--- cdrom.image/sme8/README.txt 2015/03/27 08:26:14 1.33 +++ cdrom.image/sme8/README.txt 2015/06/25 14:28:43 1.35 @@ -1,10 +1,10 @@ -Koozali SME Server 8.2 Release Notes -==================================== +Koozali SME Server 8.2 RC1 Release Notes +========================================== -18 March 2015 +25 June 2015 The Koozali SME Server (SME Server) development team is pleased to announce -the release of SME Server 8.2 beta2 which is based on CentOS 5.11 +the release of SME Server 8.2 Release Candidate 1 which is based on CentOS 5.11 Bug reports and reports of potential bugs should be raised in the bug tracker (and only there, please); @@ -14,8 +14,8 @@ tracker (and only there, please); Download ======== -You can download SME Server 8.2 beta2 from -http://mirror.contribs.org/smeserver/releases/testing/8.2.beta2/ +You can download SME Server 8.2rc1 from +http://mirror.contribs.org/smeserver/releases/testing/8.2rc1/ or for other methods see http://wiki.contribs.org/SME_Server:Download Please note it may take up to 48 hours for mirrors to finish syncing, @@ -30,7 +30,6 @@ enterprises. SME Server is brought to yo a non-profit corporation that exists to provide marketing and legal support for SME Server. - SME Server is freely available under the GNU General Public License and is only possible through the efforts of the SME Server community. However, the availability and quality of SME Server is dependent on @@ -71,24 +70,20 @@ Notes are Intel Pentium Pro, Pentium II, Pentium III; AMD Athlon, Athlon XP and later. - 2. Some notes on SME Server 8.2 including help on upgrades can be found at http://wiki.contribs.org/SME_Server_8 - 3. Please note Upstream policy on Production Phase 3 for EL5. Only those security updates deemed crucial are now being released upstream for EL5 (so also for SME8) The Koozali team recommends that you start moving workloads from SME Server 8 to SME Server 9. Planned EOL for CentOS 5 is Mar 31 2017 - 4. Please note it may take up to 48 hours for mirrors to finish syncing, during this time you may experience problems. You can download SME Server 8.2 from - http://mirror.contribs.org/smeserver/releases/8.2/iso/i386/ - or for other methods see http://wiki.contribs.org/SME_Server_8 - + http://mirror.contribs.org/smeserver/releases/testing/8.2.rc1/ + Changes in this release ======================= @@ -96,10 +91,11 @@ Changes in this release Packages altered by Centos, Redhat, and Fedora-associated developers are not included. + Backups ------- - Add pkgconfig dar - - New Upstream Version dar + - New Upstream Version of dar - Add requires nfs-utils - The nfs service is neither started or allowed to start - Workstation Backup, do not create folder in / @@ -110,21 +106,20 @@ LDAP - Make pdbedit output independent from locale and timezone so it can be parsed - Localisation ------------ - apply locale 2015-03-14 patch from pootle - apply locale 2014-12-25 patch from pootle - apply locale 2014-03-08 patch from pootle - Mail Server ----------- - - Updated to ClamAV release 0.98.6 + - Updated to ClamAV release 0.98.7 - Add BuildRequires for openssl-devel and libxml2-devel - Remove Packager and Vendor from ClamAV spec file. - - Add new zip file signatures to default mailpatterns database : ZIPVOSX & - ZIPV3 + - Remove the patch e-smith-email-5.2.0-UEsDBBQDAAAIA-new-signature.patch + - Add new zip file signatures to default mailpatterns database : UEsDBBQDAAAIA + - Add new zip file signatures to default mailpatterns database : ZIPVOSX & ZIPV3 - Fix stunnel path - Use stunnel instead of sslio to support TLS - Modify whitelist_soft transaction to interact with dnsbl filter @@ -133,8 +128,7 @@ Mail Server - Increase MemLimit to 700M for clamav-0.98 - Remove dnsbl.ahbl.org RBL List - -PHP +Server manager -------------- - Resync with upstream php53, which include fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 @@ -173,21 +167,20 @@ PHP Web Server ---------- - Disable SSLv3 - + - Revert CRIME mitigation patch, as it's not needed + - Mitigate CRIME, CVE-2012-4929 Other fixes and updates ----------------------- + - Only fire the ip-change event when IP is assigned to WAN nic + (Code by Charlie Brady and John Crisp) - When quiting the console app with unsaved changes set the default selected answer to NO - - Add a verification in the console of number of pptp clients against ip - allowed in dhcpd - - Add a verification in remoteaccess panel of number of pptp clients against - ip allowed in dhcpd + - Add a verification in the console of number of pptp clients against ip allowed in dhcpd + - Add a verification in remoteaccess panel of number of pptp clients against ip allowed in dhcpd - Reset primary ibay default type - - Add a migrate fragment to sanitize the host comment for illegal characters - in the server-manager. - Sanitize existing hostname records, Add a validator for the comment in the - hostname field + - Add a migrate fragment to sanitize the host comment for illegal characters in the server-manager. + Sanitize existing hostname records, Add a validator for the comment in the hostname field Code done by Charlie Brady and Huib - Force SSL following ibays settings to the relevant domain @@ -195,10 +188,8 @@ Other fixes and updates - Allow ntp status queries from localhost. - Avoid uninitialized variable warning from last update. - Add ssh-autoblock for external interface - patch by Chris Maltby - - Update to upstream version 2.3.4, which fixes CVE-2012-3478 and - CVE-2012-2252 - - Updated rsync-protocol.patch to fix CVE-2012-2251, and to apply on top of - the + - Update to upstream version 2.3.4, which fixes CVE-2012-3478 and CVE-2012-2252 + - Updated rsync-protocol.patch to fix CVE-2012-2251, and to apply on top of the CVE-2012-3478 and CVE-2012-2252 fixes. - Updated makefile.patch to preserve RPM CFLAGS. - Added command-line-error.patch (from Debian), correcting error message @@ -217,6 +208,5 @@ General features - Based on CentOS 5.11 and all available updates - Terry Fage On behalf of the SME Server development team