Difference between revisions of "SME Server:7.5.1"

From SME Server
Jump to navigationJump to search
(SME 7.5.1 Release Announcement)
 
Line 1: Line 1:
 
SME Server 7.5.1 Release Announcement
 
SME Server 7.5.1 Release Announcement
===================================
 
  
 
June 27 2010
 
June 27 2010
Line 11: Line 10:
 
http://wiki.contribs.org/SME_Server:Download
 
http://wiki.contribs.org/SME_Server:Download
  
Bug reports and reports of potential bugs should be raised in the bug
+
Bug reports and reports of potential bugs should be raised in the [http://bugs.contribs.org/ bug tracker] (and only there, please);
tracker (and only there, please);
+
{{Note box|It may take up to 48 hours for mirrors to finish syncing, during this time you may experience problems.}}
 
 
    http://bugs.contribs.org/
 
 
 
 
 
Please Note
 
===========
 
It may take up to 48 hours for mirrors to finish syncing, during this
 
time you may experience problems.
 
 
 
 
 
About SME Server
 
================
 
  
 +
===About SME Server===
 
SME Server is the leading Linux distribution for small and medium
 
SME Server is the leading Linux distribution for small and medium
 
enterprises.
 
enterprises.
Line 36: Line 24:
 
This release is based on CentOS 4.8.
 
This release is based on CentOS 4.8.
  
 
+
===Thanks===
Thanks
 
======
 
 
The development team would like to thank all of those involved in this
 
The development team would like to thank all of those involved in this
 
release. More people are required to help with bug triage and
 
release. More people are required to help with bug triage and
 
verification testing.
 
verification testing.
  
 +
===Upgrades===
 +
Upgrades are available by CD, the Software Installer and command line.
 +
* Always perform a backup prior to major system upgrades
 +
* An upgrade will preserve the existing data
  
Upgrades
+
===Changes in this release===
========
+
====Backups====
Upgrades are available by CD, the Software Installer and command line.
+
* Restoring from a Workstation Backup showed a false failure.
- Always perform a backup prior to major system upgrades
+
* The Workstation Backup panel now removes leading and trailing spaces from the hostname.
- An upgrade will preserve the existing data
+
 
 +
====Localisation====
 +
 
 +
* Latest translation updates.
 +
* Fix translation of local nic string in console.
  
 +
====Mail Server====
 +
* Implement a database key (TlsBeforeAuth) to allow SMTP Authentication without TLS. The default remains to require TLS before Auth (introduced in SME 7.5).
  
Changes in this release
+
====Server manager====
=======================
 
  
Backups
+
* Add option to limit port forwarding by source ip address.
-------
+
* Enable port forwards to localhost if mode is serveronly.
- Restoring from a Workstation Backup showed a false failure.
+
* Text description added for each Port Forwarding.
- The Workstation Backup panel now removes leading and trailing spaces
 
  from the hostname.
 
  
Localisation
+
====Other fixes and updates====
------------
 
- Latest translation updates.
 
- Fix translation of local nic string in console.
 
  
Mail Server
+
* VPN failed for some users due to incorrect kernel module.
-----------
+
* Error in postuninstall script prevented kmod packages from being removed during upgrade.
- Implement a database key (TlsBeforeAuth) to allow SMTP
+
* /etc/cron.daily/freshclam was replaced by a dummy file as freshclam does not need to be run daily as it is run as a supervised process.
  Authentication without TLS. The default remains to require TLS before
 
  Auth (introduced in SME 7.5).
 
  
Server manager
+
===Changes from SME 7.4 to SME 7.5===
--------------
 
- Add option to limit port forwarding by source ip address.
 
- Enable port forwards to localhost if mode is serveronly.
 
- Text description added for each Port Forwarding.
 
