Jump to content
Froxlor Forum
d00p

Maintenance Release 0.9.38.8 - Let's Encrypt for panel, HSTS / OSCP settings and ssl-cert overview

Recommended Posts

Dear Froxlor Community,
 
as our latest stable release of froxlor is quite established now, it is time for some minor bugfixes and improvements.

Changes in 0.9.38.8:

+ added OCSP stapling support for apache2 and nginx

+ added libnss-extrausers support for debian/ubuntu users

+ added http2 support for froxlor-vhost and per-domain and domain-import

+ added setting to disable LE self-check

+ #416: added letsencrypt, HSTS settings, oscp-stapling and phpenabled-flag to Domain-import

+ #464: added simple smtp-settings test-page


~ #412: fixed libnss config

~ #434: allow non fqdn CNAME entries (froxlor appends zone's domain automatically if there's no trailing dot)

~ #447: fixed wildcard entries in dns editor

~ #472: generate multiline txt-record if content is too long

~ #475: corrected setting for php-fpm peardir

~ #479: removed each() keyword as it is deprecated as of php-7.2

~ #485: added default/global directory options in apache regardless of whether fcgid/fpm is being used or not

~ #496: explicitly deactivate TLS (and auto-tls) in phpMailer when setting use-tls is OFF

~ #1697: allow underscore in DNS labels

~ #1720: do not show full path of file on php-error

~ #1726: use correct pagination in admin-log/customer-log

~ #1728: clearify field label for domain termination date

~ fixed phpenabled flag for new subdomains added by customers

~ fixed auto-update of database in cronjob if activated

~ fixed ssl integration in lighttpd

You can see all changes on Github at https://github.com/Froxlor/Froxlor/compare/0.9.38.7...0.9.38.8

Download: 0.9.38.8

Note: Gentoo-ebuild and Debian packages will be released shortly as always.

Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net.

Thank you,
d00p

Share this post


Link to post
Share on other sites
7 minutes ago, Afox said:

still not fully compatible with Debian Stretch, correct?

compatible, sure, there are just no config-templates. You can still just adjust jessie configs for example (if you're firm in services configuration)

Share this post


Link to post
Share on other sites
7 hours ago, Chaos234 said:

How is the state for the debian update package? I checked it two times but it hasn't found the update yet.

Will be released as soon as possible - sorry, no ETA

Share this post


Link to post
Share on other sites

Bin neu hier - und wollte mich auf dem Demo-Account umsehen.

Hängt beim Update demo.froxlor.org/admin_updates.php

Schade, war ganz nützlich als Vorlage zum Einrichten von Froxlor.

Danke für die Software - kenne Plesk und Confixx, scheint eine prima Alternative zu sein.

Markus

Share this post


Link to post
Share on other sites

Geht schon wieder, sorry, ich spiel da ganz gern mal dran rum :)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Similar Content

    • By d00p
      Dear Froxlor Community,

      we are proud to announce the final release of version 0.9.37 which includes a complete DNS editor for domains and also supports PowerDNS in standalone mode as nameserver.

      DNS-Editor
       
      Admins and customers are now able to edit the DNS settings of domains. You can freely add and remove entries - froxlor will always ensure that the basic required entries are present. These are NS, MX and A/AAAA. They will always be generated if not overwritten by a custom entry.
       
      The access to the DNS-editor can be managed on a per-customer base by the admin. Only domains that have the nameserver-flag enabled and which are allowed to be edited by the customer can have DNS records.
       
      Please keep in mind that we limited the record-types to the following list: A, AAAA, CNAME, MX, NS, SRV, TXT
       
      We are aware that DNS is way more that that and that there is always a bunch of users who need other types - patches and pull-requests are always welcomed ;-)
       
      NOTE: If you are using <=PHP-5.3 you will need to patch the file lib/functions/dns/function.CreateDomainZone.php as follows as we missed using the 'long' array syntax there (will be fixed in the first maintenance release). See https://github.com/Froxlor/Froxlor/compare/51152ef0262f...11d358133e57
      --- a/lib/functions/dns/function.createDomainZone.php +++ b/lib/functions/dns/function.createDomainZone.php @@ -55,8 +55,8 @@ function createDomainZone($domain_id, $froxlorhostname = false, $isMainButSubTo if ($domain['isemaildomain'] === '1') { addRequiredEntry('@', 'MX', $required_entries); if (Settings::Get('system.dns_createmailentry')) { - foreach(['imap', 'pop3', 'mail', 'smtp'] as $record) { - foreach(['AAAA', 'A'] as $type) { + foreach(array('imap', 'pop3', 'mail', 'smtp') as $record) { + foreach(array('AAAA', 'A') as $type) { addRequiredEntry($record, $type, $required_entries); } }  
      PowerDNS
       
      As alternative to bind, you are now able to use PowerDNS (pdns) as nameserver.
       
