/[smeserver]/cdrom.image/sme9/README.txt
ViewVC logotype

Diff of /cdrom.image/sme9/README.txt

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph | View Patch Patch

Revision 1.26 by unnilennium, Sun Apr 9 20:38:22 2017 UTC Revision 1.27 by unnilennium, Thu Apr 27 00:04:51 2017 UTC
# Line 1  Line 1 
1  Koozali SME Server 9.2 RC2 Release Notes  Koozali SME Server 9.2 Final Release Notes
2  ===========================================  ===========================================
3    
4  10 April 2017  26 April 2017
5    
6  The Koozali SME Server (SME Server) development team is pleased to announce  The Koozali SME Server (SME Server) development team is pleased to announce
7  the release of SME Server 9.2 RC2 which is based on CentOS 6.9  the release of SME Server 9.2 Final which is based on CentOS 6.9
8    
9  Bug reports and reports of potential bugs should be raised in the bug  Bug reports and reports of potential bugs should be raised in the bug
10  tracker (and only there, please);  tracker (and only there, please);
# Line 14  tracker (and only there, please); Line 14  tracker (and only there, please);
14  Download  Download
15  ========  ========
16    
17  You can download Koozali SME Server 9.2 RC2 from  You can download Koozali SME Server 9.2 Final from
18  http://mirror.contribs.org/smeserver/releases/testing/9.2.RC2/  http://mirror.contribs.org/smeserver/releases/9.2/
19  or for other methods see http://wiki.contribs.org/SME_Server:Download  or for other methods see http://wiki.contribs.org/SME_Server:Download
20    
21  Please note it may take up to 48 hours for mirrors to finish syncing,  Please note it may take up to 48 hours for mirrors to finish syncing,
# Line 67  http://wiki.contribs.org/Install_From_US Line 67  http://wiki.contribs.org/Install_From_US
67  Major changes in this release  Major changes in this release
68  =============================  =============================
69    
70  Major Changes in this release. Updated all to Koozali branding. Server Manager - Allow access to the server-manager without SSL from the loopback, Don't redirect to http when login in/out of the server-manager from localhost. File Server - added W10 support to SME Domain. LDAP - Hook into the new ssl-update event. Mail Server - Update qpsmtpd to release 0.99.6 (including multiple plugins and ability to ebale/disable same), Allow reading SSL_version from the tls_protocols config file (and turn TLSv1 back on by default), Modify whitelist_soft transaction to interact with dnsbl filter, Revert forcing TLSv1 patch as it breaks some inbound delivery, Remove karma rcpt handling, Check rua is defined before trying to parse it to prevent an error if a domain has a DMARC entry published with no rua, add support for the uribl plugin, add detailed spamassassin report headers. Web Server - Hook into the new ssl-update event, Set TLSv1 back to enabled (but keep a prop to disable it if needed). Other fixes and updates - Correctly display http URL to the server-manager in the console, Remove motd text from grub.cfg.  Major Changes in this release. Updated all to Koozali branding. Server Manager - Allow access to the server-manager without SSL from the loopback, Don't redirect to http when login in/out of the server-manager from localhost, Add Bug reporting template. File Server - added W10 support to SME Domain. LDAP - Hook into the new ssl-update event. Mail Server - Update qpsmtpd to release 0.99.6 (including multiple plugins and ability to ebale/disable same), Allow reading SSL_version from the tls_protocols config file (and turn TLSv1 back on by default), Modify whitelist_soft transaction to interact with dnsbl filter, Revert forcing TLSv1 patch as it breaks some inbound delivery, Remove karma rcpt handling, Check rua is defined before trying to parse it to prevent an error if a domain has a DMARC entry published with no rua, add support for the uribl plugin, add detailed spamassassin report headers. Web Server - Hook into the new ssl-update event, Set TLSv1 back to enabled (but keep a prop to disable it if needed). Other fixes and updates - Correctly display http URL to the server-manager in the console, Remove motd text from grub.cfg.
71    
72    
73  Detailed changes in this release  Detailed changes in this release
# Line 77  Only the changes since SME Server 9.1 ar Line 77  Only the changes since SME Server 9.1 ar
77    
78  Packages altered by Centos, Redhat, and Fedora-associated developers are not included.  Packages altered by Centos, Redhat, and Fedora-associated developers are not included.
79    
 Text With Bug Numbers  
80  Text for ISO Release Notes with Bug Numbers  Text for ISO Release Notes with Bug Numbers
81  The changelogs are written per package, and each package is assigned a group.  The changelogs are written per package, and each package is assigned a group.
