http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz.sig Now that v2.0 is in beta stage I don't expect anything big to change anymore. The configuration and the APIs shouldn't change in non-backwards compatible ways. There are still bugs left to be fixed and some small features to be implemented, but I'd like to have people start testing it more. The biggest unimplemented "feature" is how to convert v1.x configuration easily/automatically to v2.0. Either the old config file should be translated to new one, or Dovecot should be able to read the old config file as-is. I think I like the translation better, so that people won't still be using v1.x configuration when v2.1 arrives and drops v1.x support. Largest changes since alpha3: - if some IP address is failing authentications, all auth attempts from the IP are delayed increasingly. a successful auth drops the delay. max delay is 15 seconds. this is enforced by auth process, so it works across different connections/processes/protocols. - lib-storage plugin API changed. processes handling multiple users now support different plugins for different users. - expire plugin's settings work a bit differently now: http://hg.dovecot.org/dovecot-2.0/rev/46691becc45e - post-login scripting works again, see http://dovecot.org/list/dovecot/2009-December/045139.html - Tons of fixes -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: This is a digitally signed message part Url : http://dovecot.org/pipermail/dovecot-news/attachments/20091213/6b6e7dc4/attachment.bin
On Mon, Dec 14, 2009 at 6:12 AM, Timo Sirainen <tss at iki.fi> wrote:> http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz > http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz.sig > >FreeBSD 6.4 (yes, it is old but I have been running the latest alpha on it): /usr/local/bin/bash ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I. -I../.. -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -I/usr/local/include -MT env-util.lo -MD -MP -MF .deps/env-util.Tpo -c -o env-util.lo env-util.c libtool: compile: gcc -DHAVE_CONFIG_H -I. -I../.. -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -I/usr/local/include -MT env-util.lo -MD -MP -MF .deps/env-util.Tpo -c env-util.c -fPIC -DPIC -o .libs/env-util.o env-util.c: In function `env_remove': env-util.c:28: error: void value not ignored as it ought to be *** Error code 1 Stop in /usr/home/wash/Tools/Dovecot/dovecot-2.0/dovecot-2.0.beta1/src/lib. *** Error code 1 Stop in /usr/home/wash/Tools/Dovecot/dovecot-2.0/dovecot-2.0.beta1/src/lib. *** Error code 1 Stop in /usr/home/wash/Tools/Dovecot/dovecot-2.0/dovecot-2.0.beta1/src. *** Error code 1 Stop in /usr/home/wash/Tools/Dovecot/dovecot-2.0/dovecot-2.0.beta1. *** Error code 1 Stop in /usr/home/wash/Tools/Dovecot/dovecot-2.0/dovecot-2.0.beta1. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ "If you have nothing good to say about someone, just shut up!." -- Lucky Dube
On Sun, 2009-12-13 at 22:12 -0500, Timo Sirainen wrote:> http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz > http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta1.tar.gz.sigTesting this in low volume very simple setup and seems to work fine after a day. Configuration is just plain pam/passwd, Maildirs and postfix using dovecot-lda and sasl auth. On an unrelated note: I also felt brave and installed dovecot-2.0-sieve from pigeonhole mercurial repository. It works fine. dovecot-2.0-managesieve does not even build though. I know this is not for you Timo, but here is the debug output anyway if anyone cares. ciao Luca Making all in managesieve make[3]: Entering directory `/usr/local/src/dovecot/dovecot-2.0-managesieve/src/managesieve' /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I. -I../.. -I/usr/local/src/dovecot/dovecot-2.0.beta1 -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-settings -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-dict -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-master -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-mail -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-index -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-storage -DMODULEDIR\""/usr/local/lib/dovecot"\" -I../../src/lib-managesieve -I../../src/lib-sievestorage -I/usr/local/src/dovecot/dovecot-2.0-sieve -I/usr/local/src/dovecot/dovecot-2.0-sieve/src/lib-sieve -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -Wstrict-aliasing=2 -MT managesieve-settings.lo -MD -MP -MF .deps/managesieve-settings.Tpo -c -o managesieve-settings.lo managesieve-settings.c gcc -DHAVE_CONFIG_H -I. -I../.. -I/usr/local/src/dovecot/dovecot-2.0.beta1 -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-settings -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-dict -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-master -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-mail -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-index -I/usr/local/src/dovecot/dovecot-2.0.beta1/src/lib-storage -DMODULEDIR\"/usr/local/lib/dovecot\" -I../../src/lib-managesieve -I../../src/lib-sievestorage -I/usr/local/src/dovecot/dovecot-2.0-sieve -I/usr/local/src/dovecot/dovecot-2.0-sieve/src/lib-sieve -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -Wstrict-aliasing=2 -MT managesieve-settings.lo -MD -MP -MF .deps/managesieve-settings.Tpo -c managesieve-settings.c -fPIC -DPIC -o .libs/managesieve-settings.o managesieve-settings.c:30: warning: implicit declaration of function 'MEMBER' managesieve-settings.c:30: error: 'name' undeclared here (not in a function) managesieve-settings.c:30: error: initializer element is not constant managesieve-settings.c:30: error: (near initialization for 'managesieve_settings_service_settings.name') managesieve-settings.c:30: error: expected '}' before string constant managesieve-settings.c:76: error: 'mail_debug' undeclared here (not in a function) managesieve-settings.c:76: error: called object 'MEMBER((struct setting_define *)&<erroneous-expression>)' is not a function managesieve-settings.c:76: error: initializer element is not constant managesieve-settings.c:76: error: (near initialization for 'managesieve_default_settings.mail_debug') managesieve-settings.c:77: error: 'verbose_proctitle' undeclared here (not in a function) managesieve-settings.c:77: error: called object 'MEMBER((struct setting_define *)&<erroneous-expression>)' is not a function managesieve-settings.c:77: error: initializer element is not constant managesieve-settings.c:77: error: (near initialization for 'managesieve_default_settings.verbose_proctitle') managesieve-settings.c:82: error: 'managesieve_max_line_length' undeclared here (not in a function) managesieve-settings.c:82: error: initializer element is not constant managesieve-settings.c:82: error: (near initialization for 'managesieve_default_settings.managesieve_max_line_length') managesieve-settings.c:82: error: expected '}' before numeric constant managesieve-settings.c:95: error: 'module_name' undeclared here (not in a function) managesieve-settings.c:95: error: initializer element is not constant managesieve-settings.c:95: error: (near initialization for 'managesieve_setting_parser_info.module_name') managesieve-settings.c:95: error: expected '}' before string constant make[3]: *** [managesieve-settings.lo] Error 1 make[3]: Leaving directory `/usr/local/src/dovecot/dovecot-2.0-managesieve/src/managesieve' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/usr/local/src/dovecot/dovecot-2.0-managesieve/src' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/usr/local/src/dovecot/dovecot-2.0-managesieve' make: *** [all] Error 2
On 14/12/2009 03:12, Timo Sirainen wrote:> Largest changes since alpha3: > > - if some IP address is failing authentications, all auth attempts from > the IP are delayed increasingly. a successful auth drops the delay. max > delay is 15 seconds. this is enforced by auth process, so it works > across different connections/processes/protocols. >I have a bunch of users behind several NATs (wifi hotspots, dialup gateways) and it would seem that if some muppet innocently sets up the wrong username/password then all the other users get significantly penalised? (I have even seen cases people have a go at configuring Outlook, it doesn't work and they just leave it misconfigured and sending incorrect passwords forever afterwards...) (This actually caught me out recently when a fairly large group of users got dropped due to pretty much just this type of rule implemented via an overeager Fail2ban rule... One user just kept trying to use the wrong password (innocently) and locked out the whole group of users behind the nat... Durr, quick fix of the whitelisted IPs, but we don't always spot the smaller gateways) Should it not only delay *incorrect* logins? ie each time you get it wrong then you get a penalty (which increases). Getting it right would login instantly and slightly decrease the "got it wrong" penalty (or perhaps it just time ages)? Seems that this is a good compromise and doesn't penalise good users, whilst only very slightly assisting attackers? (If they hacked a login then delaying them a few seconds from using it isn't all the helpful anyway...) My 2p.. Although possibly I misunderstood the changelog...? Ed W
Just in case someone thought about testing beta1 on a live system, here's a small update about some of the bad bugs found (and fixed in hg) so far: - LMTP server drops first 128k from mails with >128k mails - some plugins crash / don't work correctly I'll probably make a beta2 release on Sunday. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 197 bytes Desc: This is a digitally signed message part URL: <http://dovecot.org/pipermail/dovecot/attachments/20091216/b04d23f9/attachment-0002.bin>
On Thu, Dec 17, 2009 at 12:02 AM, Timo Sirainen <tss at iki.fi> wrote:> Just in case someone thought about testing beta1 on a live system, > here's a small update about some of the bad bugs found (and fixed in hg) > so far: > > - LMTP server drops first 128k from mails with >128k mails > - some plugins crash / don't work correctly > > I'll probably make a beta2 release on Sunday. >I am testing on a live system with a few hundred users, but I am lucky I don't use LMTP anyway. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ "If you have nothing good to say about someone, just shut up!." -- Lucky Dube