribution in #5283

Full Changelog: 2023-05a...2023-07

🌷🐄 Mooai Update 2023 - Revision A (⚠️ Critical Security Update ⚠️)

What's Changed

• Update dependency nextcloud/server to v26.0.2 by @renovate in #5254
• [Dovecot] remove pass return in Dovecot lua auth by @FreddleSpl0it in 67510ad
• [Dovecot] Update to 1.24 by @DerLinkman in f82aba3
• Changed maintainers to tinc (Dockerfiles) by @DerLinkman in 70aab75

---

Information about 2023-05a

This update contains a fix for a critical password change vulnerability in Dovecot (IMAP/POP3). We will release an official CVE in a few days (up to a week from now) with a detailed explanation and proof of concept for exploiting this desired security issue.

We strongly recommend that you update to 2023-05a ASAP as this problem persists for a longer period of time (before 2020).

Please check the linked CVE regarding this issue: CVE-2023-34108

Full Changelog: 2023-05...2023-05a

🌷🐄 Mooai Update 2023 - IMAP Performance + general Tweaks Update

What's Changed

• [Update.sh] Fix install docs link by @ewong012 in #5196
• Translations update from Weblate by @milkmaker in #5210
• Translations update from Weblate by @milkmaker in #5218
• [Web] Fix temporary email aliases sorting by @FreddleSpl0it in #5198
• [Web] fix rspamd table on sm devices by @FreddleSpl0it in #5204
• [Web] hide user tabs if acl is missing by @FreddleSpl0it in #5202
• [Web] fix bcc localdest selectpicker by @FreddleSpl0it in #5220
• [web] Fix typo in mobileconfig redirect by @goodygh in #5211
• [Dockerapi] Fix typo in dockerapi sieve print by @FreddleSpl0it in #5201
• Add IP Connect Inc to bad_asn.map by @MAGICCC in #5203
• [Web] Fix BCC validation by @FreddleSpl0it in #5197
• [Web] Fix deleting sender_acl when mbox is deleted by @FreddleSpl0it in #5200
• Clean up old entries from sasl_log by @mkuron in #5205
• Update alpine Docker tag to v3.18 by @renovate in #5231
• Enable maildir_very_dirty_syncs by default by @Daniel15 in #4028
• Add GitHub action update_postscreen_access_list.yml by @MAGICCC in #5214

New Contributors

• @ewong012 made their first contribution in #5196
• @Daniel15 made their first contribution in #4028

Full Changelog: 2023-04b...2023-05
**Blog Post: https://mailcow.email/2023/posts/2023/release-2023-05

🥚🐄 Moopril Update 2023 - Revision B

What's Changed

• BS5 related fixes by @feldsam in #5133
• Translations update from Weblate by @milkmaker in #5177
• Fix error "Deprecated: Using ${var} in strings is deprecated, use {$… by @bdwebnet in #5174
• Fix Typo by @shiz0 in #5191
• Added dropdown divider to "allowed protocols" selection on mailbox page by @bdwebnet in #5184
• [Web] optimizing mailbox add/edit/delete performance by @FreddleSpl0it in #5183
• [SOGo] update sogo 5.8.2.20230419 by @FreddleSpl0it in #5193
• [Web] Datatables sorting by @goodygh in #5186
• Update dependency nextcloud/server to v26.0.1 by @renovate in #5194
• Nextcloud helperscript - redo PHP check by @MAGICCC in #5187
• 2023-04b by @FreddleSpl0it in #5195

New Contributors

• @goodygh made their first contribution in #5186

Full Changelog: 2023-04a...2023-04b

🥚🐄 Moopril Update 2023 - Revision A (Hotfix for Nextcloud Users)

This is a hotfix for all users who host a nextcloud on their mailcow system as it fix the issue of upgrading to Nextcloud 26.

If you don't have a nextcloud instance running on your mailcow system this update can be skipped!

What's Changed

• Add a check for PHP>=8.2 errormsg for nextcloud by @MAGICCC in #5164

Full Changelog: 2023-04...2023-04a

🥚🐄 Moopril Update 2023 - SOGo 5.8.2, Rspamd 3.5 and more.

What's Changed

• Translations update from Weblate by @milkmaker in #5114
• [SOGo] Disable password change option by @dragoangel in #5109
• Fixes Issue #5118 (Bug with load more logs buttons) by @bdwebnet in #5119
• [Rspamd] Fix cases of forwarding via freemail by @dragoangel in #5108
• Fix SELinux labelling of init_db.inc.php for SOGo by @kaechele in #5107
• Translations update from Weblate by @milkmaker in #5131
• [Generate.sh] Fixed broken pipe error message by @DerLinkman in #5134
• Update actions/stale action to v8 by @renovate in #5143
• Update dependency nextcloud/server to v25.0.5 by @renovate in #5147
• Update dependency nextcloud/server to v26 by @renovate in #5142
• Update to PHP 8.2 by @MAGICCC in #5099
• [netfilter] add pubsub exception by @th-joerger in #5138
• Update mailcow/rspamd Docker tag to v1.93 by @renovate in #5139
• Fix SNAT never being added because of exception by @brunoleon in #5093
• [Dockerapi] delete vmail_index on maildir cleanup by @FreddleSpl0it in #5153
• [Netfilter] Implemented exponentially incrementing bantime by @th-joerger in #5127
• [Netfilter] Update to 1.52 by @FreddleSpl0it in #5157
• [SOGo] Update to 5.8.2 by @FreddleSpl0it in #5158
• Update 2023-04 by @DerLinkman in #5162

New Contributors

• @bdwebnet made their first contribution in #5119
• @th-joerger made their first contribution in #5138
• @brunoleon made their first contribution in #5093

Full Changelog: 2023-03...2023-04
Blog Page: https://mailcow.email/posts/2023/release-2023-04/