aither/simple-nixos-mailserver
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
788 Commits 9 Branches 0 Tags
63b8e1615fc435f9de96cab8c3e37c54a2d486e3
Commit Graph

788 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
euxane e287d83ab1 release-notes: mention switch to fts-flatcurve for FTS 2025-05-19 16:45:09 +02:00
euxane 2ed7a94782 dovecot/fts: switch to fts-flatcurve 
This switches the full-text search plugin from fts-xapian to
fts-flatcurve, the now preferred indexer still powered by Xapian,
which will be integrated into Dovecot core 2.4.

This sets a sane minimal configuration for the plugin with
international language support.

The plugin options marked as "advanced" in Dovecot's documentation
aren't re-exposed for simplicity. They can nevertheless be overridden
by module consumers by directly setting keys with
`services.dovecot2.pluginSettings.fts_*`.

The `fullTextSearch.maintenance` option is removed as the index is now
incrementally optimised in the background.

GitLab: closes https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/issues/239
 2025-05-19 16:45:09 +02:00
Martin Weinelt 433520257a Merge branch 'pre-commit' into 'master' 
Pre-Commit Hook

See merge request simple-nixos-mailserver/nixos-mailserver!385
 2025-05-15 14:47:14 +00:00
Martin Weinelt aa8366d234 treewide: remove dead nix references 2025-05-15 16:41:30 +02:00
Martin Weinelt 9a6190ceea rspamd: remove indirection in path to runtime directory 2025-05-15 16:29:06 +02:00
Martin Weinelt 1e51a503b1 dovecot: drop unused pipe scripts 
Leftovers from d507bd9c95
 2025-05-15 16:29:05 +02:00
Martin Weinelt fce540024a docs/howto-develop: document the devshell 2025-05-15 16:29:05 +02:00
Martin Weinelt 040f07ff45 docs/howto-develop: update chat room references 2025-05-15 16:29:05 +02:00
Martin Weinelt a73982f5b4 docs: migrate wiki references to wiki.nixos.org 
This has been the official wiki platform for a while now.
 2025-05-15 16:29:05 +02:00
Martin Weinelt fbfd948535 flake.nix: remove clamav from devshell, add glab 
With glab we provide the GitLab CLI utility to interact programatically
with the platform. Useful for checking our Merge request branches for
example.
 2025-05-15 16:29:05 +02:00
Martin Weinelt 4c25278507 flake.nix: print options.md outpath during build 
Helpful for debugging the resulting options file.
 2025-05-15 16:29:05 +02:00
Martin Weinelt 3268d8b0d8 scripts/generate-options: refactor 
- Extract the md syntax part into reusable functions
- Rename variables so their purpose becomes clearer
 2025-05-15 16:29:04 +02:00
Martin Weinelt 4839fa6614 scripts: migrate format strings to f-strings 2025-05-15 16:29:04 +02:00
Martin Weinelt ddc6ce61db docs: fix linting issues 
https://github.com/sphinx-doc/sphinx/issues/3921
 2025-05-15 16:29:04 +02:00
Martin Weinelt a6eb2a8f9a README.md: reformat with markdownlint 2025-05-15 16:29:04 +02:00
Martin Weinelt a7d580b934 treewide: reformat python code 2025-05-15 16:29:04 +02:00
Martin Weinelt f9fcbe9430 scripts/generate-options: fix typing issue 2025-05-15 16:29:04 +02:00
Martin Weinelt 1615c93511 scripts/mail-check: fix typing issues 
Replaces the body payload parsing with proper handling for multipart
messages.
 2025-05-15 16:29:04 +02:00
Martin Weinelt 313f94ed8f flake.nix: create pre-commit hydra job 2025-05-15 16:29:04 +02:00
Martin Weinelt ff9087adb4 flake.nix: drop CC from devshell 
We absolutely do not need a C compiler in here.
 2025-05-15 16:29:03 +02:00
Martin Weinelt d0ac5ce64c flake.nix: annotate flake-compat usage 
It is not used within flake.nix, so add a note that it is used elsewhere.
 2025-05-15 16:29:03 +02:00
Martin Weinelt dccca0506a Provide direnv integration for flake devshell 2025-05-15 16:29:03 +02:00
Martin Weinelt 41e513da64 flake.nix: configure pre-commit 2025-05-15 16:29:03 +02:00
Martin Weinelt 1899fbe3fb Merge branch 'nixpkgs-update' into 'master' 
Update nixpkgs

