fripost-ansible/roles/MSA/files, branch master

postfix: Adjust anonymize_sender.pcre.

2022-10-11T12:02:34+00:00

postfix-sender-login: Better hardening.

2020-05-21T01:40:53+00:00

Run as a dedicated user, not ‘postfix’.

MSA: Update role to Debian Buster.

2020-05-19T04:36:36+00:00

For `ssl_cipher_list` we pick the suggested value from
https://ssl-config.mozilla.org/#server=postfix&version=3.4.10&config=intermediate&openssl=1.1.1d

At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’
to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.

systemd.service: Tighten hardening options.

2018-12-09T19:25:40+00:00

systemd: Replace ‘ProtectSystem=full’ with ‘ProtectSystem=strict’.

2018-12-09T19:25:39+00:00

And remove ‘ReadOnlyDirectories=/’ as it's implied by ‘ProtectSystem=strict’.

postfix-sender-login: strip extension before lookup.

2017-06-13T16:39:25+00:00

Users can add an extension (following postconf(5)'s
$recipient_delimiter) to the local part of any envelope sender address
already allowed.

postfix-msa: anonymize SASL-authenticated senders using IPv6.

2017-06-06T11:32:45+00:00

postfix-sender-login: wibble

2017-06-05T14:46:54+00:00

move postfix-sender-login.{service,socket} to files/.

2017-06-02T12:12:32+00:00

postfix-sender-login: terminate the worker after 32*$nProc connections to release ressources.

2017-06-01T09:00:58+00:00