| Commit message (Collapse) | Author | Age | Files | |
|---|---|---|---|---|
| * | roles/amavis: Drop packages that no longer exist. | Guilhem Moulin | 2020-05-17 | 1 |
| | | ||||
| * | Add own DKIM key for debian.org address. | Guilhem Moulin | 2020-04-13 | 1 |
| | | | | | | | | | | | | | Cf. https://lists.debian.org/debian-devel-announce/2020/04/msg00004.html . \o/ It's also fairly easy to deploy onto the Debian infrastucture: $ USERNAME="guilhem" $ SELECTOR="5d30c523ff3622ed454230a16a11ddf6.$USERNAME.user" $ printf "dkimPubKey: %s %s\n" "$SELECTOR" \ "$(openssl pkey -pubin -in "./certs/dkim/$SELECTOR:debian.org.pub" -outform DER | base64 -w0)" \ | gpg --clearsign | s-nail -r "USERNAME@debian.org" -s dkimPubKey changes@db.debian.org | |||
| * | DKIM: also include the "d=" tag in key filenames, not only the "s=" tag. | Guilhem Moulin | 2018-12-05 | 2 |
| | | | | | | While the combination of "s=" tag (selector) & "d=" tag signing domain maps to a unique key, the selector alone doesn't necessarily. | |||
| * | Upgrade DKIM keys to rsa2048, and allow for multiple keys. | Guilhem Moulin | 2018-12-04 | 3 |
| | | ||||
| * | Upgrade syntax to Ansible 2.7 (apt module). | Guilhem Moulin | 2018-12-03 | 1 |
| | | ||||
| * | Postfix: replace cdb & btree tables with lmdb ones. | Guilhem Moulin | 2018-12-03 | 1 |
| | | | | | Cf. lmdb_table(5). | |||
| * | Amavis: bind server to INADDR_LOOPBACK | Guilhem Moulin | 2018-04-04 | 1 |
| | | ||||
| * | Postfix: ensure common aliases are present. | Guilhem Moulin | 2016-09-18 | 1 |
| | | ||||
| * | clamav: Don't set obsolete option 'AllowSupplementaryGroups'. | Guilhem Moulin | 2016-06-05 | 1 |
| | | ||||
| * | Amavis: use the LMTP protocol in the policy banks. | Guilhem Moulin | 2016-03-03 | 1 |
| | | ||||
| * | Configure munin nodes & master. | Guilhem Moulin | 2015-06-10 | 2 |
| | | | | | | Interhost communications are protected by stunnel4. The graphs are only visible on the master itself, and content is generated by Fast CGI. | |||
| * | Upgrade amavis config to Jessie. | Guilhem Moulin | 2015-06-07 | 2 |
| | | ||||
| * | Fix Amavis' Policy Banks. | Guilhem Moulin | 2015-06-07 | 1 |
| | | | | | | | | | | | | It turns out that in a policy bank, a *_by_ccat doesn't replace the default but is merely merged into the default (if the keys overlap, those in the bank take precedence of course). Hence it's pointless to use CC_CATCHALL in a bank unless all the other keys have been overridden, for instance. Also, treat unchecked (eg, encrypted) mails as clean in the OUTGOING Policy Bank. | |||
| * | Remove o=mailHosting from the LDAP directory suffix. | Guilhem Moulin | 2015-06-07 | 1 |
| | | | | | | | So our suffix is now a mere 'dc=fripost,dc=org'. We're also using the default '/var/lib/ldap' as olcDbDirectory (hence we don't clear it before hand). | |||
| * | Generate the DKIM key on the outgoing instance only. | Guilhem Moulin | 2015-06-07 | 1 |
| | | ||||
| * | wibble | Guilhem Moulin | 2015-06-07 | 1 |
| | | ||||
| * | Tell vim the underlying filetype of templates for syntax highlighting. | Guilhem Moulin | 2015-06-07 | 1 |
| | | ||||
| * | Loopia's maximum length for TXT records is 255 chars. | Guilhem Moulin | 2015-06-07 | 3 |
| | | | | | So unfortunately we can't fit a 2048-bits RSA key. | |||
| * | typo | Guilhem Moulin | 2015-06-07 | 2 |
| | | ||||
| * | Install amavisd-new on the outgoing SMTP proxy. | Guilhem Moulin | 2015-06-07 | 3 |
| For DKIM signing and virus checking. | ||||
 |
index : fripost-ansible | |
| Fripost ansible scripts |
| summaryrefslogtreecommitdiffstats |