Commit graph

100 commits

Author SHA1 Message Date
111a1c05ab If at least smtpd_tls_eccert_file or smtpd_tls_eckey_file
is defined in the main.cf we can't use ECDSA certificates
for smtpd_tls_cert_file and smtpd_tls_key_file in the
master.cf. Postfix then expects an RSA certificat as input
and fails to load the certificate.
2024-06-27 14:31:13 +02:00
343995613b Update cipherlist
https://ssl-config.mozilla.org/#server=postfix&version=3.7.10&config=intermediate&openssl=1.1.1n&guideline=5.7
2024-06-27 01:09:15 +02:00
7e9d739f61 Add section about dual use of RSA and ECDSA certificates 2024-06-27 00:29:01 +02:00
b5b25bb457 Enable dual use of rsa and ecdsa certificates 2024-06-26 23:46:08 +02:00
8c79f8b687 Use Ansible defaults to insert comments
Enable vscodium code highlighting for some files
2024-03-27 17:39:16 +01:00
4ad48694d5 Make Mail-TLS-Helper optional 2024-01-14 10:42:47 +01:00
7a2ff6c74a Downgrade TLS to v1
because there are still mail servers out there that don't support
newer versions
2023-11-21 07:46:11 +01:00
64a12f24c2 Force TLS1.1 as minimum TLS version 2023-11-19 19:27:03 +01:00
e565f74dd6 Configure restart behaviour 2023-11-19 19:26:40 +01:00
98390d8157 Remove condition - Postfix will ignore this setting on older versions 2023-11-08 09:10:47 +01:00
986e72c85e Add missing variables 2023-11-08 09:03:26 +01:00
d3212f5fd1 Add missing variables 2023-11-08 08:02:31 +01:00
44f908f47a Remove unused files 2023-11-03 22:52:05 +01:00
9093c23bed Fix path and create dir if not exists 2023-11-03 22:45:24 +01:00
9c6b7d7afb Disable logging SASL messages to special file
We can use mail.log or journald instead
2023-11-03 22:35:37 +01:00
0616b07940 Reorganize Logging 2023-11-03 22:18:02 +01:00
ec695da167 Restart postfix service via systemd
The mta-sts service already uses Restart=on-failure
2023-11-03 21:37:22 +01:00
53f2925435 Remove fail2ban config files
Better install them via fail2ban role
2023-10-26 22:34:18 +02:00
405995863f Avoid timestamp changes for file's touch state 2023-10-19 01:48:50 +02:00
10c4d6c17b Update virtual_alias template
The commented section of the template contained invalid yaml syntax.
Upstream fixed that (since Debian Bookworm).
2023-10-19 01:40:35 +02:00
0e62604dd8 Enable configurarion of header checks 2023-10-16 14:46:47 +02:00
94b6eec5e6 Add DNSBL sites as defaults 2023-10-11 21:31:12 +02:00
26977ade52 configure mail logging 2023-09-23 09:05:01 +02:00
17ecb3d1ca Add possibility to increase procsess limit 2023-06-28 08:04:06 +02:00
5497d962f1 Add respectful_logging 2023-06-19 21:29:29 +02:00
2d7dbe8a7c Define fallback relay 2023-06-15 07:43:39 +02:00
b86f94b90c Insert relayhost option only if defined 2023-06-15 07:38:16 +02:00
e9ea46775c Fix quotation 2023-06-14 18:16:14 +02:00
fb7718ee0f Restrict access rights for credential file 2023-06-14 17:59:44 +02:00
732d4ccabb Fix file name 2023-06-14 17:03:55 +02:00
bae96caef7 Run postmap on sasl password file 2023-06-14 17:00:42 +02:00
1e141ca6e2 Enable TLS connection also for SASL auth instances 2023-06-14 16:53:08 +02:00
be37afb7c5 Fix variable name to enabled template 2023-06-14 16:46:49 +02:00
ddfd618bad Hardcode SMTP SASL password maps file
There's no need to use more than one file
2023-06-14 16:36:22 +02:00
3ca70b3a17 Fix variable names for SASL Auth 2023-06-14 16:14:29 +02:00
3863b44715 Install mta-sts-resolver only for internet type postfix installations 2023-06-11 09:38:53 +02:00
e346a5a841 Add gitignore file 2023-06-11 09:38:41 +02:00
6c09b17399 Update dict 2023-05-21 23:09:11 +02:00
40b81679eb Fix type 2023-05-17 21:47:51 +02:00
bdb6b87be7 Insert relay by sender from map 2023-05-17 21:45:27 +02:00
5d2274234b Increase intendation 2023-05-17 21:44:45 +02:00
42cc6e0775 Enable relayinf of other domains 2023-05-17 21:33:06 +02:00
18c7549951 Update README with more variables 2023-05-17 21:32:45 +02:00
9f81479691 Run MTA-STS tasks only on selected hosts 2023-05-03 10:07:29 +02:00
36c2bc159a Run postmap on new files 2023-05-02 20:15:29 +02:00
cd3b8b3940 Rename variable 2023-04-27 07:40:50 +02:00
98d6f243a8 Move pflogsum task to monitoring file 2023-04-27 07:31:46 +02:00
a370641d6b Fix quotation, configure cron times via variables 2023-04-23 08:09:47 +02:00
6476a23c02 List users comma seperated 2023-04-19 17:19:18 +02:00
233ecb6d7d Add info about template path 2023-04-19 17:16:26 +02:00