Hack around sieve execution for multiple recipients.

Only set original sender for MAIL FROM
Alias file update
2025-03-06 08:50:36 +01:00 · 2025-03-06 08:50:36 +01:00 · 2025-03-06 08:50:36 +01:00 · 2025-03-06 08:50:36 +01:00 · 2025-03-06 08:50:36 +01:00 · 2025-03-06 08:50:36 +01:00
12 changed files with 9 additions and 9 deletions
--- a/nixos/machines/bragi/backupKey.secrets.yaml
+++ b/nixos/machines/bragi/backupKey.secrets.yaml
--- a/nixos/machines/bragi/configuration.nix
+++ b/nixos/machines/bragi/configuration.nix
@ -14,7 +14,7 @@
  system.stateVersion = "23.11";

  sops.secrets.backupKey = {
-    sopsFile = ./backupKey.yaml;
+    sopsFile = ./backupKey.secrets.yaml;
    owner = config.users.users.fsaccount.name;
    inherit (config.users.users.fsaccount) group;
    mode = "0400";
--- a/nixos/machines/lobon/allowlistPass.secrets.yaml
+++ b/nixos/machines/lobon/allowlistPass.secrets.yaml
--- a/nixos/machines/lobon/backupKey.secrets.yaml
+++ b/nixos/machines/lobon/backupKey.secrets.yaml
--- a/nixos/machines/lobon/configuration.nix
+++ b/nixos/machines/lobon/configuration.nix
@ -21,13 +21,13 @@

  sops.secrets = {
    allowlistPass = {
-      sopsFile = ./allowlistPass.yaml;
+      sopsFile = ./allowlistPass.secrets.yaml;
      owner = "mailman";
      group = "mailman";
      mode = "0400";
    };
    backupKey = {
-      sopsFile = ./backupKey.yaml;
+      sopsFile = ./backupKey.secrets.yaml;
      owner = "root";
      group = "root";
      mode = "0400";
--- a/nixos/machines/nyarlathotep/allowlistPass.secrets.yaml
+++ b/nixos/machines/nyarlathotep/allowlistPass.secrets.yaml
--- a/nixos/machines/nyarlathotep/backupKey.secrets.yaml
+++ b/nixos/machines/nyarlathotep/backupKey.secrets.yaml
--- a/nixos/machines/nyarlathotep/configuration.nix
+++ b/nixos/machines/nyarlathotep/configuration.nix
@ -45,7 +45,7 @@

  sops.secrets = let
    allowlistSops = {
-      sopsFile = ./allowlistPass.yaml;
+      sopsFile = ./allowlistPass.secrets.yaml;
      owner = "stalwart-mail";
      group = "stalwart-mail";
      mode = "0400";
@ -58,19 +58,19 @@
    "allowlistPass/koma" = allowlistSops;
    # Virtual alias file
    "mathebau.aliases" = {
-      sopsFile = ./mathebau.aliases.yaml;
+      sopsFile = ./mathebau.aliases.secrets.yaml;
      owner = "stalwart-mail";
      group = "stalwart-mail";
      mode = "0440";
    };
    "mathechor.aliases" = {
-      sopsFile = ./mathechor.aliases.yaml;
+      sopsFile = ./mathechor.aliases.secrets.yaml;
      owner = "stalwart-mail";
      group = "stalwart-mail";
      mode = "0440";
    };
    "koma.aliases" = {
-      sopsFile = ./koma.aliases.yaml;
+      sopsFile = ./koma.aliases.secrets.yaml;
      owner = "stalwart-mail";
      group = "stalwart-mail";
      mode = "0440";
@ -89,13 +89,13 @@
    };
    # password for https://stalw.art/docs/auth/authorization/administrator/#fallback-administrator encoded to be supplied in the basic auth header
    stalwartAdmin = {
-      sopsFile = ./stalwartAdmin.yaml;
+      sopsFile = ./stalwartAdmin.secrets.yaml;
      owner = "stalwart-mail";
      group = "stalwart-mail";
      mode = "0400";
    };
    backupKey = {
-      sopsFile = ./backupKey.yaml;
+      sopsFile = ./backupKey.secrets.yaml;
      owner = "root";
      group = "root";
      mode = "0400";
--- a/nixos/machines/nyarlathotep/koma.aliases.secrets.yaml
+++ b/nixos/machines/nyarlathotep/koma.aliases.secrets.yaml
--- a/nixos/machines/nyarlathotep/mathebau.aliases.secrets.yaml
+++ b/nixos/machines/nyarlathotep/mathebau.aliases.secrets.yaml
--- a/nixos/machines/nyarlathotep/mathechor.aliases.secrets.yaml
+++ b/nixos/machines/nyarlathotep/mathechor.aliases.secrets.yaml
--- a/nixos/machines/nyarlathotep/stalwartAdmin.secrets.yaml
+++ b/nixos/machines/nyarlathotep/stalwartAdmin.secrets.yaml
Author	SHA1	Message	Date
Gonne	19351ef316	Hack around sieve execution for multiple recipients.	2025-03-06 08:50:36 +01:00
Gonne	ceaaa3bcaf	Only set original sender for MAIL FROM	2025-03-06 08:50:36 +01:00
Gonne	85550be504	Alias file update	2025-03-06 08:50:36 +01:00
Gonne	be998b48f5	Group config parameters	2025-03-06 08:50:36 +01:00
Gonne	10ca56c064	Enable DKIM signing	2025-03-06 08:50:36 +01:00
Gonne	c05d7591a8	Filter out catch-all addresses of the form "@domain.tld" from the allowlist that are not intended for HRZ	2025-03-06 08:50:36 +01:00
Gonne	ea956c99e7	Set sender and increase redirect limit for our alias file	2025-03-06 08:50:36 +01:00
Gonne	b3dde5ef7a	Accept mail from our badly configured VMs	2025-03-06 08:50:36 +01:00
Gonne	0517a5e77c	Add mathebau.de to certificate	2025-03-06 08:50:36 +01:00
Gonne	3ece72db70	Rename config option after update beyond version 0.11.2	2025-03-06 08:50:36 +01:00
Gonne	68a02c75e1	Disable matheball.de forwards and submission to mail allowlist until we actually handle it	2025-03-06 08:50:36 +01:00
Gonne	beaab16ffa	Allow unpacking stalwart's webadmin interface	2025-03-06 08:50:36 +01:00
Gonne	01951eadad	Delete directive proxy_interface This directive is supposed to prevent mail delivery loops that would be caused by portforwarding to itself. Behind this ip address, however, there is our general mail vm and not immediately the mailinglist setup.	2025-03-06 08:50:36 +01:00
Dennis Frieberg	064aca1705	renamed secret files so they are easier to shell glob	2025-03-05 21:11:38 +01:00