[Dovecot] Suggestions for upgrading dovecot 1.0.7 Redhat EL 5.x
Hi,
we still have our solid rock dovecot 1.0.7 Redhat el 5.x up and running.
We don't need much magic or special setups.
However we'd like to think what might be the next step in upgrading our setup. Each user one mbox mailbox. About 500 imap/pop3 accounts, 400GB data.
First of all: to what version is a good step from 1.0?
Can we get a rpm from e.g. atrpms repository?
Dose anyone has any experiences in doing such a "big" step forward?
Or should we think of migrating to a total updated Redhat EL 6.x / Dovecot 2.0.x system?
Any suggestions and comments are welcome.
Regards . G. Reinicke-- Götz Reinicke IT-Koordinator
Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke@filmakademie.de
Filmakademie Baden-Württemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de
Eintragung Amtsgericht Stuttgart HRB 205016
Vorsitzender des Aufsichtsrats: Jürgen Walter MdL Staatssekretär im Ministerium für Wissenschaft, Forschung und Kunst Baden-Württemberg
Geschäftsführer: Prof. Thomas Schadt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Tue, 26 Feb 2013, Götz Reinicke - IT Koordinator wrote:
we still have our solid rock dovecot 1.0.7 Redhat el 5.x up and running.
We don't need much magic or special setups.
The configuration has been split up since v1.0, but you can grep through the files and find the spots easily. Also, if you didn't changed much in v1.0 (that is how I understand your "don't need much magic or special setups"), the chances are good, that you'll not change much in v2.1 or v2.2.
However we'd like to think what might be the next step in upgrading our setup. Each user one mbox mailbox. About 500 imap/pop3 accounts, 400GB data.
First of all: to what version is a good step from 1.0?
I would setup a Dovecot v2.2 server, it's RC2, but Dovecot is usually more stable than other software ... .
However, I would install the whole server anew, no automatic upgrade or whatsoever.
Dose anyone has any experiences in doing such a "big" step forward?
I have upgraded a v1.0 to v2.1 now. No big deal from Dovecot.
Can we get a rpm from e.g. atrpms repository?
Ah, OK, then use the most current version available :-) I build Dovecot from source.
Or should we think of migrating to a total updated Redhat EL 6.x / Dovecot 2.0.x system?
I don't know Redhat, but it seems to be wise to upgrade. What's the "Known Bug List" or "Known Security Holes" in Redhat EL 5.x?
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBUSy9Gl3r2wJMiz2NAQLjEQf+Ju37uRQ7FCM+F9yjS3vOqJIZeFF7HEvZ UvDQjWkb1B7hJcfBOSP/TtsdI2BBiEeUzs1m+1QC4oxiz5Dy3ids1AAl7adhqm1e o83YfpQVIBdITF51myq6PLLD8+AwmaNIcTadURPBOrM+ZpOmCn9k433QVmhR6HL5 3xgIHoqGzEz9TbFnGji5iZ8XrwvypJgP50tASPn6INXywKJ0qOUCd/ZeuupJs4dt tYLdZEOHwUs5L77gvANDn/uXB7Yyho4ovtapEsrCeRhDKriABzkuwySGWuB5OHZ9 bhwqU6/lF8gAr/l1kCjiavht+tMQT/lnNMWdUfMTsUBT3rwm/usVnw== =hL5a -----END PGP SIGNATURE-----
Am 26.02.13 14:48, schrieb Steffen Kaiser:
On Tue, 26 Feb 2013, Götz Reinicke - IT Koordinator wrote:
we still have our solid rock dovecot 1.0.7 Redhat el 5.x up and running.
We don't need much magic or special setups.
The configuration has been split up since v1.0, but you can grep through the files and find the spots easily. Also, if you didn't changed much in v1.0 (that is how I understand your "don't need much magic or special setups"), the chances are good, that you'll not change much in v2.1 or v2.2.
I'd review the configfiles and especially the great update documentation from timo. For now we look save.
As far as I remember we just adjusted the mailbox path (mail_location) and protocols (imaps/pop3s). And we use ssl certificates.
No mysql, sieve or quota etc stuff.
However we'd like to think what might be the next step in upgrading our setup. Each user one mbox mailbox. About 500 imap/pop3 accounts, 400GB data.
First of all: to what version is a good step from 1.0?
I would setup a Dovecot v2.2 server, it's RC2, but Dovecot is usually more stable than other software ... .
However, I would install the whole server anew, no automatic upgrade or whatsoever.
That's the point :) currently I don't have the hardware and time to install a new system. So we thought doing a minor upgrade will improve things a bit and we can get rid of one old bug without getting to much trouble by doing a very big step ahead.
