Line 34: |
Line 34: |
| | | |
| SME Server 10.0 is likely to be based on CentOS 7.0 | | SME Server 10.0 is likely to be based on CentOS 7.0 |
− |
| |
− |
| |
| * Move server manager to Mojolicious | | * Move server manager to Mojolicious |
| ** Background reading [http://en.wikipedia.org/wiki/Mojolicious Mojolicious]. | | ** Background reading [http://en.wikipedia.org/wiki/Mojolicious Mojolicious]. |
Line 42: |
Line 40: |
| ** integrate user-manager and delegation in its design [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | ** integrate user-manager and delegation in its design [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
| | | |
− | | + | * Full Samba 4 support (David Harper) |
− | * Full Samba 4 support(David Harper) | |
| ** Investigate the implications for the SME ecosystem of moving to Samba 4 (e.g. currently UNIX accounts are used for authentication but for Samba 4 all auth would have to be done through Active Directory - e.g. IMAP, webmail, VPN etc.) | | ** Investigate the implications for the SME ecosystem of moving to Samba 4 (e.g. currently UNIX accounts are used for authentication but for Samba 4 all auth would have to be done through Active Directory - e.g. IMAP, webmail, VPN etc.) |
| ** Would likely require BIND 9 instead of dnsmasq | | ** Would likely require BIND 9 instead of dnsmasq |
Line 60: |
Line 57: |
| | | |
| * ibays | | * ibays |
− | **merger ibays with Shared folders [[Bugzilla:9568]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | + | **merge ibays with Shared folders [[Bugzilla:9568]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
− | **The contrib Shared folder offers many new features which enhance a lot the file sharing. We will be winners if we can have this contrib in the sme core | + | **The contrib Shared folder offers many new features which enhance a lot the file sharing. We will be winners if we can have this contrib in the sme core |
| **finish tmp folder integration [[Bugzilla:9568]] [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | **finish tmp folder integration [[Bugzilla:9568]] [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
| **better integration of php and httpd setting per ibay [[Bugzilla:]] [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | **better integration of php and httpd setting per ibay [[Bugzilla:]] [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
Line 74: |
Line 71: |
| | | |
| * New VPN Approach [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | * New VPN Approach [[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
− | **this should include OpenVPN and IPSec [[Category:VPN]] | + | **this should include OpenVPN and IPSec [[Category:VPN]] |
| ** OpenVPN Bridge (Credit: Daniel) | | ** OpenVPN Bridge (Credit: Daniel) |
| ** [[OpenVPN_Bridge]] is a much wanted feature, and could be considered as a Core feature | | ** [[OpenVPN_Bridge]] is a much wanted feature, and could be considered as a Core feature |
| ** Remote workers, home office, road-worriers is a very common way of working today | | ** Remote workers, home office, road-worriers is a very common way of working today |
| ***Bravo daniel openvpn-bridge+openvpn-s2s integrated as core system [[User:Stephdl|Stephdl]] ([[User talk:Stephdl|talk]]) | | ***Bravo daniel openvpn-bridge+openvpn-s2s integrated as core system [[User:Stephdl|Stephdl]] ([[User talk:Stephdl|talk]]) |
− | ***I subscribe also for any core developement which support openVPN client with devault user/passfrom LDAP [[User:Larieu|Larieu]] ([[User talk:Larieu|talk]]) | + | ***I subscribe also for any core development which support openVPN client with default user/passfrom LDAP [[User:Larieu|Larieu]] ([[User talk:Larieu|talk]]) |
| | | |
| | | |
Line 95: |
Line 92: |
| ** implement encrypted sending of emails [[Bugzilla:9349]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | ** implement encrypted sending of emails [[Bugzilla:9349]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
| ** find a way to adapt to new smarthosts [[Bugzilla:9050]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) | | ** find a way to adapt to new smarthosts [[Bugzilla:9050]][[User:Unnilennium|Unnilennium]] ([[User talk:Unnilennium|talk]]) |
