Setting up Outlook 2016/2013 with Kopano (Zarafa)

Zarafa is being renamed Kopano and Igaware customers will see the Zarafa name change in the coming weeks.

Outlook 2016 will be supported by Kopano via ActiveSync. This is a significant improvement:

Previous versions of Outlook required a MAPI connector to work with Zarafa. This was problematic in so far as Microsoft updates used to break the MAPI connector. With ActiveSync this won’t happen.

Older versions of Outlook can still use the Zarafa MAPI connector but updates to the plug-in will cease from April 2017. We recommend you update to Outlook 2016 or disable automatic updates for older Outlook versions so that the plug-in isn’t broken by any future updates from Microsoft.

Setting up Outlook 2016 on Windows

Before installing Outlook 2016 please check with Igaware support that your installation is running the latest Kopano server software.

Outlook works natively with Kopano via ActiveSync, accessing email directly, as opposed to via a third party plug-in. To enable collaborative features such as shared folders, global address book, calendars etc. there is the Kopano Outlook Extender (KOE) that extends the functions possible via ActiveSync. It won’t be broken by Microsoft updates as it uses ActiveSync.

To setup Outlook 2016 under Windows go to ‘Control Panel’ and select ‘Mail (Microsoft Outlook 2016)’. Create a new mail profile and setup a new email account selecting ‘Manual setup or additional server types’ and then select ‘Exchange ActiveSync’ and enter server credentials.

1 3

Now install the Kopano Outlook Extender (available from http://www.igaware.com/support/). Once installed you can launch Outlook and find a Kopano tab where you can take advantage of extended features with the Kopano server via ActiveSync.

4

Setup initial folder permissions using the Webapp.

For a full KOE manual follow this link: https://kb.kopano.io/display/WIKI/Setting+up+the+Kopano+OL+Extension

Posted in Kopano, Linux Small Business Server, Outlook, Zarafa | Leave a comment

Igaware Version 13.2.10 released #Igaware #linuxsbs

New in Version 13.2.10 [ Feb 23 2017]
======================================

* New Features and Improvements *

  • Updated the kernel to version 4.4.36-64
  • Installed fail2ban to block remote access from persistent “script kiddies”.
  • Updated the Zarafa system to the latest version of 7.2.5. This fixes a memory leak that slowed the server down over several weeks.
  • Re-compiled Zarafa 7.2 with new Gsoap, tcmalloc and vmime libraries. This removes a memory leak.
  • Major update for PHP software to v5.5 from v5.3
  • Added “Don’t allow insecure plain-text login for POP or IMAP” option for Zarafa IMAP/ POP.
  • Added a “RELAY:” option to the “SMTP Relay” page for the user entered domain list. The “Relay” host will be able to relay through the mail server. This will never normally be required.
  • Updated the tcpdump program ( network packet tracing) to the latest version.
  • Updated the libpcap network libraries.
  • Added a charset alias for glibc iconv. /usr/lib/gconv/gconv-modules – added “alias KS_C_5601-1987// EUC-KR//”. This is to handle Korean character sets in MIME Email.
  • Removed the libiconv libraries. Was causing confusion and is not required – support is in glibc.
  • Recompiled all binaries relying on the old libiconv libraries – rsync,
    clamav, lm_sensors, Zarafa.
  • Updated the hard disk untility program – hdparm – to the latest version.
  • Re-compiled gperf-tools ( tcmalloc) to create new .la ( libtool linker) files. To reference new compiler libstd++ file location
  • Added a “within subnet” sanity check to the WAN gateway address.
  • Updated the “checkin” web page with the real hardware product data, up-time and RAM information.
  • Updated the hardware sensors ( for temperature and fan speed). Installed IPMITOOLS for sensors.
  • Updated Zarafa Search with a new configuration file.
  • Modified “default email domain” in Email=> General to include forwarded domains.
  • Installed new self-signed SSL certificates for sendmail . You should use the letsencrypt certificates, if possible.
  • Updated the FTP server software.
  • Updated the IMAP/POP email server software.
  • Updated the Fing network scanning software to v3.0
  • Update the Z-Push active-sync software to v2.3
  • Updated the cifs-utils software used to mount remote SMB shares for backup.(mount.cifs)
  • The incoming SMTP mail server now also listens on port 587.
  • Updated the Nmap network scaning software to v7.
  • Updated System_Daemon php scripts
  • Changed default dhcp lease time to 3 days from 1 month
  • Updated the DHCP server software to the latest version.
  • Removed root user access for FTP server.

