commit 4cf4a4ec9cd22b6ec04bef6b448b1ea481da88b8
from: gonzalo <gonzalo@gonzalo>
date: Wed Oct 28 09:25:55 2020 UTC

Add new versions, update some limits and disable old ciphers

commit - de0346c2bbcd9bfda04399ba4d1fd4bdbf6839c1
commit + 4cf4a4ec9cd22b6ec04bef6b448b1ea481da88b8
blob - 3579d216ac99b50ee6495c4ad6e7559c51bcb854
blob + d356ab86ddb5077ca56563ddd62e87a77692ffb7
--- README.md
+++ README.md
@@ -1,12 +1,12 @@
 Ansible role for a Mailserver
 =============================
 
-Ansible role to create a Mailserver on OpenBSD (>=6.6 & -current) with OpenSMTPD, Dovecot and Rspamd.
+Ansible role to create a Mailserver on OpenBSD (>=6.8 & -current) with OpenSMTPD, Dovecot and Rspamd.
 
 Requirements
 ------------
 
-OpenBSD, Python 2.7 (on client machine) and 10 minutes.
+OpenBSD, Python 3 (on client machine) and 10 minutes.
 
 Notes
 -----
@@ -53,7 +53,7 @@ Example Ansible
 ---------------
 
 This example is for a remote setup, so ,,test'' is your future mailserver, you
-already put your ssh key on ,,test'' and this server already have python2.7 
+already put your ssh key on ,,test'' and this server already have python3.8
 installed.
 
 ```
@@ -70,7 +70,7 @@ $ cvs -d anoncvs@cvs.x61.sh:/cvs checkout -P ansible-r
 ...
 $ mv ansible-role-mailserver gonzalo-.mailserver
 $ cat hosts
-test ansible_python_interpreter=/usr/local/bin/python2.7
+test ansible_python_interpreter=/usr/local/bin/python3.8
 $ cat mailserver.yml
 ---
 - hosts: test
@@ -83,7 +83,7 @@ $ cat mailserver.yml
    domain: 'foobar.com'
    mail_dir: '/var/vmail'
    mail_user: 'gonzalo'
-   release: '6.6'
+   release: '6.8'
    arch: 'amd64'
    installurl_mirror: 'https://fastly.cdn.openbsd.org/pub/OpenBSD/'
    pkg_path: 'https://fastly.cdn.openbsd.org/pub/OpenBSD/{{ release }}/packages/{{ arch }}/'
@@ -113,7 +113,7 @@ Example Playbook
    domain: 'foobar.com'
    mail_dir: '/var/vmail'
    mail_user: 'gonzalo'
-   release: '6.5'
+   release: '6.8'
    arch: 'amd64'
    installurl_mirror: 'https://fastly.cdn.openbsd.org/pub/OpenBSD/'
    pkg_path: 'https://fastly.cdn.openbsd.org/pub/OpenBSD/{{ release }}/packages/{{ arch }}/'
blob - 871b6cfe9c6679a53343b7ba0641aaed94cf96c7
blob + a4e77353efc0b059688fa8ceccd01f0efcae4c52
--- meta/main.yml
+++ meta/main.yml
@@ -19,6 +19,10 @@ galaxy_info:
   platforms:
   - name: OpenBSD
     versions:
+     - 6.8
+     - 6.7
+     - 6.6
+     - 6.5
      - 6.4
      - 6.3
      - 6.2
blob - bfa5b5b8071275e102a7479c097124aa16e4ccb0
blob + dc03cb0a030e474b2438ec3e43833108a8c6ae03
--- templates/smtpd.conf.j2
+++ templates/smtpd.conf.j2
@@ -25,7 +25,8 @@ table virtuals			file:/etc/mail/virtuals
 table blacklist-recipients	file:/etc/mail/blacklist-recipients
 
 ## Limits
-smtp max-message-size 50M
+smtp ciphers "HIGH:!aNULL:!TLSv1:!MD5:!RC4:!GOST89MAC:@STRENGTH"
+smtp max-message-size 90M
 
 ## Ports
 listen on all tls pki {{ domain }} hostname {{ domain }} \