  
Other fixes and updates
+
====Backups====
-----------------------
+
* The backup service has been made more robust:
- VPN failed for some users due to incorrect kernel module.
+
**  Allow many backups in the same day.
- Error in postuninstall script prevented kmod packages from being
+
**  Prevent launching a restore if all needed backups are not available.
  removed during upgrade.
+
**  Do not allow a restore from a partial backup.
- /etc/cron.daily/freshclam was replaced by a dummy file as freshclam
+
* Some valid passwords would fail due to how the backup directory was mounted, the use of a credentials file for mount.cifs now avoids this limitation.
  does not need to be run daily as it is run as a supervised process.
+
* The e-mail now correctly identifies incremental and full backups.
 +
* Make Workstation Backup 'full backup allowed on' setting stick across revisits of the Configure page when set to 'Sunday'.
 +
* Workstation Backup emails now include a To: header.
  
Changes from SME 7.4 to SME 7.5
+
====File Server====
===============================
+
* A patch was added to support multiple samba roles, the change is transparent. However installing smeserver-adv-samba allows the user to take advantage of additional server roles as detailed in http://wiki.contribs.org/Advanced_Samba
  
Backups
+
====Localisation====
-------
+
* As part of a major update with translations we have added seven new languages:
- The backup service has been made more robust:
+
** Thai
  Allow many backups in the same day.
+
** Polish
  Prevent launching a restore if all needed backups are not available.
+
** Romanian
  Do not allow a restore from a partial backup.
+
** Estonian
- Some valid passwords would fail due to how the backup directory was
+
** Chinese
  mounted, the use of a credentials file for mount.cifs now avoids this
+
** Norwegian (Bokmal)
  limitation.
+
**  Russian.
- The e-mail now correctly identifies incremental and full backups.
+
* Other fixes include updated translations for the existing languages.
- Make Workstation Backup 'full backup allowed on' setting stick across
 
  revisits of the Configure page when set to 'Sunday'.
 
- Workstation Backup emails now include a To: header.
 
  
File Server
+
====Mail Server====
-----------
+
* Transport Layer Security (TLS) authentication capability has been added for incoming smtp ehlo requests.
- A patch was added to support multiple samba roles, the change is
+
* Implement correctly the subject line SPAM tagging functionality.
  transparent. However installing smeserver-adv-samba allows the user to
+
* The syntax of the smtproutes and SMTPSmartHost templates have been updated to avoid MX lookups
  take advantage of additional server roles as detailed in
+
* Incoming mail could be incorrectly rejected by qpsmtpd plugin require_resolvable_fromhost.
  http://wiki.contribs.org/Advanced_Samba
+
* Update to qpsmtpd 0.83
 +
* Update to ClamAV 0.96.1
 +
* Increase MemLimit to 600M for clamav-0.96
 +
* Remove spamassassin jobs from cron.daily that are no longer needed.
 +
* HeuristicScanPrecedence is a new option in clamav 0.94. See http://wiki.contribs.org/Email#Heuristic_Scan
 +
* Rotate Virus scanning log files
 +
* Remove the external preloaded library, qmail-workaround, which was needed for qmail loopback connections if a domain MX resolves to 0.0.0.0. This has now been replaced by a patch to qmail itself.
 +
* Use HeloHost (if present) for SMTP auth proxy
  
Localisation
+
====Server manager====
------------
+
* The reconfigure warning is displayed in subsequent browser sessions of the server-manager when the server is updated from the Command Line, or after a reboot, if a full reconfiguration has not been performed.
- As part of a major update with translations we have added seven new
+
* Allow to select "check for updates" daily, weekly or monthly in the Software Installer. Check for updates can also be disabled.
  languages:
+
* Fix yum warnings about "another instance is running" when running a second instance of yum from another terminal.
  Thai, Polish, Romanian, Estonian, Chinese, Norwegian (Bokmal),
+
* Improve the HTML formatting of the modify quota panel to work in IE8.
  Russian.
 
- Other fixes include updated translations for the existing languages.
 