* Fixes *

  • Fixed ifup-aliases. Now ignores the main WAN ip and does not duplicate it.
  • Fixed Zarafa for Korean charset display problem.
  • Patched the GSOAP libraries with Zarafa patches ( memory leak) . Compiled as shared libraries. Looks like previously it was static.
  • Fixed some console system status health scripts. Now stores time of last fail. Reboot status now shows all reboots in history.
  • Brain-dead Zarafa servers issue a kill(0,) which sends a kill to all process group members. Kills init.d script and affects console_health. Added trap ”SIGTERM to init.d script for Zarafa.
  • Removed the loading of SIP VOIP helper modules on all machines. (rmmod siphelper modules in rsyncittemp)
  • Fixed the email alias user list for file share access. For ADS users use the sAMAccountName as the key for write-read access list.
  • Changed the sendmail MTA CA certificate bundle to ca-bundle ( STARTLS can now verify incoming SSL connections)
  • NOTE: ASMedia Technology Inc. ASM1083/1085 PCIe to PCI Bridge causes lost interrupt and poll mode for bad performance !!!
  • Make sure that the Realtek r8168 driver is installed if the card is a 8168
    chipset. The Linux default r8169 will not work at gigabit speeds !!
  • DHCP server config – don’t allow “/” in machine names.
  • Fixed display issues with “Lan Devices” pages. Did not remember interfaces
    option and defaulted back to LAN if LAN2 was selected.
  • Enabled LOOSE_PROVISIONING for Z-push ( active-sync). Android update requires it.
  • Permissions and owner of mail spool file are now checked and set for users.
  • Fixed a problem with Zarafa Out of Office.

New in Version 13.2.10-pre20 [ Jan 21 2017]
============================================

* New Features and Improvements *

  • Updated the “Powered Off” System Status monitor. All reboots are now recorded properly and available on the System Status and System Check-in Pages.
  • Added an option to the IPSec connection screen to allow the definition of the Source WAN IP address.
  • Updated the iSCSI SCST mods and progs to latest version to support kernel version 4.
  • Updated the hardware sensors config files.
  • All devices will update to the new Linux Kernel version on next reboot.
  • Installed the latest CA SSL certificates.
  • Added a menu option to create free SSL certificates from letsencrypt.org for the Igaware server. This will automatically create and install trusted SSL certificates for HTTP, IMAP/POP, SMTP STARTLS and Zarafa IMAP/POP. Menu option is at System => SSL Certificates. This is BETA.
  • Added Explicit Congestion Notification (ECN) for TCP network connections when requested by incoming connections.
  • Email Filtering – Blocked WordPress email exploits.
  • Installed the latest version of irqbalance. This distributes interrupt requests between processors.
  • The “Scan LAN Network” device discovery feature has been completely re-written. Five different methods are now used to discover devices on the network. New options are provided to deal with network discoveries. Give it a whirl.
  • The DHCP server now makes sure that static DHCP leases – those devices listed on the “LAN Devices” pageare not handed out to other devices. Previously, if a device did not respond to a PING echo request, then it’s lease could be handed out to another device. This can not happen now. Also, if a device is deleted from the “LAN Devices” page, the DHCP lease is removed from the lease file.

* Fixes *

  • The ISCSI subsystem was not shuting down on reboot.
  • IP alias now ignores the main WAN IP address and does not duplicate it.
  • Fixed a problem with email routing based on sender address( smarttable)
  • Fixed a problem with the Zarafa IMAP SSL certificates.
  • Fixed some bugs with the new letsencrypt.org SSL certificate install.
  • Fixed permission issues with SSL certificate install.
  • Several USB disks were not detected properly with the new kernel running. Loaded the UAS ( USB Attached storage) kernel module.
  • Installed a new Linux kernel version 4.4.36. This fixes a rare CPU lockup problem.
  • Small bug fixes with letsencrypt SSL certificates for sendmail.
  • Added fullchain SSL certificate to mail server.
  • Various small bug fixes.

