mirror of https://blitiri.com.ar/repos/chasquid synced 2026-01-08 17:51:57 +00:00

Go to file

Alberto Bertogli d7006d0e16 smtp: Limit incoming line length

On the smtp client package, there is no limit to the length of the
server's replies, so an evil server could cause a memory exhaustion DoS
by issuing very long lines.

This patch fixes the bug by limiting the total size of received data.
Ideally this would be done per-line instead, but gets much more complex,
so this is a compromise.

The limit chosen is 2 MiB, which should be plenty for any the total size
of server-side replies, considering we only send a single message per
connection anyway.

This is similar to 06d808c (smtpsrv: Limit incoming line length), which
was found and reported by Max Mazurov (fox.cpp@disroot.org).

2019-12-01 17:25:25 +00:00

cmd

smtp-check: Improve error reporting

2019-10-19 14:26:47 +01:00

docker

docker: Add Dockerfile for running chasquid+dovecot+letsencrypt

2019-08-12 01:21:41 +01:00

docs

docs: Add section about monitoring with Prometheus

2019-10-31 21:38:34 +00:00

etc

hooks: Add rspamd integration to the example hook

2019-10-21 13:51:58 +01:00

internal

smtp: Limit incoming line length

2019-12-01 17:25:25 +00:00

test

test: Generate a prettier coverage report

2019-10-26 01:56:33 +01:00

.gitignore

Ignore fuzz-generated corpus and build artifacts

2018-03-30 22:33:53 +01:00

.gitlab-ci.yml

gitlab-ci.yml: Run integration tests against submitted and latest deps

2019-10-19 13:06:30 +01:00

.mkdocs.yml

docs: Add missing reference to upgrading.md in the index

2019-10-31 21:40:15 +00:00

.travis.yml

travis: Increase minimum supported version to 1.11

2019-12-01 17:25:25 +00:00

chasquid.go

aliases: Implement aliases hooks

2019-10-24 21:37:09 +01:00

coverage_test.go

test: Add tools to generate test coverage information

2018-03-02 19:37:37 +00:00

dnsoverride.go

test: Add TLS tracking integration test

2018-06-02 19:31:28 +01:00

go.mod

Add support for go modules

2019-10-19 00:45:18 +01:00

go.sum

test: Generate a prettier coverage report

2019-10-26 01:56:33 +01:00

LICENSE

Add a license

2016-11-03 00:51:59 +00:00

Makefile

test: Add stress tests

2018-03-26 01:58:47 +01:00

README.md

README: Update links and shields

2019-10-25 16:00:15 +01:00

README.md

chasquid

chasquid is an SMTP (email) server with a focus on simplicity, security, and ease of operation.

It is designed mainly for individuals and small groups.

It's written in Go, and distributed under the Apache license 2.0.

Features

Easy
- Easy to configure.
- Hard to mis-configure in ways that are harmful or insecure (e.g. no open relay, or clear-text authentication).
- Monitoring HTTP server, with exported variables and tracing to help debugging.
- Integrated with Debian and Ubuntu.
- Supports using Dovecot for authentication.
Useful
- Multiple/virtual domains, with per-domain users and aliases.
- Suffix dropping (user+something@domain → user@domain).
- Hooks for integration with greylisting, anti-virus, anti-spam, and DKIM/DMARC.
- International usernames (SMTPUTF8) and domain names (IDNA).
Secure
- Tracking of per-domain TLS support, prevents connection downgrading.
- Multiple TLS certificates.
- Easy integration with Let's Encrypt.
- SPF and MTA-STS checking.

Documentation

The how-to guide and the installation guide are the best starting points on how to install, configure and run chasquid.

You will find all documentation here.

Contact

If you have any questions, comments or patches please send them to the mailing list, chasquid@googlegroups.com.

To subscribe, send an email to chasquid+subscribe@googlegroups.com.

You can also reach out via IRC, #chasquid on freenode.

Languages

Go 84.1%

Shell 11.1%

Python 2.8%

Dockerfile 1%

CSS 0.7%

Other 0.3%