| 1 |
SME Server 9.0 Beta 4 Release Notes |
SME Server 9.0 Release Notes |
| 2 |
=================================== |
============================ |
| 3 |
|
|
| 4 |
11th April 2014 |
21st June 2014 |
| 5 |
|
|
| 6 |
The SME Server development team is pleased to announce the release of |
The SME Server development team is pleased to announce the release of |
| 7 |
SME Server 9.0 Beta 4 which is based on CentOS 6.5. |
SME Server 9.0 which is based on CentOS 6.5. |
|
|
|
|
This is the final planned Beta of SME Server 9.0. |
|
|
This version has the latest openssl to avoid the heartbleed issue. |
|
| 8 |
|
|
| 9 |
Bug reports and reports of potential bugs should be raised in the bug |
Bug reports and reports of potential bugs should be raised in the bug |
| 10 |
tracker (and only there, please); |
tracker (and only there, please); |
| 11 |
|
|
| 12 |
http://bugs.contribs.org/ |
http://bugs.contribs.org/ |
| 13 |
|
|
|
|
|
| 14 |
Download |
Download |
| 15 |
======== |
======== |
| 16 |
|
|
| 17 |
You can download SME Server 9.0 Beta 4 from |
You can download SME Server 9.0 from |
| 18 |
http://mirror.contribs.org/smeserver/releases/testing/9.0beta4/iso/x86_64/ |
http://mirror.contribs.org/smeserver/releases/9/iso/x86_64/ |
| 19 |
or for other methods see http://wiki.contribs.org/SME_Server:Download |
or for other methods see http://wiki.contribs.org/SME_Server:Download |
| 20 |
|
|
| 21 |
Please note it may take up to 48 hours for mirrors to finish syncing, |
Please note it may take up to 48 hours for mirrors to finish syncing, |
| 22 |
during this time you may experience problems. |
during this time you may experience problems. |
| 23 |
|
|
| 57 |
The development team would like to thank all of those who have involved |
The development team would like to thank all of those who have involved |
| 58 |
themselves with this release. |
themselves with this release. |
| 59 |
|
|
| 60 |
|
The development team would like to give a special thanks, and dedicate the |
| 61 |
|
release of SME Server 9.0, to Chris Burnat. Chris has been a volunteer for |
| 62 |
|
many years and we want to appreciate his invaluable contributions to 9.0. |
| 63 |
|
|
| 64 |
Notes |
Notes |
| 65 |
===== |
===== |
| 66 |
|
|
| 67 |
This section will be updated in a following ISO |
In-place upgrades are not supported. It is necessary to backup and then restore. |
| 68 |
|
/boot partition is always RAID 1. |
| 69 |
|
The spare handling for RAID arrays is not implemented. |
|
Major changes in this release |
|
|
============================= |
|
|
|
|
|
The installer has been substantially modified in Beta 3. |
|
|
The remaining relevant patches from SME Server 8 have been ported. |
|
|
Note: The spare handling for RAID arrays is not implemented. |
|
|
Workstation Backup has had many minor changes, see below for details. |
|
| 70 |
|
|
| 71 |
A new feature has been introduced to block SSH login attempts, |
USB installs are now supported, see: |
| 72 |
http://wiki.contribs.org/AutoBlock |
http://wiki.contribs.org/Install_From_USB#SME_Server_9 |
|
It is set by default to reject SSH connections when there have been 3 |
|
|
or more requests in the previous 15 minutes. |
|
|
See the link above to tune the defaults, or to disable: |
|
|
db configuration setprop sshd AutoBlock enabled |
|
|
signal-event remoteaccess-update |
|
|
|
|
|
The installer has been substantially modified in Beta 2. |
|
|
It now creates the degraded RAID1 array with a single disk install. |
|
|
Some, but not all, install options are now supported. |
|
|
|
|
|
The base has been updated to CentOS 6.5 |
|
|
|
|
|
The network interface code has been reworked to remove all hardcoding |
|
|
relating to eth0 and eth1. |
|
| 73 |
|
|
| 74 |
Changes in this release |
Changes in this release |
| 75 |
======================= |
======================= |
| 76 |
|
|
| 77 |
This section will be further updated in a later release |
Only the changes since SME Server 9.0 Alpha 3 are listed, mainly |
| 78 |
Currently this only shows changes since SME Server 9.0 Alpha 3 and it is |
autogenerated from the changelogs. |
|
autogenerated from the changelogs. A more human readable version will be |
|
|
written. |
|
|
|
|
| 79 |
|
|
| 80 |
Packages altered by Centos, Redhat, and Fedora-associated developers are |
Packages altered by Centos, Redhat, and Fedora-associated developers are |
| 81 |
not included. |
not included. |
| 82 |
|
|
|
|
|
| 83 |
Backups |
Backups |
| 84 |
------- |
------- |
|
|
|
| 85 |
- Workstation Backup, do not exclude dar files by default |
- Workstation Backup, do not exclude dar files by default |
| 86 |
in line with console backup. |
in line with console backup. |
| 87 |
- Workstation Backup, fix selective restore by requesting array |
- Workstation Backup, fix selective restore by requesting array |
| 128 |
- Workstation Backup, remove the need for a temporary directory. |
- Workstation Backup, remove the need for a temporary directory. |
| 129 |
- Allow configuration of workstation backup if no removable disk present |
