fripost-ansible - Fripost ansible scripts

	Commit message (Collapse)	Author	Age	Files
*	IMAP: Adjust dovecot configuration to bullseye.	Guilhem Moulin	2024-09-08	1
\| \| \| \| \| \| \|	Provisioning /etc/dovecot/conf.d/*.conf is a pain on upgrade so we consolidate that by reverting these files to the distro-provided ones and shipping a single /etc/dovecot/conf.d/99-local.conf override instead.
*	dovecot: Bump VSZ to 1G.	Guilhem Moulin	2022-10-11	1
\|
*	IMAP: Update role to Debian Buster.	Guilhem Moulin	2020-05-19	2
\| \| \| \| \| \| \| \|	For `ssl_cipher_list` we pick the suggested value from https://ssl-config.mozilla.org/#server=dovecot&version=2.3.9&config=intermediate&openssl=1.1.1d At the moment it's equivalent (modulo order) to adding ‘EDH+AESGCM+aRSA’ to ‘EECDH+AESGCM:EECDH+CHACHA20!MEDIUM!LOW!EXP!aNULL!eNULL’.
*	dovecot: raise default_vsz_limit from 256MB to 512MB.	Guilhem Moulin	2019-05-23	1
\| \| \| \| \| \| \| \| \|	This avoids lmtp errors like Error: mmap(size=0) failed with file […] dbox-Mails/dovecot.index.cache: Cannot allocate memory See https://www.dovecot.org/list/dovecot/2012-August/137569.html and https://www.dovecot.org/list/dovecot/2011-December/132455.html .
*	Update 'IMAP', 'MSA' and 'LDAP-provider' roles to Debian Stretch.	Guilhem Moulin	2018-12-09	1
\|
*	Dovecot: Explicitly disable LDAP.	Guilhem Moulin	2016-12-08	1
\|
*	Postfix: avoid hardcoding the instance names.	Guilhem Moulin	2016-07-10	1
\|
*	dovecot: don't listen on the IP dedicated for IPSec when there is a single host.	Guilhem Moulin	2016-05-23	1
\|
*	dovecot: also listen on the virtual IP dedicated to IPSec.	Guilhem Moulin	2016-05-22	1
	(On port 143.) Moreover, add the whole IPSec virtual subnet to ‘login_trusted_networks’ since our IPSec tunnels provide end-to-end encryption and we therefore don't need the extra SSL/TLS protection.