See merge request simple-nixos-mailserver/nixos-mailserver!396
 2025-05-15 14:27:57 +00:00
Martin Weinelt dd83a2c7ad dovecot: rename sieve bayes/ham learning script 
Updates the spamassasin reference to talk about rspamd.
 2025-05-15 16:16:17 +02:00
Martin Weinelt 235dba2d82 tests/external: ignore new xapian warnings 
These looks harmless.

Closes: #322
 2025-05-15 16:16:17 +02:00
Martin Weinelt edd828ca88 flake.lock: Update 
Flake lock file updates:

• Updated input 'flake-compat':
    'github:edolstra/flake-compat/0f9255e01c2351cc7d116c072cb317785dd33b33' (2023-10-04)
  → 'github:edolstra/flake-compat/9100a0f413b0c601e0533d1d94ffd501ce2e7885' (2025-05-12)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/23e89b7da85c3640bbc2173fe04f4bd114342367' (2024-11-19)
  → 'github:NixOS/nixpkgs/adaa24fbf46737f3f1b5497bf64bae750f82942e' (2025-05-13)
• Updated input 'nixpkgs-24_11':
    'github:NixOS/nixpkgs/314e12ba369ccdb9b352a4db26ff419f7c49fa84' (2024-12-13)
  → 'github:NixOS/nixpkgs/5d736263df906c5da72ab0f372427814de2f52f8' (2025-05-14)
 2025-05-15 16:16:16 +02:00
Martin Weinelt 1ce644871b flake.nix: ignore the flake registry 
There is no real benefit using it anyway.
 2025-05-15 16:16:16 +02:00
Martin Weinelt da66510f68 Merge branch 'ci-reuse-flake-nixpkgs' into 'master' 
ci: use hydra-cli from pinned nixpkgs

See merge request simple-nixos-mailserver/nixos-mailserver!395
 2025-05-11 04:22:14 +00:00
Martin Weinelt 1f82d59d67 ci: use hydra-cli from pinned nixpkgs 2025-05-10 21:18:17 +02:00
Martin Weinelt 61b3a2c5ec Merge branch 'runtest-with-pinned-nixpkgs' into 'master' 
flake.nix: run tests against pinned nixpkgs

See merge request simple-nixos-mailserver/nixos-mailserver!394
 2025-05-10 16:23:55 +00:00
Martin Weinelt ef1e02e555 flake.nix: run tests against pinned nixpkgs 
and migrate to the new runTest, which evaluates much faster.
 2025-05-10 02:43:35 +02:00
Martin Weinelt 1feca02008 Merge branch 'drop-nixops' into 'master' 
treewide: drop nixops docs and examples

Closes #320

See merge request simple-nixos-mailserver/nixos-mailserver!393
 2025-05-08 21:36:38 +00:00
Martin Weinelt b92870c240 treewide: drop nixops docs and examples 
This is not a deployment system we recommend using anymore in 2025.

Closes: #320
 2025-05-08 23:22:29 +02:00
Jeremy Fleischman 8970ed0849 Suggest that folks enable DMARC reporting 
SNM supports DMARC reporting, but it's disabled by default. For email
greybeards, that's fine, but I think it would be useful to teach email newbies (as I was a few
months ago) that this is something you should seriously consider
enabling.

