update..

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa

@@ -0,0 +1,49 @@
+-----BEGIN OPENSSH PRIVATE KEY-----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+-----END OPENSSH PRIVATE KEY-----

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa-dehydrated

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIIJKgIBAAKCAgEAuPbh08KHfSgo9KHHP9AExGy6JCPmese02WCiXUTEe7ebJndz
+ZNvBmxFwQYhUvq1Ry1BaOxtUN/v/1oeJ+S0wmnCtFm8uiAyDiRSkU6o0+chJSMfC
+Fu9//6ufINZDXJdgqLI2iJpQXLf3VqE3C93YFxjNfT7HCzFhjRvTkPItLe2I8ZPa
+D3ibA0nTo3IRzfDv3Ey+z8b3CTPcLqz9r2Nz235AVKCMz6GDq2hWYhvpb97wIX5d
+DyUcMJnko2Za2r52wk9BGASBzY+hsO7KqXq4jnxAOLNAp6Jsa3+ReFuBEsZWJVmh
+uS9CJYxfD0Ie04OlZA2ZRPsFUi+zYtN/RgIcIydxgLyoCDwTjPkC9qYm1vf80t2v
+frajEj20LpN0lsgr8dvEzVSwzLBW5qdY76KhLy3Y0X572mttOCdDxTAFulKEQCZZ
+jqrEKJgs7QiotW2bI6wlvLYUrP+ns1fTVGCAJrRBZjR0T20ivVatjl3HbJkMr6c4
+I91NmT4jFI8ZTriCRD+Yz+cZS/ynpzKXHfI7ORIShyT9YZjPFKcru4clh299xdOg
+Y3mSRbycVfVqEfe6/O46sWrWFkfRL4mNEZ+IJC3n6SF/q0/bK9FygvGGjIVDe1+N
+fUaTMLD++PMJ5n4AA4XUKJYgLHsjqVcxb8g7aPU8TQFQyt/UDTlqb9vj83MCAwEA
+AQKCAgEAkmGAU3COfbR8xS4LXCsqurE5l0R6MQ0/yRE7LgkwXqDuPsEmJ9nrHOfu
+KU7VkpnkM72By2lTe4MJ9CQMQ5FJ98/Yi/qtnqoYpzIY4sW/azbhGKJOrowYhqSy
+KPCpGuwKaTexBObrVpWZP4wS3mdRjuXoKoi2Sdto0p4FD585tjFYwac7WicetrmE
+rsOl55AYpAZwtEtIUpYiWSY7FsTkef8utkrhZajzZYILa1WfpxOOg1NYHpZF+wiv
+88kbeiZmIl1KrNFUUPStCDPTW9FtogYfZUAnmQNoPqMU42W3fr5Miv6miMIn3UN8
+L70qXEbBa69/byIiEesCUuICxcsBrE22Xly7Y72CgHNkTmleMwp3BhZ2vlkzEWjD
+29cg4mzF/7bpFZ/le1aa8yl3ruehNWoArmlmMfqukCWBoP/Qfu6ZyPsVmG2PRTHN
+4DqjEBWJa6nLkDgWx7MEAIcxoK8JL/XiPXJO38Cg6Mtuy/LSwQIPOSJYUcv+bsIG
+lgtO7f2n8utPorkZT48LeALUm21dx7nh1noYaUWKO4zNWrjLyfYS3z4lNN950MwG
+evAwYKe9316dmSz9iS2F3K8sdbrdnFJVMkWkjIYV7oJSiEH+RZ1dUUfyn6LCHDiJ
+nZfMMphsc6x2L3Idkpxw7VZQxubfbpcHT02JDrN7eB0jsnNbS2ECggEBAPUznJ7o
