/[smeserver]/cdrom.image/sme8/README.txt

Diff of /cdrom.image/sme8/README.txt

Parent Directory | Revision Log | View Revision Graph Revision Graph | View Patch Patch

-Revision 1.1 by slords,
Sat Jun  6 23:51:54 2009 UTC
+Revision 1.32 by stephdl,
Sun Mar 22 08:37:02 2015 UTC
 Line 1
- SME Server 7.3 Release Notes
+ Koozali SME Server 8.2 Release Notes
- ============================
+ ====================================
- January 1 2008
- The SME Server development team is pleased to announce the release of
- SME Server 7.3. This release is based on CentOS 4.6 and all packages
+March 2015
- have been updated to the latest releases.
- All SME Server users should upgrade to this release.
+ The Koozali SME Server (SME Server) development team is pleased to announce
+ the release of SME Server 8.2 which is based on CentOS 5.11
- Bug reports and reports of potential bugs should be raised
- in the bug tracker (and only there, please);
-     http://bugs.contribs.org/
+ Bug reports and reports of potential bugs should be raised in the bug
+ tracker (and only there, please);
- About SME Server
- ================
- SME Server is the leading Linux distribution for small and medium
+     http://bugs.contribs.org/
- enterprises. SME Server is brought to you by SME Server, Inc.
- ( http://www.smeserver.org/ ), a non-profit corporation that exists to
- provide marketing and legal support for SME Server.
+ Download
- SME Server is freely available under the GNU General Public License
- and is only possible through the efforts of the SME Server community.
+ ========
- However, the availability and quality of SME Server is dependent on
- meeting our expenses, such as hosting costs, server hardware, etc.
- As such, we ask for a small donation to offset costs and fund further
+ You can download SME Server 8.2 from
- development.
+ http://mirror.contribs.org/smeserver/releases/8.2/iso/x86_64/
- Please visit http://www.smeserver.org/donate/ to donate.
+ or for other methods see http://wiki.contribs.org/SME_Server:Download
- Thanks
- ------
- The development team would like to thank all of those involved in
+ Please note it may take up to 48 hours for mirrors to finish syncing,
- this release. However, this distribution cannot continue with the
- current level of support. More people are required to help with
+ during this time you may experience problems.
- bug triage and verification testing.
- This release contains many new features, all released updates for
- SME Server 7.2 and fixes for many reported problems. Upgrades
- will be available by CD, the Software Installer and command line.
+ About SME Server
+ ================
- Upgrades
- ========
- - Always perform a backup prior to major system upgrades
+ SME Server is the leading Linux distribution for small and medium
- - An upgrade will preserve the existing data
+ enterprises. SME Server is brought to you by Koozali Foundation, Inc.,
+ a non-profit corporation that exists to provide marketing and legal support
- Changes in this release
- =======================
+ for SME Server.
- Installer Options
- -----------------
+ SME Server is freely available under the GNU General Public License and
- - Using "sme multipart" boot parameter now enables quotas on all LVM's
-   see bug 3651 on how to create your quota files
+ is only possible through the efforts of the SME Server community.
+ However, the availability and quality of SME Server is dependent on
- Other mail system changes
- -------------------------
+ meeting our expenses, such as hosting costs, server hardware, etc.
- - Support for disconnect option in rhsbl plugin
- - Support for disconnect immediately if dnsbl plugin rejects recipient
-   addresses
- - Newer version of ipsvd to resolve a few Thunderbird issues
+ As such, we ask for a donation to offset costs and fund further development.
- - Support for configurable timeouts which by default is set to two minutes
- Console
+ a) If you are a school, a church, a non-profit organisation or an individual
- -------
- - Now able to remove Corporate DNS setting
+ using SME Server for private purposes, we would appreciate you to contribute
- - Raid reconstruction now finishes after using "sme nolvm" passed at install
-   time
+ within your means toward the costs associated with hosting, maintenance and
+ development.
- Backups
- -------
- - Ability to use console restore with CD or DVD recordable media
- - Remove smbpasswd file prior to restore
+ b) If you are a company or an integrator and you are deploying SME Server in
+ the course of your work to generate revenue, we expect you to make a donation
- Localisation
- ------------
+ commensurate with the level of revenue you generate and the number of servers
