nik/FreedomBox
1
0
Fork 0
mirror of https://github.com/freedombox/FreedomBox.git synced 2026-03-11 09:04:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

email: Add protection to local service using firewall

Browse Source 
Tests:

- When app is freshly installed, nft rules are inserted.

- Trying to connect to local daemon from fbx user fails.

- Functional tests pass.

Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
Reviewed-by: James Valleroy <jvalleroy@mailbox.org>
This commit is contained in:
Sunil Mohan Adapa 2022-11-11 11:39:55 -08:00 committed by James Valleroy
parent c4241abfe8
commit 7d4283d7b8
No known key found for this signature in database
GPG Key ID: 77C0C75E7B650808
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
plinth/modules/email/__init__.py
View File

@ -12,7 +12,8 @@ from plinth.daemon import Daemon
from plinth.modules.apache.components import Webserver
from plinth.modules.backups.components import BackupRestore
from plinth.modules.config import get_domainname
from plinth.modules.firewall.components import Firewall
from plinth.modules.firewall.components import (Firewall,
FirewallLocalProtection)
from plinth.modules.letsencrypt.components import LetsEncrypt
from plinth.package import Packages, uninstall
from plinth.privileged import service as service_privileged
@ -51,7 +52,7 @@ class EmailApp(plinth.app.App):
app_id = 'email'
_version = 1
_version = 2
def __init__(self):
"""Initialize the email app."""
@ -130,6 +131,10 @@ class EmailApp(plinth.app.App):
is_external=True)
self.add(firewall)
firewall_local_protection = FirewallLocalProtection(
'firewall-local-protection-email', ['11334'])
self.add(firewall_local_protection)
# /rspamd location
webserver = Webserver(
'webserver-email', # unique id