+gE0BWbeL/ltN3pY7nmzTWUBelk5MEZEnme/mL//4o+3Ab6rhjOtLuS7C60V/Mwjl
+e45bD6XktV1ZhED3sAFd4quZJLiLiZsoS3V3sj5GpTpc9nTwhw3eWIM5j/TeXqtS
+i/28VfSJ3MG+arjqrQcAmSomZf2GooOyK9kqO4EsOBDH664bG4QqtrfLvAM8N/qg
+pIddsRNPv57QZ86LVgpgO5p1lPBCsnUQSP20WZoHYpI9HprnBK3LOsPm7VBvt67y
+hFpuciSBpPfhAbv9/kfCakw5f6vhv4lr/2oCYKXXRPI2YSLVPbK1zohQiMiDGfjd
+woqcCixO7vLGxVkCggEBAMEcKNOxVVPg6+J3duWrquBvwGmmSvRev9pBZ2BuwrZz
+SFrDET3RepsmWW0u7B93LlKEwXu8AQ8yOhif/qEeqyt6a9AOEKbUIaurw2WWjWfE
+0+wDtJTdklf/KzT9KwH/qpqdOcySsbLHvZccxt/ywfFtPuJZdbsjWz/z9PE/i3L+
+W5cDmUPSwomL446I//3Ew4htfau+rYA5cPfdK8OoMvpKamk1KeRPneehAWqY3EFa
+/sHW5CQhphJXFuwtiK2hoggJxsLSt2qbrnhUfQOJDf3IoSrYjQiJfqlq8VK+0AZc
+4HqjDF52Ki5nWOt6llzwNYCh6R7G8J5gVuC0uPneCasCggEBAKgiwvPoRAoJsgZ9
+VWYwaEAmE4VWC25rLa/001rwh8sL0cA5M9dUzH2leibiXtIk0IVwKoOgMHA2Gu3L
+fV3Mgza1YRge086NDbQJ4srk/5FGCZBQiv4RPuKDCGjHHXSmJQNo9AuQZ/QOj/ZG
+Dn0/4Bh6uzkA/QX9HJSTHJ8nro+UOQdjVfKT1BUn+19OlspDRuIFCfGu9ALqiQDP
+/3qcN4JW4yHsSRKqK/3wDkTdbN+jKonHJJ1YkcLwRLITmHE6yWINqSuqmn0UHOrR
+h1h+Dt1k1ldIhfFMwDIRc3B9AMAlbzZo/ZsFFOh4xnzj1AJ/DrxHwah4D+1SAFvP
+qGQLTskCggEAap86p4+dFj/03ciqPCspoNvy+CJZ9k0uTrqX8nWVSpmiVIKpzWEQ
++gMVkyQ6OTFbwTINhl0KlLJdw2TreVhumAXy6yAo74Pmx1uB+mBC2Q2jGQf+t8cS
+20VHPO2fxm28a7vtwtcoCBcixgGciOAHV17DPsS4LUhbRJdVIbK9MxPfzCSvhfQj
+d0BmtzdLaHkwoO4bWi1grJCKoEBcvp3q76kQ0eAJrkaLX+3U019tFSTBzpLwykZN
+5IhzXpnRglThGuES/lTL8q/ciBHWKJKOyBXzbq28SP9pkO88KTyzrR+wzeWimbFS
+nuZvAS1hQhVa5RgAl/6tsjRtI4qFK2j+GwKCAQEA6d13kvQjQirN9MpVkWrOtKPU
+gIYZzGveiLKz3X5B3UHPL91Ur1yuU4GT/A50Pj0J3psPVsaKm/antrrz6KzQHeNY
+yl6DdjM7A57wDo+rrmPoiZsbEvJ6gCnBz3ycf/8v4F4rXUDf7sfYFUA301m15QLc
+V4oSQUo7useOdC1xcbM43spG1skpXYEvOzLkhlql9q2vUfN3Mmr7QxpppVdQiAfK
+Ij8LH5DAyyopvl7diUEhK8aNwNkmKlUVMIH4YpDZSLl2/q1tIMoEOYwGsPeEPyZe
+nMPmBETe/7rxZdspYBiiAk+vCRwQ4RpT2hDt261DENqT/yyOdlQxk+GCYb1Kew==
+-----END RSA PRIVATE KEY-----

