| 1 |
SME Server 7.2 Release Notes |
SME Server 7.4 Release Announcement |
| 2 |
============================ |
=================================== |
| 3 |
|
|
| 4 |
June 17 2007 |
October 20 2008 |
| 5 |
|
|
| 6 |
The SME Server development team is pleased to announce the release of |
The SME Server development team is pleased to announce the release of |
| 7 |
SME Server 7.2. This release is based on CentOS 4.5 and all packages |
SME Server 7.4. This release is based on CentOS 4.7 and all packages |
| 8 |
have been updated to the latest releases. |
have been updated to the latest releases. |
| 9 |
|
|
| 10 |
This release contains many new features, all released updates for |
|
| 11 |
SME Server 7.1 and fixes for many reported problems. Upgrades |
All SME Server users should upgrade to this release. |
| 12 |
will be available by CD, the Software Installer and command line. |
|
| 13 |
|
The release should be obtained from your closest mirror, see |
| 14 |
All users should upgrade to this release. |
http://wiki.contribs.org/SME_Server:Download |
| 15 |
|
|
| 16 |
Please report any issues with the SME Server to the bug tracker, |
Bug reports and reports of potential bugs should be raised |
| 17 |
and only there: |
in the bug tracker (and only there, please); |
| 18 |
|
|
| 19 |
http://www.contribs.org/bugzilla/ |
http://bugs.contribs.org/ |
| 20 |
|
|
| 21 |
|
|
| 22 |
Thanks |
Please Note |
| 23 |
------ |
=========== |
| 24 |
The development team would like to thank all of those involved in |
It may take up to 48 hours for mirrors to finish syncing, |
| 25 |
this release. However, this distribution cannot continue with the |
during this time you may experience problems. |
| 26 |
current level of support. |
|
| 27 |
|
|
| 28 |
|
About SME Server |
| 29 |
Changes in this release |
================ |
| 30 |
======================= |
|
| 31 |
|
SME Server is the leading Linux distribution for small and medium |
| 32 |
Virus/Spam Scanning |
enterprises. SME Server is brought to you by SME Server, Inc. |
| 33 |
------------------- |
( http://www.smeserver.org/ ), a non-profit corporation that exists to |
| 34 |
- The FuzzyOCR spamassassin plugin has been enabled to detect image spam |
provide marketing and legal support for SME Server. |
| 35 |
- An X-Virus-Checked header is now added to mail when it is virus scanned |
|
| 36 |
- sa-update is now run daily to download the latest SpamAssassin rules |
SME Server is freely available under the GNU General Public License |
| 37 |
- The "freshclam: Update failed" mail now shows the recent history of |
and is only possible through the efforts of the SME Server community. |
| 38 |
the freshclam update process |
However, the availability and quality of SME Server is dependent on |
| 39 |
- The mail server now defers delivery if clamd is unavailable |
meeting our expenses, such as hosting costs, server hardware, etc. |
| 40 |
- Clamd and spamassassin have been updated to the latest releases |
|
| 41 |
|
As such, we ask for a small donation to offset costs and fund further |
| 42 |
Other mail system changes |
development. |
| 43 |
------------------------- |
|
| 44 |
- Attempts to mail to invalid users now show "Relaying denied" |
Please visit http://www.smeserver.org/donate/ to donate. |
| 45 |
instead of "Invalid recipient" |
|
| 46 |
- The qpsmtpd "terse" log plugin is now used, which results in a single |
|
| 47 |
line summarising each mail |
Thanks |
| 48 |
- The qplogsumm.pl tool has been added, which generates mail system |
====== |
| 49 |
plugin statistics in /var/log/qpsmtpd/state |
The development team would like to thank all of those involved in |
| 50 |
- The DNS blacklist plugin would occasionally return "False positive" |
this release. However, this distribution cannot continue with the |
| 51 |
results for multiple overlapping requests. This has been corrected. |
current level of support. More people are required to help with |
| 52 |