  
Mail Server
+
====Webmail and Groupware====
-----------
+
* Horde, imp, turba and ingo have been updated to the latest versions
- Transport Layer Security (TLS) authentication capability has been
+
* Patch to make sure username is always saved in lowercase to horde db's
  added for incoming smtp ehlo requests.
+
* Allow FQDN and non-FQDN access to webmail.
- SMTP Authentication requires TLS before Auth to increase security.
+
* The spell checker in Horde Mail has been enabled for HTML composition.
- Implement correctly the subject line SPAM tagging functionality.
+
* Obsolete smeserver-trean < 0.1-8 as it makes the sidebar menu of the webmail interface disappear.
- The syntax of the smtproutes and SMTPSmartHost templates have been
 
  updated to avoid MX lookups
 
- Incoming mail could be incorrectly rejected by qpsmtpd plugin
 
  require_resolvable_fromhost.
 
- Update to qpsmtpd 0.83
 
- Update to ClamAV 0.96.1
 
- Increase MemLimit to 600M for clamav-0.96
 
- Remove spamassassin jobs from cron.daily that are no longer needed.
 
- HeuristicScanPrecedence is a new option in clamav 0.94.
 
  See http://wiki.contribs.org/Email#Heuristic_Scan
 
- Rotate Virus scanning log files
 
- Remove the external preloaded library, qmail-workaround, which was
 
  needed for qmail loopback connections if a domain MX resolves to
 
  0.0.0.0. This has now been replaced by a patch to qmail itself.
 
- Use HeloHost (if present) for SMTP auth proxy
 
  
Server manager
+
====Web Server====
--------------
+
* Implement a database key (SSLv2) which allows to disable certificates signed with SSLv2, enabled by default to keep current behaviour.
- The reconfigure warning is displayed in subsequent browser sessions of
+
* Add support for more MIME Types to Apache:
  the server-manager when the server is updated from the Command Line,
+
** Openoffice 1.x, Openoffice 2.x
  or after a reboot, if a full reconfiguration has not been performed.
+
** Microsoft Office 2007
- Allow to select "check for updates" daily, weekly or monthly in the
+
** XML
  Software Installer. Check for updates can also be disabled.
+
* SSL Certificates will now use a SHA1
- Fix yum warnings about "another instance is running" when running a
+
* SSL Certificates will now use a 2048 bits key size
  second instance of yum from another terminal.
 
- Improve the HTML formatting of the modify quota panel to work in IE8.
 
  
Webmail and Groupware
+
====Other fixes and updates====
---------------------
+
* From June 2009 smeserver-rkhunter was removed from smeos and made a contrib.
- Horde, imp, turba and ingo have been updated to the latest versions
+
* Do not allow re-allocation of deleted Windows user profiles.
- Patch to make sure username is always saved in lowercase to horde db's
+
* Template sshd login grace time
- Allow FQDN and non-FQDN access to webmail.
+
* Correct the configuration of smartd to monitor hard disk status, but default to disabled.
- The spell checker in Horde Mail has been enabled for HTML composition.
+
* Display the boot time menu by default by removing the hiddenmenu entry from the default grub.conf to be in line with the documentation.
- Obsolete smeserver-trean < 0.1-8 as it makes the sidebar menu of the
+
* Enable error logging for MySQL.
  webmail interface disappear.
+
* When user or group names with a "." in the names exist, running /sbin/e-smith/audittools/aliases will show more than the expected list.
 +
* Improve the quality of the mirrors by using a network mirror-list. The list is automatically generated hourly based on the status of the current mirrors. By using these mirror-lists it is ensured that people are directed to an updated mirror. When a mirror is added or removed the change will be available quickly and automatically. It also centralizes control of the mirror lists.
 +
* Add yum-protect-packages support to prevent removal of needed packages. This stops accidental removal of core SME Server packages.
 +
* Introduced (weak) kernel modules which are independent of kernel version. This means there is no need to update/rebuild kmods for each kernel update.
 +
* Fix for VPN access failed with buffer too small errors.
 +
* Require /sbin/mdassemble so mkinitrd works correctly.
 +
* Reduce drive size requirements from 5G to 1.5G
  
Web Server
 
----------
 
- Implement a database key (SSLv2) which allows to disable certificates
 
  signed with SSLv2, enabled by default to keep current behaviour.
 