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa-dehydrated.pub

@@ -0,0 +1 @@
+ssh-rsa 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 root@c.mx

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa-opendkim

@@ -0,0 +1,49 @@
+-----BEGIN OPENSSH PRIVATE KEY-----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+-----END OPENSSH PRIVATE KEY-----

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa-opendkim.pub

@@ -0,0 +1 @@
+ssh-rsa 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 root@c.mx-opendkim

roles/common/files/c.mx/root/.ssh/c.mx-id_rsa.pub

@@ -0,0 +1 @@
+ssh-rsa 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 root@c.mx

roles/common/files/c.mx/root/bin/monitoring/conf/check_cert_for_dovecot.conf

@@ -0,0 +1,135 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+#---------------------------------------
+#-----------------------------
+# Settings for script check_cert_for_dovecot.sh
+#-----------------------------
+#---------------------------------------
+
+# - service_domain
+# -
+# - The main domain for which the certificate was issued
+# -
+# - Example:
+# -    service_domain="a.mx.oopen.de"
+# -    service_domain="mail.cadus.org"
+# -    service_domain="mx.warenform.de"
+# -
+#service_domain=""
+service_domain="mail.initiativenserver.de"
+
+
+# - service_name
+# -
+# - Name of service.
+# -
+# - Note: this var will also be used to determin systemd service file
+# - or sysVinit script.
+# -
+# - Example: 
+# -    service_name="Mumble"
+# -    service_name="Prosody"
+# -
+# - Defaults to:
+# -    service_name="Dovecot"
+# -
+#service_name=""
+
+
+# - check_string_ps
+# -
+# - String wich (clearly) identifies the service at the process list (ps)
+# -
+# - Example:
+# -    check_string_ps="[[:digit:]]\ /usr/sbin/murmurd"
+# -    check_string_ps=""
+# -
+# - Defaults to:
+# -    check_string_ps="[[:digit:]]\ /usr/local/dovecot-[[:digit:]]{1,2}\.[[:digit:]]{1,2}\.[[:digit:]]{1,2}(\.[[:digit:]]{1,2})?/sbin/dovecot"
+# -
+#check_string_ps=""
+
+
+# - service_user
+# -
+# - User under which the service is running.
+# -
+# - Example:
+# -    service_user="mumble-server"
+# -    service_user="prosody"
+# -
+# - Defaults to:
+# -    service_user="prosody"
+# -
+#service_user=""
+
+
+# - service_group
+# -
+# - Group under which the service is running.
+# -
+# - Example:
+# -    service_group="mumble-server"
+# -    service_group="prosody"
+# -
+# - Defaults to:
+# -    service_group="prosody"
+# -
+#service_group=""
+
+
+# - cert_installed
+# -
+# - Locataion of certificate read by service
+# -
+# - Example:
+# -    cert_installed="/var/lib/mumble-server/fullchain.pem"
+# -    cert_installed="/var/lib/dehydrated/certs/jabber.so36.net/fullchain.pem"
+# -
+# - Defaults to:
+# -    /etc/dovecot/ssl/mailserver.crt
+# -
+#cert_installed=""
+
+
+# - key_installed
+# -
+# - Location of the key read by service
+# -
+# - Example:
+# -    key_installed="/var/lib/mumble-server/privkey.pem"
+# -    key_installed="/etc/prosody/certs/privkey_jabber.so36.pem"
+# -
+# - Defaults to:
+# -    /etc/dovecot/ssl/mailserver.key
+# -
+#key_installed=""
+
+
+# - cert_newest
+# -
+# - Location of the newest certificate.
+# -
+# - Example:
+# -    cert_newest="/var/lib/dehydrated/certs/il-mumble.oopen.de/fullchain.pem"
+# -    cert_newest="/var/lib/dehydrated/certs/jabber.so36.net/fullchain.pem"
+# -
+# - Defaults to: 
+# -    /var/lib/dehydrated/certs/${service_domain}/fullchain.pem
+# -
+#cert_newest=""
+
+
+# - key_newest
+# -
+# - Location of the newest Key
+# -
+# - Example:
+# -    key_newest="/var/lib/dehydrated/certs/il-mumble.oopen.de/privkey.pem"
+# -    key_newest="/var/lib/dehydrated/certs/jabber.so36.net/privkey.pem"
+# -
+# - Defaults to:
+# -    /var/lib/dehydrated/certs/${service_domain}/privkey.pem
+# -
+#key_newest=""
+

