--- cdrom.image/sme8/README.txt 2013/11/11 04:22:55 1.23 +++ cdrom.image/sme8/README.txt 2014/02/20 04:29:58 1.29 @@ -1,10 +1,10 @@ -SME Server 8.1Beta3 Release Notes +SME Server 8.1 Release Candidate 1 Release Notes ================================= -12 November 2013 +23 February 2014 The SME Server development team is pleased to announce the release of -SME Server 8.1 Beta 3 which is based on CentOS 5.10 +SME Server 8.1 Release Candidate 1 which is based on CentOS 5.10 Bug reports and reports of potential bugs should be raised in the bug tracker (and only there, please); @@ -55,20 +55,42 @@ Notes are Intel Pentium Pro, Pentium II, Pentium III; AMD Athlon, Athlon XP and later. -2. Some notes on SME 8.1 including help on upgrades can be found at +2. Some notes on SME Server 8.1 including help on upgrades can be found at http://wiki.contribs.org/SME_Server_8 3. Please note it may take up to 48 hours for mirrors to finish syncing, during this time you may experience problems. - You can download SME8.1 from + You can download SME Server 8.1 from http://mirror.contribs.org/smeserver/releases/testing/8/iso/i386/ or for other methods see http://wiki.contribs.org/SME_Server_8 +Changes from Beta 4 +=================== + +There are no major changes. +Update with ca-bundle.crt from SME 9. + +Changes from Beta 3 +=================== + +Set sme-server as the default workgroup and domain name for +new installations. +Remove insecure SSL ciphers. +Due to SMTP servers not handling SMTP Auth well only present +one auth method at a time, in order, to NET::SMTP. +Allow webmail access to be selected for only the local network. +Provide the ability to force https per ibay. + Changes from Beta 2 =================== Update to CentOS 5.10 Update footer copyright and renew full copyright text. +Latest version of Dar, 2.4.11, for workstation backup. +Workstation Backup, fix selective restore by requesting array of results +from CGI.pm +Workstation Backup, new method to show files being restored is needed +when using dar 2.4 Changes from Beta 1 =================== @@ -91,6 +113,7 @@ not included. Backups ------- +- Latest version of Dar, 2.4.11, for workstation backup. - Workstation Backup allows the day of the week to be specified on which a full backup occurs. This now works correctly for all days of the week. - To increase reliability of backups to a Microsoft Vista drive, a one second @@ -105,10 +128,22 @@ Backups performed. - Add an option to use Wake on LAN before starting Workstation Backup. - Workstation Backup, report cifs mount errors. -- Workstation Backup, be compatible with destinations that include spaces. - Workstation Backup, remove temporary directory on success . - Workstation Backup, add a choice to delete old backup before or after -backup. + backup. +- Workstation Backup, ensure that the pathname passed to dar_manager is quoted + to allow backup destinations with spaces, eg some USB drives. +- Workstation Backup, count backup sets from 1 and delete the obsolete set0 + when it goes out of scope. +- Workstation Backup, do not fail backup for mtime/ctime mismatch +- Workstation Backup, fix selective restore by requesting array + of results from CGI.pm +- Workstation Backup, new method to show files being restored is needed + when using dar 2.4 +- Don't remove the apache group during restore. +- Workstation Backup, suppress ctime error message on incremental backups. +- Workstation Backup, selective restore of deleted files. + File Server ----------- @@ -139,6 +174,8 @@ File Server lines correctly in its configuration file. This caused FTP to fail when large numbers of local networks were configured. - Ensure Deny from all is on its own line in 15LimitLOGIN +- Update default ServerName in 30smbServerName, and change default + Workgroup and Domain to sme-server LDAP (Optional in SME 8.1, and considered experimental) @@ -160,18 +197,20 @@ Localisation Mail Server ----------- -- Updated to latest Antivirus, ClamAV, 0.98. +- Updated to latest Antivirus, ClamAV, 0.98.1 - Fetchmail multidrop mode follows TCPPort setting. - Avoid use of unitialised variables in smtp migrate fragments. - Allow smtp_auth_proxy to use port 587 with STARTTLS. -- Due to SMTP servers not handling SMTP Auth well enable the use of a - blacklist to remove the troublesome methods. +- Due to SMTP servers not handling SMTP Auth well only present + one auth method at a time, in order, to NET::SMTP and enable + the use of a blacklist to remove the troublesome methods. For example to remove CRAM-MD5: # db configuration setprop smtp-auth-proxy Blacklist CRAM-MD5 # sv t /service/smtp-auth-proxy More than one method can be removed: # db configuration setprop smtp-auth-proxy Blacklist "CRAM-MD5 DIGEST-MD5" # sv t /service/smtp-auth-proxy +- Handle exceptions during attempted SASL auth. Add more debug tracing. - imap-relocate-maildirs action was removed.It was no longer necessary and was sometimes very slow. - The soft memory limits for pop3 and pop3s were increased. Two new optional @@ -202,6 +241,11 @@ Mail Server - Load TextCat plugin if ok_languages is enabled. - Removed the databytes file from qpsmtpd config to honor the maximum message size settings. See http://wiki.contribs.org/Email#Set_max_email_size +- Include /usr/bin/refreshclam +- Remove workarounds for how qpsmtpd tags spam email. +- Remove insecure SSL ciphers. +- Add keepalive option for tcpsvd for imap and imaps services. +- Use stunnel-tls instead of sslio to wrap imaps service. Server manager -------------- @@ -214,16 +258,15 @@ Server manager now case-insensitive for %escapes. - Fix more uninitialized warnings in log (httpd/admin_error_log) from HTML.pm. - Remove log noise (httpd/admin-error-log) when accessing the Create Starter - Web panel in server-manager - + Web panel in server-manager. Webmail and Groupware --------------------- - - If IMAP is disabled in the server manager email panel, IMAP will now listen to the loopback interface to allow webmail to function. - Webmail no longer uses SSL over loopback interface. +- Allow webmail access to be selected for only the local network. Web Server @@ -234,6 +277,7 @@ Web Server will now have "magic_quotes Off" instead of fully removing it as the default is ON. - Change wording of Software Update button. +- Remove insecure SSL ciphers. Other fixes and updates @@ -256,11 +300,23 @@ Other fixes and updates running at any particular time. - Add python-hashlib so we can read newer repodata signatures. - Point mirrorlist to mirrorlist.contribs.org -- Increase memory limit for ntpd . +- Increase memory limit for ntpd. +- Add an audit for groups. +- Set sme-server as the default workgroup and domain name for + new installations. +- Provide the ability to force https per ibay. +- Prevent server being used in NTP amplification attacks. +- Modify template to allow Squid proxy https access to ports + other than 443,563 +- Add logcheck to help analyse errors in the log files. +- Refer to removable media not CDROM in console restore. +- Remove old images. +- Update with ca-bundle.crt from SME 9 + General features ================ - Based on CentOS 5.10 and all available updates -$Id: README.txt,v 1.22 2013/10/12 05:51:47 wellsi Exp $ +$Id: README.txt,v 1.28 2014/02/17 16:42:38 wellsi Exp $