@hillside502 yes, would be cool to map home networks and the upcoming Cloudron Multiserver.. and any ActivityPub App federations.

@imc67 CIFS has to be tested on your specific mount because each CIFS mount is totally different (since it's network based and also depends on remote disk speed etc). But it's good to have a ball park number in any case.

Agree would be good to add, currently you can already just setup the DNS records with AAAA to point to the Cloudron and that should work fine. I think the automation of that is just what is lacking, next to maybe some mail DNS record related things, but not 100% sure.
Given that ipv4 is supported everywhere and at least I am not aware of a VPS provider who does not give ipv4 addresses, we have handled that as low priority so far.

I am curious in which circumstances you have ipv6 only clients? Maybe we are missing a crucial use-case.

@necrevistonnezr True, but imapfilter ( or another workaround ) is here today for you to achieve what you want. Beats waiting for the feature you're asking for which might be available sometime soon, later .... or never.

@nebulon got it, thank you!

Fixed now 😄

@girish No, I don't have a lot of experience with postgresql. The strategy you describe aligns with my understanding of mysql's philosophy, but postgresql seems to require admins be more explicit. E.g. granting permissions to an arbitrary quoted LIKE pattern is documented in mysql, but postgresql's GRANT docs don't mention anything of the like and look like they require the specific object to exist (by nature of being a valid identifier) before granting permissions. Though I could be mistaken.

OK, I have fixed the expiry.

@girish thank you, subscribed. Desperately looking forward for the mail access restriction in 6.3, wish you a nice smooth release! 😊

Thank you both @luckow & @fbartels I feel this thread is a useful repo for gathering all the experience and getting this it's own Cloudron documentation.

We'll add anything we've learned and steps along the way to get whatever we can working.

Something I'm not sure that anyone knew before was that both Hetzner and Contabo will offer access to the custom ISO to install from if you ask them nicely and send them the correct public link to it.

Hetzner I know we can create a Network within, I've not needed to try that with Contabo yet though.

I've also learned about Proxmox, and that could be worthy of it's own dedicated how-to thread and documentation here, given the utility it can offer self-hosting on bare metal on premises or leased.

The community experience here is priceless!

@marcusquinn the API is also BitPay compatible btw. I think Coinbase is okay. In an ideal world, a public ledger really is the best. Since you and I both know that's not the world we live in, Monero serves an understandable need currently unsolved by Bitcoin. But that's the beauty of open source, right?

Thankfully, I have heard it is not hard to get a Monero daemon and payment integration running on btcpayserver via a docker flag. Along with an officially supported WordPress plugin, Point-of-Sale, crowdsourcing, shop, and invoice functions for any supported currency, this makes a nice little package for someone to get their community started with cryptocurrency.

Honestly, given that so many money services support purchasing BTC these days with QR-code scanning/sending and whatnot, I think giving Cloudron users the ability to get this going would be great. It may resonate with the kind of people looking for a self-hosted setup.

They have great docs
https://docs.btcpayserver.org/

Well-funded dev team
https://github.com/btcpayserver/btcpayserver/commits/master

And a demo running for anyone wanting to check it out
https://mainnet.demo.btcpayserver.org/

Exposing this in the backup UI is the idea.. not fishing in the logs.

@d19dotca Perhaps even a per-app option, as in "Check for spam sent from this app."

@jdaviescoates Agreed. Likely not an issue for a server with only a few apps, but can be a quick time saver for that at-a-glance info when hosting many of them. I'd personally like to see a toggle that allows this for admins so that it's not there for people who don't want to see them. But that can always be second iteration. haha.

I've upvoted this because it's always nice to know about other options. But I don't know enough to know if this really could replace solr.

That's great work @girish - it's not often you step out for the day and return to see your post "solved". I was going to include that it should be a simple nginx config thing but I know better. And it's unfortunate the request caching is a nightmare to enforce "must-staple".

Regardless, the win here is that you have it enabled. That should now be reflected in test reults from Mozilla Observatory (extended to Qualys SSL Labs & ImmuniWeb). Thanks for putting in the grunts on this one.

I don't have a script but if you want to keep the downtime low, we added this dry run feature last release - https://docs.cloudron.io/backups/#dry-run . This way you don't need to shutdown the old server while things are restoring on the new server. Of course, you have to be careful not to add new data in the old server since it won't be part of the backup but atleast the site will be up.

I like both the suggestions! Will look into adding them.

@imc67 nevermind, I found it - https://docs.espocrm.com/user-guide/mass-email/#settings

I will move this to feature request. But we haven't really analyzed what work this involves.

Right, we are actually fixing notification for the next release (6.3). In the meantime, Domains -> Renew all certs and then check the logs (button on the same page) if it fails. Usually, Let's Encrypt errors are temporary and currently Cloudron is a bit overzealous reporting those errors.

@atrilahiji I know that Elasticsearch is stopped developing, from opensource into enterprise. And do we develop Elasticsearch from the latest opensource version?

I'm curious about this. I could see this being useful for an educational institution that uses a cloudron for student accounts.

Looks like Haraka has a built-in web interface that could be a possible starting point here: http://haraka.github.io/plugins/watch/

For reference, Haraka has a greylisting function built in: http://haraka.github.io/plugins/greylist/ - and it works with the DNSWL / whitelist which we should enable too. That way if an IP is on the DNSWL, it automatically skips any greylisting attributes.

Just wanted to add that Haraka has both a DNSBL and a DNSWL, however it seems that the DNSWL is not enabled in the Haraka config yet, only the DNSBL is present.

http://haraka.github.io/plugins/dnswl/

It'd definitely be awesome if we could setup the DNSWL feature to allow a whitelist feed which then skips any DNSBL checks.

@girish I think the issue with MySQL Workbench is I can't use the latest version as they don't support macOS 10.14 past a certain version, and a colleague on a later macOS can get it working on a later MySQL Workbench version but I can't update my OS at the moment until some other software I use is updated to work with the later OS. Classic catch-22 on that one.

I think the solution to this should just be to use DBeaver, it's free on all platforms, and seems to work on all OS versions. too.

Maybe better to save your time for the odd additional /phpmyadmin/ that might be useful on certain apps.

Certainly appreciate the help and looking, but I don't want to distract you too much given it's a software version compatibility issue and not a Cloudron issue really. Thank you all the same though!!

@robi only the retention policy - https://docs.cloudron.io/backups/#retention-policy