| + | |
| + | == SME Server 11.X == |
| + | SME Server 11.0 is likely to be based on Rocky 8.X |
| + | |
| + | |
| + | Prerequesite to start |
| + | |
| + | * a koji builder |
| + | * moving sources to git |
| + | |
| + | |
| + | For the server |
| + | |
| + | * finish Mojolicious server-manager integration |
| + | * integrate SSL certificate handling in manager |
| + | |
| + | * Finish LDAP auth, and use as default going forward |
| + | ** having full user and group in LDAP would allow comprehensive management of users over multiple servers |
| + | |
| + | * easing switching between webmail software |
| + | * rethink the backup management |
| + | * change DNS stack to bind |
| + | * change Qmail to Postfix keeping qpsmtpd |
| + | * IPv6 |
| + | * new firewall using Shorewall |
| + | * multiple network interface |
| + | * moving httpd-e-smith to httpd |
| + | * moving httpd user from www to the standard apache |
| + | * rethink the apache auth to make it pluggable (eg: allow adding a geoip filter) |
| | | |
| == Nice to have == | | == Nice to have == |
Line 100: |
Line 126: |
| * IPV6 (Ian) | | * IPV6 (Ian) |
| ** support IPv6. See [[bugzilla:6393|Bug 6393]] | | ** support IPv6. See [[bugzilla:6393|Bug 6393]] |
| + | |
| + | |
| + | * DNS Block - [[Pihole]] available on SME10 |
| + | ** Allow more control on what DNS enters in your LAN to protect from malware and adds |
| + | ** See also https://wiki.koozali.org/DNS_Block and https://wiki.koozali.org/DNS_Stack |
| | | |
| | | |
Line 132: |
Line 163: |
| *** to be able to delegate ibay administration | | *** to be able to delegate ibay administration |
| *** to be able to delegate access to some panels | | *** to be able to delegate access to some panels |
− |
| |
− |
| |
| | | |
| | | |
Line 155: |
Line 184: |
| * 2 WAN + 2 LAN | | * 2 WAN + 2 LAN |
| ** 2 WAN - nowadays you have one terrestrial internet connection and for shure good plans from GSM company (Wireless one - but with ETH connection for the whole house) - why to not have 2 WAN | | ** 2 WAN - nowadays you have one terrestrial internet connection and for shure good plans from GSM company (Wireless one - but with ETH connection for the whole house) - why to not have 2 WAN |
− | ** 2 LAN - one for "normal" LAN and one for guest / wireless access - or VLAN support - multimple LAN | + | ** 2 LAN - one for "normal" LAN and one for guest / wireless access - or VLAN support - multiple LAN |
| | | |
| | | |
Line 162: |
Line 191: |
| * JMAP support (JSON Meta Application Protocol Specification) | | * JMAP support (JSON Meta Application Protocol Specification) |
| ** For more information on JMAP see http://jmap.io | | ** For more information on JMAP see http://jmap.io |
| + | * Wireguard VPN *in kernel since 3/20 (Seems to be a very professionally scripted new and opensource VPN solution that is a big improvement over OpenVPN and it is also much easier to setup/integrate) |
| + | |
| + | |
| + | * journaled quota (larieu) |
| + | ** standard used kernel supports the journaled quota but it seems that the default option is standard non-journaled quota ( even it is recommended to use journaled ) |
| | | |
− | == Idea's and suggestions == | + | == Ideas and suggestions == |
| * Setup the contribs site with a more prominent download page where after the download the user is prompted for donations or signup to Email newsletters. I just noticed how Eclipse was doing that after you downloaded a Eclipse package. http://www.eclipse.org/downloads/download.php?file=/technology/epp/downloads/release/juno/SR1/eclipse-cpp-juno-SR1-win32-x86_64.zip&mirror_id=1051 (MarcoHess) | | * Setup the contribs site with a more prominent download page where after the download the user is prompted for donations or signup to Email newsletters. I just noticed how Eclipse was doing that after you downloaded a Eclipse package. http://www.eclipse.org/downloads/download.php?file=/technology/epp/downloads/release/juno/SR1/eclipse-cpp-juno-SR1-win32-x86_64.zip&mirror_id=1051 (MarcoHess) |
| | | |
| --- | | --- |
− | [[Category:Categorisation]][[Category:SME10-Development]] | + | [[Category:Categorisation]] |
| + | [[Category:SME10-Development]] |
| + | [[Category:SME11-Development]] |