Mail-in-a-box

Recent Commits

• Joshua Tauberer (24 May 26)

  v76

• Joshua Tauberer (24 May 26)

  Set Nextcloud appstoreenabled setting to false Updated php-fpm settings broke Nextcloud. See: https://discourse.mailinabox.email/t/problems-with-z-push-and-nextcloud-likely-after-package-updates-today/16460/21

• Nils Norman Haukås (23 May 26)

  Bugfix management interface HTML (#2574) * bugfix: don't display management interface internals on frontpage * nitpick: remove trailing whitespace fixes #2572

• Joshua Tauberer (20 Apr 26)

  Version 75 (April 20, 2026) * Updated Roundcube to 1.6.15, fixing a security vulnerability. * Fixed error when configuring S3 backups on empty buckets. * Fixed issue in management daemon name resolution. * Fixed accessibility issues in the control panel.

• Kevin (08 Apr 26)

  Fix KeyError when configuring S3 backups on empty buckets (#2548) Adding a guard so that if the user uses a brand new S3 bucket with no contents a KeyError is not received when configuring backups.

• Tim in 't Veld (08 Apr 26)

  Accessibility: index: aria-expanded on dropdown menu buttons, aliases: fieldset on permitted senders, mfa: fix incorrect id's and alt on qr code (#2555) * accessibility: aria-expandedon dropdowns, fieldset on aliases > permitted senders, mfa label corrections and alt on qr image * further change

• David Jäckel (08 Apr 26)

  Fix issue in management daemon name resolution (#2561) In some scenarios localhost resolves to the external ip. Adapted management daemon to reflect check performed in `start.sh`

• Tim in 't Veld (08 Apr 26)

  Accessibility: improve table semantics and ARIA usage (#2553)

• jcm-shove-it (08 Apr 26)

  Update roundcube to 1.6.15 (#2565)

• Tim in 't Veld (01 Feb 26)

  Fix critical accessibility bug in control panel modals (#2551) - Removed `aria-hidden="true"` from the `global_modal` div. This attribute was set but not updated, causing screen readers to ignore the modal even when it was open. Bootstrap sets and modifies `aria-hidden` automatically, so the correct approach is not to set it manually. - The `global_modal` div has `role="dialog"` (correct) but lacked `aria-modal="true"`. The ARIA specification recommends setting this attribute to ensure screen readers know that focus is (and should be) trapped in the modal. I added it. - Removed `aria-hidden="true"` from the close button. This button can receive keyboard focus, so it should have an accessible name. If it is hidden, a screen reader user experiences focus on an unnamed element, which is confusing. - Added `aria-label="Close Dialog"` to the close button. The visible label `×` does not describe the button’s function, but the new ARIA label does.

• Joshua Tauberer (04 Jan 26)

  v74

• KiekerJan (02 Jan 26)

  Update Nextcloud filter for fail2ban (#2539)

• KiekerJan (02 Jan 26)

  update roundcube to 1.6.12 (#2546)

• matidau (28 Jul 25)

  Update zpush.sh to version 2.7.6 (#2529)

• SE (28 Jul 25)

  Fix mozilla-autoconfig.xml (#2528) Fixes the Thunderbird auto configuration due to use of a <domain purpose="mx"> which is informational and may be ignored.

• ukfhVp0zms (21 Jul 25)

  Fix broken links for scp and DAV (#2522) * Update web.html: Update broken SCP man page link * Update sync-guide.html: Remove non-existing Android CalDAV and CardDAV apps from selection

• Joshua Tauberer (11 Jul 25)

  v73

• Joshua Tauberer (20 Jun 25)

  Add --allow-releaseinfo-change to the first main apt-get update because ppa:ondrej/php changed its Label I got: ``` Updating system packages... FAILED: apt-get update ----------------------------------------- Hit:1 http://archive.ubuntu.com/ubuntu jammy InRelease Hit:2 http://archive.ubuntu.com/ubuntu jammy-updates InRelease Hit:3 http://archive.ubuntu.com/ubuntu jammy-backports InRelease Hit:4 http://security.ubuntu.com/ubuntu jammy-security InRelease Hit:5 https://ppa.launchpadcontent.net/duplicity-team/duplicity-release-git/ubuntu jammy InRelease Get:6 https://ppa.launchpadcontent.net/ondrej/php/ubuntu jammy InRelease [24.6 kB] Reading package lists... E: Repository 'https://ppa.launchpadcontent.net/ondrej/php/ubuntu jammy InRelease' changed its 'Label' value from '***** The main PPA for supported PHP versions with many PECL extensions *****' to 'PPA for PHP' ```

• Joshua Tauberer (16 Feb 25)

  Use `utils.shell("check_call", ...)` rather than subprocess.call directly

• Joshua Tauberer (28 Jul 24)

  Add disabled code to log failed commands to stderr

• Joshua Tauberer (28 Jul 24)

  Add `management/dns_update.py --update` as an alternative to tools/dns_update.py that runs without the backend

• KiekerJan (08 Jul 25)

  fix SOA record check against secondary dns (#2507)

• KiekerJan (02 Jul 25)

  Remove ssl stapling from nginx configuration (#2520)

• KiekerJan (20 Jun 25)

  Add check on backup to status checks (#2508)

• MrWinux (20 Jun 25)

  Add Configuration to Handle AWS SDK Checksum Changes for Third-Party S3-Compatible Services (#2490) fix: MissingContentLength error in boto3 version 1.36.1 and up

• Teal Dulcet (20 Jun 25)

  Updated autoconfig file to include POP3 and CardDAV/CalDAV (#2499) Co-authored-by: Ben Bucksch <[email protected]>

• Jeff Tickle (20 Jun 25)

  Remove extraneous use of sudo from /etc/cron.d/mailinabox-nextcloud (#2500)

• Joshua Tauberer (20 Jun 25)

  Merge pull request #2473 from tdulcet/python-linting Added config file for the Ruff Python linter and fixed additional errors

• Teal Dulcet (18 Jun 25)

  Fixed RUF005 (collection-literal-concatenation): Consider iterable unpacking instead of concatenation

• Teal Dulcet (18 Jun 25)

  Fixed RET505 (superfluous-else-return): Unnecessary `elif` after `return` statement