82    
83  File Server  File Server
84    
85  e-smith-samba  e-smith-samba
86    - fix outlook error code 0x8004011c when setting up and email account on a win10 computer joined to a domain (with   roaming profiles) [SME: 10106]
87  - Create V6 profile dir (for Win10 roaming profiles) [SME: 9772]  - Create V6 profile dir (for Win10 roaming profiles) [SME: 9772]
88  proftpd  proftpd
89  - Additional tweak (to avoid null pointer dereference) for upstream bug 3868  - Additional tweak (to avoid null pointer dereference) for upstream bug 3868
90  - Fix for CVE-2016-3125: usage of 1024 bit DH key even with manual parameters see (http://bugs.proftpd.org/show_bug.cgi?id=4230)  - Fix for CVE-2016-3125: usage of 1024 bit DH key even with manual parameters
91  - Also fixed related issue where only first DH param in TLSDHParamFile is used, regardless of requested keylength (http://bugs.proftpd.org/show_bug.cgi?id=3868)    see (http://bugs.proftpd.org/show_bug.cgi?id=4230)
92  - Fix SUID/SGID directory permission setting regression introduced with fix for CVE-2012-6095 (#1297264)  - Also fixed related issue where only first DH param in TLSDHParamFile is used,
93      regardless of requested keylength (http://bugs.proftpd.org/show_bug.cgi?id=3868)
94    - Fix SUID/SGID directory permission setting regression introduced with fix
95      for CVE-2012-6095 (#1297264)
96  - Add support for specifying TLSv1.1 and TLSv1.2 (#1281493)  - Add support for specifying TLSv1.1 and TLSv1.2 (#1281493)
97    
98  LDAP  LDAP
# Line 102  e-smith-ldap Line 105  e-smith-ldap
105  Localisation  Localisation
106    
107  smeserver-locale  smeserver-locale
108  - apply locale 2017-03-03 patch from pootle [SME: 9592]  - apply locale 2017-03-16 patch from pootle [SME: 9592]
109  - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday, by assuming the date is correct and changing the weekday.  - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday,
110      by assuming the date is correct and changing the weekday.
111    
112  Mail Server  Mail Server
113    
# Line 112  clamav Line 116  clamav
116  - Add pcre-devel to BuildRequires [SME: 9151]  - Add pcre-devel to BuildRequires [SME: 9151]
117  e-smith-pop3  e-smith-pop3
118  - Hook into a new ssl-update event [SME: 9152]  - Hook into a new ssl-update event [SME: 9152]
119  - Allow setting SSL protocols from DB (and set TLSv1 back to enabled on a default install) [SME: 9175]  - Allow setting SSL protocols from DB (and set TLSv1 back to enabled
120      on a default install) [SME: 9175]
121  - Disable TLSv1 [SME: 9169]  - Disable TLSv1 [SME: 9169]
122  e-smith-qmail  e-smith-qmail
123  - Add possibility to exclude users or members of other groups from group email address [SME: 9540]  - Add possibility to exclude users or members of other groups from group
124      email address [SME: 9540]
125  qmail  qmail
126  - Consider literal <> as null sender [SME: 9883]  - Consider literal <> as null sender [SME: 9883]
127  qpsmtpd  qpsmtpd
128  - Removed Message-Id validation, as it rejects MS account validation email [SME: 9773]  - Removed Message-Id validation, as it rejects MS account validation email [SME: 9773]
129  - fix whitelist plugin to support helo with naughty rejecting at mail stage [SME: 10111]  - fix whitelist plugin to support helo with naughty rejecting at mail stage [SME: 10111]
130  - Validate domains found in uribl with Data::Validate::Domain [SME: 9499]  - Validate domains found in uribl with Data::Validate::Domain [SME: 9499]
131  - Use eval to fetch dkim policies, prevent fatal errors in case of DNS timeout [SME: 9504]  - Use eval to fetch dkim policies, prevent fatal errors in case of DNS
132      timeout [SME: 9504]
133  - Remove karma rcpt handling (buggy and doesn't make a lot of sense) [SME: 9502]  - Remove karma rcpt handling (buggy and doesn't make a lot of sense) [SME: 9502]
134  - Check rua is defined before trying to parse it to prevent an errorif a domain has a DMARC entry published with no rua [SME: 9507]  - Check rua is defined before trying to parse it to prevent an errorif a domain has a DMARC
135      entry published with no rua [SME: 9507]
136  - Fix error when RCPT TO is not valid [SME: 8861]  - Fix error when RCPT TO is not valid [SME: 8861]
137  - Fix karma logic by checking negative strikes [SME: 9502]  - Fix karma logic by checking negative strikes [SME: 9502]