New in Version 13.2.9 [ Nov 16 2016]
=====================================

* New Features and Improvements *

  • Added an option to change the destination port to 2525 for Email Recipient Address Verification. Microsoft Exchange > 2013 requires this. Please read the on-line help for this option to explain how to set up MS Exchange for this.
  • Updated the libboost libraries to v1.49 for Zarafa.
  • Loaded new CPU microcode for buggy Intel processors.
  • Updated identiy files for PCI and USB devices.
  • Installed a new version of cifs-utils. This allows mounting of remote Windows Shares. ( mount.cifs)

* Fixes *

  • The Anti-Virus daemon is now not reloaded if there have been no changes to the AV signature database. This caused problems if the database reload took too long.
  • Removed a race condition if the AV database was reloaded and the Mail Scanner detected that the AV server was not responding in time.
  • Removed the Samba winbind seperator from smb.conf. Did not work – removing the definition does work and gives ‘\’ as the seperator.
  • Fixed the username authentication for the SSL VPN server. ( patch has been temporarily removed)
  • Patched kernel to stop a spinlock problem. ( in af_unix.c)
  • Fixed a problem with the DHCP server config file. Machine names with a : character would stop the DHCP server. (dhcpd.conf. Removed : & ) from machine names)

New in Version 13.2.8 [ Oct 13 2016]
=====================================

* New Features and Improvements *

  • Added several new Anti-Spam rules to filter out the new Porn related Spam.
  • The Desktop vacation shortcut now authenticates with AD users.
  • Fileserver shares can now easily be moved to a different RAID disk pair. Previously, this was difficult to implement.
  • Installed the latest RAID disk untility – mdadm v3.4
  • The Zarafa Server memory cache is now perioicaly cleared down to improve performance.

* Fixes *

  • New Zarafa libraries caused the web server to stop responding.
  • Fixed location of netlogon and sysvol shares for the AD Server.
  • Squashed bugs in the Email “vacation” desktop shortcut.
  • Fixed the email vacation “reply to” address when the recipient user is an AD user.
  • Fixed the backup catalog listing. The /home/zarafa/ directory was being traversed for no reason.
Posted in Linux Small Business Server, System Updates | Leave a comment

Igaware Version 13.2.6 released #Igaware #linuxsbs

New in Version 13.2.6 [ Sep 28 2016]
=====================================

* New Features and Improvements *

  • Added MAX protocol option to NT4 PDC config. This allows Windows 10 machines to connect properly to the NT4 PDC
  • Added JAR file name to “block by filename” email filtering.
  • Improved Email Spam detection score.
  • Enabled the ZEN Spamhaus DNSBL list.
  • Added an option to the Advanced Anti-Spam page to enable the blocking of spoofed local domains. With this option enabled, incoming Internet Email is blocked if the sender address is spoofed to be from a local domain. This option is on by default. This should further reduce Spam levels.
  • SMB Leases are now enabled by default on new fileserver shares. It’s a good idea to enable this on existing shares as it greatly reduces network latency.
  • Upgrade to Zarafa 7.2 is now complete.
  • Installed the latest version of the Samba server. This is a major upgrade from v 4.1 to v 4.4. It improves support for Windows 10 clients both with RSAT config and file sharing.
  • Updated the Anti-Virus scanner to the latest version.

* Fixes *

  • Fixed a problem if the email delivery failed to the old MBX mailbox format. The error would be silently ignored.
  • Zarafa version 7.2 startup. Under some circumstances the server would not start properly. Modified startup scripts.
  • Reduced memory usage of the Email Scanner on low memory systems.
  • Fixed the Samba file sharing “Badlock” Vulnerability.
  • Fixed Zarafa CalDav support for Zarafa version 7.2
  • Changes in Windows Services settings could interfere with the operation of the Active Directory Server.
  • Many other small fixes.

