Files
@ c063f27000b9
Branch filter:
Location: majic-ansible-roles/roles/common/handlers/main.yml - annotation
c063f27000b9
1.0 KiB
text/x-yaml
MAR-175: Mail server should be opportunistic in using TLS when delivering mail to remove servers:
- Previously the mail server would only deliver mails over plaintext.
- Deploy a simple SMTP server on both client1/client2
machines. Servers are set-up to require/refuse the STARTTLS over
SMTP.
- Added tests for checking if STARTTLS is used when available for mail
delivery.
- Fixed the wrong configurtion (making sure the TLS security level is
properly set for Postfix).
- Previously the mail server would only deliver mails over plaintext.
- Deploy a simple SMTP server on both client1/client2
machines. Servers are set-up to require/refuse the STARTTLS over
SMTP.
- Added tests for checking if STARTTLS is used when available for mail
delivery.
- Fixed the wrong configurtion (making sure the TLS security level is
properly set for Postfix).
626eadba53b7 626eadba53b7 626eadba53b7 2d0a09dc0e00 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 626eadba53b7 626eadba53b7 2d0a09dc0e00 2d0a09dc0e00 2d0a09dc0e00 76ed37089b33 6d38fef46832 2d0a09dc0e00 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 9ac50dd4765d 6d38fef46832 941f4f372672 2d0a09dc0e00 2d0a09dc0e00 2d0a09dc0e00 467a66f3ec65 467a66f3ec65 3a02e5b774b2 3a02e5b774b2 5bc6b7fb4cb5 5bc6b7fb4cb5 5bc6b7fb4cb5 5bc6b7fb4cb5 5bc6b7fb4cb5 c254c806349c | ---
- name: Update PAM configuration
command: "/usr/sbin/pam-auth-update --package"
tags:
# [ANSIBLE0012] Commands should not change things if nothing needs doing
# This task is invoked only if user is very specific about requiring to
# run the handlers manually as a way to bring the system to consistency
# after interrupted runs.
- skip_ansible_lint
- name: Restart SSH
service:
name: ssh
state: restarted
- name: Update CA certificate cache
command: "/usr/sbin/update-ca-certificates --fresh"
tags:
# [ANSIBLE0012] Commands should not change things if nothing needs doing
# This task is invoked only if user is very specific about requiring to
# run the handlers manually as a way to bring the system to consistency
# after interrupted runs.
- skip_ansible_lint
- name: Restart ferm
service:
name: ferm
state: restarted
- name: Reload systemd
systemd:
daemon_reload: true
- name: Restart NTP server
service:
name: ntp
state: restarted
when: ntp_servers | length > 0
|