Update procedure of selfhosting #1909
Conversation
hoyohayo
requested review from
acasajus,
cquintana92 and
nguyenkims
as code owners
| reject_unauth_destination, | ||
| reject_rbl_client zen.spamhaus.org, | ||
| reject_rbl_client bl.spamcop.net, | ||
| reject_rbl_client zen.spamhaus.org=127.0.0.[2..11], |
There was a problem hiding this comment.
do you have any doc on spamhaus pointing to this change?
There was a problem hiding this comment.
I agree with @hoyohayo : if using an open resolver almost every email would get blocked (https://www.spamhaus.org/news/article/788/spamhaus-dnsbl-return-codes-technical-update) and the standard return codes are available here.
There was a problem hiding this comment.
I confirm an error when using open resolvers, here is the error:
554 5.7.1 Service unavailable; Client host [xxx] blocked using zen.spamhaus.org; Error: open resolver; https://www.spamhaus.org/returnc/pub/172.71.133.37;
I'm using google DNS for my docker as recommended workaround here
https://www.spamhaus.com/resource-center/successfully-accessing-spamhauss-free-block-lists-using-a-public-dns/
but I don't really like using google DNS...
There was a problem hiding this comment.
@Metabaron1 I would recommend something like this alongside a PTR and you're good to go ;)
|
|
||
| ```bash | ||
| openssl genrsa -out dkim.key 1024 | ||
| openssl genrsa -traditional -out dkim.key 1024 |
There was a problem hiding this comment.
@nguyenkims since dkimpy v1.1.0, PKCS#8 is supported. What about you increase the minimum version instead?
There was a problem hiding this comment.
Do you know if it's compatible with the old key that people generated? I want to make sure that when people upgrade SL, they don't have any issue.
There was a problem hiding this comment.
It's a try/except trying the old key standard first so still compatible :D.
| POSTFIX_SERVER=10.0.0.1 | ||
| ``` | ||
|
|
||
| Now it is time to build the latest docker. Replace the tag by latest version released (as of writing 4.35.2). |
There was a problem hiding this comment.
| Now it is time to build the latest docker. Replace the tag by latest version released (as of writing 4.35.2). | |
| Now it is time to build the latest docker image. Replace the tag by latest version released (as of writing 4.35.2) or any other tag that you prefer. |
There was a problem hiding this comment.
Also, is it safe to build directly from master? How stable is it?
| -v $(pwd)/simplelogin.env:/code/.env \ | ||
| --network="sl-network" \ | ||
| simplelogin/app:3.4.0 flask db upgrade | ||
| simplelogin/app:4.35.2 alembic upgrade head |
There was a problem hiding this comment.
Use the same tag as above (here and below). Users might forget to replace the version number.
5 participants
No description provided.