New in Version 13.1.0 [ Aug 14 2016]
=====================================

* New Features and Improvements *

  • Installed Zarafa major version 7.2. This provides many improvements, such as the new Zarafa search indexing service.
  • Installed Zarafa Web Services ( Zarafa WS). This allows connection via Exchange Web Services for the Mac Mail client amongst others.
  • Re-compiled Python with 32 bit Unicode support. Required for the new Zarafa search indexing server.
  • Re-compiled SAMBA with the new python 32 bit Unicode.
  • Updated Z-push ( Active-Sync) to the latest version. Provides Outlook Active Sync support.
  • Changed MailScanner.conf to add headers to the top – for DKIM
  • The Web Cache/ proxy now uses shm shared memory. This improves performance.
  • Updated Zarafa to v 7.2.4.28. mem leaks
  • Zarafa-Python fully implemented now.
  • Upgraded Python to version 2.7.11
  • Renewed the SSL certificates for the Zarafa Server and Gateway.
  • Upgraded Swig to the newest version.
  • The ADS user “description” field is now shown in the old “comment” user field.

* Fixes *

  • ADS provsioning now copies all user values, such as Vacation message, email forwarding, etc.
  • Fixed bugs on UPS status page.
  • Fixed the Ipsec connection monitor. The ipsec up call now works. Squashed bug that stopped it working.
  • Fixed the Zarafa gateway startup when secure pop/imap ports are used by xinet.
  • High system load experienced with Fileserver Shadow Copy feature.
  • Fixed the Internet Speed Test for the new Python version.
  • Internet Speed Test now shows WAN PPP interfaces.
  • Fixed the Active SSL VPN display in Network Connections.
Posted in Linux Small Business Server, System Updates | Tagged , | Leave a comment

Igaware Version 13.0.4-btrfs released #Igaware #linuxsbs

New in Version 13.0.4-btrfs [ Apr 13 2016]
==========================================

* New Features and Improvements *

  • Added a Time Zone feature. The system Time Zone can now be set to reflect the customer’s geographical location.
  • Updated the Linux Kernel to support the new BTRFS file system.
  • Installed supporting software for the BTRFS file system.
  • Installed a new LZO compression library, for new file system compressing operations.
  • Updated several Linux utility programs.
  • Removed the MultiViews option from the Web Server configuration. This speeds up web server requests.

* Fixes *

  • Network aliases script fixed for use with new glibc libraries.
  • ifup-aliases script fixed for new glibc libraries.
  • Fixed a bug in the network down script for PPP connections with IPSec VPN. The PPP connection didn’t always come back up.
  • Fixed a bug with SSL VPN and multiple LAN networks. The network routes were not pushed to the client device.

New in Version 13.0.3-glibc [ Mar 21 2016]
==========================================

* New Features and Improvements *

  • Updated the Anti-Virus engine to catch zero hour viruses.
  • A major update of the GLIBC libraries has been released to fix several security vulnerabilities that have been identified, namely; CVE 2015-7547 ( Buffer overflow) and CVE-2015-0235 ( GHOST vulnerability)

* Fixes *

  • After the recent security updates, Outlook users would sometimes be refused connection to the Zarafa server. This has been fixed.
  • PPTP VPN. A bug with a recent BASH update prevented some users from accessing devices on the server’s LAN.
Posted in System Updates | Tagged , | Leave a comment

Igaware Version 12.1.8-ADS released #Igaware #linuxsbs

New in Version 12.1.8-ADS [ Feb 21 2016]
========================================

* New Features and Improvements *

  • Updated the Web proxy software to the latest version. This provides performance gains and improvements in URL filtering of HTTPS sites.
  • Updated the pattern matching software.
  • Added a new email filering engine to detect and block the newest zero-hour Email Spam attacks.

* Fixes *

  • Fixed a possible bypass of Web URL filtering when using the Safari browser.

New in Version 12.1.7-ADS [ Feb 16 2016]
========================================

* New Features and Improvements *

  • Updated the Anti-Virus scanner to check for zero-day macros in documents.
  • Added a Network Traffic Analyser. This listens on any network interface and displays a table of current bandwidth usage by pairs of hosts, showing any network hogs. The analyser can be run concurrently on more than one Interface, to show a view of traffic on the LAN and the WAN interface at the same time.
  • Added more choices to the options for the File server Shadow Copy feature.
  • Updated the network traffic monitor with the latest software version.
  • Updated the caching, recursive DNS server software to the latest version.
  • Added an option to the General Email configuration to enable/disable TLS encryption on incoming SMTP connections. Previously, only the client ( outgoing) TLS encryption was affected.
  • Increased the performance of the Web Proxy server. Asynchronous disk access is now used, reducing contention.
  • Several improvements to the Web Configuration Interface.
  • Modified Horde IMAP groupware configuration to send emails to the SMTP network port.