roles/common/files/c.mx/root/bin/monitoring/conf/check_webservice_load.conf

@@ -0,0 +1,178 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+#---------------------------------------
+#-----------------------------
+# Settings
+#-----------------------------
+#---------------------------------------
+
+
+# ---
+# - LOGGING
+# -
+# - This Parameter is now obsolete. If script is running in a terminal, then output ist verbose,
+# - the output will be verbos. If running as cronjob, output will only be written, if warnings or 
+# - errors occurs.
+# ---
+
+
+# - What to check
+# -
+check_load=true
+check_mysql=true
+
+# - PostgreSQL
+# -
+# - NOT useful, if more than one PostgreSQL instances are running!
+# -
+check_postgresql=false
+
+check_apache=true
+check_nginx=false
+check_php_fpm=true
+check_redis=false
+check_website=false
+
+# - If service is not listen on 127.0.0.1/loclhost, curl check must
+# - be ommited
+# -
+# - Defaults to: ommit_curl_check_nginx=false
+# -
+#ommit_curl_check_nginx=false
+
+# - Is this a vserver guest machine?
+# -
+# - Not VSerber guest host does not support systemd!
+# -
+# - defaults to: vserver_guest=false
+# -
+#vserver_guest=false
+
+
+# - Additional Settings for check_mysql
+# -
+# - MySQL / MariaDB credentials
+# -
+# - Giving password on command line is insecure an sind mysql 5.5
+# - you will get a warning doing so.
+# - 
+# - Reading username/password fro file ist also possible, using MySQL/MariaDB
+# - commandline parameter '--defaults-file'.
+# - 
+# - Since Mysql Version 5.6, you can read username/password from
+# - encrypted file.
+# -
+# -    Create (encrypted) option file:
+# -    $ mysql_config_editor set --login-path=local --socket=/tmp/mysql.sock  --user=root --password
+# -    $ Password:
+# -
+# -    Use of option file:
+# -    $ mysql --login-path=local ...
+# -
+# - Example
+# -    mysql_credential_args="--login-path=local"
+# -    mysql_credential_args="--defaults-file=/etc/mysql/debian.cnf" (Debian default)
+# -    mysql_credential_args="--defaults-file=/usr/local/mysql/sys-maint.cnf"
+# -
+mysql_credential_args="--login-path=local"
+
+
+# - Additional Settings for check_php_fpm
+# -
+# - On Linux Vserver System set
+# -    curl_check_host=localhost
+# -
+# - On LX-Container set
+# -    curl_check_host=127.0.0.1
+# -
+curl_check_host=127.0.0.1
+
+# - Which PHP versions should be supported by this script. If more than one,
+# - give a blank separated list
+# -
+# - Example:
+# -    php_versions="5.4 5.6 7.0 7.1"
+# -
+php_versions="7.4"
+
+# - If PHP-FPM's ping.path setting does not match ping-$php_major_version,
+# - set the value given in your ping.path setting here. Give ping_path also
+# - the concerning php_version in form
+# -    <php-version>:<ping-path>
+# -
+# - Multiple settings are possible, give a blank separated list.
+# -
+# - Example:
+# -
+# -    ping_path="5.4:ping-site36_net 5.6:ping-oopen_de"
+# -
+ping_path=""
+
+
+# - Additional Settings for check_website - checking (expected) website response
+# -
+# - example:
+# -    is_working_url="https://www.outoflineshop.de/"
+# -    check_string='ool-account-links'
+# -    include_cleanup_function=true
+# -    extra_alert_address="ilker@so36.net"
+# -    cleanup_function='
+# -    rm -rf /var/www/www.outoflineshop.de/htdocs/var/cache/*
+# -    rm -rf /var/www/www.outoflineshop.de/htdocs/var/session/*
+# -    /usr/local/bin/redis-cli flushall > /dev/null 2>&1
+# -    if [[ "$?" = "0" ]]; then
+# -       ok "I have cleaned up directory \"/var/www/www.outoflineshop.de/htdocs/var/cache/\""
+# -    else
+# -       error "Cleaning up directory \"/var/www/www.outoflineshop.de/htdocs/var/cache/\" failed!"
+# -     fi
+# -    /etc/init.d/redis_6379 restart
+# -    if [[ "$?" = "0" ]]; then
+# -       ok "I restarted the redis service"
+# -       echo -e "\t[ Ok ]:    I restarted the redis service" >> $LOCK_DIR/extra_msg.txt
+# -    else
+# -       error "Restarting the redis server failed!"
+# -       echo -e "\t[ Error ]: Restarting the redis server failed!" >> $LOCK_DIR/extra_msg.txt
+# -    fi
+# -    '
+# -
+is_working_url=''
+
+check_string=''
+
+include_cleanup_function=true
+
+# - An extra e-mail address, which will be informed, if the given check URL
+# - does not response as expected (check_string) AFTER script checking, restarting
+# - servervices (webserver, php-fpm) and cleaning up (cleanup_function) was done.
+# -
+extra_alert_address=''
+
+# - php_version_of_working_url
+# -
+# - If given website (is_working_url) does not response as expected, this PHP FPM
+# - engines will be restarted.
+# -
+# - Type "None" if site does not support php
+# -
+# - If php_version_of_working_url is not set, PHP FPM processes of ALL versions (php_versions)
+# - will be restarted
+# -
+php_version_of_working_url=''
+
+# - Notice:
+# - If single qoutes "'" not needed inside cleanup function, then use single quotes
+# - to enclose variable "cleanup_function". Then you don't have do masquerade any 
+# - sign inside.
+# -
+# - Otherwise use double quotes and masq any sign to prevent bash from interpreting.
+# -
+cleanup_function='
+'
+
+
+# - E-Mail settings for sending script messages
+# -
+from_address="root@`hostname -f`"
+content_type='Content-Type: text/plain;\n charset="utf-8"'
+to_addresses="root"
+

