Jump to content
Froxlor Forum

Search the Community

Showing results for tags 'release'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Froxlor
    • Announcements
    • Feedback
    • Development
    • Bugs and Feature Requests
    • Trashcan
  • Support
    • General Discussion
  • Other Languages
    • German / Deutsch

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests

  1. Dear froxlor community, we are excited to announce the final release of froxlor version 2.2.0! This update brings several significant improvements and new features designed to enhance your user experience and provide greater control over your server management. Below are the key highlights of this release: Key Features and Improvements New Antispam Feature: Froxlor now includes a powerful antispam feature using rspamd, allowing you to configure spam scores and implement greylisting on a per-email-account basis. This provides enhanced protection against unwanted emails and helps maintain clean and secure mailboxes. Updater Enhancements: The updater will automatically clear or remove existing entries related to DomainKey (DKIM) in panel_domains if the antispam feature is not activated. Please be sure you are not using these entries with a 3rd party domainkey service or similar; if in doubt, rather activate antispam and dont configure the rspamd-service to not lose any keys!!! API Updates: We have introduced a new parameter, gui_access, for the Admins.add/update and Customers.add/update API endpoints. This allows for more precise control over administrative and customer interface access. SSL Improvements: Froxlor now offers the ability to use the froxlor-vhost certificate for email services. Additionally, a renew-hook has been added to automatically restart services after certificate renewal, ensuring uninterrupted and secure email communication. MySQL Enhancements: A new 'master user' feature has been added for customers, allowing them to access all their databases with a single user account. This simplifies database management and enhances user convenience. Ubuntu 24.04 Support: Froxlor now supports Ubuntu 24.04, ensuring compatibility with the latest version of this popular Linux distribution. Upgrade Instructions To upgrade to froxlor version 2.2.0, please follow the standard upgrade procedures outlined in our documentation. We recommend backing up your current configuration and databases before proceeding with the update to ensure a seamless transition. Get Support For any questions or support related to this release, please visit our support forum or consult the Froxlor community (discord). Join the froxlor community We encourage you to join our discord community of users and developers. Share your feedback, report issues, and contribute to the ongoing improvement of froxlor. Thank you for using froxlor! We hope you enjoy the new features and improvements in version 2.2.0. Thank you, the froxlor team
  2. Dear froxlor community, we are pleased to announce the release of froxlor 2.1! Notable new features, improvements and also breaking changes are listed below: Duplicate domains: You can now easily duplicate domains as admin user. With just one click, specify the new domain-name and select the target-customer and all the compatible settings from the source domain will be used for the new domain. Via the new API call Domains.duplicate(), you can even overwrite any domain-value you like by passing them to the request, just like you would for Domains.add(). Deactivate single domains: It is now possible to deactivate and re-activate single domains. This also deactivates any email-address/account created with that domain. Deactivate single ftp-accounts: As well as domains, users can now enable or disable a specific ftp-account. One-Time Login links: Admin users are now able to generate a one-time login-link for customers via CLI or API, which start a customer session automatically without the customer entering any login credentials. This comes in handy especially when using third-party interfaces / portals to integrate a link to the customers froxlor dashboard. You can also specify the validity time for the link (from 10 up to 120 seconds) and a comma-separated list of IP addresses to restrict the request-source. The corresponding added API call is Froxlor.generateLoginLink(). CustomerBackup is now DataDump: The CustomerBackup API calls and its integration in the UI has been renamed to DataDump to clarify the difference between a one-time data-extraction/dump and backups. This also paves the path for a possible Backup-feature in the future. Additionally, if the php-gnupg extension is present, you have the ability to encrypt your data-exports with your pgp-key. OTP for critical settings: We've added an OTP requirement for some of the critical/system-related settings in order to enhance security. To change these specific settings, 2FA/OTP has to be enabled system-wide and activated for the current admin user. More details see https://docs.froxlor.org/v2.1/admin-guide/settings/#_1-3-settings-that-require-otp-validation Custom page for unmanaged/unknown domains: In case a domain is pointing to your server but is not yet added to froxlor a customizable notice is now displayed instead of the froxlor login page. You can specify your own content for the file as admin in "Email- & File-templates". New update channel 'nightly': We now create nightly-builds for every successful push to the git-repository. If you want to participate in testing the current development state, you are now able to do so without the need to have composer/npm and all the dev-tools requirements but just use a pre-built nightly. These packages are only available through the updater of froxlor (either CLI or Web-Update, if enabled). To activate, just select the update-channel 'nightly' (only available in settings-mode 'advanced'). Keep in mind that downgrades are not supported. You can always switch back to the stable or beta channel but you will have to wait until corresponding releases catch up to the nightly-version you have. Changes in 2.1: New features: [API] new Domains.duplicate() command to copy domains [API] One-Click One-Time-Login-Link (remote-login) via newFroxlor.generateLoginLink() [API] Domains.add()/update() -> added parameter `deactivated` [API] Ftps.add()/update() -> added parameter `login_enabled` [UI] OTP requirement for specific/system-relevant settings [UI] markdown syntax in custom_notes field [UI] change password/theme/language is now combined in profile [Settings] New update-channel "nightly" (development-versions only, every signed commit to 'main' will be build) [CLI] new froxlor:config-diff command [other] In order to encrypt data-exports using pgp you need to have the php-gnupg extension installed and activated. [other] Domains pointing to the server but are unmanaged by froxlor will now display a corresponding message. Breaking changes: [API] CustomerBackups renamed to DataDump [Services] support for lighttpd webserver will be dropped in future 2.1 releases due to no active maintainer and no significant user-base [Distros] Debian 10 buster & Ubuntu 18.04 bionic were deprecated as of 2.0.x and are now removed in froxlor-2.1 [Distros] Gentoo is deprecated due to no active maintainer [Config] postfix needs reconfiguration in the file `/etc/postfix/mysql-virtual_mailbox_domains.cf` in order for deactivated domain flag to be recognized Alternatively, simply search for the line: query = SELECT domain FROM panel_domains WHERE domain = '%s' AND isemaildomain = '1' and replace it with: query = SELECT domain FROM panel_domains WHERE domain = '%s' AND isemaildomain = '1' AND deactivated = 0 Changes in 2.1.1: [DNS] fix wrong result in Domain::getMainSubdomainIds(); #1202 [Install] fix wrong version being set Changes in 2.1.2: [general] fixed compatibility with older installations [DNS] fixed wrong type when dns zone for system-hostname is active [UI] fixed non-empty value for file-input fields when using uploaded logos [UI] fixed 2fa login when using email validation [UI] fixed wrong size-unit for mailquota-dashboard-info [UI] fixed possibility to have empty name/surname and empty company [Installation] allow more complex passwords to be set (skip escaping) Changes in 2.1.3: [CLI] Add manual_config parameter to install json; #1208 [API] use panel.password_min_length setting for Froxlor.generatePassword() default length parameter [general] allow '::1' as valid mysql localhost value [UI] fixed bug that lead to select-box values not being changed [UI] fixed bug that lead