- Allow configuration of workstation backup if no removable disk present |
| 130 |
- Create simplified function for updating the DarCatalog |
- Create simplified function for updating the DarCatalog |
| 131 |
|
- Workstation Backup, do not create folder in / |
| 132 |
|
- Workstation Backup, suppress ctime error message on incremental backups |
| 133 |
|
|
| 134 |
|
|
| 135 |
File Server |
File Server |
| 196 |
- Remove insecure ciphers |
- Remove insecure ciphers |
| 197 |
- Remove workarounds for how qpsmtpd tags spam email |
- Remove workarounds for how qpsmtpd tags spam email |
| 198 |
- Fix whitespace in 10required_score |
- Fix whitespace in 10required_score |
| 199 |
|
- Update SBL and RBL Lists |
| 200 |
|
|
| 201 |
Server manager |
Server manager |
| 202 |
-------------- |
-------------- |
| 227 |
Other fixes and updates |
Other fixes and updates |
| 228 |
----------------------- |
----------------------- |
| 229 |
- Add ssh-autoblock for external interface. |
- Add ssh-autoblock for external interface. |
| 230 |
|
See: http://wiki.contribs.org/AutoBlock |
| 231 |
- Do not hardcode NIC names to eth0 and eth1. |
- Do not hardcode NIC names to eth0 and eth1. |
| 232 |
- Return nic names in probeAdapters so we can drop HWAddress. |
- Return nic names in probeAdapters so we can drop HWAddress. |
| 233 |
- Remove HWAddress prop from interfaces. |
- Remove HWAddress prop from interfaces. |
| 242 |
- Fix add_new_disk_to_raid1. |
- Fix add_new_disk_to_raid1. |
| 243 |
- Provide the ability to force https per ibay. |
- Provide the ability to force https per ibay. |
| 244 |
- Add an audit for groups. |
- Add an audit for groups. |
| 245 |
|
See: http://wiki.contribs.org/Audit_Tools#groups-users |
| 246 |
- Update the full names of users added in %pre. |
- Update the full names of users added in %pre. |
| 247 |
- Fix uid and gid to be the same for the users added in %pre. |
- Fix uid and gid to be the same for the users added in %pre. |
| 248 |
- Changed Prereq to Requires(pre) as Prereq is deprecated. |
- Changed Prereq to Requires(pre) as Prereq is deprecated. |
| 310 |
- Non-code changes to perform_restore.pm |
- Non-code changes to perform_restore.pm |
| 311 |
- Refer to removable media not CDROM in console restore |
- Refer to removable media not CDROM in console restore |
| 312 |
- Remove insecure SSL ciphers |
- Remove insecure SSL ciphers |
| 313 |
- Add more PHP options to ibays only by db commands |
- Add more PHP options to ibays only by db commands. |
| 314 |
|
See: http://wiki.contribs.org/DB_Variables_Configuration |
| 315 |
- Add SSLRequireSSL to ibays when SSL is set to enabled |
- Add SSLRequireSSL to ibays when SSL is set to enabled |
| 316 |
- Force https per ibay should not be the default for existing ibays |
- Force https per ibay should not be the default for existing ibays |
| 317 |
- Add textbox() to console.pm, getLicenseFile to util.pm |
- Add textbox() to console.pm, getLicenseFile to util.pm |
| 321 |
- Prevent server being used in NTP amplification attacks. |
- Prevent server being used in NTP amplification attacks. |
| 322 |
- Code by Jesper Holck |
- Code by Jesper Holck |
| 323 |
- Modify template to allow Squid proxy https access to ports other than |
- Modify template to allow Squid proxy https access to ports other than |
| 324 |
443,563 using db command |
443,563 using db command. |
| 325 |
- Codes by Ray Mitchell and Ian Wells |
See: http://wiki.contribs.org/DB_Variables_Configuration |
| 326 |
- Add -n 1 to the dmesg line in rc.sysinit to prevent unwanted messages |
- Add -n 1 to the dmesg line in rc.sysinit to prevent unwanted messages |
| 327 |
appearing on the console |
appearing on the console |
| 328 |
- Correct offest in runlevel7 patch to avoid .orig file |
- Correct offest in runlevel7 patch to avoid .orig file |
| 332 |
- Move support.pl from e-smith-base to smeserver-support |
- Move support.pl from e-smith-base to smeserver-support |
| 333 |
- The console license page now uses dialog's textbox. |
- The console license page now uses dialog's textbox. |
| 334 |
- Ensure console is run with taint checking. |
- Ensure console is run with taint checking. |
| 335 |
|
- Add a verification in the console of number of pptp clients against ip allowed in dhcpd |
| 336 |
|
- Add a verification in remoteaccess panel of number of pptp clients against ip allowed in dhcpd |
| 337 |
|
- Display a warning with the domain name before to remove it. |
| 338 |
|
- Move mysql logging to multilog |
| 339 |
|
- Remove the information_schema |
| 340 |
|
- Fix error with flush of xt_recent SSH connections. |
| 341 |
|
- Add option to tcpsvd to set socket keepalive. |
| 342 |
|
|
| 343 |
General features |
General features |
| 344 |
================ |
================ |
| 349 |
Ian Wells |
Ian Wells |
| 350 |
|
|
| 351 |
On behalf of the SME Server development team |
On behalf of the SME Server development team |
| 352 |
$Id: README.txt,v 1.9 2014/04/07 16:24:22 wellsi Exp $ |
$Id: README.txt,v 1.11 2014/05/08 05:56:12 wellsi Exp $ |
Parent Directory
| 
Revision Log
| 
Revision Graph
| 
Patch