* Fixes *

  • During first-time provisioning of the Active Directory Server, the DNS server is now changed to the internal BIND DNS server. Previously, the AD Server would not provision properly.
  • Created a new, default, self-signed RSA certificate for the Web Server.
  • Many other bugs squashed.

New in Version 12.1.6-ADS [ Jan 29 2016]
========================================

* New Features and Improvements *

  • Security – Installed RSA certificates for the IMAP and POP email servers.
  • Security – Updated the SASL authentication libraries to the latest version.
  • IPSec – Added a connection monitor for IPSec connections. If a ping to a remote IP address fails, then, the IPSec SA is restarted for that connection.
  • IPSec – New program and kernel module installed.
  • IPSec – Allow insecure DH group 1 and single DES for some Vigor routers and others.
  • Web proxy – Updated the server software and re-configured it to speed-up traffic flow.
  • Mail Server – Allow the Igaware mail server to transmit data to SMTP relay servers in 7 bit mode.

* Fixes *

  • Local Master Browser tick box for standalone file server server – the setting wasn’t saved.
  • Networking – Interface script fixed. This now calls ipsec restart correctly. Previously ipsec down was not called and blocked the shutdown of the ppp device.
  • Email server – Force file ownership permissions for the SMFS recipient verification server.
  • Email Server – Relaying of unlnown local users to an SMTP server was not working correctly when the server was specified with a domain name.
  • Fixed several bugs in the Web configuration interface.

New in Version 12.1.5-ADS [ Jan 11 2016]
========================================

* New Features and Improvements *

  • Security – Plain text passwords (LOGIN/PLAIN auth mech) are disabled for eMail server SMTP authentication.
  • Web Interface – Added an option to allow LOGIN/PLAIN clear-text passwords for SMTP authentication.
  • Security – Added X-FRAME-OPTIONS to Web server response headers.
  • Security – Prevent possiblity of XSS ( cross-site scripting) in Web
    configuration interface.

— New in Version 12.1.2-ADS [ Dec 22 2015]
========================================

  • Anti-Spam – added some rules to get rid of current invoice spam.
  • Securtiy – Added CRAM authentication for IMAP – cram-md5.pwd
  • Security – Installed RSA certs for IMAP server. This allows secure TLS connections.
  • Security – Added an option to block email that contains Microsoft OLE documents with Macros to the Anti-Virus page – off by default.
  • Security – Secured incoming IMAP and POP3 connections with CRAM encryption during login and TLS for the connection.
  • Security – Secured incoming IMAP and POP3 connections with TLS encryption.
  • Many other small improvements.

* Fixes *

  • Backup – When mounting a cifs share as a backup destination, the username is tried both with and without the workgroup name. Newer kernel require the WORKGROUP/user format.
  • Routing – Fixed some routing tables that had multiple rule entries – table-iproute now deletes a rule before adding it again.
  • Backup – Exclude the $RECYCLE.BIN folder when backuping up ISCSI sources.
  • Networking – Allow DH group 1 for IPSEC VPN.
  • DHCP Server – Set the zone domain properly from the correct LAN domain, if we are using the BIND DNS Server.
  • Web Interface – Don’t cache the image of the Email Traffic graph, so that the new one displays correctly.
Posted in System Updates | Tagged , | Leave a comment

