[debops.nullmailer] - falis to start because config files have mode 0600

[jkraemer]

It seems that the role specifies no mode and the files in /etc/nullmailer are created by Ansible with mode 0600 as a default. I helped myself with overriding the nullmailer__configuration_files in my inventory and specifying mode '644' for all of them, but this should probably be used as a default in the task that processes this list.

• Ansible 2.9.12, Debops 2.1.1, Python 3.7
• Debian Buster on control and managed hosts.

[nqb]

Hi,

It's related to Ansible 2.9.12 as reported by @imrejonk on DebOps users mailing list.

See ansible/ansible#71200. This change has been reverted.

[drybjed]

Thanks for the bug report. This issue has been fixed in 059e685 commit which was backported to the stable branches, but a new stable release hasn't happened yet. I'll to make on during this week.

Also, remember that /etc/nullmailer/remotes file needs to be 0600 and owned by mail:mail, otherwise you are exposing your SMTP passwords to other local accounts.

[jkraemer]

Thanks!

[imrejonk]

This was fixed in 9496c18. You can either update Ansible to 2.9.13, use the nullmailer role from master, or wait for a new stable release.