Release Notes CBS 7.1.12
Collax Business Server
26.03.2020
Installation Notes
Update Instructions
To install this update please follow the following steps:
Procedure
- It is highly recommended to backup of all server data with the Collax backup system before proceeding. Check that the backup was successful before proceeding with the update (this can be done within the backup information email).
- In the administration interface go to System → System Operation → Software → System Update and press Get Package List. This will download the listed update packages. If successful the message Done! will be displayed on the screen.
- Click Get Packages to download the update packages.
- Click Install. This installs the update. The end of this process is indicated by the message Done!.
- A new kernel will now be installed. The system will reboot automatically after installing the update. An appropriate note will be shown if the update process is completed.
New in this Version
Collax Central: New features - Own content and notifications
Auf einem Central-Server kann mit den beiden Funktionen „Auslöser“ und „Benachrichtigung“ für ausgewählte Ereignisse auf Central-Clients eine Benachrichtigung versendet werden. Hierzu beobachtet ein Auslöser die einlaufenden Daten der Central-Clients und reagiert auf ein vorgegebenes Muster. Ist die Bedingung des Auslösers erfüllt und für ihn eine Benachrichtigung konfiguriert, werden die angegebenen E-Mail-Empfänger über das Ereignis informiert.
With this version, two new feature pairs are available for the additional module “Collax Central”.
Individual information can be collected on a client and displayed on the server in its own box.
An observer can be scheduled for events. Once a condition is met a trigger is generated. E-mail notifications can then be defined for the triggers.
E-Mail: New Version Webmail Roundcube 1.4.5 and mobile/tablet support
With this Collax software update the new version 1.4.5 of Roundcube is going to be installed. Support for mobile phones and tablets will also be improved. Please find Roundcube details here:
Kopano Groupware: WebApp 3.5.14
With this Collax software update the new version 3.5.14 of Kopano WebApp is going to be installed. Please find details here:
https://documentation.kopano.io
System Management: Linux Kernel 4.9.215
This update installs Linux kernel 4.9.215.
Misc: New Supportfeature - Post-Config
With this version a new support feature is available under the name Post-Config. With Post-Config changes to the configuration of the server can be made, which otherwise could not be carried out via the administration interface. This is the case if the behavior of the server in a different situation or a bug fix must be imported. If necessary, Collax Support will help you.
Issues Fixed in this Version
Security: Web Proxy
In the source code of the web proxy server security holes have been discovered. These holes will be closed within this Collax software update.
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
CVE-2019-12528 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517
Security: Point-to-Point Protocol (pppd) Daemon
In the source code of the PPP daemon, security holes have been discovered. These holes will be closed within this Collax software update.
Assigned Common Vulnerabilities and Exposures (CVE) number:
Security: Ghostcat
Security researchers have fixed critical gaps in the Apache Tomcat web server and container that has established itselve under the name “Ghostcat”. This will update Tomcat to version 9.0.31.
See here .
E-Mail: SIEVE and POP3 multidrop
Due to a missing entry in the configuration file of the software fetchmail, SIEVE rules such as vacation notes that were set up via the webmailer, were not sent to the correct sender. This is beeing fixed within this release.
VPN: pass MTU to ipsec-route
No MTU is set within the tunnel for incoming IPSec connections with a virtual IP address. This can lead to fragmented IPSec packets, which in turn can cause further problems. This update ensures that the value include into the connection establishment.
VPN: Duplicate IP addresses for ongoing connections
With long-established IPSec dial-up connections with a virtual IP address, it could occur that new connections receive the same IP address as the already connected IPSec client. This made the connection (more precisely: the ESP connection) of the previous client unusable. This will be corrected with the update.
Collax E-Mail Archive: Forwarding search results via a smart host
Due to a missing entry in the configuration file of the mail archive service, emails that were forwarded via the mail archive search and their recipients were not within your own mail domain, were not delivered correctly. The forwarding of search results via a smart host is delivered correctly within this release.
Notes
E-Mail: Avira AntiVir prior Version 7.1.6
From Avira, an automatic update of the core components of Avira has been carried out. In this context, a new dependency of the libraries has been added, the next time the virus scanner is not started can be resolved. The result is that the virus scanner does not work during a reboot or configuration change is restarted. For security reasons, emails will no longer be delivered. To solve the problem, please update your server to version 7.1.6. Note: As long as the virus scanner is not restarted, it works in its entirety.
E-Mail: Changed ruleset format of Spam Filter SpamAssassin
Please note: On March 1st, the SpamAssassin project will change the format of the ruleset updates. From this date on, only systems that have installed Update 7.1.10 will receive updates.
Kopano Groupware: Database conversion after update 7.1.6
The Kopano database is automatically converted for update 7.1.6 after the server is restarted. This process can, depending on the database size, take between half and several hours. In the dashboard this background task is visible as a job. The Kopano service is not available at the time of conversion. Before the update, make a complete backup of the data. When the conversion is complete, the Kopano service is restarted. Subsequently, further optimizations and schema changes are made. In this time the services Kopano and MySQL may not be stopped.