      Attention: you will have to create the powerdns database yourself! When using froxlor's configuraton template for powerdns, froxlor will use powerdns' configuration file to read the database-user-credentials to be able to add/edit/remove zones and records. So double check that all path's are correct.
       
      Minor enhancements

      You can now also customize the global customer-docroot options when using apache webserver and mod_php. Please be aware that no syntax-checking is done (as known from 'specialsettings' or 'custom vhost-content').
       
      The warn-emails about traffic and web-usage can now be enabled and disabled separately by setting the required percentage to 0.
       
      In addition to that, admins can now specify whether specific menu-items are hidden from the customer (regardless of resources assigned to the customer). These settings are global and valid for all customers.


      Changes in 0.9.37:
       
      You can see all (minor) changes in our bugtracker at https://redmine.froxlor.org/versions/72 and https://redmine.froxlor.org/versions/74

      Download: 0.9.37

      Note: Gentoo-ebuild and Debian packages will be available shortly as usual.

      Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net.

      Thank you,
      d00p
    • By d00p
      Dear Froxlor Community,
       
      we are proud to announce the final release of 0.9.36 which comes with a customer backup solution and some improvements for our Let's Encrypt implementation.
       
      Customer backup
       
      If enabled, customer are now able to backup their data from within the panel. A nightly cronjob processes the backup-jobs and stores the archive into the customer-given directory. Of course, the time interval for the cronjob can be changed according to your needs.

      Let's Encrypt

      Our implementation of LE now handles alias-domains correctly and adds them to the SAN list of the certificate-request.

      Changes in 0.9.36:
      You can see all changes in our bugtracker at https://redmine.froxlor.org/versions/71

      Download: 0.9.36

      Note: Gentoo-ebuild and Debian packages will be available shortly as usual.

      Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net.

      Thank you,
      d00p
    • By d00p
      Dear Froxlor Community,
       
      we are proud to announce the final release of 0.9.35 which includes some new kick-ass features.
       
      Support for Let's Encrypt
       
      Many of you were waiting for this one for quite some time now. We finally managed to include ssl-certificate generation via Let's Encrypt directly within froxlor's interface. It's easy as a click on "use let's encrypt" when adding/editing a domain. The certificate will be created and renewed automatically.
      Please keep in mind that this feature is in BETA state.
       
      - Important: Let's Encrypt uses cURL - ensure you have the php-curl extension installed on your system
       
      - To ensure the Let's Encrypt cronjob is in your /etc/cron.d/froxlor file, please run the cronjob manually using the --force parameter, e.g.
      php /var/www/froxlor/scripts/froxlor_master_cronjob.php --force - As Let's Encrypt uses requests to a special URI you need to configure an Alias for your webserver to do so follow these simple steps:
      - activate Let's Encrypt in the settings - as admin, goto Configuration -> select your distro -> select Webserver -> select your software - copy'n'paste the acme.conf part of the configration template - restart/reload webserver Multiple default IP addresses
       
      You can now select multiple IP addresses you want to be set as default for new domains in the System-settings. Until now it was only possible to define one default IP address. This is especially handy if your server has an IPv4 and IPv6 address for example.
       
      Auto-Update
       
      As of the release candidate 0.9.35-rc1, you are be able to update to future releases from within the webinterface. It will automatically download the latest archive and extract it - and you're done. Most of you will first enjoy this after our next release ;-)
       
      Menu structure
       
      We re-organized some menu-items to reflect their corresponding affinity. The former "Server" category is now called "System". PHP related settings / information are now in their own category. Also "IPs and Ports" and "Recalculate resource usage" were put in the "Resources" category (where they belong).
       
      Set MYSQL_PASSWORD on configuration templates
       
      It is now possible to set the MYSQL_PASSWORD value (via JavaScript, only client-side) when configurating services with our templates. This eases the process and you do not need to search and replace for MYSQL_PASSWORD in the config files again (also you are likely to not miss any of the occurences).
       
      System-Log for customer
       
      The customers are now able to see actions related to their account in the menu-item "System-Log", depending on the log-level set in the settings. This is also very helpful for response-messages from Let's Encrypt.
       
      Changes in 0.9.35:
      You can see all changes in our bugtracker at http://redmine.froxlor.org/versions/68 and http://redmine.froxlor.org/versions/70

      Download: 0.9.35

      Note: Gentoo-ebuild and Debian packages are now available.

      Visit http://www.froxlor.org or join our IRC channel #froxlor on irc.freenode.net.

      Thank you,
      d00p


×