- Add support for more MIME Types to Apache:
 
    Openoffice 1.x, Openoffice 2.x
 
    Microsoft Office 2007
 
    XML
 
- SSL Certificates will now use a SHA1
 
- SSL Certificates will now use a 2048 bits key size
 
  
Other fixes and updates
+
Ian Wells, on behalf of the SME Server development team.
-----------------------
 
- From June 2009 smeserver-rkhunter was removed from smeos and made a
 
  contrib.
 
- Do not allow re-allocation of deleted Windows user profiles.
 
- Template sshd login grace time
 
- Correct the configuration of smartd to monitor hard disk status, but
 
  default to disabled.
 
- Display the boot time menu by default by removing the hiddenmenu entry
 
  from the default grub.conf to be in line with the documentation.
 
- Enable error logging for MySQL.
 
- When user or group names with a "." in the names exist,
 
  running /sbin/e-smith/audittools/aliases will show more than the
 
  expected list.
 
- Improve the quality of the mirrors by using a network mirror-list. The
 
  list is automatically generated hourly based on the status of the
 
  current mirrors. By using these mirror-lists it is ensured that people
 
  are directed to an updated mirror. When a mirror is added or removed
 
  the change will be available quickly and automatically. It also
 
  centralizes control of the mirror lists.
 
- Add yum-protect-packages support to prevent removal of needed
 
  packages. This stops accidental removal of core SME Server packages.
 
- Introduced (weak) kernel modules which are independent of kernel
 
  version. This means there is no need to update/rebuild kmods for each
 
  kernel update.
 
- Fix for VPN access failed with buffer too small errors.
 
- Require /sbin/mdassemble so mkinitrd works correctly.
 
- Reduce drive size requirements from 5G to 1.5G
 

Revision as of 20:32, 27 June 2010

SME Server 7.5.1 Release Announcement

June 27 2010

The SME Server development team is pleased to announce the release of SME Server 7.5.1 This is a patch release for SME 7.5 to resolve problems seen by some VPN users, and other minor fixes.

The release should be obtained from your closest mirror, see http://wiki.contribs.org/SME_Server:Download

Bug reports and reports of potential bugs should be raised in the bug tracker (and only there, please);

Important.png Note:
It may take up to 48 hours for mirrors to finish syncing, during this time you may experience problems.


About SME Server

SME Server is the leading Linux distribution for small and medium enterprises.

SME Server is freely available under the GNU General Public License and is only possible through the efforts of the SME Server community. However, the availability and quality of SME Server is dependent on meeting our expenses, such as hosting costs, server hardware, etc.

This release is based on CentOS 4.8.

Thanks

The development team would like to thank all of those involved in this release. More people are required to help with bug triage and verification testing.

Upgrades

Upgrades are available by CD, the Software Installer and command line.

  • Always perform a backup prior to major system upgrades
  • An upgrade will preserve the existing data

Changes in this release

Backups

  • Restoring from a Workstation Backup showed a false failure.
  • The Workstation Backup panel now removes leading and trailing spaces from the hostname.

Localisation

  • Latest translation updates.
  • Fix translation of local nic string in console.

Mail Server

  • Implement a database key (TlsBeforeAuth) to allow SMTP Authentication without TLS. The default remains to require TLS before Auth (introduced in SME 7.5).

Server manager

  • Add option to limit port forwarding by source ip address.
  • Enable port forwards to localhost if mode is serveronly.
  • Text description added for each Port Forwarding.

Other fixes and updates

  • VPN failed for some users due to incorrect kernel module.
  • Error in postuninstall script prevented kmod packages from being removed during upgrade.
  • /etc/cron.daily/freshclam was replaced by a dummy file as freshclam does not need to be run daily as it is run as a supervised process.

Changes from SME 7.4 to SME 7.5

Backups

  • The backup service has been made more robust:
    • Allow many backups in the same day.
    • Prevent launching a restore if all needed backups are not available.
    • Do not allow a restore from a partial backup.
  • Some valid passwords would fail due to how the backup directory was mounted, the use of a credentials file for mount.cifs now avoids this limitation.
  • The e-mail now correctly identifies incremental and full backups.
  • Make Workstation Backup 'full backup allowed on' setting stick across revisits of the Configure page when set to 'Sunday'.
  • Workstation Backup emails now include a To: header.