- - The fr-fr browser language is now supported
- - Italian translation minor update
+ your have in the field. Please, help the project
- Software Installer
- ------------------
+ Please visit http://wiki.contribs.org/Donate to donate.
- - The voxteneo.com and fullnet.co.uk mirrors has been added as a mirror
-   location. Many thanks to all of our mirrors
- - Removed planetmirror mirror due to being unstable for a number of months
- - Added smecontribs repository to smeserver
+ Koozali Inc is happy to supply an invoice for any donations received,
+ simply email treasurer@koozali.org
- Webmail
- -------
- - Horde, imp, turbo and ingo have been updated to the latest versions
- Server manager
+ Thanks
- --------------
- - Updated wording in Server manager > proxy to be correct when running in
+ ======
-   serveronly mode
- - Now able to remove settings in the Corporate DNS panel
- - Make qpsmtpd/state visible in the view log files
- - Convert squid timestamp in view log files
+ The development team would like to thank all of those who have involved
- - Since we moved to session-based login changing admin password does no
-   longer invalidate access to server manager
+ themselves with this release.
- - Added support if you use port-forwarding with an external dynamic ip
-   address
- Other fixes and updates
- -----------------------
+ Notes
- - More changes have been made in preparation for migration to CentOS5
- - Various samba issues fixed with new samba 3.0.25b package
+ =====
- - Smartd is disabled by default but has built in templates to enable
- - Import of spamassassin keys are now processed correctly
- - Fixed various log noise issues
- - Allow root to be key based login only
+. CentOS 5 has dropped support for i586 and therefore SME Server 8.2
- - Increased dnscache forwarder cache size
- - Freshclam permissions now corrected
+    will not work on i586 hardware. [See bugzilla:2845]. i586 hardware
- - Unwanted symlinks in httpd log directory no longer appear
- - Added WPAD feature in DHCP
+    means processors before and including Intel Pentium, Pentium MMX;
- - Fixed various perl issues
- - Using long email address now stops regeneration email every day
+    AMD K5, K6, K6-II, K6-III and Via C3. i686 architecture processors
+    are Intel Pentium Pro, Pentium II, Pentium III; AMD Athlon,
- General features
- ================
+    Athlon XP and later.
- - Based on CentOS 4.6 and all available updates
+. Some notes on SME Server 8.2 including help on upgrades can be found at
- There are a few differnces from previous releases <=7.2
- ======================================================================
+    http://wiki.contribs.org/SME_Server_8
- After installing for the very first time:
- -----------------------------------------
+. Please note Upstream policy on Production Phase 3 for EL5. Only those
- - First night you should receive an email from cron about sa_updates.
- - First night you should receive a large email saying a bunch of
+    security updates deemed crucial are now being released upstream for EL5
-   groups/users were removed/added (rkhunter email notification).
- - Any time you change users/groups you will receive an email the next day
+    (so also for SME8) The Koozali team recommends that you start moving
-   about those changes (rkhunter email notification).
+    workloads from SME Server 8 to SME Server 9.
- Taking the upgrade path from a 7.x to 7.3
+    Planned EOL for CentOS 5 is Mar 31 2017
- -----------------------------------------
- - First night you may receive an email from cron about sa_updates
- - First night you may receive a email saying missing passwd/group files
-   (rkhunter email notification).
+. Please note it may take up to 48 hours for mirrors to finish syncing,
- $Id: README.txt,v 1.20 2008/01/01 17:18:13 slords Exp $
+    during this time you may experience problems.
+    You can download SME Server 8.2 from
+    http://mirror.contribs.org/smeserver/releases/8.2/iso/i386/
+    or for other methods see http://wiki.contribs.org/SME_Server_8
+ Changes in this release
+ =======================
+ Packages altered by Centos, Redhat, and Fedora-associated developers are
+ not included.
+ Backups
+ -------
+  - Add pkgconfig dar
+  - New Upstream Version dar
+  - Add requires nfs-utils
+  - The nfs service is neither started or allowed to start
+  - Workstation Backup, do not create folder in /
+ LDAP
+ ----
+  - Make pdbedit output independent from locale and timezone so it can be
+    parsed
+ Localisation
+ ------------
+  - apply locale 2015-03-14 patch from pootle
+  - apply locale 2014-12-25 patch from pootle
+  - apply locale 2014-03-08 patch from pootle
+ Mail Server
+ -----------
+  - Updated to ClamAV release 0.98.6