roles/common/files/c.mx/root/bin/postfix/conf/create_opendkim_key.conf

@@ -0,0 +1,172 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+# ---------------------------------------------------------
+# - Parameter Settings for script 'create_opendkim_key.sh'.
+# ---------------------------------------------------------
+
+
+# ----------
+# DNS Server
+# ----------
+ 
+# - dns_dkim_zone_master_server
+# - 
+# - The DNS Server who is serving the update zone and is used 
+# - for the dynamic updates (nsupdate) 
+# - 
+dns_dkim_zone_master_server="b.ns.oopen.de"
+
+# - update_dns
+# -
+# - Possible Values are 'true' or 'false'
+# -
+#update_dns=""
+
+# - update_zone
+# -
+# - Zone containing the DKIM TXT record.
+# -
+# - Defaults to '_domainkey.<dkim_domaini>'
+# -
+# - Note:
+# -    do NOT change/set this option unless you know what you do.
+# -
+#update_zone=""
+
+# - TTL
+# -
+# - TTL for the DKIM TXT Record.
+# -
+# - Defaults to "" if update_dns=false
+# - Defaults to "43200" if update_dns=true
+#
+#TTL=""
+
+
+# ----------
+# TSIG Key
+# ----------
+
+# - key_secret
+# -
+# - Sectret Key used by 'nsupdate' to create/update the
+# - DKIM TXT record.
+# -
+# - Example:
+# -    key_secret="EtvvMdW0PXD4GMHP+onuHZ0dT/Z8OSJGlce/xH10OwI="
+# -
+key_secret="4woPu0jqf9Jp1IX+gduJ3BVW/1ZMeyCPTQMqEsMXLFw="
+
+# - key_algo
+# -
+# - The key algorithm used for key creation. Available choices are: hmac-md5, 
+# - hmac-sha1, hmac-sha224, hmac-sha256, hmac-sha384 and hmac-sha512. The 
+# - default is hmac-sha256. Options are case-insensitive.
+# -
+# - Example:
+# -    key_algo="hmac-md5"
+# -
+# - Defaults to 'hmac-sha256'
+# -
+key_algo="hmac-sha256"
+
+# - key_name
+# -
+# - Name of the Key
+# -
+# - Defaults to "$update_zone"
+# -
+key_name="update-dkim"
+
+
+# ----------
+# Access Credentials DNS Server
+# ----------
+
+# - dns_ssh_user
+# -
+# - Defaults to 'manage-bind'
+# -
+#dns_ssh_user="manage-bind"
+
+# - dns_ssh_port
+# -
+# - Defaults to '22'
+# -
+#dns_ssh_port=22
+
+# - dns_ssh_key
+# -
+# - Defaults to '/root/.ssh/id_rsa-opendkim'
+# -
+#dns_ssh_key="/root/.ssh/id_rsa-opendkim"
+
+
+# ----------
+# Scripts envoked at DNS Server
+# ----------
+
+# - set_new_serial_script
+# -
+# - Script increases the serial for a given domain or a given 
+# - hostname's concerning domain.
+# -
+# - Defaults to '/root/bin/bind/bind_set_new_serial.sh'
+# -
+#set_new_serial_script="/root/bin/bind/bind_set_new_serial.sh"
+
+# - create_dkim_delegation_script
+# -
+# - Script adds DKIM subdomain delegation for a given domain
+# -
+# - Defaults to '/root/bin/bind/bind_create_dkim_delegation.sh'
+# -
+#create_dkim_delegation_script="/root/bin/bind/bind_create_dkim_delegation.sh"
+
+# - add_dkim_zone_master_script
+# -
+# - Script adds zone _domainkey.<dkim domain> as master zone
+# -
+# - Defaults to '/root/bin/bind/bind_add_dkim_zone_master.sh'
+# -
+#add_dkim_zone_master_script="/root/bin/bind/bind_add_dkim_zone_master.sh"
+
+# - add_dkim_zone_slave_script
+# -
+# - Script adds zone _domainkey.<dkim domain> as slave zone
+# -
+# - Defaults to '/root/bin/bind/bind_add_dkim_zone_slave.sh'
+# -
+#add_dkim_zone_slave_script="/root/bin/bind/bind_add_dkim_zone_slave.sh"
+
+
+
+# ----------
+# OpenDKIM Installation
+# ----------
+
+# - opendkim_dir
+# -
+# - OpenDKIM's etc-directory
+# -
+# - Defaults to opendkim_dir="/etc/opendkim"
+# -
+#opendkim_dir="/etc/opendkim"
+
+# - key_base_dir
+# -
+# - Defaults to "${opendkim_dir}/keys"
+# -
+#key_base_dir=${opendkim_dir}/keys
+
+# - signing_table_file
+# -
+# - Defaults to "${opendkim_dir}/signing.table"
+# -
+#signing_table_file="${opendkim_dir}/signing.table"
+
+# - key_table_file
+# -
+# - Defaults to "${opendkim_dir}/key.table"
+# -
+#key_table_file="${opendkim_dir}/key.table"

