Topic: iRedMail-0.9.6 has been released
iRedMail-0.9.6 stable release has been released.
Download it: http://www.iredmail.org/download.html
Upgrade tutorials are available here: http://www.iredmail.org/docs/iredmail.releases.html
We offer paid remote upgrade support if you don't want to get your hands dirty.
Below are changes since iRedMail-0.9.5-1:
Supports new distribution release
Ubuntu 16.10. WARNING: Ubuntu 16.10 will end of life in July 2017, Ubuntu 16.04 LTS edition is recommended for a production server.
OpenBSD 6.0. OpenBSD 5.9 is not supported anymore.
iRedMail Installer: Able to choose not to install web server and web applications.
Use rsyslog (requires version 8.x) instead of internal logging system for Dovecot on CentOS 7 and Ubuntu 16.04, 16.10.
rsyslog is default syslog program on CentOS, Debian and Ubuntu. With rsyslog, we're able to discard log messages which matches given regular expressions if it produces too fast. for example, HAProxy performs health check every few seconds for POP3/IMAP (and other) services, we can easily discard those health check related logs to save disk space.
Switch Awstats user authentication from SQL/LDAP to basic auth based on file, Awstats is now available for both Apache and Nginx.
Add HSTS header for Roundcube, iRedAdmin, SOGo.
Add sample config files to run Roundcube, iRedAdmin, SOGo as a subdomain.
Enable plugin `enigma` by default for PGP encryption. WARNING: The plugin uses gpg binary on the server and stores all keys (including private keys of the users) on the server. Encryption/decryption is done server-side. So, this plugin is for users that trust the server.
If you get error `Identity must have a user name defined` while first trying to generate gpg key, please add a name for your email account in Roundcube: `Settings -> Identities`.
SOGo: List all contacts by default in SOGo global address book.
FreeBSD: Switch from OpenSSL to LibreSSL by default.
LDAP backends: mail accounts (user, alias, list) are still active when domain is disabled.
Fix the HTTPROXY vulnerability in Apache and Nginx. Reference: https://httpoxy.org/
Not convert domain name and email address to lower cases while creating mail accounts with scripts tools/create_mail_user_*. Thanks Santosh Gupta <head.it _at_ satmatechnologies.com> for the report.
SOGo: Not correctly redirect access to https in Apache.
Not enable opportunistic TLS support for remote smtp clients.
Incorrect HELO restriction rule which causes Postfix rejects smtp session with HELO "[IP_ADDRESS]" (with squared brackets).
Not allow access to '/.well-known/'.
Not forward real client IP address to SOGo.
Config file for catch-all virtual host `default.conf` has been renamed to `00-default.conf`, to make sure it will be loaded before other virtual host config files.
Missing cron job used to clean up old Roundcube temporary files (bin/gc.sh).
Not set proper file owner (apache/nginx) and permission (0600) for config file of password plugin.
iRedAPD: Not add FreeBSD Jail IP address as trusted client. This causes mail delivery failure while sending to user under same domain. Thanks Erez Zabusky <erez_z _at_ cre8ip.com> for the report.
not enable uwsgi service.
not create symbol links for PHP programs.
Roundcube -> 1.2.3
iRedAPD -> 2.0
iRedAdmin -> 0.7
uwsgi -> 2.0.14 (OpenBSD only)
FreeBSD: php-7.0, mysql-5.7