Commit 4e2b4395 authored by Wágner Ferenc's avatar Wágner Ferenc
Browse files

We'll serve two mailing lists under lista.edu.hu as well

parent 1cec3235
......@@ -42,3 +42,53 @@
regexp: ^[# \t]*HashKnownHosts[ ]
line: " HashKnownHosts no"
tags: ssh
# Then:
# - add IPv6 entry to /etc/hosts
# - set up filesystem for /var/lib/mailman, preferably before installation,
# but at least do a systemd daemon-load to enroll it under local-fs.target,
# otherwise it gets umounted early and Mailman can't be stopped:
# Traceback (most recent call last):
# File "/var/lib/mailman/bin/qrunner", line 278, in <module>
# main()
# File "/var/lib/mailman/bin/qrunner", line 238, in main
# qrunner.run()
# File "/var/lib/mailman/Mailman/Queue/Runner.py", line 70, in run
# File "/var/lib/mailman/Mailman/Queue/Runner.py", line 94, in _oneloop
# File "/var/lib/mailman/Mailman/Queue/Switchboard.py", line 194, in files
# OSError : [Errno 2] No such file or directory: '/var/lib/mailman/qfiles/commands'
# - dpkg-reconfigure mailman, select en,hu (based on current statistics, these are enough)
# - sudo adduser wferi list
# - /var/lib/mailman/bin/newlist mailman, then as in the old wiki:
# - Advertise this list when people ask what lists are on this machine? No
# - Who can view subscription list? List members (probably default)
# - Is archive file source for public or private archival? private
# - sudo systemctl start mailman
# - mmsitepass (creates /var/lib/mailman/data/adm.pw)
# Migration of the Test list:
# - stop exim4, apache2 and mailman services, disable /etc/cron.d/mailman (or do this in the afternoon)
# - wferi@listserv2:/var/lib/mailman$ tar -cvzf /tmp/test.tgz archives/private/test archives/private/test.mbox archive/public/test lists/test
# - wferi@lilac:/var/lib/mailman$ sudo tar -xvf ~/test.tgz
# - no archive regeneration to keep the URLs (in case of past mbox modifications) and to reduce migration load
# Note:
# - the list of lists depends on the used HTTP domain (internal virtual hosting)
# - hbone-ticketing@listserv.niif.hu sender whitelist makes no sense (wiki change 32 and 33), omitted
# TODO
# - Why does this show the mailman role twice? Dependency infelicity...
# ansible-playbook -i inventory listserv.yml -K --check --diff
# - check that outgoing traffic isn't sent to rspamd
# - Namazu
# - linzer.ki.iif.hu leterelése a 10027-es portról
# - install auth (ident) daemon
# - skip or fail on rspamd failure?
# 2021-06-09 12:29:36 1lqvSZ-0000oZ-9V spam acl condition: spamd: failed to connect to any address for rspamd.mail.einfra.hu: Connection timed out
# 2021-06-09 12:29:36 1lqvSZ-0000oZ-9V H=noc6.vh.hbone.hu (noc6) [2001:738:0:1:214:22ff:fe13:e172] Warning: ACL "warn" statement skipped: condition test deferred
# - why set MAIN_TLS_VERIFY_CERTIFICATES to /dev/null like listserv2?
# - check freeze_tell setting (does it work?)
# - check mailman-* forwarding to postmaster (me)
# - why was the system_aliases router moved forward?
# - DEFAULT_CHARSET for the archives
# - MX changes: listserv.niif.hu, ipv6forum.hu
......@@ -52,3 +52,6 @@
group: root
mode: 0644
notify: Restart Mailman
# - name: Add Namazu form to the archive templates
# - name: Set up indexing all lists
......@@ -13,7 +13,7 @@ daemon_smtp_ports = smtp : submission
MM_HOME=/var/lib/mailman
MM_UID=list
MM_GID=list
domainlist mm_domains = {{ list_domain }}
domainlist mm_domains = {{ list_domain }} : lista.edu.hu
MM_WRAP=MM_HOME/mail/mailman
MM_LISTCHK=MM_HOME/lists/${lc::$local_part}/config.pck
......
......@@ -3,3 +3,7 @@
service:
name: nftables
state: reloaded
#- name: Remove old nftables backup files
# become: yes
# ?
......@@ -57,7 +57,10 @@
owner: root
group: root
mode: 0644
notify: Reload nftables ruleset
backup: yes
notify:
- Reload nftables ruleset
# - Remove old nftables backup files
- name: Enable nftables service
become: yes
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment