fripost-ansible/roles/common/files/etc/fail2ban, branch master

fail2ban: set 'allowipv6 = auto'.

2025-01-28T17:33:48+00:00

Fail2ban: Remove obsolete filter dovecot.conf.

2024-09-08T00:55:08+00:00

Improve Debian 11's fail2ban rules.

2022-12-18T12:29:34+00:00

IMAP: Update role to Debian Buster.

2020-05-19T05:56:01+00:00

For `ssl_cipher_list` we pick the suggested value from
https://ssl-config.mozilla.org/#server=dovecot&version=2.3.9&config=intermediate&openssl=1.1.1d

At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’
to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.

Improve/harden fail2ban configuration.

2020-01-25T00:57:05+00:00

 * Use nftables sets with a timeout
 * Start daemon with a hardened unit file and restricted Capability
   Bounding Set.  (This requires to change the log path to
   /var/log/fail2ban/*.)
 * Skip database as we don't care about persistence.
 * Refactor jail.local

Update 'IMAP', 'MSA' and 'LDAP-provider' roles to Debian Stretch.

2018-12-09T19:25:40+00:00

Configure the webmail.

2015-06-07T00:51:26+00:00