- It is now possible to tune the memory limit for qpsmtpd |
bug triage and verification testing. |
| 53 |
|
|
| 54 |
Disk redundancy |
|
| 55 |
--------------- |
This release contains many new features, all released updates for |
| 56 |
- The default disk layout has changed. A hot spare drive is |
SME Server 7.3 and fixes for many reported problems. Upgrades |
| 57 |
automatically created if the system has more than three drives. |
will be available by CD, the Software Installer and command line. |
| 58 |
A new boot option "nospare" has been added if you are certain that |
|
| 59 |
you do not want to create the spare. You should only use this option |
|
| 60 |
if you are aware of the consequences of running without a hot spare. |
Upgrades |
| 61 |
- Errors from add_drive_to_raid are now displayed in the console |
======== |
| 62 |
- Adding drives with invalid partition tables now works without a reboot |
- Always perform a backup prior to major system upgrades |
| 63 |
- Attempts to manually add RAID devices to systems without RAID shows an error |
- An upgrade will preserve the existing data |
| 64 |
|
|
| 65 |
Remote Access |
|
| 66 |
------------- |
Changes in this release |
| 67 |
- It is now possible to set the TCP port for SSH sessions from the |
======================= |
| 68 |
Remote Access panel. Note: Changing this port affects SSH, SFTP and SCP |
|
| 69 |
- Issues with SFTP remote access have been corrected |
Installer |
| 70 |
- Users can be assigned fixed IP addresses with PPTP |
--------- |
| 71 |
db accounts setprop fredfrog PPTPIP 192.168.1.5 |
- Fix grub label to keep consistent with the SME Server brand. |
| 72 |
signal-event remoteaccess-update |
|
| 73 |
- The PPTP link timeout has been increased to better handle unreliable links |
Mail system changes |
| 74 |
- PPTP has been upgraded to the latest release |
------------------- |
| 75 |
|
- Introduce a web interface to configure the pseudonym "visible" property |
| 76 |
Backups |
(internal|external) |
| 77 |
------- |
- New feature now allows a "catch all" situation where you have the ability |
| 78 |
- USB backup and restore has been added to the console |
to redirect "@virtualdomain1.com" to user "joe". |
| 79 |
- The tape reminder mail can now be sent to a user other than admin |
- Fix the "Ugly" log messages (Use of uninitialized value) when spam checking |
| 80 |
config setprop backup reminderEmail fredfrog |
results in 0 hits. |
| 81 |
- Backup to desktop no longer affects the BackupType set for tape backups |
- Emails sent to a null address like ""@domain without the username part |
| 82 |
- Restores of MySQL databases with binary 'blobs' up to 16MB are now |
are now rejected. |
| 83 |
supported by default (previous was 1MB). To change the setting: |
- qplogsumm is a optional feature that should be disabled by default. |
| 84 |
config setprop mysqld MaxAllowedPacket 20MB |
- A request that the log information is reduced with the default loglevel |
| 85 |
|
setting of 6 in qpsmtpd. |
| 86 |
Localisation |
- Support for sending mail to ISP via Secure SMTP |
| 87 |
------------ |
- Enable the auth plugin for local lan connections |
| 88 |
- Swedish translations have been added |
- Migrate (remove) "ordb.net" from the RBL lists to prevent mail bouncing. |
| 89 |
- The Spanish translations have been updated |
- Remove blackhole.securitysage.com as service no longer in use. |
| 90 |
- The online manual link now points to the manual in the chosen browser |
- Remove sbl-xbl.spamhaus.org from default lists and use a more improved |
| 91 |
language, if such a manual exists |
list in zen.spamhaus.org. |
| 92 |
- The en-au and en-nz browser languages are now supported |
|
| 93 |
|
Console |
| 94 |
Software Installer |
------- |
| 95 |
------------------ |
- Improved validation will check password on first enter password screen |
| 96 |
- The pacific.net.au mirror has been added as a mirror location. Many |