to an error when using custom.css Changes in 2.1.4: [UI] Don't show stats-icon for domains with redirect [Cron] hide goaccess output in traffic cron and keepalive database connection for long-running log-analysis [Cron/Apache] use same certificate-file if child-domain inherits the parentdomain's certificate data (avoid possible http 421 Misdirected Request) [UI] use different language string for password-placeholder when adding a new customer; fixes #1216 [Install] don't use deprecated 'mysql_native_password' for mysql8; fixes #1214 [Install] possibility to specify sender address for froxlor as the admin-email address, custom or empty for system-default; fixes #1217 [general] don't output ipv6 in brackets for system.ipaddress setting as the brackets will be added to the value resulting in an invalid mysql-access-host; fixes #1215 [settings] use correct validation for dnscheck-resolver; fixes #1220 Changes in 2.1.5: [Config] disable pam auth in dovecot for debian bookworm [general] Check for argon2 support before using constant PASSWORD_ARGON2X; #1228 [UI] fix incorrect top-5 customers in traffic overview for admins [UI] show manual update command if webupdate is disabled [Cron] create empty dns-server config if no (dns-enabled) domain is determined; fixes #1230 [general] set correct channel for update-check if switching from apt-installed stable/testing to nightly [API] fix check for allowed_phpconfigs if using mod_php when adding/editing a customer Changes in 2.1.6: [general] fix regression bug from "Check for argon2 support before using constant PASSWORD_ARGON2X; #1228" Changes in 2.1.7: [UI] backport UI/Callback fixes from 2.2-dev (main); fixes #1235 [UI] fix regression bug in 'incorrect top-5 customers' sorting in traffic-overview which leads to incorrect customer-links due to wrong indexing in the array; fixes #1236 [UI] fix adding/editing domains as customer when php is not enabled for the domain [Cron] don't add custom-vhost-content to deactivated domain-vhosts [Cron] correctly save pass_authorizationheader flag for php-configs if FCGID is used; correctly add 'FcgidPassHeader' for froxlor-vhost itself if set [Cron] wrap SetHandler to php-fpm in file-exists check, as we do for customer-domains already [API] correctly disabled ssl-related settings when domain update sets ssl-enabled flag to false; fixes #1241 [general] correctly validate if a symlink is within the customers home-directory if it's not an absolute path; fixes #1242 Changes in 2.1.8: [settings] fix "session expires" option, #1246 [UI] fix missing csrf tokens for some ajax requests [Cron] also add logfiles to virtual-host if it's a redirect Changes in 2.1.9: [security] fix in mysql-logger, see https://github.com/froxlor/Froxlor/security/advisories/GHSA-x525-54hf-xr53 (published one week after release, on May 10th) [install] add compatibility for mariadb-dump executable instead of mysqldump See also our Migration Guide for more information. We hope you enjoy froxlor 2.1 and look forward to your feedback. Download: froxlor-2.1 Documentation at https://docs.froxlor.org/. Visit https://www.froxlor.org and join our Discord channel (https://discord.froxlor.org) for support, help, participation or just to chat Thank you, the froxlor team
  3. Dear froxlor community, we are excited to announce the release of froxlor 2.0! This release includes several improvements and new features, which we have summarized below for you: Redesigned UI: The appearance of the user interface has been completely modernized. The redesigned froxlor is now even more user-friendly, efficient and customizable. We've added a global search for general data as well as for searching functions and configuration options. Custom column selection for listings has been added. And of course, it's all 100% responsive. Revamped installation routine: The froxlor installation has been improved in many ways it is now easier, faster than ever and looks better. Now you can activate SSL and PHP-FPM from within the installation process and start using froxlor in minutes. Improved security features: With expanded and enhanced security features like modern password hashing-algorithms we have made froxlor a better place for your data. On top of that, the code has been completely reviewed and restructured to make security fixes easier, CSFR-tokens on forms have been implemented to make Cross Site transactions more secure, and much more. CLI tool: With the new froxlor CLI tool, you can now use froxlor via the command line – great for automation! For example, complete the installation process, check and run updates, (re)configure services and more. Changes in 2.0: New features: [API] new MysqlServer Command to allow multiple MySQL servers to be used by customers [API] optional requests via api.php?/module/function/ [UI] Global-search [UI] Customize visibility of table-columns [CLI] new bin/froxlor-cli tool (installer, updater, helper scripts and cron) [Distros] added Debian Bookworm (12)* and Ubuntu 22.04 (Jammy Jellyfish) Breaking changes: PHP-7.4+ and php-gmp extension are now required [API] auth via HTTP-Auth, old format with apikey/secret in the request is no longer possible [UI] auto-update must be enabled explicitly in lib/config.inc.php [Config] proftpd needs to be re-configured (or simply add `OpenSSL` to `SQLAuthTypes` in `/etc/proftpd/sql.conf`) [Config] dovecot needs to be re-configured (or simply comment out `default_pass_scheme ...` in `/etc/dovecot/dovecot-sql.conf.ext`) [Distros] removed Debian Stretch / Ubuntu Xenial and CentOS [APT package] default installation path is now /var/www/html/froxlor. If you are updating, your froxlor installation will be moved there from /var/www/froxlor! Changes in minor releases: 2.0.10 security release enforce password requirements set in settings for directory-protection [CWE-521: Weak Password Requirements] add missing use statement for error-reporting to include the dbms version [CWE-391: Unchecked Error Condition] validate existence of language in admin-templates [CWE-840: Business Logic Errors] verify cronjob interval is one of the fixed available values [CWE-96: Static Code Injection] fix possible privilege escalation from customer to root when specifying custom error documents in directory-options [CWE-94: Code Injection] 2.0.11 security / bugfix release add new email-domain-overview for better overview of multiple email-domains/addresses fix let's encrypt dns validation check backup possible remote-db-server databases in backup-cron check for existing fields when setting/updating tablelisting-columns [CWE-352: Cross-Site Request Forgery (CSRF)] corrected validation of import-settings data to avoid injecting malicious content [CWE-94: Code Injection] 2.0.12 bugfix release fix wrong function-defintion/call in Nginx cron fix setting/resetting table-column preferences 2.0.13 maintenance release keep search-fields/text in pagination links of displaying a search-result specify clearly which tls settings are being overwritten/ignored depending on the 'Override system TLS settings' flag when adding/updating Domains type-safe comparsion of md5-compatibility hash-validation [CWE-305: Authentication Bypass by Primary Weakness] fix email-domain navigation and descriptions update dependencies 2.0.14/2.0.15 maintenance release use correct parameter in PowerDNS::cleanDomainZone(), fixes #1104 add 'Passing HTTP AUTH BASIC' header option when using FCGID require php-gd extension for better/secure validating uploaded images add Spanish language (#1105) avoid socket length limitations leading to cut-off/invalid filename for very long domain and/or loginnames, fixes #1108 corrected checkLocalGroup() validation if setting did not change, fixes #1111 open newsfeed-links in a new tab, fixes #1112 fix incorrect indexed array sorting in case of FTP-domain-usernames; fixes #1114 add certificate metadata to db table to allow filter/sort of 'Issuer', 'Valid from' and 'Valid until' properties correctly retriggered certificate issue on froxlor-vhost alias-domain changes, fixes #1115 2.0.19 maintenance release don't run cron tasks if requirements return non-success; fixes #1122 respect no-try_files setting also in protected directories put php-fpm directives in Directory-directive in apache2; fixes #1120 strictly check whether field to select is the id or the email-address b/c is cases of email-addresses starting with a digit this is somehow used as value for the id field and return the wrong entity fix adding mysql-server to customers without any prior assigned mysql-server, fixes #1123 fix