CHANGELOG 3.44 KB
Newer Older
1
2
CHANGELOG
---------
Paul Cammish's avatar
Paul Cammish committed
3
4
5
6
7
* 2019-06-20 - Various fixes
  - Fixed missing sympl-ssl cron job, and made it run first.
  - Fixed broken SSL email hook.
  - Completed autoconfiguration for Dovecot/Exim SNI from Symbiosis.
  - Minor fixes 
8

Paul Cammish's avatar
Paul Cammish committed
9
* 2019-06-19 - Significantly improved default security for PHP
10
11
12
13
14
15
16
  - PHP is now restricted to public/, and has domain-specific tmp and
    sessions directories which are automatically created.
  - PHP is now disabled in a path that matches 'wp-content/uploads'
    significantly securing all WordPress sites.
  - Enables OSCP stapling by default. Disables HSTS by default.
  - zz-mass-hosting now configures all sites, not just SSL sites.
  - sympl-web-logger now only used for the zz-mass-hosting fallbacks.
Paul Cammish's avatar
Paul Cammish committed
17
18
  - PHP can block dangerous functions such as eval() and exec() which
    should not be needed typically. This can be enabled manually
19
20
21
    but effects all sites on the server.
  - new config files: config/disable-php-security and config/hsts.

22
23
24
25
* 2019-06-13 - Improved SQL backup script
  - New script with configurbility.
  - Run sympl-sqldump --help for info.

26
27
28
29
30
* 2019-06-13 - Improved hostname & webmail installs
  - Hostname misconfiguration will be repaired automatically
  - If a FQDN isn't set, one will be created automatically.
  - Webmail should no longer prompt for web server to configure

Paul Cammish's avatar
Paul Cammish committed
31
32
33
34
35
36
37
38
* 2019-06-12 - Changes to web stats
  - Stats are no longer generated by default.
  - If it exists, public/htdocs/stats will require HTTPS and a
    username/password
  - web stats can be enabled by creating config/stats
  - username password should be placed in config/stats-htpasswd in htpasswd 
    format

Paul Cammish's avatar
Paul Cammish committed
39
* 2019-06-11 - Merged the sympl-common package into sympl-core
Paul Cammish's avatar
Paul Cammish committed
40

Paul Cammish's avatar
Paul Cammish committed
41
* 2019-06-10 - Re-implimented password strength checking and tests
Paul Cammish's avatar
Paul Cammish committed
42

Paul Cammish's avatar
Paul Cammish committed
43
* 2019-06-10 - Significant changes to 'admin' user
Paul Cammish's avatar
Paul Cammish committed
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
  - Replaced 'admin' user with 'sympl' user, with the home directory at
    /home/sympl
  - sympl-mysql writes /home/sympl/.my.cnf and 'mysql_password' files on
    install
  - FTP users inherit uid/gid from target chroot directory, Umask is set
    read/write for group.
  - Improved filesystem security and added 'sympl-filesystem-security' to
    enforce it.
    - This prevents a compromised site from accessing configurations,
      mail, backups, etc.
    - It runs hourly, and enforces permissions on /srv, /var/backup and
      /etc/sympl
    - config/public-user and config/public-group specify user which owns
      the public directory
    - defaults to www-data:www-data
    - can be disabled with do-not-secure (domain) in config and /etc/sympl
      (global)
Paul Cammish's avatar
Paul Cammish committed
61
  - Removed symbiosis-skel/sympl-skel service as it's superflous
Paul Cammish's avatar
Paul Cammish committed
62
63
64
  - Added htop, nano, vim to recommends, along with basic configs for
    usability

Paul Cammish's avatar
Paul Cammish committed
65
66
67
68
69
70
71
72
* 2019-06-06 - First Public Build
  - Renamed packages and files, replaced references to Symbiosis with Sympl.
      bytemark-symbiosis -> sympl-core
      symbiosis-httpd -> sympl-web
      symbiosis-email -> sympl-mail
      symbiosis-ftpd -> sympl-ftp
      symbiosis-meta -> sympl-core
      symbiosis-* -> sympl-*
Paul Cammish's avatar
Paul Cammish committed
73
74
  - Renamed command-line tools, with new package names, added symlinks
    from old names.
Paul Cammish's avatar
Paul Cammish committed
75
76
77
78
79
  - /etc/symbiosis is now /etc/sympl, with symlink for compatibilty.
  - Folded old metapackages into relevant packages.
  - Dropped support for old Exchange Activesync.
  - Dropped support for XMPP.
  - A lot of tidying up.
Paul Cammish's avatar
Paul Cammish committed
80

Paul Cammish's avatar
Paul Cammish committed
81
* 2019-05-28 - Implemented autotest suite, updated docs.
Paul Cammish's avatar
Paul Cammish committed
82

Paul Cammish's avatar
Paul Cammish committed
83
* 2019-04-16 - Fixed Gitlab CI
Paul Cammish's avatar
Paul Cammish committed
84

Paul Cammish's avatar
Paul Cammish committed
85
* 2019-04-13 - Initial fork from GitHub