Hi and welcome @DigitEgal we currently do not have any further referral options available. From what you described with the custom support provided by you, are you thinking of maintaining the Cloudron instances on behalf of your users? If this is the case we have some bits already implemented to customize the support section, but this is not finished yet. We need more use-case descriptions here to finalize this.

@murgero I didn't say it wouldn't be accessible; it would, just through my proxies, that make sure to remove any information, that would help in disclosure.

You also miss an option with Intranets.

I moved this into Feature Requests . @nebulon is looking into if this is easy to implement.

@girish Awesome, thank you!

The latest lamp package support PHP 8.0

@fbartels This is a much better way to say it, yes.

Some way to communicate with my users in a semi-permanent way.

@nebulon Magic - thank you kindly!

Often I end up doing support over the phone or SMS without web access, so hoping this will make it easier to verbalise instructions without needing to copy/paste links.

@marcusquinn Yeah, I for one would love for my screw-ups and poking-arounds to be recorded. Would sure save time on re-Googling commands!

It looks like my friends at Aporeto.com got acquired by PaloAlto Networks. They have an OSS projects called Trireme - https://github.com/aporeto-inc

Trireme, an open-source library curated by Aporeto to provide cryptographic isolation for cloud-native applications. Trireme-lib is a Zero-Trust networking library that makes it possible to setup security policies and segment applications by enforcing end-to-end authentication and authorization without the need for complex control planes or IP/port-centric ACLs and east-west firewalls.

Trireme-lib supports both containers and Linux processes as well user-based activation, and it allows security policy enforcement between any of these entities.

A good tool for Cloudron as well as securing LDAP across machines.

I'd still really like this small addition to the System Info page.

You shouldn't have to do sums in order to work out how much disk space is being used. It should just be displayed.

A simple feature to add with a decent benefit. +1!

@robi Thanks for letting me know.

I think @robin 's suggestion seems well thought out. The big advantage is that it would be totally optional to do it for apps for which it would be hard, while providing a significantly better UX for apps which do support it.

Google IPv6 Implementors Conference: State of the IPv6 Internet & Transition Mechanisms and Tools
Youtube Video

@imnotjack91 Indeed, this is planned for Cloudron 7 - https://forum.cloudron.io/topic/4423/what-s-coming-in-cloudron-7-0

@robi good catch, this is fixed now.

@nebulon Kind of depends on the app type, too, I guess? The one I really notice this stand out on is for LAMP. I have maybe 4-5 of these, all serving static sites. I don't really care when they update, but whenever they do, I get a bunch of notifications for them all at once.

I don't know. I guess I see your point, and maybe it's fine to just leave it be. Ultimately, I guess if you don't design for people to have too many things of the same type, it probably won't matter anyway.

@brutalbirdie said in Add External Turn Server:

This is your case, not everyone is using Cloudflare.

Indeed, I know that this is specific to my case and that not everyone uses something like Cloudflare. But it is a big player, so worth addressing. As I say, it can be worked around and still use the Cloudron turn by using the real IP instead of the domain name in turn configs. But that gets overwritten, and an option to use external turn server would, frankly, be very helpful indeed given some of the other challenges with the Cloudron turn server that you highlight.

[By the way, and not related to my specific request, I will say, that I have had fits in the past trying to get the BigBlueButton's suggested turnserver configuration working and really have found the whole 443 setup to be too difficult. So even for our BigBlueButton server, we've just ended up using an external turn server running on 3478 and 5349. The challenge I think is that the turn server monopolizes 443]

I still need cloudron login, because many people are using it now.

I'm going to try to activate social login in nextcloud and rocket chat, and see if it merges the social token with the existing account. If so, the problem should be solved.

@girish Hi there. Thanks for checking into this for me.

I had a suspicion that the spam engine was verifying, since I did see those fields in the Spam results headers. However I think it's also useful to have Haraka add the headers as well. It would add very little overhead and will add additional detail that the spam header doesn't contain about the DKIM verification (such as which signature failed or passed, since an email can contain multiple).

In regards to DMARC. I don't believe this would be risky at all if implemented in the following manner:

No DMARC record found, take no action. DMARC found, DKIM/SPF aligned, take no action DMARC found, DKIM/SPF alignment fails, but p=none, take no action. DMARC found, DKIM/SPF alignment fails, but p=quarantine, move to spam folder DMARC found, DKIM/SPF alignment fails, p=reject, dev/null the mail. If you don't like the risk of this, push it to spam instead... or make it a cloudron option under Settings.

Thanks for listening.

@robi Ah ok, some sort of differential backup with "packing". I think duplicity does something like this (or maybe it's duplicati, i get confused between the two).

@jodumont said in Catch-all aliases:

@girish said in Email aliases on different domains:

inter-domain aliases

but those 2 domains (email@domain1.tld and email@domain2.tld) can't have a catchall unless I configure a mailbox for it.

Of course, otherwise where would it catch the catchall emails.

I believe it would be nice a have the possibility to have a catchall@* or at least to be able to configure the catchall@ with another domain such as catchall@domain1.tld redirected to email@domain.tld

This is a great idea though.

@humptydumpty probably not 6.4 since that is already under way, I will remember to schedule it for the release after.

I actually just signed up for their service, would give me some good experience before automating it.

There is a restart server button. But of course, that is broken in 6.3.4 😕 Hopefully 6.4 should be out in a couple of weeks though.

Now might be a good time to revisit this FR.

@hillside502 Yes, you can update to 6.3.4 and safe. And then you update to 6.3.5. This is the correct update path.

I think what's wrong is that it is telling you 6.3.4 is unstable. It shouldn't be. I am trying to reproduce this, let's see.