138  - Backport a fix for karma_tool so it can find its database [SME: 9502]  - Backport a fix for karma_tool so it can find its database [SME: 9502]
139  - Update to 0.96 (with some backports from GIT head) [SME: 8861]  - Update to 0.96 (with some backports from GIT head) [SME: 8861]
140  - Allow reading SSL_version from the tls_protocols config file (and turn TLSv1 back on by default) [SME: 9162]  - Allow reading SSL_version from the tls_protocols config file (and turn TLSv1 back on by default)
141      [SME: 9162]
142  - Correctly log login attempts with nulls in login name [SME: 9167]  - Correctly log login attempts with nulls in login name [SME: 9167]
143  - Disable TLSv1 [SME: 9162]  - Disable TLSv1 [SME: 9162]
144  qpsmtpd-plugins  qpsmtpd-plugins
# Line 139  smeserver-clamav Line 148  smeserver-clamav
148  smeserver-dovecot  smeserver-dovecot
149  - Better default cipher suite, and honor global suite [SME: 10114]  - Better default cipher suite, and honor global suite [SME: 10114]
150  - Hook into the new ssl-update event [SME: 9152]  - Hook into the new ssl-update event [SME: 9152]
151  - Allow settings SSL protocols from DB (and set TLSv1 back to enabled on a default install) [SME: 9175]  - Allow settings SSL protocols from DB (and set TLSv1 back to enabled on a default install)
152      [SME: 9175]
153  - Disable TLSv1 [SME: 9175]  - Disable TLSv1 [SME: 9175]
154  smeserver-qpsmtpd  smeserver-qpsmtpd
155  - updated regex for SBList in smeserver-qpsmtpd-2.4.0-change_rbl_sbl_list_separator.patch to take into account list using a subdomain [SME: 10116]  - updated regex for SBList in smeserver-qpsmtpd-2.4.0-change_rbl_sbl_list_separator.patch to take into
156  - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday, by assuming the date is correct and changing the weekday.    account list using a subdomain [SME: 10116]
157  - Set the default helo policy to lenient [SME: 9767]  - Set the default helo policy to lenient [SME: 9767]
158  - Turn SPF and DMARC rejects off by default [SME: 9654]  - Turn SPF and DMARC rejects off by default [SME: 9654]
159  - Fix disabling DMARC reporting [SME: 9507]  - Fix disabling DMARC reporting [SME: 9507]
# Line 178  smeserver-spamassassin Line 188  smeserver-spamassassin
188  Server manager  Server manager
189    
190  e-smith-manager  e-smith-manager
191    - add a panel to ease reporting bugs [SME: 10238]
192    - fix typo in e-smith-manager-2.6.0-bz10187-emptyback.patch [SME: 10187]
193    - avoid internal server error if empty back parameter [SME: 10187]
194    - fix too short timeout in server-manager [SME: 10186]
195  - reapply patch 4  - reapply patch 4
196  - Update server-manager to Koozali branding [SME: 9678]  - Update server-manager to Koozali branding [SME: 9678]
197  - move fix to the right line to be effective [SME: 9920]  - move fix to the right line to be effective [SME: 9920]
198  - fix bad redirection parameter that might reveal session information to remote site temporarily reverting patch 4 for fast release of security fix please put it back at next release  [SME: 9920]  - fix bad redirection parameter that might reveal session information to remote site temporarily
199      reverting patch 4 for fast release of security fix please put it back at next release  [SME: 9920]
200  - Update server-manager to Koozali branding [SME: 9678]  - Update server-manager to Koozali branding [SME: 9678]
201  - e-smith-manager-2.6.0-Koozali_manager.patch better syntax for removing Indexes option for the manager [SME: 9589]  - e-smith-manager-2.6.0-Koozali_manager.patch better syntax for removing Indexes option for the manager [SME: 9589]
202  - Remove index option for manager's resources [SME: 9589]  - Remove index option for manager's resources [SME: 9589]
203  - fix 307 redirection to http when https is used [SME: 8825]  - fix 307 redirection to http when https is used [SME: 8825]
204  - update syntaxe for TKT Auth, bump 7 for typo, corrected typo in e-smith-manager-2.4.0_dont_rewrite_to_https_from_localhost.patch code from John H. Bennett III bennettj@johnbennettservices.com [SME: 9271]  - update syntaxe for TKT Auth, bump 7 for typo, corrected typo in e-smith-manager-2.4.0
205    - dont_rewrite_to_https_from_localhost.patch code from John H. Bennett III bennettj@johnbennettservices.com [SME: 9271]
