These already set in defaults.yml

 * fix mail_db_opendmarc_username/mail_db_opendmarc_password variable
   not found.
 * python-mysqldb package is required. Add it to opendmarc task.

Ansible lint

Tagged 'deps' aptitude tasks

Update dovecot version from wheezy backports

For correct implementation of the fix for logjam attack (https://github.com/sovereign/sovereign/pull/372), state=latest is needed to grab sufficient version of Dovecot. If not then 37aa7e2cb5 doesn't work.

Use "modern" SSLCipherSuite per Mozilla recommendations.

See https://wiki.mozilla.org/Security/Server_Side_TLS for details.
Removes RC4 cipher. Fixes issue #341.
Also explicitly disabled SSLCompression and enables OCSP stapling.

We should put all these settings in
/etc/apache2/mods-enabled/ssl.conf
to avoid duplication...

(on Debian Jessie, Ubuntu Trusty or older distributions such as
Debian Wheezy and Ubuntu Precise).

This is the updated version from the prosody repository because
these distributions have an old version of the lua-sec package
that lacks PFS and other features. Second commit for issue #285.

Installation of package unattended-upgrades was listed twice.

relates to pull request #372

added details about the license and the supported distributions.

Reflects the move to the `sovereign` GitHub organization.

remove duplicate options which are already specified in main.cf

Add molly-guard and unattended-upgrades as common pkgs

Dovecot: Fix for logjam attack

Add a tag for newebe, so it can be installed separately

Added a tag for newebe in a similar style to the other roles.

adds deploy user to sudoers

Resolves #363.

Addresses #362.

Addresses #361.

More secure defaults for ssh.

# Conflicts:
#	roles/common/tasks/users.yml

Closes #343.

Integration between selfoss and wallabag (fixes #349)