Ei kuvausta
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

defaults.yml 4.0KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
  1. ---
  2. ###############################################################################
  3. # DO NOT EDIT. Set your variables in `vars/user.yml` instead.
  4. # This is a reference of all the variables.
  5. ###############################################################################
  6. # # common
  7. common_timezone: 'Etc/UTC'
  8. # domain: (required)
  9. # main_user_name: (required)
  10. admin_email: "{{ main_user_name }}@{{ domain }}"
  11. main_user_shell: "/bin/bash"
  12. # encfs_password: (required)
  13. friendly_networks:
  14. - ""
  15. # ssh
  16. kex_algorithms: "diffie-hellman-group-exchange-sha256"
  17. ciphers: "aes256-ctr,aes192-ctr,aes128-ctr"
  18. macs: "hmac-sha2-512,hmac-sha2-256,hmac-ripemd160"
  19. # ntp
  20. ntp_servers:
  21. # use nearby ntp servers by default
  22. - 0.pool.ntp.org
  23. - 1.pool.ntp.org
  24. - 2.pool.ntp.org
  25. - 3.pool.ntp.org
  26. # use servers tailored to the server location
  27. # See http://www.pool.ntp.org/en/use.html
  28. # - 0.north-america.pool.ntp.org
  29. # - 1.north-america.pool.ntp.org
  30. # - 2.north-america.pool.ntp.org
  31. # - 3.north-america.pool.ntp.org
  32. # collectd
  33. collectd_version: 5.4.1
  34. collectd_librato_version: 0.0.10
  35. collectd_librato_email: "" # (optional)
  36. collectd_librato_api_token: "" # (optional)
  37. # google authenticator
  38. google_auth_version: 1.0
  39. # database
  40. db_admin_username: 'postgres'
  41. # db_admin_password: (required)
  42. # ircbouncer
  43. znc_version: 1.4
  44. # irc_nick: (required)
  45. # irc_ident: (required)
  46. # irc_realname: (required)
  47. # irc_quitmsg: (required)
  48. # irc_password_hash: (required)
  49. # irc_password_salt: (required)
  50. # mailserver
  51. mail_server_hostname: "mail.{{ domain }}"
  52. mail_server_autoconfig_hostname: "autoconfig.{{ domain }}"
  53. mail_db_username: mailuser
  54. # mail_db_password: (required)
  55. mail_db_database: mailserver
  56. # mail_virtual_domains: (required)
  57. # mail_virtual_users: (required)
  58. # mail_virtual_aliases: (required)
  59. mail_db_opendmarc_username: opendmarc
  60. # mail_db_opendmarc_password: (required)
  61. mail_db_opendmarc_database: opendmarc
  62. # z-push
  63. zpush_version: 2.1.1-1788
  64. # owncloud
  65. owncloud_domain: "cloud.{{ domain }}"
  66. owncloud_db_username: owncloud
  67. # owncloud_db_password: (required)
  68. owncloud_db_database: owncloud
  69. # tarsnap
  70. tarsnap_version: 1.0.36.1
  71. # vpn
  72. # Notes about security: https://blog.g3rt.nl/openvpn-security-tips.html
  73. # Check privacy: http://witch.valdikss.org.ru/
  74. # openvpn_key_country: (required)
  75. # openvpn_key_province: (required)
  76. # openvpn_key_city: (required)
  77. # openvpn_key_org: (required)
  78. # openvpn_key_ou: (required)
  79. openvpn_days_valid: "1825"
  80. openssl_request_subject: "/C={{ openvpn_key_country }}/ST={{ openvpn_key_province }}/L={{ openvpn_key_city }}/O={{ openvpn_key_org }}/OU={{ openvpn_key_ou }}"
  81. openvpn_key_size: "2048"
  82. openvpn_cipher: "AES-256-CBC"
  83. openvpn_auth_digest: "SHA512"
  84. openvpn_path: "/etc/openvpn"
  85. openvpn_ca: "{{ openvpn_path }}/ca"
  86. openvpn_dhparam: "{{ openvpn_path }}/dh{{ openvpn_key_size }}.pem"
  87. openvpn_hmac_firewall: "{{ openvpn_path }}/ta.key"
  88. openvpn_server: "{{ domain }}"
  89. openvpn_port: "1194"
  90. openvpn_protocol: "udp"
  91. openvpn_mtu: "1300"
  92. openvpn_verb: "3" # "0" for anonymity
  93. # uncomment for openvpn 2.3.3 and >2.3.4
  94. openvpn_tls_version_min: "" # "tls-version-min 1.2"
  95. openvpn_tls_cipher: "" # "tls-cipher TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256:TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256"
  96. # openvpn_clients: (required)
  97. # webmail
  98. webmail_domain: "{{ mail_server_hostname }}"
  99. webmail_db_username: "roundcube"
  100. # webmail_db_password: (required)
  101. webmail_db_database: "roundcube"
  102. carddav_version: "1.0.0"
  103. # xmpp
  104. prosody_admin: "{{ admin_email }}"
  105. prosody_virtual_domain: "{{ domain }}"
  106. # prosody_accounts: (required)
  107. # news
  108. selfoss_domain: "news.{{ domain }}"
  109. selfoss_db_username: selfoss
  110. # selfoss_db_password: (required)
  111. selfoss_db_database: selfoss
  112. selfoss_version: 2.14
  113. # git
  114. cgit_version: 0.12
  115. cgit_domain: "git.{{ domain }}"
  116. gitolite_version: 3.6.4
  117. # wallabag
  118. wallabag_version: 1.9.1
  119. wallabag_domain: "read.{{ domain }}"
  120. # wallabag_salt: (required)
  121. wallabag_db_username: wallabag
  122. # wallabag_db_password: (required)
  123. wallabag_db_database: wallabag