before verifying if too simple then asking to verify and proceed to |
| 97 |
thanks to all of our mirrors. |
configuration of server. |
| 98 |
- It is possible to limit visibility of updates to specific patterns or |
- Passwords should be validated for strength on first entry rather than |
| 99 |
repositories (see http://bugs.contribs.org/show_bug.cgi?id=2416 for details) |
waiting for the second confirmation entry. |
| 100 |
|
- The console should validate passwords using the common method, |
| 101 |
Webmail |
using esmith::util::validatePassword |
| 102 |
------- |
- The last item in the server console, "Exit from server console", is removed |
| 103 |
- Horde, imp, turbo and ingo have been updated to the latest versions |
as it is redundant. |
| 104 |
|
- Display frames in console server-manager. |
| 105 |
Console |
When browsing server-manager through console pressing 'H' goes to |
| 106 |
------- |
http://localhost/server-manager |
| 107 |
- Further validation has been added for the Gateway IP to ensure that |
|
| 108 |
it is on the same network as the External IP address |
Backups |
| 109 |
|
------- |
| 110 |
Server manager |
- Backups now use dar which enables a backup to consist of more than 2GB |
| 111 |
-------------- |
of data to a workstation in any of the following supported methods: |
| 112 |
- The new session-based login to the server-manager now works correctly |
smbfs, cifs or nfs. It also gives the option to set how many rotating |
| 113 |
on servers where port 80 is blocked |
backups are required and allows to split size of backup to DVD size. |
| 114 |
- The user-password panel now correctly enforces the user password policy |
- Removed 'restore from desktop' functionality |
| 115 |
- I-bay assignment when a name appears in Domains and Hostnames and Addresses |
- The error codes from tar are now logged, in line with flexbackup, and do not |
| 116 |
now gives preference to the domain setting |
cause a backup to fail. |
| 117 |
|
- A Iomeage USB REV-drive was by default mounted in /media as a cdrom device. |
| 118 |
UPS |
It is now automagically mounted as an usbdisk so it can be used as a backup |
| 119 |
--- |
device without manual intervention. |
| 120 |
- More template options are available to support more UPS models |
|
| 121 |
(see http://bugs.contribs.org/show_bug.cgi?id=2791 for details) |
Localisation |
| 122 |
|
------------ |
| 123 |
Other fixes and updates |
As part of a major update with translations we have added six new |
| 124 |
----------------------- |
languages and made it much easier to add other languages in the |
| 125 |
- Many changes have been made in preparation for migration to CentOS5 |
future. |
| 126 |
- We are now using the CentOS 4 php-pear modules instead of our own builds |
|
| 127 |
- runit was upgraded to the latest release |
We now support the following languages in the server-manager: Danish, |
| 128 |
- The runsvctrl command has been replaced by the much simpler 'sv' command |
Dutch, English, French, Greek, German, Hungarian, Indonesian, Italian, |
| 129 |
- The server-only firewall code now respects UDPPort configuration settings |
Portuguese, Slovenian, Spanish and Swedish. |
| 130 |
- The "use client driver" setting in smb.conf was corrected |
|
| 131 |
- An apostrophe in the last name caused aliases to be undeletable |
We have made major strides to assist the non-English community by |
| 132 |
- The hostnames description on the Hostnames and Addresses page was corrected |
using a tool called pootle. This is a web based translation tool that |
| 133 |
- Some log warnings from FormMagick were removed |
will allow new languages to be added and existing languages to be more |
| 134 |
- Unused openldap PID files are no longer created |
easily maintained. |
| 135 |
- Various minor text corrections to the console |
|
| 136 |
- The version number has been removed from the installer splash screen |
We have cleaned up a lot of the packages as a part of getting them to |
