Topic: iRedMail-0.9.0-rc2 has been released
iRedMail-0.9.0-rc2 has been released, we need your help to test it before tagging it as stable release.
* Download it directly with this link: https://bitbucket.org/zhb/iredmail/down … c3.tar.bz2
* IMPORTANT NOTE: it's not recommended for production use. and we don't provide upgrade tutorial for beta/rc releases.
This release candidate supports 2 new distribution releases, and provides better RHEL/CentOS 7 support.
Most important improvement is iRedMail now integrates SOGo Groupware, works on RHEL/CentOS 6, Debian 7, Ubuntu 12.04 and 14.04.
Below are the full changes since iRedMail-0.9.0-rc1:
SOGo Groupware integration
SOGo is a groupware server with a focus on scalability and open standards. SOGo is released under the GNU GPL/LGPL v2 and above.
SOGo provides a rich AJAX-based Web interface and supports multiple native clients through the use of standard protocols such as CalDAV, CardDAV and GroupDAV, as well as Microsoft ActiveSync.
o SOGo Groupware is now available on below Linux distributions and releases: - RHEL/CentOS 6. SOGo project doesn't provide RPMs for CentOS 7 yet. - Debian 7. - Ubuntu 12.04 and 14.04. No official packages for 14.10 yet. - OpenBSD 5.6. o If you choose to install both Roundcube webmail and SOGo, Managesieve service is disabled in SOGo by default, because sieve rules generated by SOGo is not compatible with Roundcube webmail. but if you don't install Roundcube, managesieve will be enabled in SOGo by default, plus vacation and forwarding support. o User cannot change password with LDAP/PGSQL backend.
Supported new distribution releases:
Ubuntu 14.10 (utopic).
OpenBSD 5.6. Note: Only Nginx is used as web server, the new built-in httpd daemon (not Apache-1.3) is not used. OpenBSD 5.5 is not supported anymore.
Use SSHA512 as default password hash for all backends on Linux, and BCRYPT on FreeBSD and OpenBSD. Both Roundcube password plugin and iRedAdmin support them. Important notes:
if you want to login to Awstats/Cluebringer, you have to reset admin password to MD5 since Apache sql/ldap auth doesn't support SSHA512/BCRYPT. Maybe we should retire Awstats/Cluebringer webui in iRedMail-1.0. Let me know your opinion please.
If you're integrating some third-party applications which don't support SSHA512/BCRYPT, you have to reset existing passwords to the one it supported (e.g. SSHA, MD5).
Enable global sieve script in Dovecot to move spam to Junk folder by default.
Disable SSLv3 in Postfix, Dovecot, Apache, Nginx.
Add new index for SQL column 'msgs.spam_level' in 'amavisd' database.
Not detect domain backupmx status while querying Postfix per-domain transport.
Below packages are removed from iRedMail for security concern and their own package dependences:
If you need a sql management tool, please try http://adminer.org/ (web-based, a single PHP file) or other desktop applications instead.
For local LDAP management, you can try ldapvi (http://www.lichteblau.com/ldapvi/) in terminal. For remote LDAP management, you can try http://www.ldapadmin.org/ on Windows PC, or Apache Directory Studio on Windows/Linux/BSD/Mac: http://directory.apache.org/studio/ (Java application).
New iRedAPD release has some improvements too:
Detect alias domains while check mail list access policy (plugins/sql_alias_access_policy.py)
New plugin: plugins/amavisd_wblist.py. Used to reject blacklisted enders and bypass whitelisted senders in Amavisd per-recipient white/blacklists stored in SQL table 'amavisd.wblist'.
New plugin: plugins/amavisd_reject_message_size_limit.py, works with Postfix 'smtpd_end_of_data_restrictions'. Used to reject email if current message size exceeds per-recipient message_size_limit stored in Amavisd database (column `policy.message_size_limit`).
New iRedAdmin release (open source edition) has some improvements too:
* Improvements: + Able to generate 'CRAM-MD5' password hash with command `doveadm pw`. + Able to generate bcrypt password hash with Python module 'bcrypt' or 'py-bcrypt'. NOTE: It works on BSD systems, but not Linux. Since libc shpped in most Linux distributions doesn't bcrypt, Dovecot cannot verify bcrypt hash on Linux. * New tool scripts: - tools/upgrade_iredadmin.py. Used to upgrade iRedAdmin from old release. Works with both iRedAdmin open source edition and iRedAdmin-Pro. - tools/cleanup_amavisd_db.py. Used to Cleanup old records from Amavisd database. It's safe to execute it manually. - tools/sync_cluebringer_internal_domains.py. Sync mail domain names from SQL/LDAP to cluebringer policy group '%internal_domains'.