+  - Updated to release ClamAV 0.98.5
+  - Add BuildRequires for openssl-devel and libxml2-devel
+  - Remove Packager and Vendor from ClamAV spec file.
+  - Updates to release ClamAV 0.98.4.
+  - Updated to release ClamAV 0.98.3.
+  - Remove the patch e-smith-email-5.2.0-UEsDBBQDAAAIA-new-signature.patch
+  - Add new zip file signatures to default mailpatterns database :
+    UEsDBBQDAAAIA
+  - Add new zip file signatures to default mailpatterns database : ZIPVOSX &
+    ZIPV3
+  - Fix stunnel path
+  - Use stunnel instead of sslio to support TLS
+  - Modify whitelist_soft transaction to interact with dnsbl filter
+    by John Crisp <jcrisp@safeandsoundit.co.uk>
+  - Remove DENYSOFT on SPF softfail qpsmtpd
+  - Increase MemLimit to 700M for clamav-0.98
+  - Remove dnsbl.ahbl.org RBL List
+ Server manager
+ --------------
+  - Resync with upstream php53, which include
+     fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
+     xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668
+     core: fix integer overflow in unserialize() CVE-2014-3669
+     exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670
+  - Resync with upstream php53, which include
+     spl: fix use-after-free in ArrayIterator due to object
+     change during sorting. CVE-2014-4698
+     spl: fix use-after-free in SPL Iterators. CVE-2014-4670
+     gd: fix NULL pointer dereference in gdImageCreateFromXpm.
+     CVE-2014-2497
+     fileinfo: fix incomplete fix for CVE-2012-1571 in
+     cdf_read_property_info. CVE-2014-3587
+     core: fix incomplete fix for CVE-2014-4049 DNS TXT
+     record parsing. CVE-2014-3597
+  - Resync with upstream php53, which include
+     core: type confusion issue in phpinfo(). CVE-2014-4721
+     date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712
+     core: fix heap-based buffer overflow in DNS TXT record parsing.
+     CVE-2014-4049
+     core: unserialize() SPL ArrayObject / SPLObjectStorage type
+     confusion flaw. CVE-2014-3515
+     fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270
+     fileinfo: unrestricted recursion in handling of indirect type
+     rules. CVE-2014-1943
+     fileinfo: out of bounds read in CDF parser. CVE-2012-1571
+     fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479
+     fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480
+     fileinfo: cdf_unpack_summary_info() excessive looping
+     DoS. CVE-2014-0237
+     fileinfo: CDF property info parsing nelements infinite
+     loop. CVE-2014-0238
+ Web Server
+ ----------
+  - Disable SSLv3
+  - Revert CRIME mitigation patch, as it's not needed
+  - Mitigate CRIME, CVE-2012-4929
+ Other fixes and updates
+ -----------------------
+  - When quiting the console app with unsaved changes set the default selected
+    answer to NO
+  - Add a verification in the console of number of pptp clients against ip
+    allowed in dhcpd
+  - Add a verification in remoteaccess panel of number of pptp clients against
+    ip allowed in dhcpd
+  - Reset primary ibay default type
+  - Add a migrate fragment to sanitize the host comment for illegal characters
+    in the server-manager.
+    Sanitize existing hostname records, Add a validator for the comment in the
+ hostname field
+    Code done by Charlie Brady <charlieb-contribs-bugzilla@budge.apana.org.au>
+    and Huib <sme@artixdesign.com>
+  - Force SSL following ibays settings to the relevant domain
+  - Move mysql logging to multilog
+  - Allow ntp status queries from localhost.
+  - Avoid uninitialized variable warning from last update.
+  - Add ssh-autoblock for external interface - patch by Chris Maltby
+  - Update to upstream version 2.3.4, which fixes CVE-2012-3478 and
+    CVE-2012-2252
+  - Updated rsync-protocol.patch to fix CVE-2012-2251, and to apply on top of
+    the
+    CVE-2012-3478 and CVE-2012-2252 fixes.
+  - Updated makefile.patch to preserve RPM CFLAGS.
+  - Added command-line-error.patch (from Debian), correcting error message
+    generated when insecure command line option is used (CVE-2012-3478 fix
+    regression).
+  - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+  - Add patch for rsync3 compat (#485946)
+  - Update smeserver-release for beta1 of SME Server 8.2
+  - Set the check update frequency of smecontribs through the server-manager
+  - Add a default Yum db property for check4contribsupdates
+  - Added a check-update for the smecontribs repository
+ General features
+ ================
+ - Based on CentOS 5.11 and all available updates
+ Terry Fage
+ On behalf of the SME Server development team

 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
-Removed lines/characters
+Added lines/characters

admin@koozali.org	ViewVC Help
Powered by ViewVC 1.2.1