issues with displaying set value if path-mode is 'dropdown' trigger rebuild of config files after changing only ip-settings in domains add copy-system-details-to-clipboard button on admin dashboard; fixes #1126 Allow admins to edit openbasedir_path for domains (#1125) set default value of 'openbasedir_path' to 0 in SubDomain.add() like we do in Domains.add() set default value for email_quota to settings-default in EmailAccounts.add(); fixes #1132 Disable autocomplete on 2FA input element (#1133) introduce http-request rate-limit 2.0.20 maintenance release Fix typo in English privileged_passwd by @n-thumann in #1136 Fix IPv6 address in cookie domain by @n-thumann in #1137 Add same loginfail restrictions for entering 2fa code as for user/pwd login Remove superfluous try_files in nginx config if php-backend (non-fastcgi) is used Fix missing idna encode adding/editing email-account/email-forwarder Secure filename of local-archive in webupdate Show 0 value of resource-fields if value is empty, fixes #1149 Re-enable fcgid/php-fpm activation-validate-check 2.0.21 maintenance release Correcting Nginx location match, fixes #1153 remove hidden fields from login/passwd-reset; refs #1102 adjust log-levels in API methods exclude password fields from being filtered/escaped by AntiXSS, fixes #1150 Fix typo in pathDescriptionSubdomain; #1156 validate generated config-json parameter string 2.0.22 maintenance release [API] validate non-empy admin-name in Admins.update() [API] fix optional-flag for IpsAndPorts.add() and IpsAndPorts.update() rework path to certificates non-ecc/ecc, regardless of current setting adjust proftpd config for debian 12 bookworm correctly redirect to last-page if session is timed out and remove passing script/qrystr url parameters correct validation of hostingplan name and description add config-diff CLI Command; #1168 2.0.23 bugfix release [API] validate non-empy admin-name in Admins.update() [API] fix optional-flag for IpsAndPorts.add() and IpsAndPorts.update() rework path to certificates non-ecc/ecc, regardless of current setting adjust proftpd config for debian 12 bookworm correctly redirect to last-page if session is timed out and remove passing script/qrystr url parameters correct validation of hostingplan name and description add config-diff CLI Command by @bashgeek in #1168 2.0.24 maintenance release fix API permission error in navigation when customer-hide-options include 'domains'; fixes #1183 fix vhost-cleaning regex for nginx-location directives; fixes #1185 added catalan language NOTE: This is the last release in the 2.0 series. Stay tuned for announcements about froxlor-2.1 See also our Migration Guide for more information. We hope you enjoy froxlor 2.0 and look forward to your feedback. Download: 2.0 | website Documentation at https://docs.froxlor.org/. Visit https://www.froxlor.org and join our Discord channel (https://discord.froxlor.org) for support, help, participation or just to chat Thank you, the froxlor team
  4. Dear Froxlor community, besides possible bugfix releases, this will be most likely the last 0.10.x release. All new feature requests or enhancements to the current feature-set will be redirected to the next major version. All 0.10.x installations will be upgradeable. We plan on having a public beta soon and depending on the feedback a stable release by the end of the year. Changes in 0.10.38: correct Dropdown directory selection; fixes #1044 add security question for deleting api-keys to avoid accidental deletion Changes in 0.10.38.1 / 0.10.38.2: fix possible HTML injections in "forgot password" feature when given email address is not valid and when adding/editing customers as admin/reseller Changes in 0.10.38.3: fix unintended API key generation fix authenticated unrestricted File Upload to RCE fix username and email enumeration via "forgot password" feature fix unintended SSL certificates deletion Download: 0.10.38.3 | website Visit http://www.froxlor.org, join our Discord channel (https://discord.froxlor.org) or join #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  5. Dear Froxlor community, one of the last releases before the new major version hits its first release. This release includes some minor bugfixes, see below Changes in 0.10.37: fix missing namespace in BackupCron rework FileDir::makePathfield() is mode is 'dropdown' to show all directories correctly (depth limited); fixes #1044 re-enable quota and sieve plugins for dovecot in buster and bullseyeconfig-templates, fixes #1042 use correct version_compare as PHP8+ does not compare correctly update sql-users with their corresponding password-hash-algorithm; remove a few notices for empty values in str_replace and others Download: 0.10.37 | website Visit http://www.froxlor.org, join our Discord channel (https://discord.froxlor.org) or join #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  6. Dear Froxlor Community, again this release ist mostly minor bugfixes and maintenance as the main focus is of course still on the next major version of froxlor. Changes in 0.10.36: [UI/CSS] add login header image max-width fix passing complex passwords with special characters to mysqldump in backup-cron; fixes #1038 fix missing mapping for recently added loginname placeholder in ReportsCron; fixes #1039 Download: 0.10.36 | website Visit http://www.froxlor.org, join our Discord channel (https://discord.froxlor.org) or join #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  7. Dear Froxlor Community, this release ist mostly minor bugfixes and maintenance as the main focus currently is on the next major version of froxlor. News about the next major version will soon be available, stay tuned. Changes in 0.10.35: better support for PHP8.1 (silence warnings) set default-ca for acme.sh after updating acme.sh fix wrong number of bound variables when customers_see_all == 0 add USERNAME replacer to all email templates; #1032 Download: 0.10.35 | website Visit http://www.froxlor.org, join our Discord channel (https://discord.froxlor.org) or join #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  8. Dear Froxlor Community, with the introduction of 0.10.x API, users are able to externally call the provided functions (if enabled, default disabled) and invoke custom parameters to search/sort the queried entities. (Quote by Alex Birnberg [zymo-security.com], who found this and was a great help in resolving the issue. Thanks again) Affected are all versions prior to 0.10.34. We highly recommend to update to the current latest version or disable external API. Changes in 0.10.34: [security] fix validation of API parameters sql_search & sql_orderby [php-fpm] php-sessionclean script moved from install/scripts/ to scripts/ and will automatically be added to the cron if php-fpm is enabled. [docs] updated installation guide for debian/ubuntu (use [signed-by=...] for the gpg key instead of apt-key add) [install] fix installation for mariadb-10.5 add return-code to the helper scripts in install/scripts/ in case of error when invoking these with bash or similiar Changes in 0.10.34.1: [cli] fix invalid return statements in helper scripts [php-fpm] don't rely on executable flag being set for php-sessionclean script and respect croncmdline-setting [cron] respect domain.writeerrorlog and domain.writeaccesslog when using log-to-pipe in Apache Download: 0.10.34.1 | website Visit http://www.froxlor.org or join our discord channel via https://discord.froxlor.org/ for support, help, participation or just a chat Thank you, d00p