roles/common/files/c.mx/root/bin/postfix/conf/postfix_add_mailboxes.conf

@@ -0,0 +1,86 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+# ----------------------------------------------------
+# ---
+# - Parameter Settings for script 'postfix_add_mailboxes.sh'.
+# ---
+# ----------------------------------------------------
+
+# - dovecot_enc_method
+# -
+# - The (dovecot) password  scheme  which  should  be  used  to  generate  the  hashed  
+# - passwords of EXISTING users.
+# -
+# - Possible values are: 
+# -
+# -    See output of 'doveadm pw -l'
+# -
+# - DEFAULTS to: dovecot_enc_method="SHA512-CRYPT"
+# -
+#dovecot_enc_method="SHA512-CRYPT"
+
+# - in_file
+# -
+# - The file from wich the script reads the e-mail-address/password
+# - kombination(s). Each line in this file must only contain
+# -    <emal-address> <password>
+# -
+# - Defaults to: in_file="${conf_dir}/mailboxes_new.lst"
+# -
+#in_file="${conf_dir}/mailboxes_new.lst"
+
+# - db_type
+# -
+# - Type of Postfix Database
+# -
+# - Possible values are 'pgsql' (PostgeSQL) or 'mysql' (MySQL)
+# - 
+# - Defaults to: db_type="pgsql"
+# -
+#db_type="pgsql"
+
+# - db_name
+# -
+# - Database name for the postfix database
+# - 
+# - Defaults to: db_name="postfix"
+# -
+#db_name="postfix"
+
+# - db_name
+# -
+# - Database name for the postfix database
+# - 
+# - Defaults to: db_name="postfix"
+# -
+#db_name="postfix"
+
+# - mysql_credential_args (root access to MySQL Database)
+# -
+# - Example
+# -    mysql_credential_args="--login-path=local"
+# -    mysql_credential_args="--defaults-file=/etc/mysql/debian.cnf" (Debian default)
+# -    mysql_credential_args="--defaults-file=/usr/local/mysql/sys-maint.cnf"
+# -
+# - Defaults to:
+# -    '/etc/mysql/debian.cnf' if MySQL is installed from debian package system
+# -    '/usr/local/mysql/sys-maint.cnf' otherwise
+# -
+#mysql_credential_args=""
+
+# - quota
+# -
+# - The quota setting for the new mailboxes.
+# -
+# - Defaults to: quota="536870912"
+# -
+#quota="536870912"
+quota=1073741824
+
+# - log_file
+# -
+# - Where to write logging informations?
+# -
+# - Defaults to: log_file="${script_dir}/log/postfix_add_mailboxes.log"
+# -
+#log_file="${script_dir}/log/postfix_add_mailboxes.log"