Igaware Version 12.0.1 released #Igaware #linuxsbs

* New Features and Improvements *

  • Active Directory Server support – A major re-write of the Samba software and User/ Group code to provide full Active Directory Server support. The Igaware box can now act as a Microsoft Active Directory server. Users are administered using Microsoft’s RSAT tools from a Windows workstation.
  • Zarafa server – The Zarafa server can now integrate fully to an Active Directory server. This is true if the Igaware box is acting as an ADS DC or as an ADS Member.
  • Active Directory Server – Added NTP time syncronisation to AD DC (signd ) for Windows client machines.
  • Installed new g++ run-time libraries.
  • Squid web cache/proxy – Installed Squid 3.2.
  • Apache web server – Installed latest version of apache web server.
  • Apache web server – Changed high protocol option to block TLSv1 & SSLv3
  • Samba server – Updated Samba to version 4.1.20.
  • Hylafax – changed modem ttyline to ttyUSB0 for usb modem type.
  • Web Interface – Allow a user to have a blank surname in config interface
  • Zarafa Search Indexer – When the Zarafa Search Indexer is disabled the /var/lib/zarafa/index/ directory is cleared.
  • Samba4 – Added the GNUTLS libraries.
  • Web Interface – The Web page title is now hidden, until logged in.
  • Security – Installed the latest version of OpenSSL. This allows high security protocols with apache – tlsv1.1
  • OpenVPN – Added health check for openVPN SSL server.
  • Web Interface – Windows Services menu option finally removed. Replaced with Active Directory.
  • Many other improvements.

    * Fixes *

  • DNS BIND server – Fixed the named configs for nultiple LAN’s with same domain name. Also fixed out of band domain zone files.
  • Sendmail  – FIXED the sendmail configuration when a WAN interface is down and has no IP address.
  • Backup – FIXED the zarafa backup to remove the zarafa-dump.new destination directory ( if it already exists)
  • System Status – Fixed a problem with Web Visits statistics – printing errors
  • Network Routing – Fixed a long running problem with iproute tables. The commit changes table ( in ifup-post) wasn’t run when the IP address of an interface was changed. This meant that the interface disapeared from the WAN ip route tables.
  • Web Interface – Added “cache: false” to ajax calls to stop Internet Explorer caching ajax calls.
  • ISCSI Server – Change ISCSI file pre-allocation – if fallocate fails then try dd.
  • File Server – When creating new share – replace space with underscore for $share
  • Mail Delivery – Fixed a problem setting file ownership for the vacation program ( . instead of :)
  • DBS BIND Server – Fixed a problem when bind_on = false and emtpy named.master zone files were written.
  • Networking – Fixed a long standing bug with networking multi-homed WAN setups. If the ppp link went down it would delete the default route.
  • Networking – Fixed the failover_mw health script. Wasn’t checking failover_mw daemon.
  • Squashed a variety of other bugs.
Posted in Linux Small Business Server, System Updates | Tagged , , | Leave a comment

Igaware Version 11.0.2 released #Igaware #linuxsbs

New in Version 11.0.2 [Wed Sep 23 2015] =========================================
* New Features and Improvements *

  • Added hard-coded DNS SRV records to BIND named zone file.
  • Updated System Health for named daemon ( in dnrd)
  • Updated mysqluner.pl – MailScanner
  • Added a list of ip route tables ( eth1, etc) to Status , network routes page.
  • Changed ref to Zarafa Outlook client download.
  • Modified my.cnf file creation – now merges local file
  • Modified Zarafa server.cfg file creation – now merges local file
  • Changing the nameservers now reloads and clears cache for dnsmasq
  • mysql and my.cnf now uses innodb plugin
  • Changed min attachment size to 0 in Mailscanner*.template
  • Added IgawareKAM to rsync schedule to xfer KAM.cf

* Fixes *

  • Changed hosts file – replace host spaces with –
  • Added drop user ”@’localhost'; to mysql_create.sql
  • FIXED openvpn.Could not ping local LAN or 10.8.0.1. learn-address script needed #!/bin/sh
  • FIXED dirvish when the share name has spaces ( put quotes in)
  • Fixed long running problem. When interface goes ( or is brought) down ( e.g ifdown), then, any routes in tables ( ip route list table eth1) are removed ( by kernel, cause the interface has gone) and NOT replaced. Changed ifup-post to call /var/igaware/network-scripts/table-iproute all up, instead of just for DEVICE
  • Fixed LAN config – problems with fields were not reported as window closed.
  • Fixed the add new filename content page for email filtering
  • Fixed global_access in rsyncit.sh – do it all the time
  • Fixed perconda backup when 7days set.
  • Fixed report export
  • Fixed OLD http report page
Posted in System Updates | Tagged , | Leave a comment

Returned mail: see transcript for details – Outgoing SMTP Problems and Resolution

It’s increasingly common for emails sent to Hotmail, Yahoo and AOL to be returned (‘Returned mail: see transcript for details’) as Internet Service Providers introduce increasingly simplistic measures to combat spam, e.g. simply blocking one RBL list or IP range.