  9. Dear Froxlor Community, for this release we did a bit of code beautification and minor bugfixes. The main work these weeks got in to the new documentation page at http://docs.froxlor.org/ where we combined the existing wiki pages and api-documentation and will continue to add more and more documentation (admin- and customer-guide) in the near future. For all PHP-FPM users, we've included a php-sessionclean script in /install/scripts/ because sadly, the provided script from the packages do not cover the customzied session-savepath directory. If you feel you need this (growing storage usage for example) just add a cronjob and call the script (use --help to see options) on a regular basis. The discord channel we've introduced with the last release is really growing and we see a lot of new users which we think is absolutely fantastic. To join, visit https://discord.froxlor.org/ - the main channel #froxlor is additionally linked with the IRC channel. Hope to see you there Changes in 0.10.33: [API] MySQL.add() now correctly checks for customers assigned resources if invoked directly via API Call PHP-FPM only when file exists #1006 add script for php-session cleanup update docs url for api-documentation Download: 0.10.33 | website Visit http://www.froxlor.org, join our Discord channel (https://discord.froxlor.org) or join #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  10. Dear Froxlor Community, this release adds the possibility to specify a custom/existing acme.sh installation in the settings. In case the it is not found there, froxlor will return the setting to the default value of /root/.acme.sh/acme.sh. As of this month, we are running a froxlor discord server to try to spice up the community experience and communication. We are also planning of having regular events in the form of talks or presentations. To join, visit https://discord.froxlor.org/ - the main channel #froxlor is additionally linked with the IRC channel. Hope to see you there Changes in 0.10.32: [API] do not check for allowed-phpconfigs if fpm/fcgid is not activated fix too strict comparison for isemaildomain check in Dns-Zone generation; fixes #1003 allow setting path to acme.sh installation; fixes #1002 fix no regeneration of config-files in Domains.update() when only ssl-specialsettings is updated Download: 0.10.32 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  11. Dear Froxlor Community, this small release adds the ability for admins/resellers without the change-serversetting permission to adjust the domain-documentroot. We have also fixed a misbehaviour regarding standard-subdomain due to a wrong default value when updating a customer via API. Changes in 0.10.31: set correct php-version numbers for installation dependencies-check; fixes #997 fix behaviour in Customers.update() in case 'createstdsubdomain' is not set when called via API (wrong default); fixes #998 allow settings/updating documentroot (only relative to customer homedirectory) when change_serversettings permission is not granted; fixes #1000 fix Domains.update() with correct path and change_serversettings=0; fixes #1001 Download: 0.10.31 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  12. Dear Froxlor Community, with the release of 0.10.28 we've introduced the possiblity to let customer use custom-database names if enabled in the settings. One of our community members found out that the parameter was not validated correctly and that a user with customer-privileges to the panel could exploit this with an SQL injection. The assigned CVE is CVE-2021-42325 and the fixing commit can be found here. Default froxlor installations are not affected per se as this feature requires an admin to set DBNAME in the corresponding "SQL prefix" setting to be enabled. Additionally, this release fixes minor validation in the SubDomains-module and the bulk-import of domains. You can now also specify that a newly created php-confiugrations gets assigned to all customers instead of having to add them to each customer manually. Changes in 0.10.30: fix validation of database_name if custom-database-name feature is enabled fix allowed-phpconfigs check in SubDomains.add() and SubDomains.update() adjust debian 11 config templates, fixes #982 don't remove 0-value parameter values from bulk-actions add possibility to assign new/edited php-config to all customer accounts; fixes #980 add complete list of nameserver-ips and given axfr-servers to allow-axfr-ips list for PowerDNS; fixes #985 fix api documentation for Domains.add() and Domains.update(); fixes #987 soften/correct permissions on pdns configs; fixes #991 check whether the domain to clean from pdns actually still exists there; fixes #992 avoid possible DivisionByZeroError in APCu info page, fixes #995 Download: 0.10.30 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  13. Dear Froxlor Community, this release integrates a few security improvements that have been reported to us regarding the session settings, session id and possible url manipulation. Additionally, thanks to the guys from INWX, support for mysql-tls settings have been integrated in the installation-process and the system. Thanks again for the contribution. Changes in 0.10.29: set php session security related settings (httponly and secure flag) secure commonly used filename-variable against url manipulation generate unpredictable unique session ids fix session for 2fa enabled logins integrate the new czech language file; refs #976 possibility to decide whether target database should be dropped after backup when installing adds mysql tls support, refs #979 Changes in 0.10.29.1: fix fresh installation (database exist check) Download: 0.10.29.1 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  14. Dear Froxlor Community, this release brings the ability to allow customers to set custom names when creating a database. Just set DBNAME as SQL prefix in the account settings. The DNS of a domain is now validated on creation and update if Let's Encrypt is enabled to ensure the domain resolves to one of the server's (and selected!) IP addresses to prevent failure when generating certificates. Additionally to the new logo upload possibility introduced in 0.10.27 we've re-enabled the overwriting of theme-logo's using the logo_custom.png and logo_custom_login.png files and also introduce new settings to control whether this is wanted or not (see panel settings, right above the logo upload). Changes in 0.10.28: added new sql-prefix mode DBNAME in order to allow custom database names; fixes #672 correct heredoc indentation in AcmeSh for php-7.1 - php-7.3; fixes #957 fixed Minimum and Expired SOA-Records according to RFC; see #959 have more power over theme logo, custom theme logo and uploaded logo; fixes #958 added option to disable creation of default subdomain; fixes #960 added/updated czech language file; see #870 added Buypass to the list of ACME providers; see #968 add setting for a custom system group for all customer-users (requires libnss-extrausers); fixes #953 check dns for lets encrypt when adding/editing domains and via cron; fixes #971 Download: 0.10.28 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  15. Dear Froxlor Community, in this release, we start to support the new Debian Bullseye (11) distribution (including packages via deb.froxlor.org). We have also added the ZeroSSL endpoint as an alternative to Let's Encrypt, you can read more about ZeroSSL here: https://zerossl.com/letsencrypt-alternative/. It is now also possible to customize the login and header logo from within the panel-settings. For users that are currently using the custom_logo.png file to override it - the updater will convert it for you. Changes in 0.10.27: added a default robots.txt to avoid indexing by search-engines add setting for default serveralias value for new domains prefer custom zone entries over automatically created ones when system.dns_createmailentry is enabled; fixes #944 support ZeroSSL via acme.sh (v3); fixes #946 allow defining php_value/php_admin_value for session.save_path when using php-fpm; fixes #954 possibility to upload custom header/login logo, refs #948 possibility to specify custom css; refs #949 bump phpmailer/phpmailer from 6.4.1 to 6.5.0 support for Debian Jessie has been dropped Download: 0.10.27 | website Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.libera.chat for support, help, participation or just a chat Thank you, d00p
