ansible-role-mail/tasks/tls.yml

---
# vim: set et sw=2 ts=2 sts=2:

- name: TLS directories
  file:
    state: directory
    path: '{{item}}'
    mode: 0755
    owner: root
  with_items:
  - /etc/postfix/tls
  - /etc/dovecot/tls
- name: DHs for Postfix
  community.crypto.openssl_dhparam:
    path: '/etc/postfix/tls/mail_{{item}}.dh'
    size: '{{item}}'
    owner: root
    mode: 0400
  with_items: [512,2048,4192]
- name: DHs for Dovecot
  community.crypto.openssl_dhparam:
    path: '/etc/dovecot/tls/mail_{{item}}.dh'
    size: '{{item}}'
    owner: dovecot
    mode: 0400
  with_items: [512,2048,4192]
init 2020-11-07 20:27:01 +01:00			`---`
			`# vim: set et sw=2 ts=2 sts=2:`

fixes and imports 2020-11-10 00:45:00 +01:00			`- name: TLS directories`
			`file:`
			`state: directory`
			`path: '{{item}}'`
			`mode: 0755`
			`owner: root`
			`with_items:`
			`- /etc/postfix/tls`
			`- /etc/dovecot/tls`
init 2020-11-07 20:27:01 +01:00			`- name: DHs for Postfix`
			`community.crypto.openssl_dhparam:`
			`path: '/etc/postfix/tls/mail_{{item}}.dh'`
			`size: '{{item}}'`
fixes and imports 2020-11-10 00:45:00 +01:00			`owner: root`
init 2020-11-07 20:27:01 +01:00			`mode: 0400`
			`with_items: [512,2048,4192]`
			`- name: DHs for Dovecot`
			`community.crypto.openssl_dhparam:`
			`path: '/etc/dovecot/tls/mail_{{item}}.dh'`
			`size: '{{item}}'`
			`owner: dovecot`
			`mode: 0400`
			`with_items: [512,2048,4192]`