[courier-announce] New package: courier-authlib 0.52; new releases of Courier, Courier-IMAP, SqWebM
Brought to you by:
mrsam
From: Sam V. <mr...@co...> - 2005-01-02 00:00:01
|
Download: http://www.courier-mta.org/download.php After three months of testing, announcing the initial release of the Courier= Authentication Library. Copies of this library code used to exist in other tarballs: Courier, Courier-IMAP, and SqWebMail. Building and installing any of these packages would've automatically installed this authentication code. The authentication library is now a separate, standalone package. This authentication library must now be installed, separately, before upgrading or installing: Courier, Courier-IMAP, and SqWebMail. Which means that along with the new courier-authlib-0.52 package, new releases of Courier, Courier-IMAP, SqWebMail, and maildrop are available from the download page. See below for package-specific notes. -------------------------------------------------------------------------- Courier-authlib Additional changes in the authentication library, since the last major release of the Courier: =E2=80=A2 New home page: http://www.courier-mta.org/authlib/ =E2=80=A2 Courier recognized the 'disableshared' account option, turns off A= CLs and virtual shared folders =E2=80=A2 New 'DEFAULTOPTIONS' setting - default account options, unless ove= rriden in the account record =E2=80=A2 Fixed, and more efficient account enumeration for MySQL, LDAP, and= PostgreSQL =E2=80=A2 Improved defbugging messages, all around =E2=80=A2 userdb-test-cram-md5 - helper script for verifying CRAM authentica= tion =E2=80=A2 authldaplib.c: Use persistent connections for authenticated binds = when using LDAPv3. Use the LDAP_OPT_NETWORK_TIMEOUT setting, initialized from the configuration file, if provided (OpenLDAP). If using authenticated binds, a password change is done under the user's credentials, instead of the admin's. -------------------------------------------------------------------------- Courier 0.48 All authentication stuff in Courier has been taken out and placed into a separate package, the Courier authentication library. Before upgrading to this release, or if installing Courier for the first time, you must install the Courier authentication library from http://www.courier-mta.org/download.php#authlib Impact to this new, major, release of Courier: =E2=80=A2 The authstart set-user-id wrapper, that used to be necessary to im= plement authenticated ESMTP, has been eliminated. The courier-smtpauth RPM package has been obsoleted. =E2=80=A2 The authdaemon.passwd set-user-id wrapper, required to be able to = change passwords via webmail, has been replaced by the sqwebpasswd set-group-id wrapper, that uses only the minimum necessary privilege escalation to talk to the privileged socket, for the purpose of changing account passwords. =E2=80=A2 The courier-ldap, courier-mysql, and courier-pgsql RPM sub-package= s now only contain the webadmin screens that configure the LDAP, MySQL, or PostreSQL module in the courier-authlib package. =E2=80=A2 Major internal cleanup of Makefiles and configuration scripts. Lo= ts of ancient cruft removed. The other major change: =E2=80=A2 Courier's IMAP and POP3 server now includes an IMAP/POP3 aggregati= on proxy, like Perdition. See README.proxy for more information. Mail accounts can be distributed across a pool of servers. A separate server (or another pool of servers) accept connections from IMAP and POP3 clients, wait for the= login request, determines the machine that hosts the mail account, and connects to the IMAP/POP3 server on the right host, with the IMAP/POP3 client being no wiser. Any kind of an upper limit on the scalability of the IMAP/POP3 server, or how large of a mail store it can support, has been eliminated. The IMAP and POP3 server can still support CRAM authentication, even when proxying. Misc stuff: =E2=80=A2 webmail: text/html E-mails now properly transcoded into the browse= r's character set. =E2=80=A2 webmail now logs login failures =E2=80=A2 webmail: Replace 'nodsn' control file with 'wbnodsn' account optio= n (via the Courier Authentication Library). Also: replace 'nochangepass' control file with 'wbnochangepass' account option. Replace 'nochangingfrom' control= file with 'wbnochangingfrom' account option. =E2=80=A2 imap/webmail: disableshared account option turns off virtual share= d folders and access control list support (disabling the "key" icon in webmail). =E2=80=A2 IMAP/POP3 startup script now sets a default umask. -------------------------------------------------------------------------- Courier-IMAP 4.0 =E2=80=A2 All authentication stuff in Courier-IMAP has been removed. Courie= r-IMAP now requires the Courier authentication library to be installed first. Before upgrading to this release, or if installing Courier-IMAP for the first time, you need to install the Courier authentication library from http://www.courier-mta.org/download.php#authlib =E2=80=A2 Courier-IMAP now includes an IMAP/POP3 aggregation proxy, like Per= dition. See README.proxy for more information. Mail accounts can be distributed across a pool of servers. A separate server (or another pool of servers) accept connections from IMAP and POP3 clients, waits for the client's login request, looks the mail account's server, and connects to the IMAP/POP3 server on the right host, with the IMAP/POP3 client being no wiser. Any kind of an upper limit on the scalability of the IMAP/POP3 server, or how large of a mail store it can support, has been eliminated. The only limit to Courier-IMAP's horizontal scaling is the available bandwidth on the= LAN. The IMAP and POP3 server can still support CRAM authentication, even when proxying. -------------------------------------------------------------------------- SqWebMail 5.0 All authentication stuff in SqWebMail has been removed. SqWebMail now requires the Courier authentication library to be installed first. Before upgrading to this release, or if installing SqWebMail for the first time, you need to install the Courier authentication library from http://www.courier-mta.org/download.php#authlib =E2=80=A2 SqWebMail now has a different default installation directory, and = its layout has been changed to be closer aligned to standard software installation directories. SqWebMail's default installation prefix is now /usr/lib/sqwebmail. See INSTALL for upgrade instructions. =E2=80=A2 Replace 'nodsn' control file with 'wbnodsn' account option (via th= e Courier Authentication Library). Also: replace 'nochangepass' control file with 'wbnochangepass' account option. Replace 'nochangingfrom' control file= with 'wbnochangingfrom' account option. =E2=80=A2 The --disable-changepass configuration option has been replaced by= the "nochangepass" runtime configuration file. =E2=80=A2 Replies and forwards now keep [BLOB]s in subject lines. =E2=80=A2 The authdaemon.passwd set-user-id wrapper has been replaced by the= sqwebpasswd set-group-id wrapper, that uses only the minimum necessary privilege escalation to talk to the privileged socket, for the purpose of changing account passwords. =E2=80=A2 A bug where text/html E-mail content was not properly transcoded i= nto the browser's charset has been fixed =E2=80=A2 SqWebmail now logs login failures -------------------------------------------------------------------------- Maildrop 1.8 =E2=80=A2 maildrop's MySQL/LDAP modules removed, and replaced with support f= or the Courier Authentication Library, which implements MySQL, LDAP, and PostgreSQL= authentication support. |