  16. Dear Froxlor Community, I am proud to finally release the stable version of a new API based froxlor. Due to massive internal improvements and changes in the core (almost 600 commits since 0.9.40.1) users are now able to list/create/edit/delete resources and entities of froxlor via API (requires activation of api-usage in the settings and a user based API-key). The froxlor frontend itself uses the API backend too. Froxlor now uses composer to include some of its requirements like phpMailer, Logger, IdnaConvert and TwoFactorAuth libraries. All required files will be included in the official tarball so you do not need to worry about installing and using composer (only if you are using / testing the git-master, see https://github.com/Froxlor/Froxlor/wiki/Install-froxlor-from-git-sources). Most important changes: froxlor now requires at least php-7.1 or newer, php-5.6 / php-7.0 are no longer supported because of being EOL you can access data via API, for more information see https://api.froxlor.org/doc/. An example can be found here: https://github.com/Froxlor/Froxlor/tree/master/doc/example PHPUnit tested API backend with MySQL 5.6, 5.7 and 8 as well as MariaDB 10.3 and 10.4, see https://travis-ci.com/Froxlor/Froxlor compatibility for MySQL8 2FA (two-factor-authentication) for admins/resellers/customers (email or authenticator app) all froxlor-database tables will automatically be converted to the InnoDB engine added support for Debian 10 (buster) and Ubuntu 18.04 (bionic beaver) implemented Let's Encrypt via acme.sh - Note: all your current Let's Encrypt certificates will be removed and re-created due to another structure customizable error/access log handling for webserver (format, level, pipe-to-script, etc.) deprecated Debian 7 (wheezy) and Ubuntu 14.04 (trusty tahr) support dropped support for Ubuntu 12.04 (precise pangolin) dropped ticketsystem Changes in 0.10.1: allow/disallow API access on a per-customer base new API parameters for Admins.add(), Admins.update(), Customers.add() and Customers.update() bool $api_allowed (default: false for Customers, true for Admins) add explicit tlsv1.3 ciphersuite setting fixed wrong behaviour in Ftps.add() if customer is newly created and setting customer.ftpatdomain is true added expiration date to SSL certificates loaded via API request fixed wrong return in Certificates.get() if given domain does not have a certificate allow setting http2 flag for (sub)domains in customer view, fixes #725 Changes in 0.10.2: force Let's Encrypt ACMEv2 API, fixed #728 added default-ssl-vhost settings and optionally allow including of non-ssl default-vhost settings, fixes #727 new API parameters for Domains.add() and Domains.update() string $ssl_specialsettings bool $include_specialsettings bool $dont_use_default_ssl_ipandport_if_empty removed API parameters in Domains.add() bool $use_default_ssl_ipandport_if_empty new API parameters for IpsAndPorts.add() and IpsAndPorts.update() string $ssl_specialsettings bool $include_specialsettings string $ssl_default_vhostconf_domain bool $include_default_vhostconf_domain implemented DomainZones.listing() to return custom stored dns entries fix registration and termination date to flip between empty-value and 0000-00-00 Changes in 0.10.3: fallback to /tmp/froxlor.log if file-log is activated but no file given or not writeable; fixes #737 added tls-settings per domain for admins with change_serversettings-flag set; fixes #519 new API parameter for Domains.add() and Domains.update() bool $override_tls (default: false) array $ssl_protocols string $ssl_cipher_list string $tlsv13_cipher_list preserve downward compatibility for 0.10.1 updaters regarding specialsettings for ssl-enabled domains; fixes #739 Changes in 0.10.4: added support for CIDR/netmask in mysql-access-hosts; fixes #564 fixed invalid handling of escape-sequences in api-endpoint, fixes #746 fixed an issue with adding the default ftp user for new customer when added by admin/reseller with no ftp-resources; fixes #741 fixed nginx configuration issue with fastcgi_split_path_info option; fixes #744 Changes in 0.10.5: bugfix release due to errors in Let's Encrypt re-new check; fixes #747 Changes in 0.10.6: introducing new API parameters sql_search, sql_limit, sql_offset, sql_orderby for almost all listing() calls introducing new API method listingCount() for almost all modules to return the total number of entities available changed behavior of SubDomains.listing() to return all fields from the domain table instead of the limited ones for customers when called as admin added new API module SysLog to query froxlor logs according to permission optimized panel_admins and panel_customers table to avoid mysql/mariadb warning: Row size too large (> 8126); fixes #752 corrected update of hosting plans via interface; fixes #753 implemented API method EmailForwarders.listing(); fixes #754 fixed parameters defaults for Domains.update() parameters ssl_ipandports and add new parameter (see below); fixes #756 new API parameters for Domains.update() bool $remove_ssl_ipandport Changes in 0.10.7: corrected behavior when changing mysql-access-host values; fixes #758 fix UI error "API keys not accessable due to missing Paging-class" fix trauncating of SysLog using SysLog.delete() corrected UI issue of incorrect listing of domains for customers and admin, fixes #759 corrected ordering of listings in UI regarding pagination added new settings to set default value of domain-edit-settings 'Apply specialsettings to all subdomains' and 'Apply php-config to all subdomains' corrected vhost-merging of specialsettings in nginx; fixes #757 Changes in 0.10.8: fix duplicate domain entries in customer-domain-list when domain has aliases fix searching for alias-domains by link in customer_domains use correct apiendpoint for lets encrypt; pass debug-flag onto acme.sh; fixes #762 fix removing of ssl-ip-relation to domain if no ssl-ip is selected via interface Debian package: Move mysql server dependency to redommends; fixes #761 Changes in 0.10.9: fix SQL error when searching for certificates by domainname, fixes #764 fix ordering of listings when natural sorting is activated, fixes #765 check for valid result when reading database usage from information_schema; fixes #766 Changes in 0.10.10: add new API function Froxlor.generatePassword() to return a random password based on froxlor settings regarding min-length, included characters, etc.; fixes #768 fix mysql8 issue with group by and sorting within; fixes #774 add new 'ssl-enabled' flag for domains and subdomains so ssl can be deactivated (by a customer too) even if there are ssl-ip/ports assigned; introduce new honorcipherorder and sessiontickets flags for more control over ssl-related settings on a per domain base (admin only); fixes #767 and #769 new API parameters for Domains.add() and Domains.update() bool $sslenabled bool $honorcipherorder bool $sessiontickets new API parameters for SubDomains.add() and SubDomains.update() bool $sslenabled new API method Froxlor.generatePassword() Changes in 0.10.11: apply 'notryfiles', 'writeaccesslog' and 'writeerrorlog' flags to subdomains when editing a domain fix SysLog.delete(), SysLog.listing() and SysLog.listingCount() whencalled as admin/reseller withouth customers_see_all permission add option to disable SSL sessiontickets globally for older systems, fixes #784 ability to add custom config to PHPFPM version, fixes #643 new API parameters for FpmDaemons.add() and FpmDaemons.update() string $custom_config Changes in 0.10.12: allow using more advanced LogFormat for webserver and awstats fix issue in PhpHelper::trimArray() returning an empty array, fixes #751 fix wrong behaviour of Emails.update() which allowed setting iscatchall-flag for more than one address of the same domain fix writable-check of froxlor-logfile if logfile did not exist Changes in 0.10.13: validate nameserver ip-addresses for binds allow-transfer block; fixes #791 fix IpsAndPorts when checking for system.ipaddress in update() and delete() fix Domains.update() if called as admin/reseller without change_serversettings privileges, thx to rseffner fix the case that the spf record is not inserted with its quotes, and so the condition fails and 2 spf records are inserted in the domain fix wrongly initialized resource-usage when re-calculating it; fixes #797 update php-fpm defaults; update paths for current stable php-7.3; read froxlor default php.ini from file rather then using phpconfig with id=1; fixes #796 Changes in 0.10.14: require set password complexity for admins too when resetting password; display correct error message if password complexity is not satisfied do not require enabled vhost-container for froxlor-vhost to change sslsessiontickets-setting disable sslsessiontickets-option in domain-add/edit if globally disabled in the settings fix listing of customer email addresses if 'domain' section is hidden via settings, fixes #803 add Froxlor.integrityCheck() API call to externally run integrity/consistency check, fixes #801 new API method Froxlor.integrityCheck() make customer firstname,name,company and customer-no available for all templates; fixes #808 store ace-string of domain besides idn-converted string to have correct sorting in the frontend; fixes #809 allow private ip ranges in ips-and-ports as some configurations require that; fixes #802 Changes in 0.10.15: fixed temporary userdata file creation results in an empty file on installation; fixes #815 Changes in 0.10.16: remove ssl-certificates connected to domains that are being deleted when deleting a customer; fixes #818 fix removing ip address if ip is set as system-ipaddress but there are other entries of that ip with a different port fixed parsing due to changes in dovecots default mail_log_prefix restructure acmesh implementation and let acme.sh take care of renewing the certificates itself; fixes #792, fixes #816 Double check whether installation of acme.sh worked when not installed yet and do not continue if not; fixes #823 add optional dns validation for let's encrypt activated domains; fixes #817 let send-to-alternative-email be optional if no address is given instead of displaying error that the email address is invalid; fixes #829 Changes in 0.10.17: fix minor issue with let's encrypt and uppercase letters in domainnames validate we're using the required minimum version of php in frontend and cron, not only on installation adding email addresses via webinterface results in error if domains are hidden from customers; fixes #803 fix including of language-strings in reports-cron, fixes #836 Changes in 0.10.18: remove TLSv1 from the list of default SSL-protocols marked Ubuntu 16.04 configuration templates as deprecated removed Ubuntu 14.04 configuration templates added configuration-templates for Ubuntu 20.04 added configuration-templates for CentOS 8 added distribution detection on installation and OS possibility for specific setting-adjustments (for later use) read certificate data folder from acme.sh.env file, fixes #846 corrected API docs, fixes #856 and #857 Changes in 0.10.19: return full domain object on Domains.update() call, fixes #861 add missing parmeter customerid for SubDomains.delete() which is required when called as admin; fixes #862 check for possible CNAME overrides of A/AAAA record in dns-editor, fixes #864 corrected timestamp-check for let's encrypt filesystem sync, fixes #865 Changes in 0.10.20: fix permanent rebuilding of vhost configs when using let's encrypt updated jquery library, fixes #872 unset any limit as we do not have pagination when showing search-results, fixes #869 fix missing query-parameters for IpsAndPorts.listing() when using sql_search show current count of results besides total count in listings, fixes #869 remove underscore from dkim-selector, refs #619 use overridden limit_extensions and idle_timeout values in vhost config when using fpm and not mod_proxy Changes in 0.10.21: corrected check for possible empty-value but existing ssl-certificate on filesystem corrected wrong unit in traffic graphs, fixes #425 removed old/unused table panel_diskspace_admins Changes in 0.10.22: unify customerid/loginname api-parameter-descriptions; fixes #883 list dns entries after add/delete action handling so the table of entries always shows the current state withouth reloading the page; fixes #887 create quotatallies entry if it not exists, fixes #885 correction in api-doc for Ftps.update ftp_password parameter, fixes #889 fix awstats/webalizer directory protection when using nginx; fixes #888 do not set description to empty value in Mysqls.update() if not passed as parameter as it is optionally; fixes #890 make given documentroot of domain relative to customerroot if no absolute path if given; fixes #892 [domainbulk] remove reqiurement for customer-select in webinterface as it is an API-parameter do not allow setting www as CNAME record if domain has automatic www-Alias enabled, fixes #895 remove duplicate AXFR records as nameserver get added automatically in case they were added also to AXFR list Changes in 0.10.23: Due to recent updates in the requirements/dependencies a minimum version of PHP 7.1+ is required corrected delete_userfiles flag not being passed to Emails.delete() via webinterface email-address overview corrected validation of idn-tld's, fixes #899 trigger rebuild of config-files also if customer email is changed, fixes #896 added date-range parameters for Traffic.listing(), fixes #878 new API parameters for Traffic.listing() int $date_from int $date_until added missing return-code in DomainZones.add() which messes up the error-handling when using API Changes in 0.10.24: added setting to hide non-compatible settings (mostly depending on chosen webserver) [installation] set minimum required php-version to 7.1 and recommended php-version to 7.4 Check return of validateFormField() just for non-falsey values and not expect boolean data-type; fixes #904 correctly read in domain's ssl-ips for CAA entries if enabled, fixes #903 display sizes of used diskspace/traffic dynamically formatted depending on value instead of fixed added option to specify (optional) fileextension/suffix for generated dkim-private keys; fixes #907 Changes in 0.10.25: added possibility to use 'in' sql-operation in sql_where parameter for all applicable API calls list only phpenabled and http-enabled domains in php-configuration overview, fixes #911 corrected check for required firstname/name/company in Customers.update(), fixes #915 more work on complete php-8 compatibility added setting for email address of SOA record (nameserver) added show_usages parameter for Customers.listing() and Customers.get(), fixes #912 new API parameters for Customers.listing() and Customers.get() bool $show_usages added description parameter for Domains.add()/Domains.update() and Emails.add()/Emails.update(), fixes #910 new API parameters for Domains.add()/Domains.update() and Emails.add()/Emails.update() string $description added deactivated parameter for EmailAccounts.update(), fixes #921 new API parameters for EmailAccounts.update() bool $deactivated escape passwords for email content (new email-account, new ftp-account and new database), fixes #905 trigger acme.sh and powerdns removal for domains if customers is being deleted, fixes #923 Changes in 0.10.26: refactoring columns from large table to avoid '1118 Row size too large' error check rr against possible existing CNAME entries, fixes #927 add vhost replacer {FPMSOCKET} for custom vhost configs; fixes #931 add new settings for legal-notes; terms-of-use and privacy-policy; fixes #930 additionally sort by length of username for libnss-extrausers passwd file to have the main user as first in result in any case; fixes #933 do not touch/chown error/access log if log is disabled, fixes #934 catch exception of password-complexity check when changing account password; fixes #935 bump phpmailer/phpmailer from 6.2.0 to 6.4.1 Download: 0.10.26 Note: There are no packages for oldoldstable (jessie) anymore Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net for support, help, participation or just a chat Thank you, d00p
  17. Dear Froxlor Community, after many bugfixes and improvements here is the latest stable version of froxlor. This release will be the last release of the 0.9-series in favor of our API based 0.10.0 version which will be the new MASTER branch in our git-repository as of this release. Ubuntu (16.04) Xenial Support There are now configuration templates for Ubuntu 16.04 Xenial. Ubuntu 12.04 Precise configurations have been marked as deprecated. Customizable webserver logging For apache2 users, it is now possible to specify a script to which the logs are being piped to. Don't forget that you must explicitly enable the piping. You can also or alternatively specify a log-format and log-type for the access-log. FPM process manager settings per configuration Process manager and corresponding settings can now be overwritten on a per-php configuration base, when overwriting is explictly checked in the php-config. This makes it possible to have different process manager (static, dynamic, ondemand) settings for the same php-fpm version. You can see all changes on Github at https://github.com/Froxlor/Froxlor/compare/0.9.39.5...0.9.40.1 *UPDATE* 0.9.40.1: due to a typo in a function name, the backup-page was not usable Download: 0.9.40.1 Note: Gentoo-ebuild and Debian packages will be released shortly as always. