majic-ansible-roles Files · roles/web

Files @ c063f27000b9

Branch filter:

Location: majic-ansible-roles/roles/web_server/defaults/main.yml - annotation

c063f27000b9 549 B text/x-yaml Show Source Show as Raw Download as Raw

branko

MAR-175: Mail server should be opportunistic in using TLS when delivering mail to remove servers:

- Previously the mail server would only deliver mails over plaintext.
- Deploy a simple SMTP server on both client1/client2
machines. Servers are set-up to require/refuse the STARTTLS over
SMTP.
- Added tests for checking if STARTTLS is used when available for mail
delivery.
- Fixed the wrong configurtion (making sure the TLS security level is
properly set for Postfix).

5b175621f79a
5b175621f79a
5b175621f79a
5b175621f79a
6bc64e4e9c35
6bc64e4e9c35
36cc127035aa
36cc127035aa
36cc127035aa
36cc127035aa
36cc127035aa
36cc127035aa
36cc127035aa
36cc127035aa
a52f9fdabd0f
a52f9fdabd0f
879d27016133
879d27016133
879d27016133

---

web_default_title: "Welcome"
web_default_message: "You are attempting to access the web server using a wrong name or an IP address. Please check your URL."
web_server_tls_protocols:
  - "TLSv1.2"
web_server_tls_ciphers: "\
DHE-RSA-AES128-GCM-SHA256:\
DHE-RSA-AES256-GCM-SHA384:\
DHE-RSA-CHACHA20-POLY1305:\
ECDHE-RSA-AES128-GCM-SHA256:\
ECDHE-RSA-AES256-GCM-SHA384:\
ECDHE-RSA-CHACHA20-POLY1305:\
!aNULL:!MD5:!EXPORT"

# Internal parameters
php_fpm_package_name: "php-fpm"
php_fpm_service_name: "php7.0-fpm"
php_base_config_dir: "/etc/php/7.0"