I opted to put this in a new "Advanced Configurations" section that
points experienced mailserver admins to our howto guides, and newbies to
a couple of important things.

refs: https://github.com/NixOS/infra/pull/635
 2025-05-08 13:12:43 -07:00
Martin Weinelt a7d2b05a99 Merge branch 'quota-status-uds' into 'master' 
dovecot: migrate queue-status to UNIX domain socket

See merge request simple-nixos-mailserver/nixos-mailserver!392
 2025-05-07 17:05:15 +00:00
Martin Weinelt 4a09d6460a Merge branch 'tests-remove-broken-escape-sequences' into 'master' 
tests: remove invalid escape sequences

See merge request simple-nixos-mailserver/nixos-mailserver!391
 2025-05-07 16:38:00 +00:00
Martin Weinelt a1ff289bf9 dovecot: migrate queue-status to UNIX domain socket 2025-05-07 18:00:53 +02:00
lewo 7bb0f43503 Merge branch 'dane-lookups' into 'master' 
postfix: Support opportunistic DANE TLS

See merge request simple-nixos-mailserver/nixos-mailserver!389
 2025-05-07 07:02:02 +00:00
Martin Weinelt 86b48f368f tests: remove invalid escape sequences 
>>> "\@"
<stdin>:1: SyntaxWarning: invalid escape sequence '\@'
'\\@'
 2025-05-07 03:56:41 +02:00
Martin Weinelt e488e3639a Merge branch 'postfix-comments' into 'master' 
postfix: adjust comments around smtpd_recipient_restrictions

See merge request simple-nixos-mailserver/nixos-mailserver!390
 2025-05-07 00:59:11 +00:00
Martin Weinelt 2e254b4b5e postfix: adjust comments around smtpd_recipient_restrictions 2025-05-07 02:52:28 +02:00
Martin Weinelt 1471e54b92 Merge branch 'no-tls-1.1' into 'master' 
postfix: disable TLSv1.1

See merge request simple-nixos-mailserver/nixos-mailserver!234
 2025-05-07 00:48:13 +00:00
Martin Weinelt fac7efe946 postfix: Support opportunistic DANE TLS 
This migrates the security level for outgoing SMTP connections to
dane[1]. Either a server is configured for DANE or it now uses mandatory
unauthenticated TLS.

If DANE validation fails, the delivery will be tempfailed.

If DANE is invalid or unusable the connection will fall back to
unauthenticated mandatory TLS

This has been the default in various mail distributions:
- Mailcow since December 2016[2]
- mailinabox since July 2014[3]

[1] https://www.postfix.org/TLS_README.html#client_tls_dane
[2] https://github.com/mailcow/mailcow-dockerized/commit/47a5166383a4ecae780ffd6ad2081dc3f070bd45
[3] https://github.com/mail-in-a-box/mailinabox/commit/e713af5f5aeca202c2bf88be324472b3ef898dc7
 2025-05-07 02:23:32 +02:00
Martin Weinelt 155ba08be7 Merge branch 'readme' into 'master' 
README updates (Matrix, Automatic client configuration)

See merge request simple-nixos-mailserver/nixos-mailserver!388
 2025-05-06 15:25:37 +00:00
Robert Schütz 71c5fe04f1 postfix: disable TLSv1.1 
In accordance with https://ssl-config.mozilla.org/#server=postfix.
 2025-05-06 02:42:13 -07:00
Martin Weinelt 8b4990905c Merge branch 'feature/ldap_forwards' into 'master' 
ldap: Allow mailserver.forwards

See merge request simple-nixos-mailserver/nixos-mailserver!313
 2025-05-06 03:38:48 +00:00
Martin Weinelt f6a64f713c docs/release-notes: advertise mailserver.forwards with ldap 2025-05-06 05:32:59 +02:00
Elian Doran b343c5e8fa assertions: Allow mailserver.forwards with LDAP set up 2025-05-06 05:32:45 +02:00
Martin Weinelt 776162c162 Merge branch 'dev/check-quota-is-null' into 'master' 
mail-server/dovecot: check if quota is non-null instead of string

See merge request simple-nixos-mailserver/nixos-mailserver!362
 2025-05-06 02:27:36 +00:00