From a02e920badf4095925def26207c8c22d2bd3e03d Mon Sep 17 00:00:00 2001
From: Edwin Lyon <53972157+practical-engelbart@users.noreply.github.com>
Date: Thu, 11 Feb 2021 20:21:48 -0800
Subject: [PATCH] Update mailcow.conf

---
 nginx/mailcow.conf | 18 +++++++++++-------
 1 file changed, 11 insertions(+), 7 deletions(-)

diff --git a/nginx/mailcow.conf b/nginx/mailcow.conf
index 901546c..e43bda4 100644
--- a/nginx/mailcow.conf
+++ b/nginx/mailcow.conf
@@ -1,14 +1,14 @@
 server {
-  listen 80 default_server;
-  listen [::]:80 default_server;
-  server_name email.example.com webmail.example.com autodiscover.* autoconfig.*;
+  listen 80;
+  listen [::]:80;
+  server_name email.* webmail.* autodiscover.* autoconfig.*;
   return 301 https://$host$request_uri;
 }
 
 server {
   listen 443 ssl http2;
   listen [::]:443 ssl http2;
-  server_name email.example.com autodiscover.* autoconfig.*;
+  server_name email.* autodiscover.* autoconfig.*;
 
   ssl_certificate /opt/mailcow-dockerized/data/assets/ssl/cert.pem;
   ssl_certificate_key /opt/mailcow-dockerized/data/assets/ssl/key.pem;
@@ -59,7 +59,7 @@ server {
 server {
   listen 443 ssl http2;
   listen [::]:443 ssl http2;
-  server_name webmail.example.com;
+  server_name webmail.thelyoncompany.com;
 
   ssl_certificate /opt/mailcow-dockerized/data/assets/ssl/cert.pem;
   ssl_certificate_key /opt/mailcow-dockerized/data/assets/ssl/key.pem;
@@ -70,10 +70,14 @@ server {
  
   add_header Strict-Transport-Security "max-age=16070400";
   add_header Content-Security-Policy "upgrade-insecure-requests";
-    
+  
   include /etc/nginx/snippets/letsencrypt.conf;
 
+  if ($http_referer ~ "semalt\.com|badsite\.net|example\.com")  {
+    return 444;
+  }
+
   location / {
-    return 301 https://email.example.com/SOGo;
+    return 301 https://email.thelyoncompany.com/SOGo;
   }
 }