File Server

  • A patch was added to support multiple samba roles, the change is transparent. However installing smeserver-adv-samba allows the user to take advantage of additional server roles as detailed in http://wiki.contribs.org/Advanced_Samba

Localisation

  • As part of a major update with translations we have added seven new languages:
    • Thai
    • Polish
    • Romanian
    • Estonian
    • Chinese
    • Norwegian (Bokmal)
    • Russian.
  • Other fixes include updated translations for the existing languages.

Mail Server

  • Transport Layer Security (TLS) authentication capability has been added for incoming smtp ehlo requests.
  • Implement correctly the subject line SPAM tagging functionality.
  • The syntax of the smtproutes and SMTPSmartHost templates have been updated to avoid MX lookups
  • Incoming mail could be incorrectly rejected by qpsmtpd plugin require_resolvable_fromhost.
  • Update to qpsmtpd 0.83
  • Update to ClamAV 0.96.1
  • Increase MemLimit to 600M for clamav-0.96
  • Remove spamassassin jobs from cron.daily that are no longer needed.
  • HeuristicScanPrecedence is a new option in clamav 0.94. See http://wiki.contribs.org/Email#Heuristic_Scan
  • Rotate Virus scanning log files
  • Remove the external preloaded library, qmail-workaround, which was needed for qmail loopback connections if a domain MX resolves to 0.0.0.0. This has now been replaced by a patch to qmail itself.
  • Use HeloHost (if present) for SMTP auth proxy

Server manager

  • The reconfigure warning is displayed in subsequent browser sessions of the server-manager when the server is updated from the Command Line, or after a reboot, if a full reconfiguration has not been performed.
  • Allow to select "check for updates" daily, weekly or monthly in the Software Installer. Check for updates can also be disabled.
  • Fix yum warnings about "another instance is running" when running a second instance of yum from another terminal.
  • Improve the HTML formatting of the modify quota panel to work in IE8.

Webmail and Groupware

  • Horde, imp, turba and ingo have been updated to the latest versions
  • Patch to make sure username is always saved in lowercase to horde db's
  • Allow FQDN and non-FQDN access to webmail.
  • The spell checker in Horde Mail has been enabled for HTML composition.
  • Obsolete smeserver-trean < 0.1-8 as it makes the sidebar menu of the webmail interface disappear.

Web Server

  • Implement a database key (SSLv2) which allows to disable certificates signed with SSLv2, enabled by default to keep current behaviour.
  • Add support for more MIME Types to Apache:
    • Openoffice 1.x, Openoffice 2.x
    • Microsoft Office 2007
    • XML
  • SSL Certificates will now use a SHA1
  • SSL Certificates will now use a 2048 bits key size

Other fixes and updates

  • From June 2009 smeserver-rkhunter was removed from smeos and made a contrib.
  • Do not allow re-allocation of deleted Windows user profiles.
  • Template sshd login grace time
  • Correct the configuration of smartd to monitor hard disk status, but default to disabled.
  • Display the boot time menu by default by removing the hiddenmenu entry from the default grub.conf to be in line with the documentation.
  • Enable error logging for MySQL.
  • When user or group names with a "." in the names exist, running /sbin/e-smith/audittools/aliases will show more than the expected list.
  • Improve the quality of the mirrors by using a network mirror-list. The list is automatically generated hourly based on the status of the current mirrors. By using these mirror-lists it is ensured that people are directed to an updated mirror. When a mirror is added or removed the change will be available quickly and automatically. It also centralizes control of the mirror lists.
  • Add yum-protect-packages support to prevent removal of needed packages. This stops accidental removal of core SME Server packages.
  • Introduced (weak) kernel modules which are independent of kernel version. This means there is no need to update/rebuild kmods for each kernel update.
  • Fix for VPN access failed with buffer too small errors.
  • Require /sbin/mdassemble so mkinitrd works correctly.
  • Reduce drive size requirements from 5G to 1.5G


Ian Wells, on behalf of the SME Server development team.