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  18. Dear Froxlor Community, many great new features have found their way into our latest release. Here are the biggest innovations: Debian 9.x (Stretch) Support We finally added configuration templates for the current stable release of the Debian Linux Distribution. Important for all PHP-FPM users, you need to use mod_proxy/mod_proxy_fcgi as there is no libapache2-mod-fastcgi anymore. Multiple PHP-FPM installations Users with more than one PHP Version installed on their system were forced to use FCGID until now if they wanted to assign different versions of PHP to different customers or domains. This can now also be done for PHP-FPM. Some of the settings have moved from the global settings to a new section in the admin PHP menu called PHP-FPM version. Here you can add all the PHP-versions you have installed on your system with their corresponding config-path, restart-command, etc. In PHP-Configurations you can then choose the desired PHP-FPM version from a select-box. Settings Import / Export When installing Froxlor on multiple systems with equal settings, you can now export your settings from one intallation and import them to another. System-Hostname, default IP addresses and a few more variables that are either system specific or filled by the installation process anyway are being omitted. This feature will be "older version" compatible in later versions, meaning you will be able to import settings from 0.9.39 into newer versions of Froxlor. Please note that this new feature requires the PHP-json extension to be installed and loaded. Let customers choose PHP configuration When adding a new or editing an existing customer, the admin/reseller can now select from all available PHP configurations which of them are usable for the customer. If none is selected, the one the admin used when adding the domain is used. When the customer adds a new or edits an existing (sub)domain he can choose between the assigned PHP configurations (especially helpful if you have PHP configurations for different PHP-versions). Other PHP-FPM related changes Three minor changes/additions for PHP-FPM users: You can now specify paths which will be added to the PATH environment variable in each PHP-FPM pool. There was no such entry until now. If the setting is left empty, no env[PATH] entry will be generated You can now specify values for the security.limit_extensions setting on a per PHP-FPM version basis. You can now enable '-pass-header Authorization' for each PHP configuration so authorization headers are being passed from the webserver to PHP-FPM Testing implementation of Let's Encrypts ACME v2 As announced earlier by Let's Encrypt (see https://community.letsencrypt.org/t/staging-endpoint-for-acme-v2/49605 ) the new api version will be live as of 27th of februrary and is already available for testing (staging api). You can select the ACME v2 standard in the settings if you want to test it using the staging api. Sadly, wildcard-certificates, which is one of the biggest innovations in ACME v2, will only work using the dns-reg challenge (validation via DNS record) so this won't be an option for 99% of you (also, we did not implement the dns-reg challenge, only http-reg). It would be awesome if this is going to be changed. Note: You will still be able to (and probably should) use the ACME v1 API, especially if you have any productive certificates obtained already. Minor installation changes When checking the webserver and apache is found, we now assume that apache-2.4 is used instead of 2.2 MySQL STRICT-MODE issues Some newer distributions ar enabling the so-called STRICT-MODE for the DBMS by default, which Froxlor could not deal with on installation (e.g. some tables would not be created). These issues should be resolved now. *UPDATE* 0.9.39.1: fix possible invalid php-fpm-socket filename for dummy-socket fix selected phpfpm daemon when editing php-configuration fix updating wrong column when deleting a fpm configuration get rid of the need for allow_url_fopen only let admin select php-configs that the customer is allowed to use to avoid unwanted php-config changes when customer edits domain 0.9.39.2: add script to automatically configure services from shell without the need of copy/paste from the interface 0.9.39.3: add new hosting-plans feature add domain flag to avoid generation of nginx try_files directive in webroot which is not suitable for some applications 0.9.39.4: fixed add/edit domain due to misuse of Settings-class 0.9.39.5: fixed display of imap/pop3 flag when editing hosting plans You can see all changes on Github at https://github.com/Froxlor/Froxlor/compare/0.9.38.8...0.9.39.5 Download: 0.9.39.5 Note: Gentoo-ebuild and Debian packages will be released shortly as always. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  19. Dear Froxlor Community, as our latest stable release of froxlor is quite established now, it is time for some minor bugfixes and improvements. Changes in 0.9.38.8: + added OCSP stapling support for apache2 and nginx + added libnss-extrausers support for debian/ubuntu users + added http2 support for froxlor-vhost and per-domain and domain-import + added setting to disable LE self-check + #416: added letsencrypt, HSTS settings, oscp-stapling and phpenabled-flag to Domain-import + #464: added simple smtp-settings test-page ~ #412: fixed libnss config ~ #434: allow non fqdn CNAME entries (froxlor appends zone's domain automatically if there's no trailing dot) ~ #447: fixed wildcard entries in dns editor ~ #472: generate multiline txt-record if content is too long ~ #475: corrected setting for php-fpm peardir ~ #479: removed each() keyword as it is deprecated as of php-7.2 ~ #485: added default/global directory options in apache regardless of whether fcgid/fpm is being used or not ~ #496: explicitly deactivate TLS (and auto-tls) in phpMailer when setting use-tls is OFF ~ #1697: allow underscore in DNS labels ~ #1720: do not show full path of file on php-error ~ #1726: use correct pagination in admin-log/customer-log ~ #1728: clearify field label for domain termination date ~ fixed phpenabled flag for new subdomains added by customers ~ fixed auto-update of database in cronjob if activated ~ fixed ssl integration in lighttpd You can see all changes on Github at https://github.com/Froxlor/Froxlor/compare/0.9.38.7...0.9.38.8 Download: 0.9.38.8 Note: Gentoo-ebuild and Debian packages will be released shortly as always. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  20. Dear Froxlor Community, we are proud to announce the final release of version 0.9.37 which includes a complete DNS editor for domains and also supports PowerDNS in standalone mode as nameserver. DNS-Editor Admins and customers are now able to edit the DNS settings of domains. You can freely add and remove entries - froxlor will always ensure that the basic required entries are present. These are NS, MX and A/AAAA. They will always be generated if not overwritten by a custom entry. The access to the DNS-editor can be managed on a per-customer base by the admin. Only domains that have the nameserver-flag enabled and which are allowed to be edited by the customer can have DNS records. Please keep in mind that we limited the record-types to the following list: A, AAAA, CNAME, MX, NS, SRV, TXT We are aware that DNS is way more that that and that there is always a bunch of users who need other types - patches and pull-requests are always welcomed ;-) NOTE: If you are using <=PHP-5.3 you will need to patch the file lib/functions/dns/function.CreateDomainZone.php as follows as we missed using the 'long' array syntax there (will be fixed in the first maintenance release). See https://github.com/Froxlor/Froxlor/compare/51152ef0262f...11d358133e57 --- a/lib/functions/dns/function.createDomainZone.php +++ b/lib/functions/dns/function.createDomainZone.php @@ -55,8 +55,8 @@ function createDomainZone($domain_id, $froxlorhostname = false, $isMainButSubTo if ($domain['isemaildomain'] === '1') { addRequiredEntry('@', 'MX', $required_entries); if (Settings::Get('system.dns_createmailentry')) { - foreach(['imap', 'pop3', 'mail', 'smtp'] as $record) { - foreach(['AAAA', 'A'] as $type) { + foreach(array('imap', 'pop3', 'mail', 'smtp') as $record) { + foreach(array('AAAA', 'A') as $type) { addRequiredEntry($record, $type, $required_entries); } } PowerDNS As alternative to bind, you are now able to use PowerDNS (pdns) as nameserver. Attention: you will have to create the powerdns database yourself! When using froxlor's configuraton template for powerdns, froxlor will use powerdns' configuration file to read the database-user-credentials to be able to add/edit/remove zones and records. So double check that all path's are correct. Minor enhancements You can now also customize the global customer-docroot options when using apache webserver and mod_php. Please be aware that no syntax-checking is done (as known from 'specialsettings' or 'custom vhost-content'). The warn-emails about traffic and web-usage can now be enabled and disabled separately by setting the required percentage to 0. In addition to that, admins can now specify whether specific menu-items are hidden from the customer (regardless of resources assigned to the customer). These settings are global and valid for all customers. Changes in 0.9.37: You can see all (minor) changes in our bugtracker at https://redmine.froxlor.org/versions/72 and https://redmine.froxlor.org/versions/74 Download: 0.9.37 Note: Gentoo-ebuild and Debian packages will be available shortly as usual. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  21. Dear Froxlor Community, today we are releasing our next major stable release 0.9.34 which (finally) brings configuration templates for Debian Jessie's services. The domain-import feature was enhanced, so even more fields can be specified, see http://redmine.froxlor.org/projects/froxlor/wiki/DomainBulkActionDoc for more detailed information. Configuration templates for dovecot now include managesieve / sieve so you can use server-side filtering-scripts - yay We also changed the naming of the virtual-config files for the webserver to allow the use of nth-level subdomains (sub.sub.sub.domain.tld or even deeper). And for apache, we now support mpm-itk. Additionally, a community driven feature was merged which allows the viewing of older statistics, when using awstats. Our database-integrity-check now checks for correct membership of webserver- and local froxlor-user/group when using FCGID / php-fpm or mpm-itk. Important: The already deprecated configuration templates for the following distributions have been dropped: Debian Squeeze (6.x), Ubuntu Lucid (10.04) and SUSE Linux Enterprise. We also had to drop support for FreeBSD because no one in the team uses it and can test the config (feel free to contact us, if you do!). Changes in 0.9.34: + #545: add access to older statistics when using awstats + #957: added managesieve/sieve to configuration-templates of dovecot + #1400: added support for apache mpm-itk + #1485: check for existence of ssl-files and if not, do not create ssl-related vhost-settings + #1486: added possibility to specify umask when using FCGID ~ #1488: fixed css issues ~ #1491: fixed changing of webserver-user/group in the users-table when they were changed in the settings ~ #1492: fixed missing LSB tags for php-fcgi on debian based distros ~ #1503: fixed database-connection when using sockets, do not replace 'host' value but use 'socket' ~ #1507: fixed open_basedir-path when using mod_php ~ #1512: enhanced domain-import, see http://redmine.froxlor.org/projects/froxlor/wiki/DomainBulkActionDoc ~ #1535: fixed problem when using sub-subdomain (or deeper) with apache due to file-naming ~ #1541: enhanced default ssl-cipher-list to be more secure - #xxxx: removed webftp-script as we think this is a possible security issue and not necessary You can see all changes in our bugtracker at http://redmine.froxlor.org/versions/55 Download: 0.9.34 Note: Gentoo-ebuild and Debian packages are now available. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  22. Dear Froxlor Community, we are proud to announce the final release of 0.9.36 which comes with a customer backup solution and some improvements for our Let's Encrypt implementation. Customer backup If enabled, customer are now able to backup their data from within the panel. A nightly cronjob processes the backup-jobs and stores the archive into the customer-given directory. Of course, the time interval for the cronjob can be changed according to your needs. Let's Encrypt Our implementation of LE now handles alias-domains correctly and adds them to the SAN list of the certificate-request. Changes in 0.9.36: You can see all changes in our bugtracker at https://redmine.froxlor.org/versions/71 Download: 0.9.36 Note: Gentoo-ebuild and Debian packages will be available shortly as usual. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  23. Dear Froxlor Community, we are proud to announce the final release of 0.9.35 which includes some new kick-ass features. Support for Let's Encrypt Many of you were waiting for this one for quite some time now. We finally managed to include ssl-certificate generation via Let's Encrypt directly within froxlor's interface. It's easy as a click on "use let's encrypt" when adding/editing a domain. The certificate will be created and renewed automatically. Please keep in mind that this feature is in BETA state. - Important: Let's Encrypt uses cURL - ensure you have the php-curl extension installed on your system - To ensure the Let's Encrypt cronjob is in your /etc/cron.d/froxlor file, please run the cronjob manually using the --force parameter, e.g. php /var/www/froxlor/scripts/froxlor_master_cronjob.php --force - As Let's Encrypt uses requests to a special URI you need to configure an Alias for your webserver to do so follow these simple steps: - activate Let's Encrypt in the settings - as admin, goto Configuration -> select your distro -> select Webserver -> select your software - copy'n'paste the acme.conf part of the configration template - restart/reload webserver Multiple default IP addresses You can now select multiple IP addresses you want to be set as default for new domains in the System-settings. Until now it was only possible to define one default IP address. This is especially handy if your server has an IPv4 and IPv6 address for example. Auto-Update As of the release candidate 0.9.35-rc1, you are be able to update to future releases from within the webinterface. It will automatically download the latest archive and extract it - and you're done. Most of you will first enjoy this after our next release ;-) Menu structure We re-organized some menu-items to reflect their corresponding affinity. The former "Server" category is now called "System". PHP related settings / information are now in their own category. Also "IPs and Ports" and "Recalculate resource usage" were put in the "Resources" category (where they belong). Set MYSQL_PASSWORD on configuration templates It is now possible to set the MYSQL_PASSWORD value (via JavaScript, only client-side) when configurating services with our templates. This eases the process and you do not need to search and replace for MYSQL_PASSWORD in the config files again (also you are likely to not miss any of the occurences). System-Log for customer The customers are now able to see actions related to their account in the menu-item "System-Log", depending on the log-level set in the settings. This is also very helpful for response-messages from Let's Encrypt. Changes in 0.9.35: You can see all changes in our bugtracker at http://redmine.froxlor.org/versions/68 and http://redmine.froxlor.org/versions/70 Download: 0.9.35 Note: Gentoo-ebuild and Debian packages are now available. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  24. Dear Froxlor Community, as our latest stable release of froxlor is quite established now, it is time for some minor bugfixes and improvements. Changes in 0.9.34.1 / 0.9.34.2: + #1562: added always_populate_raw_post_data when create php-fpm config file + #1566: added Apache 2.4 als Auswahl im Setup + #1567: added orange/warning color in web- and traffic-progress bars (admin/customer overview) ~ #611: fixed function.findDirs stops after first unreadable directory ~ #1517: fixed SUSE config files not accessible ~ #1550: fixed Read config file in panels ~ #1553: fixed frische Installation auf openSuSE 13.2 ~ #1554: fixed Password Reset defect / MD5 hashed password recalculated to faulty hash ~ #1555: fixed PHP Notice: Undefined variable: domain in /var/www/froxlor/scripts/jobs/cron_tasks.inc.http.10.apache.php on line 321 ~ #1556: fixed libnss-mysql might return wrong username ~ #1559: fixed incorrect Mail Path ~ #1565: fixed vhosts f?r deaktivierte user werden erstellt ~ #1568: fixed ssl settings werden bei rewrite nicht angewendet ~ #1575: fixed Debian Wheezy postfix wrong sql statements or wrong main.cf ~ #1578: fixed Warnung bei Standard FTP-User ~ #1582: fixed Install prompt in Froxlor incorrect - Bind9 Start Error rndc: connect failed: 127.0.0.1#953: connection refused ~ #1583: fixed SSL aktiv obwohl kein Zertifikat hinterlegt wurde You can see all changes in our bugtracker at http://redmine.froxlor.org/versions/69 Download: 0.9.34.2 Update: Due to an issue with the nginx-cron file we updated the 0.9.34.1 release to 0.9.34.2 Note: Gentoo-ebuild and Debian packages are now available. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
  25. Dear Froxlor-community, due to a severe security issue in the database logging system, we strongly recommend to update your current froxlor installation to 0.9.33.2. We also recommend to remove any content from the /froxlor/logs/ directory. Download: 0.9.33.2 Note: Gentoo-ebuild and Debian packages are now available.. Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net. Thank you, d00p
×
×
  • Create New...