| 137 |
- It is no longer possible to quit form the initial configuration wizard |
work with pootle. Another big change as part of this upgrade is the |
| 138 |
before configuring the system |
switch from ISO-8859-1 (Latin) charset to UTF-8 (Universal) charset, |
| 139 |
- The radius templates have been reorganised to simplify extension |
this will allow us to support languages that don't use latin |
| 140 |
- The templates.metadata settings can now be provided by a directory of files |
characters (like Greek). |
| 141 |
- templates.metadata now provides an option to delete unwanted expansions |
|
| 142 |
- The /etc/pam.d/login fragments have been corrected |
Other fixes include updated translations for the existing languages. |
| 143 |
- The gauge console widget now allows the --clear action to be optional |
|
| 144 |
- The e-smith-service wrapper initscript filename match has been tightened |
Software Installer |
| 145 |
- Empty dnscache forwarder entries are ignored |
------------------ |
| 146 |
- The CD no longer says "DVD" in the media check screen |
- smeextras repository added, it is used for building the installer and ISO |
| 147 |
- Many old dungog contribs were incompatible, untested or replaced with |
- The yum-update event now includes the yum-import-keys action to allow |
| 148 |
SME Server 7.x features. These packages are now automatically removed |
users to update yum packages and configuration without rebooting, |
| 149 |
on upgrades |
which enables updating when there is a compatibility problem. |
| 150 |
|
- Correct yum-update-dbs action to adjust yum service properly. |
| 151 |
$Id: README.txt,v 1.16 2006/12/26 22:53:34 gordonr Exp $ |
- The BaseURL property has been removed for repos with mirrorlists. |
| 152 |
|
- The message "This system is up to date." is displayed if no updates are |
| 153 |
|
available. |
| 154 |
|
|
| 155 |
|
Webmail |
| 156 |
|
------- |
| 157 |
|
- Horde, imp, turbo and ingo have been updated to the latest versions |
| 158 |
|
- Support the ability to save user kronolith free/busy information to the LDAP |
| 159 |
|
database. |
| 160 |
|
- Servers with a custom template for 110AppRegistryHorde found webmail no |
| 161 |
|
longer worked. |
| 162 |
|
- The name of the webmail installation is now configurable. |
| 163 |
|
To use - config setprop horde Name xxxx ; signal-event email-update. |
| 164 |
|
|
| 165 |
|
Server manager |
| 166 |
|
-------------- |
| 167 |
|
- The name of the log file being viewed via the Server Manager 'View log |
| 168 |
|
files' is now displayed as the first line. |
| 169 |
|
- Disabling the daily update check in the server-manager did not stop the |
| 170 |
|
check4updates task sending mail to the server administrator. |
| 171 |
|
- Server-manager > printers > add printer - now advises users to avoid |
| 172 |
|
certain names and descriptions as this causes printer state to be incorrect. |
| 173 |
|
- Fix the Unknown heading in server-manager after an update. |
| 174 |
|
- Fix inconsistency within the navigation.xx files which no longer adds extra |
| 175 |
|
spaces and newlines in panel headers. |
| 176 |
|
- The Anti-virus (ClamAV) panel text was updated to remove the word 'entire' |
| 177 |
|
as this could be misleading. |
| 178 |
|
- Allow server-manager to successfully create a one character user account. |
| 179 |
|
- After adding a user and trying to set password via server-manager or |
| 180 |
|
user-password using the ";" sign you encountered a "white screen of |
| 181 |
|
death". This was due to the version of perl-Object-Persistence being used. |
| 182 |
|
- Remove the last 'pleasewait' message as it is no longer needed. |
| 183 |
|
- The button to add a new user in the server-manager was missing due to a |
| 184 |
|
problem with the free/busy code in usermanager causing the panel to exit. |
| 185 |
|
|
| 186 |
|
Other fixes and updates |
| 187 |
|
----------------------- |
| 188 |
|
