fripost-ansible/roles/IMAP/templates/etc/dovecot, branch master Fripost ansible scripts IMAP: Adjust dovecot configuration to bullseye. 2024-09-08T00:10:41+00:00 Guilhem Moulin guilhem@fripost.org 2024-09-08T00:10:41+00:00 4977d7c1d80ac0caf94914fbf9be8471d056c906 Provisioning /etc/dovecot/conf.d/*.conf is a pain on upgrade so we consolidate that by reverting these files to the distro-provided ones and shipping a single /etc/dovecot/conf.d/99-local.conf override instead. 
Provisioning /etc/dovecot/conf.d/*.conf is a pain on upgrade so we
consolidate that by reverting these files to the distro-provided ones
and shipping a single /etc/dovecot/conf.d/99-local.conf override
instead.
dovecot: Bump VSZ to 1G. 2022-10-11T12:00:04+00:00 Guilhem Moulin guilhem@fripost.org 2022-10-11T12:00:04+00:00 d7a8e117b2595b2ba74cb5a7ba237ca18f36e1ab 






IMAP: Update role to Debian Buster.
2020-05-19T05:56:01+00:00

Guilhem Moulin
guilhem@fripost.org

2020-05-19T00:40:48+00:00

829f4d830aefedd95a75e61cfc9aa3e03f039c6f

For `ssl_cipher_list` we pick the suggested value from
https://ssl-config.mozilla.org/#server=dovecot&version=2.3.9&config=intermediate&openssl=1.1.1d

At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’
to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.





For `ssl_cipher_list` we pick the suggested value from
https://ssl-config.mozilla.org/#server=dovecot&version=2.3.9&config=intermediate&openssl=1.1.1d

At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’
to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.







dovecot: raise default_vsz_limit from 256MB to 512MB.
2019-05-23T17:19:16+00:00

Guilhem Moulin
guilhem@fripost.org

2019-05-23T17:19:16+00:00

dfc1467c9ccb0e8427c647faa50ca92a01f5d6d6

This avoids lmtp errors like

        Error: mmap(size=0) failed with file […] dbox-Mails/dovecot.index.cache: Cannot allocate memory

See https://www.dovecot.org/list/dovecot/2012-August/137569.html and
https://www.dovecot.org/list/dovecot/2011-December/132455.html .





This avoids lmtp errors like

        Error: mmap(size=0) failed with file […] dbox-Mails/dovecot.index.cache: Cannot allocate memory

See https://www.dovecot.org/list/dovecot/2012-August/137569.html and
https://www.dovecot.org/list/dovecot/2011-December/132455.html .







Update 'IMAP', 'MSA' and 'LDAP-provider' roles to Debian Stretch.
2018-12-09T19:25:40+00:00

Guilhem Moulin
guilhem@fripost.org

2018-12-09T17:41:06+00:00

e2ddcfc51f66c2a52a401064eab005e793f148ee












Dovecot: Explicitly disable LDAP.
2016-12-08T18:50:23+00:00

Guilhem Moulin
guilhem@fripost.org

2016-12-08T18:50:23+00:00

9b3ac744b73c7bbd246333da1cbfa63838d0cc54












Postfix: avoid hardcoding the instance names.
2016-07-10T02:58:41+00:00

Guilhem Moulin
guilhem@fripost.org

2016-07-10T02:58:41+00:00

c52344acb365be570a638f9f256cc33730ffa616












dovecot: don't listen on the IP dedicated for IPSec when there is a single host.
2016-05-23T11:29:41+00:00

Guilhem Moulin
guilhem@fripost.org

2016-05-23T11:27:31+00:00

61ee02ffb5402d93eae59001b91197957a8dcfe2












dovecot: also listen on the virtual IP dedicated to IPSec.
2016-05-22T16:02:37+00:00

Guilhem Moulin
guilhem@fripost.org

2016-05-22T16:02:37+00:00

73b2a602ee85706b2a1797632142058c6253ea5d

(On port 143.)  Moreover, add the whole IPSec virtual subnet to
‘login_trusted_networks’ since our IPSec tunnels provide end-to-end
encryption and we therefore don't need the extra SSL/TLS protection.





(On port 143.)  Moreover, add the whole IPSec virtual subnet to
‘login_trusted_networks’ since our IPSec tunnels provide end-to-end
encryption and we therefore don't need the extra SSL/TLS protection.