roles/common/files/c.mx/root/bin/postfix/conf/sent_userinfo_postfix.conf

@@ -0,0 +1,94 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+# ----------------------------------------------------
+# ---
+# - Parameter Settings for script 'sent_userinfo_postfix.sh'.
+# ---
+# ----------------------------------------------------
+
+# - message_body_file
+# -
+# - Full path to file containing the user info. This file must contain 
+# - the message body WITHOUT e-mail headers. If file is placed in the
+# - 'files' directory use '${file_dir}/<file-name>'
+# -
+# - Defaults to '${file_dir}/sent_userinfo_postfix.message'
+# -
+#message_body_file="${file_dir}/sent_userinfo_postfix.email"
+
+
+# - email_from
+# -
+# - From Address of user info
+# -
+# - Example: 'oo@oopen.de'
+# -
+#email_from=""
+email_from="admin@initiativenserver.de"
+
+
+# - email_from_org
+# -
+# - Example: email_from_org="O.OPEN"
+# -
+#email_from_org=""
+email_from_org="Aktionsbuendnis Brandenburg"
+
+
+# - db_type
+# -
+# - Type of Postfix Database
+# -
+# - Possible values are 'pgsql' (PostgeSQL) or 'mysql' (MySQL)
+# - 
+# - Defaults to: db_type="pgsql"
+# -
+#db_type="pgsql"
+
+# - db_name
+# -
+# - Database name for the postfix database
+# - 
+# - Defaults to: db_name="postfix"
+# -
+#db_name="postfix"
+
+# - mysql_credential_args (root access to MySQL Database)
+# -
+# - Example
+# -    mysql_credential_args="--login-path=local"
+# -    mysql_credential_args="--defaults-file=/etc/mysql/debian.cnf" (Debian default)
+# -    mysql_credential_args="--defaults-file=/usr/local/mysql/sys-maint.cnf"
+# -
+# - Defaults to:
+# -    '/etc/mysql/debian.cnf' if MySQL is installed from debian package system
+# -    '/usr/local/mysql/sys-maint.cnf' otherwise
+# -
+#mysql_credential_args=""
+
+
+# - mail_user
+# -
+# - The owner of the mailbox directories and within the e-mails itself.
+# -
+# - defaults to mail_user="vmail"
+# -
+#mail_user="vmail"
+
+
+# - mail_group
+# -
+# - The group of the mailbox directories
+# -
+# - defaults to mail_group="vmail"
+# -
+#mail_group="vmail"
+
+
+# - mail_basedir - No more needed!
+# -
+# - The root directory where all mailbox-domains are located.
+# -
+# - Defaults to '/var/vmail'.
+# -
+#mail_basedir=/var/vmail

roles/common/files/c.mx/root/bin/postfix/conf/whitelist_mb_sigs.conf

@@ -0,0 +1,44 @@
+# *** [ Ansible managed: DO NOT EDIT DIRECTLY ] ***
+
+# ======================================================
+# ---
+# Parameter Settings for Script 'whitelist_mb_sigs.conf'
+# ---
+# ======================================================
+
+# QUARANTINE_BASE_DIR
+#
+# Base directory where amavis stores quarantined e-mails, mostly in
+#
+#    virus e-mails:   $QUARANTINE_BASE_DIR/virus
+#    spam emails:     $QUARANTINE_BASE_DIR/spam
+#    ..
+#
+#    Defaults to:
+#       QUARANTINE_BASE_DIR="/var/QUARANTINE"
+#
+#QUARANTINE_BASE_DIR="/var/QUARANTINE"
+
+
+# CLAMAV_VIRUS_WHITE_LIST
+#
+# Full path to clamav's (personal) white list file
+#
+# Defaults to:
+#    CLAMAV_VIRUS_WHITE_LIST="/var/lib/clamav/my_whitelist.ign2"
+#
+#CLAMAV_VIRUS_WHITE_LIST="/var/lib/clamav/my_whitelist.ign2"
+
+
+# WHITE_LIST_STRINGS
+#
+# A blank separated list of strings to whitelist.
+#
+# Example:
+#    WHITE_LIST_STRINGS="google.com tinyurl.com"
+#
+# Defaults to:
+#    WHITE_LIST_STRINGS="google.com"
+#
+#WHITE_LIST_STRINGS="google.com"
+WHITE_LIST_STRINGS="google.com tinyurl.com"