2.7 KiB
Upgrade iRedMail from 0.9.1 to 0.9.2
[TOC]
ChangeLog
We provide remote upgrade service, check the price and contact us.
- 2015-05-16: [All backends][RHEL/CentOS] Don't ban 'application/octet-stream, dat' files in Amavisd. It catches too many normal file types.
- 2015-05-16: [OPTIONAL][All backends] Update one Fail2ban filter regular expressio to help catch DoS attacks to SMTP service
General (All backends should apply these steps)
Update /etc/iredmail-release
with new iRedMail version number
iRedMail stores the release version in /etc/iredmail-release
after
installation, it's recommended to update this file after you upgraded iRedMail,
so that you can know which version of iRedMail you're running. For example:
# File: /etc/iredmail-release
0.9.2
[RHEL/CentOS 7] Update Cluebringer package to avoid database connection failure
Note: This is applicable to only RHEL/CentOS 7.
With old Cluebringer RPM package, Cluebringer starts before SQL database starts,
this causes Cluebringer cannot connect to SQL database, and all your Cluebringer
settings is not applied at all. Updating Cluebringer package to version
2.0.14-5
fixes this issue.
How to update package:
# yum clean metadata
# yum update cluebringer
# systemctl enable cbpolicyd
New package will remove old SysV script /etc/init.d/cbpolicyd
, and install
/usr/lib/systemd/system/cbpolicyd.service
for service control. You have to
manage it (start, stop, restart) with systemctl
command.
[RHEL/CentOS] Don't ban application/octet-stream, dat
file types in Amavisd
Note: This is applicable to only RHEL/CentOS.
- Find below lines in Amavisd config file
/etc/amavisd/amavisd.conf
:
$banned_namepath_re = new_RE(
# Unknown binary files.
[qr'M=application/(zip|rar|arc|arj|zoo|gz|bz2|octet-stream)(,|\t).*T=dat(,|\t)'xmi => 'DISCARD'],
...
);
- Remove
|octet-stream
in 3rd line. After modified, it's:
$banned_namepath_re = new_RE(
# Unknown binary files.
[qr'M=application/(zip|rar|arc|arj|zoo|gz|bz2)(,|\t).*T=dat(,|\t)'xmi => 'DISCARD'],
...
);
- Restart Amavisd service.
# service amavisd restart
[OPTIONAL] Update one Fail2ban filter regular expressio to help catch DoS attacks to SMTP service
- Open file
/etc/fail2ban/filters.d/postfix.iredmail.conf
or/usr/local/etc/fail2ban/filters.d/postfix.iredmail.conf
(on FreeBSD), find below line under[Definition]
section:
lost connection after AUTH from (.*)\[<HOST>\]
Update above line to below one:
lost connection after (AUTH|UNKNOWN|EHLO) from (.*)\[<HOST>\]
Restarting Fail2ban service is required.