fripost-ansible/roles/amavis/templates/etc, branch master

Add own DKIM key for debian.org address.

2020-04-13T15:29:53+00:00

Cf. https://lists.debian.org/debian-devel-announce/2020/04/msg00004.html .  \o/

It's also fairly easy to deploy onto the Debian infrastucture:

    $ USERNAME="guilhem"
    $ SELECTOR="5d30c523ff3622ed454230a16a11ddf6.$USERNAME.user"
    $ printf "dkimPubKey: %s %s\n" "$SELECTOR" \
                "$(openssl pkey -pubin -in "./certs/dkim/$SELECTOR:debian.org.pub" -outform DER | base64 -w0)" \
        | gpg --clearsign | s-nail -r "USERNAME@debian.org" -s dkimPubKey changes@db.debian.org

DKIM: also include the "d=" tag in key filenames, not only the "s=" tag.

2018-12-05T15:24:12+00:00

While the combination of "s=" tag (selector) & "d=" tag signing domain
maps to a unique key, the selector alone doesn't necessarily.

Upgrade DKIM keys to rsa2048, and allow for multiple keys.

2018-12-04T00:14:45+00:00

Amavis: bind server to INADDR_LOOPBACK

2018-04-04T14:13:08+00:00

Amavis: use the LMTP protocol in the policy banks.

2016-03-03T02:01:44+00:00

Upgrade amavis config to Jessie.

2015-06-07T00:53:33+00:00

Fix Amavis' Policy Banks.

2015-06-07T00:52:48+00:00

It turns out that in a policy bank, a *_by_ccat doesn't replace the
default but is merely merged into the default (if the keys overlap,
those in the bank take precedence of course).  Hence it's pointless to
use CC_CATCHALL in a bank unless all the other keys have been
overridden, for instance.

Also, treat unchecked (eg, encrypted) mails as clean in the OUTGOING
Policy Bank.

Remove o=mailHosting from the LDAP directory suffix.

2015-06-07T00:52:39+00:00

So our suffix is now a mere 'dc=fripost,dc=org'.  We're also using the
default '/var/lib/ldap' as olcDbDirectory (hence we don't clear it
before hand).

wibble

2015-06-07T00:52:28+00:00

Tell vim the underlying filetype of templates for syntax highlighting.

2015-06-07T00:52:25+00:00