From 1c357b55931a0d4fbd15d51d61ec4e81d4f38aa5 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Thu, 3 Jul 2014 04:26:26 +0200
Subject: Install amavisd-new on the outgoing SMTP proxy.

For DKIM signing and virus checking.
---
 roles/amavis/tasks/main.yml | 62 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 62 insertions(+)
 create mode 100644 roles/amavis/tasks/main.yml

(limited to 'roles/amavis/tasks/main.yml')

diff --git a/roles/amavis/tasks/main.yml b/roles/amavis/tasks/main.yml
new file mode 100644
index 0000000..354ade8
--- /dev/null
+++ b/roles/amavis/tasks/main.yml
@@ -0,0 +1,62 @@
+- name: Install amavis and its decoders
+  apt: pkg={{ item }}
+  with_items:
+    - amavisd-new
+    # Mail::DKIM
+    - libmail-dkim-perl
+    - gzip
+    - bzip2
+    - xz-utils
+    - lzop
+    - rpm2cpio
+    - pax
+    - binutils
+    - p7zip-full
+    - unrar-free
+    - arj
+    - nomarch
+    - zoo
+    - ripole
+    - cabextract
+    - unar
+    - tnef
+  notify:
+    - Restart Amavis
+
+- name: Add 'clamav' to the group 'amavis'
+  user: name=clamav groups=amavis append=yes
+  register: r1
+  notify:
+    - Restart ClamAV
+    - Restart Amavis
+
+- name: Create directory /var/lib/dkim
+  file: path=/var/lib/dkim
+        state=directory
+        owner=root group=root
+        mode=0755
+
+- name: Generate a private key for DKIM signing
+  command: genkeypair.sh dkim --privkey=/var/lib/dkim/outgoing.fripost.org.key --dns=outgoing -t rsa -b 2048
+  register: dkim
+  changed_when: dkim.rc == 0
+  failed_when: dkim.rc > 1
+  notify:
+    - Restart Amavis
+    - Publish the public key in the DNS zone
+  tags:
+    - genkey
+
+- name: Configure Amavis
+  template: src=etc/amavis/conf.d/50-user.j2
+            dest=/etc/amavis/conf.d/50-user
+            owner=root group=root
+            mode=0644
+  register: r3
+  notify:
+    - Restart Amavis
+
+- meta: flush_handlers
+
+- name: Start Amavis
+  service: name=amavis state=started
-- 
cgit v1.2.3