206  - Really don't redirect to http when login in/out of the server-manager [SME: 9163]  - Really don't redirect to http when login in/out of the server-manager [SME: 9163]
207  - Don't redirect to http when login in/out of the server-manager from localhost [SME: 9163]  - Don't redirect to http when login in/out of the server-manager from localhost [SME: 9163]
208  - Allow access to the server-manager without SSL from the loopback [SME: 9163]  - Allow access to the server-manager without SSL from the loopback [SME: 9163]
# Line 200  php Line 216  php
216    
217  Webmail and Groupware  Webmail and Groupware
218    
219    
220  Web Server  Web Server
221    
222  e-smith-apache  e-smith-apache
# Line 211  Other fixes and updates Line 228  Other fixes and updates
228    
229  e-smith-base  e-smith-base
230  - Use ip route syntax to define routes to local network [SME: 9905]  - Use ip route syntax to define routes to local network [SME: 9905]
231  - Allow /32 masks on the external interface, in which case we don't check if the gateway is on the correct network) [SME: 9765]  - Allow /32 masks on the external interface, in which case we don't
232      check if the gateway is on the correct network) [SME: 9765]
233  - Add a column to display forwarding address [SME: 9174]  - Add a column to display forwarding address [SME: 9174]
234  - Correctly display http URL to the server-manager in the console [SME: 9163]  - Correctly display http URL to the server-manager in the console [SME: 9163]
235  - Fire ssl-update event when default cert is renewed [SME: 2257]  - Fire ssl-update event when default cert is renewed [SME: 2257]
236  - Expand /home/e-smith/ssl.pem/pem during ssl-update [SME: 9152]  - Expand /home/e-smith/ssl.pem/pem during ssl-update [SME: 9152]
237  e-smith-devtools  e-smith-devtools
238  - Quote filenames in genfilelist so filenames containing spaces are correctly handled [SME: 9758]  - Quote filenames in genfilelist so filenames containing spaces are correctly
239      handled [SME: 9758]
240  e-smith-grub  e-smith-grub
241  - Remove motd text from grub.cfg [SME: 9161]  - Remove motd text from grub.cfg [SME: 9161]
242  e-smith-hosts  e-smith-hosts
# Line 257  initscripts Line 276  initscripts
276  - init.d/halt: give init some time to reexecute  - init.d/halt: give init some time to reexecute
277  - network-scripts: DEVICE and HWADRR could be quoted by apostrophe  - network-scripts: DEVICE and HWADRR could be quoted by apostrophe
278  - ifup-wireless: fix calling of phy_wireless_device  - ifup-wireless: fix calling of phy_wireless_device
279  - rc.sysinit: apply quotas after system is relabeled  mod_auth_tkt  - rc.sysinit: apply quotas after system is relabeled
280    mod_auth_tkt
281  - backport to SME9 fix redirection when proxy ssl [SME: 8825]  - backport to SME9 fix redirection when proxy ssl [SME: 8825]
282  - update apxs path for SME9 (sbin)  - update apxs path for SME9 (sbin)
283    smeserver-release  smeserver-release
284  - Bump for beta1 release of 9.2 [SME: 9525]  - Bump for beta1 release of 9.2 [SME: 9525]
285    smeserver-support  smeserver-support
286  - updated sources with new pictures fix hover color [SME: 9678]  - updated sources with new pictures fix hover color [SME: 9678]
287  - Koozali branding of manager [SME: 9678]  - Koozali branding of manager [SME: 9678]
288  - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday,by assuming the date is correct and changing the weekday.  - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday,by assuming the date is correct and changing the weekday.
289  - Update copyright in server-manager footer [SME: 9266]  - Update copyright in server-manager footer [SME: 9266]
290  - Don't put motd content in /etc/redhat-release [SME: 9161]  - Don't put motd content in /etc/redhat-release [SME: 9161]
291    smeserver-yum  smeserver-yum
292  - added centos SCLo SIG gpg rpm signing key [SME: 10102]  - added centos SCLo SIG gpg rpm signing key [SME: 10102]
293    will allow to install SCL packages directly from smecontribs    will allow to install SCL packages directly from smecontribs
294    


Legend:
Removed lines/characters  
Changed lines/characters
  Added lines/characters

admin@koozali.org
ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed