fripost-ansible/roles/MSA/files/etc, branch master

postfix: Adjust anonymize_sender.pcre.

2022-10-11T12:02:34+00:00

postfix-sender-login: Better hardening.

2020-05-21T01:40:53+00:00

Run as a dedicated user, not ‘postfix’.

MSA: Update role to Debian Buster.

2020-05-19T04:36:36+00:00

For `ssl_cipher_list` we pick the suggested value from
https://ssl-config.mozilla.org/#server=postfix&version=3.4.10&config=intermediate&openssl=1.1.1d

At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’
to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.

systemd.service: Tighten hardening options.

2018-12-09T19:25:40+00:00

systemd: Replace ‘ProtectSystem=full’ with ‘ProtectSystem=strict’.

2018-12-09T19:25:39+00:00

And remove ‘ReadOnlyDirectories=/’ as it's implied by ‘ProtectSystem=strict’.

postfix-msa: anonymize SASL-authenticated senders using IPv6.

2017-06-06T11:32:45+00:00

move postfix-sender-login.{service,socket} to files/.

2017-06-02T12:12:32+00:00

MSA: reject null sender address.

2017-05-14T13:02:46+00:00

Configure the Mail Submission Agent.

2015-06-07T00:51:10+00:00