ansible-mailserver-debian/mail_system/tasks/rspamd.yml

- name: Install package rspamd
  ansible.builtin.apt:
    name: rspamd
    state: present

# postfix integration

- name: Postfix setting milter_mail_macros
  ansible.builtin.lineinfile:
    path: /etc/postfix/main.cf
    regexp: '^milter_mail_macros='
    line: 'milter_mail_macros=i {mail_addr} {client_addr} {client_name} {auth_authen}'
    insertafter: '^# rspamd'

- name: Postfix setting milter_protocol
  ansible.builtin.lineinfile:
    path: /etc/postfix/main.cf
    regexp: '^milter_protocol='
    line: 'milter_protocol=6'
    insertafter: '^# rspamd'

- name: Postfix setting non_smtpd_milters
  ansible.builtin.lineinfile:
    path: /etc/postfix/main.cf
    regexp: '^non_smtpd_milters='
    line: 'non_smtpd_milters=inet:127.0.0.1:11332'
    insertafter: '^# rspamd'

- name: Postfix setting smtpd_milters
  ansible.builtin.lineinfile:
    path: /etc/postfix/main.cf
    regexp: '^smtpd_milters='
    line: 'smtpd_milters=inet:127.0.0.1:11332'
    insertafter: '^# rspamd'

- name: Restart postfix
  ansible.builtin.systemd:
    name: postfix
    state: restarted

# rspamd configuration

- name: Rspamd configure extended_spam_headers true
  ansible.builtin.template:
    src: "rspamd/{{ item }}"
    dest: "/etc/rspamd/override.d/{{ item }}"
    owner: root
    group: root
    mode: "0644"
  loop:
    - milter_headers.conf
    - classifier-bayes.conf
    - antivirus.conf

# install dkim

- name: Mkdir /var/lib/rspamd/dkim
  ansible.builtin.file:
    path: /var/lib/rspamd/dkim
    state: directory
    owner: _rspamd
    group: _rspamd
    mode: "0755"

- name: Rspamd config dkim_signing.conf and arc.conf
  ansible.builtin.template:
    src: "rspamd/{{ item }}"
    dest: "/etc/rspamd/local.d/{{ item }}"
    owner: root
    group: root
    mode: "0644"
  loop:
    - dkim_signing.conf
    - arc.conf

# restart rspamd

- name: Restart rspamd
  ansible.builtin.systemd:
    name: rspamd
    state: restarted
Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Install package rspamd`
			`ansible.builtin.apt:`
clone from private repo 2019-09-19 10:43:17 +02:00			`name: rspamd`
			`state: present`

			`# postfix integration`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Postfix setting milter_mail_macros`
			`ansible.builtin.lineinfile:`
clone from private repo 2019-09-19 10:43:17 +02:00			`path: /etc/postfix/main.cf`
			`regexp: '^milter_mail_macros='`
			`line: 'milter_mail_macros=i {mail_addr} {client_addr} {client_name} {auth_authen}'`
			`insertafter: '^# rspamd'`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Postfix setting milter_protocol`
			`ansible.builtin.lineinfile:`
clone from private repo 2019-09-19 10:43:17 +02:00			`path: /etc/postfix/main.cf`
			`regexp: '^milter_protocol='`
			`line: 'milter_protocol=6'`
			`insertafter: '^# rspamd'`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Postfix setting non_smtpd_milters`
			`ansible.builtin.lineinfile:`
clone from private repo 2019-09-19 10:43:17 +02:00			`path: /etc/postfix/main.cf`
			`regexp: '^non_smtpd_milters='`
			`line: 'non_smtpd_milters=inet:127.0.0.1:11332'`
			`insertafter: '^# rspamd'`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Postfix setting smtpd_milters`
			`ansible.builtin.lineinfile:`
clone from private repo 2019-09-19 10:43:17 +02:00			`path: /etc/postfix/main.cf`
			`regexp: '^smtpd_milters='`
			`line: 'smtpd_milters=inet:127.0.0.1:11332'`
			`insertafter: '^# rspamd'`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Restart postfix`
			`ansible.builtin.systemd:`
clone from private repo 2019-09-19 10:43:17 +02:00			`name: postfix`
			`state: restarted`

			`# rspamd configuration`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Rspamd configure extended_spam_headers true`
			`ansible.builtin.template:`
clone from private repo 2019-09-19 10:43:17 +02:00			`src: "rspamd/{{ item }}"`
			`dest: "/etc/rspamd/override.d/{{ item }}"`
			`owner: root`
			`group: root`
Update to trixie 2026-03-22 13:09:26 +01:00			`mode: "0644"`
clone from private repo 2019-09-19 10:43:17 +02:00			`loop:`
			`- milter_headers.conf`
			`- classifier-bayes.conf`
			`- antivirus.conf`

			`# install dkim`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Mkdir /var/lib/rspamd/dkim`
			`ansible.builtin.file:`
clone from private repo 2019-09-19 10:43:17 +02:00			`path: /var/lib/rspamd/dkim`
			`state: directory`
			`owner: _rspamd`
			`group: _rspamd`
Update to trixie 2026-03-22 13:09:26 +01:00			`mode: "0755"`
clone from private repo 2019-09-19 10:43:17 +02:00
Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Rspamd config dkim_signing.conf and arc.conf`
			`ansible.builtin.template:`
clone from private repo 2019-09-19 10:43:17 +02:00			`src: "rspamd/{{ item }}"`
			`dest: "/etc/rspamd/local.d/{{ item }}"`
			`owner: root`
			`group: root`
Update to trixie 2026-03-22 13:09:26 +01:00			`mode: "0644"`
clone from private repo 2019-09-19 10:43:17 +02:00			`loop:`
			`- dkim_signing.conf`
			`- arc.conf`

			`# restart rspamd`

Update to trixie 2026-03-22 13:09:26 +01:00			`- name: Restart rspamd`
			`ansible.builtin.systemd:`
clone from private repo 2019-09-19 10:43:17 +02:00			`name: rspamd`
			`state: restarted`