an improved version of PR #696

Changelog at https://github.com/SSilence/selfoss/releases/tag/2.15

The directives provided by `mod_access_compat` are deprecated.  This
patch eliminates references to them.

Avoid using the Include directive.  Move most of the SSL configuration
to the global configuration and leave enabling the SSL engine to each
virtual host that wants to use it.

See https://wiki.mozilla.org/Security/Server_Side_TLS for details.
Removes RC4 cipher. Fixes issue #341.
Also explicitly disabled SSLCompression and enables OCSP stapling.

We should put all these settings in
/etc/apache2/mods-enabled/ssl.conf
to avoid duplication...

Resolves #266.

My selfoss logs were using 10GB of space because they weren't being rotated properly.

/etc/apache2/sites-available and old (dangling) symlinks in
/etc/apaches/sites-enabled.
Also, remove unnecessary apache2 restart after creating a new
virtualhost but not yet enabling it.

The virtual site files must be owned by root (serious security issue)
and they must have the .conf filename suffix for a2ensite on
Ubuntu 14.04LTS (apache 2.4.7).

String-valued variables containing spaces can be substituted into an ansible
tasks file but they will not be interpreted correctly.

Updated the default port to reflect MySQL to Postgres change (port 3306 to 5432)

Remove all configuration for MySQL and configure PostgreSQL as the main
database.

All *_mysql_* options have been changed to *_db_* options.

Postgres requires the database user to have a password in order to
connect via localhost. The db_admin_password option is used to set the
password of the admin user (usually postgres).