111a1c05ab
If at least smtpd_tls_eccert_file or smtpd_tls_eckey_file
...
is defined in the main.cf we can't use ECDSA certificates
for smtpd_tls_cert_file and smtpd_tls_key_file in the
master.cf. Postfix then expects an RSA certificat as input
and fails to load the certificate.
2024-06-27 14:31:13 +02:00
343995613b
Update cipherlist
...
https://ssl-config.mozilla.org/#server=postfix&version=3.7.10&config=intermediate&openssl=1.1.1n&guideline=5.7
2024-06-27 01:09:15 +02:00
7e9d739f61
Add section about dual use of RSA and ECDSA certificates
2024-06-27 00:29:01 +02:00
b5b25bb457
Enable dual use of rsa and ecdsa certificates
2024-06-26 23:46:08 +02:00
8c79f8b687
Use Ansible defaults to insert comments
...
Enable vscodium code highlighting for some files
2024-03-27 17:39:16 +01:00
4ad48694d5
Make Mail-TLS-Helper optional
2024-01-14 10:42:47 +01:00
7a2ff6c74a
Downgrade TLS to v1
...
because there are still mail servers out there that don't support
newer versions
2023-11-21 07:46:11 +01:00
64a12f24c2
Force TLS1.1 as minimum TLS version
2023-11-19 19:27:03 +01:00
e565f74dd6
Configure restart behaviour
2023-11-19 19:26:40 +01:00
98390d8157
Remove condition - Postfix will ignore this setting on older versions
2023-11-08 09:10:47 +01:00
986e72c85e
Add missing variables
2023-11-08 09:03:26 +01:00
d3212f5fd1
Add missing variables
2023-11-08 08:02:31 +01:00
44f908f47a
Remove unused files
2023-11-03 22:52:05 +01:00
9093c23bed
Fix path and create dir if not exists
2023-11-03 22:45:24 +01:00
9c6b7d7afb
Disable logging SASL messages to special file
...
We can use mail.log or journald instead
2023-11-03 22:35:37 +01:00
0616b07940
Reorganize Logging
2023-11-03 22:18:02 +01:00
ec695da167
Restart postfix service via systemd
...
The mta-sts service already uses Restart=on-failure
2023-11-03 21:37:22 +01:00
53f2925435
Remove fail2ban config files
...
Better install them via fail2ban role
2023-10-26 22:34:18 +02:00
405995863f
Avoid timestamp changes for file's touch
state
2023-10-19 01:48:50 +02:00
10c4d6c17b
Update virtual_alias template
...
The commented section of the template contained invalid yaml syntax.
Upstream fixed that (since Debian Bookworm).
2023-10-19 01:40:35 +02:00
0e62604dd8
Enable configurarion of header checks
2023-10-16 14:46:47 +02:00
94b6eec5e6
Add DNSBL sites as defaults
2023-10-11 21:31:12 +02:00
26977ade52
configure mail logging
2023-09-23 09:05:01 +02:00
17ecb3d1ca
Add possibility to increase procsess limit
2023-06-28 08:04:06 +02:00
5497d962f1
Add respectful_logging
2023-06-19 21:29:29 +02:00
2d7dbe8a7c
Define fallback relay
2023-06-15 07:43:39 +02:00
b86f94b90c
Insert relayhost option only if defined
2023-06-15 07:38:16 +02:00
e9ea46775c
Fix quotation
2023-06-14 18:16:14 +02:00
fb7718ee0f
Restrict access rights for credential file
2023-06-14 17:59:44 +02:00
732d4ccabb
Fix file name
2023-06-14 17:03:55 +02:00
bae96caef7
Run postmap on sasl password file
2023-06-14 17:00:42 +02:00
1e141ca6e2
Enable TLS connection also for SASL auth instances
2023-06-14 16:53:08 +02:00
be37afb7c5
Fix variable name to enabled template
2023-06-14 16:46:49 +02:00
ddfd618bad
Hardcode SMTP SASL password maps file
...
There's no need to use more than one file
2023-06-14 16:36:22 +02:00
3ca70b3a17
Fix variable names for SASL Auth
2023-06-14 16:14:29 +02:00
3863b44715
Install mta-sts-resolver only for internet type postfix installations
2023-06-11 09:38:53 +02:00
e346a5a841
Add gitignore file
2023-06-11 09:38:41 +02:00
6c09b17399
Update dict
2023-05-21 23:09:11 +02:00
40b81679eb
Fix type
2023-05-17 21:47:51 +02:00
bdb6b87be7
Insert relay by sender from map
2023-05-17 21:45:27 +02:00
5d2274234b
Increase intendation
2023-05-17 21:44:45 +02:00
42cc6e0775
Enable relayinf of other domains
2023-05-17 21:33:06 +02:00
18c7549951
Update README with more variables
2023-05-17 21:32:45 +02:00
9f81479691
Run MTA-STS tasks only on selected hosts
2023-05-03 10:07:29 +02:00
36c2bc159a
Run postmap on new files
2023-05-02 20:15:29 +02:00
cd3b8b3940
Rename variable
2023-04-27 07:40:50 +02:00
98d6f243a8
Move pflogsum task to monitoring file
2023-04-27 07:31:46 +02:00
a370641d6b
Fix quotation, configure cron times via variables
2023-04-23 08:09:47 +02:00
6476a23c02
List users comma seperated
2023-04-19 17:19:18 +02:00
233ecb6d7d
Add info about template path
2023-04-19 17:16:26 +02:00