- Updated Samba resolves various file sharing problems |
| 189 |
|
- The length of an Ibay name is now configurable via maxIbayNameLength |
| 190 |
|
- The Samba "unix extensions" are turned off for Mac compatibility |
| 191 |
|
- radiusd.conf allows support for additional authentication methods |
| 192 |
|
- Ability to modify pseudonyms with special characters |
| 193 |
|
- Prevent NameServer being set to current IP of SME Server |
| 194 |
|
- Allow support for server side includes for ibays when a directory is |
| 195 |
|
browsed. |
| 196 |
|
- Made mtu/mru settings configurable. |
| 197 |
|
- Increased the templating in php.ini |
| 198 |
|
- Fixed timezone detection issues for certain timezones during certificate |
| 199 |
|
generation |
| 200 |
|
- Added support for cciss RAID controller |
| 201 |
|
- Enable a new feature to allow admin to have own password not shared with |
| 202 |
|
root. |
| 203 |
|
- nut is now started after the network to avoid mails to the admin mailbox |
| 204 |
|
about lost communication. |
| 205 |
|
- e-smith-openssh contained unused template fragments were removed. |
| 206 |
|
- ibays can now be set as non-browsable (hidden), but accessible via their |
| 207 |
|
UNC. An ibay can be hidden by setting the Browsable property to disabled. |
| 208 |
|
- Suspicious string scanning (supscan) has been disabled due |
| 209 |
|
to being CPU and I/O intensive and prone to producing false positives.. |
| 210 |
|
- The audittool script has been updated to also identify modified events. |
| 211 |
|
- If a custom motd was used this could have been sent with the smolt data, now |
| 212 |
|
only the version from e-smith-release is sent. |
| 213 |
|
- The wrong URL was shown for the smolt profile, it has been updated to |
| 214 |
|
http://smolt.contribs.org/ |
| 215 |
|
- Patch djbdns around TCP bug: http://alkemio.org/dns_transmit-bug.html |
| 216 |
|
- Change license of djbdns to "Public Domain' - |
| 217 |
|
http://cr.yp.to/distributors.html |
| 218 |
|
- Do not display symlinks via ftp. |
| 219 |
|
- New LPRng where both inbuilt filters as well as smbprint filters work. |
| 220 |
|
- Resolved false positives that were being reported by rkhunter. |
| 221 |
|
- Move the clamav scan schedule to the correct crontab file for ease of use. |
| 222 |
|
- Use yum installonlyn plugin to keep only the last 5 kernels. |
| 223 |
|
- Change Wpad URL to match system domain to enable the Wpad feature. |
| 224 |
|
- dnscache will now ignore referrals when in forwardonly mode. |
| 225 |
|
- On servers with no ibays and less than two users the shadow-copy-rotate |
| 226 |
|
script would fail. |
| 227 |
|
- Correct the step-ticker to pool.ntp.org hosts. |
| 228 |
|
- Hide normally hidden files from view when using roaming profiles. |
| 229 |
|
- The dungog yum repository has been obsoleted as the packages are in |
| 230 |
|
smecontribs. |
| 231 |
|
- When a user is deleted from the server-manager his/her pseudonyms should not |
| 232 |
|
appear in any configuration file. |
| 233 |
|
|
| 234 |
|
|
| 235 |
|
General features |
| 236 |
|
================ |
| 237 |
|
- Based on CentOS 4.7 and all available updates |
| 238 |
|
|
| 239 |
|
|
| 240 |
|
There are a few differnces from previous releases <=7.2 |
| 241 |
|
======================================================= |
| 242 |
|
|
| 243 |
|
After installing for the very first time: |
| 244 |
|
----------------------------------------- |
| 245 |
|
- First night you may receive an email from cron about sa_updates. |
| 246 |
|
- First night you should receive a large email saying a bunch of |
| 247 |
|
groups/users were removed/added (rkhunter email notification). |
| 248 |
|
- Any time you change users/groups you will receive an email the next day |
| 249 |
|
about those changes (rkhunter email notification). |
| 250 |
|
|
| 251 |
|
$Id: README.txt,v 1.22 2008/10/15 22:56:59 wellsi Exp $ |
Parent Directory
| 
Revision Log
| 
Revision Graph
| 
Patch