Unless your outgoing email server is deemed 100% trust worthy you can’t guarantee the delivery of genuine emails.

Even if you set-up your outgoing email server with all the correct credentials (PTR, SPF DXIM etc.) there can still be problems as some ISPs will simply not accept emails from servers with IP numbers within a customer range of another ISP; at the time of writing if you are a BT Customer then ISP 1&1 will not accept any email!

To avoid delivery problems there are two recommended solutions:

  1. Use the SMTP server of your ISP.
  2. Use a third party SMTP Server provider e.g. http://www.arrowmail.co.uk/services.aspx#h1

Maintaining the trustworthiness of a sending server is an on-going job. It involves keeping up with the latest “good behaviour” standards, being fully RFC-compliant, staying off blacklists and requesting ISPs to trust your server. Unless you want to do this maintenance then use one of the suggestions above.

Posted in Email, Linux Small Business Server | Leave a comment

Igaware Version 11.0.1-1 released #Igaware #linuxsbs

New in Version 11.0.1-1 [Tue Aug 11 2015]
=========================================

* New Features and Improvements *

  • The Zarafa database is now backed up using Perconda xtrabackup. It’s much faster to backup and restore and uses less resourses.
  • Installed new PHP libraries
  • Installed new Perl libraries
  • Installed new Python libraries
  • Installed new Zlib compression libraries.
  • Updated the OpenSSL security libraries.
  • Modified the Zarafa Users page to allow the free-form entry of the default email name.
  • Added several new network commands.
  • Created a script to block all access to Facebook IP’s. This is not enabled by default.
  • Updated the file command to identify more signatures.
  • Installed fail2ban to block remote access from script kiddies.
  • Increased max_input_vars in php.ini
  • sysctl – vm.vfs_cache_pressure to 3000
  • Zarafa – re-linked the server with tmalloc ( gperftools) to increase memory
    performance.
  • Added a “folder list” tab for the Zarafa user information dialog popup.
  • Separated the mail server daemons for LAN and WAN. This gives increased control over mail delivery.
  • Added the system uptime & kernel version to checkin page.

* Fixes *

  • System health – fixed the check for winbindd – too many files.
  • Fixed link to submit.cf
  • Reordered the r8169 ethernet driver to be first loaded above r8168 & r8101.
  • Fixed a problem with squidGuard going to emergency mode – removed spaces.
  • Fixed a problem with the backup when the Fileserver Shadow Copy feature is enabled.
  • Fixed a rare problem with the Web Activity hours report.
  • Fixed a problem with the hosts file and LAN2
  • Fixed a problem with the SQL server shutdown script.

New in Version 11.0.0-3 [Fri July 03 2015]
========================================

* New Features and Improvements *

  • Updated the Internet Speed test code.
  • Changed dpd timeout and delay for IPSec
  • Updated the Mail Server M4 configuration files. They were out of date.
  • Notices regarding detected Email Virii are now not passed on to the recipient.
  • Added security to stop brute force attack against any open SSH server.
  • Increased the Anti-Spam score for Pyzor and Razor detections.

* Fixes *

  •  Fixed a problem with the Fileserver “shadow copy” initialisation.
  • The backup was taking too long after a change to the catalogue file generation. Fixed.
  • Fixed a problem with the Zarafa server out of office notification for recent installations.
Posted in System Updates | Tagged , | Leave a comment

Igaware Version 11.0.0-3 released #Igaware #linuxsbs

New in Version 11.0.0-3 [Fri July 03 2015]
========================================

* New Features and Improvements *

  •  Updated the Internet Speed test code.
  • Changed dpd timeout and delay for IPSec.
  • Updated the Mail Server M4 confuration files. They were out of date.
  • Notices regarding detected Email Virii are now not passed on to the recipient.
  • Added security to stop brute force attack against any open SSH server.
  • Increased the Anti-Spam score for Pyzor and Razor detections.

    * Fixes *

  • Fixed a problem with the Fileserver “shadow copy” initialisation.
  • The backup was taking too long after a change to the catalogue file generation. Fixed.
  • Fixed a problem with the Zarafa server out of office notification for recent installations.
Posted in Linux Small Business Server, System Updates | Tagged , | Leave a comment