Dose anyone has any experiences in doing such a "big" step forward?
I have upgraded a v1.0 to v2.1 now. No big deal from Dovecot.
I read something about the index and mailbox/mailstorage formats might have changed a bit and that dovecot is converting/correcting tham on the flight.
Did you notice something like that?
Can we get a rpm from e.g. atrpms repository?
Ah, OK, then use the most current version available :-) I build Dovecot from source.
Or should we think of migrating to a total updated Redhat EL 6.x / Dovecot 2.0.x system?
I don't know Redhat, but it seems to be wise to upgrade. What's the "Known Bug List" or "Known Security Holes" in Redhat EL 5.x?
What do you mean by that? BTW it's strange to me that Redhat never updated the main imap server part in there lon tearm supported enterprice distribution ... (RH EL 6 comes with dovecot 2.0 ok ... )
Regards . Götz-- Götz Reinicke - IT-Koordinator - Filmakademie Baden-Württemberg GmbH
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Wed, 27 Feb 2013, Götz Reinicke - IT Koordinator wrote:
I don't know Redhat, but it seems to be wise to upgrade. What's the "Known Bug List" or "Known Security Holes" in Redhat EL 5.x?
What do you mean by that? BTW it's strange to me that Redhat never updated the main imap server part in there lon tearm supported enterprice distribution ... (RH EL 6 comes with dovecot 2.0 ok ... )
Are there security considerations to upgrade the base system, kernel remote exploits a.s.o.
You could look into building Dovecot from source to get v2.1 or v2.2.
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBUS4s8l3r2wJMiz2NAQKmSgf/R1+ThosjK3LKhllJLilqxhfc3G/pd+rM 1q9MkeBHqDdxzvA2vyZ9k2j74wxnBU32JFAIlaaGIUPfonC/eRXgcrI2thCWTlqg xUWnH2vl+RdvT+/LGW1fZoyrpbPQ1Hn+b2okShmHTBZKgeDDXRq0p69Tws1TA1kx sQGhr+XGFssQt3HldNJEpL9UcXPmxWUm8ZtJJoimthVaaCSAd5KgrDtdXdOJdiLq unD+I5Onmn9Lx8loYhwQm+sfpF/wFoIkV+EXUKwRnoOUg6o8o1lCjzX5mRugmDLk W7U4Qn6mMrTHOW4jHgYpRyl3bMianW3+JnsoZFPKMMu/vAEpzOfgOA== =Dvxq -----END PGP SIGNATURE-----
Am 27.02.13 16:57, schrieb Steffen Kaiser:
On Wed, 27 Feb 2013, Götz Reinicke - IT Koordinator wrote:
I don't know Redhat, but it seems to be wise to upgrade. What's the "Known Bug List" or "Known Security Holes" in Redhat EL 5.x?
What do you mean by that? BTW it's strange to me that Redhat never updated the main imap server part in there lon tearm supported enterprice distribution ... (RH EL 6 comes with dovecot 2.0 ok ... )
Are there security considerations to upgrade the base system, kernel remote exploits a.s.o.
I got your point. Hmm RHEL 5.9 is still well supported till Q1 2014 and further with minor or critical updates till 2017. (O.K. no dovecot update :D )
For now no really need for us to rush to an other major release.
You could look into building Dovecot from source to get v2.1 or v2.2.
May be I'll give that a try.
Thanks for your suggestions and feedback . Regards . Götz-- Götz Reinicke IT-Koordinator
Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke@filmakademie.de
Filmakademie Baden-Württemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de
Eintragung Amtsgericht Stuttgart HRB 205016
Vorsitzender des Aufsichtsrats: Jürgen Walter MdL Staatssekretär im Ministerium für Wissenschaft, Forschung und Kunst Baden-Württemberg
Geschäftsführer: Prof. Thomas Schadt
----- Original Message -----
From: Götz Reinicke - IT Koordinator goetz.reinicke@filmakademie.de To: dovecot@dovecot.org Cc: Sent: Friday, 1 March 2013, 11:57 Subject: Re: [Dovecot] Suggestions for upgrading dovecot 1.0.7 Redhat EL 5.x
-->%------>%------>%------>%------>%------
You could look into building Dovecot from source to get v2.1 or v2.2.
May be I'll give that a try.
Thanks for your suggestions and feedback . Regards . Götz
-- Götz Reinicke IT-Koordinator
Yeah,
I think it's the only way to get a newer version of dovecot on redhat related OSs.
s.
"I merely function as a channel that filters music through the chaos of noise"
- Vangelis
RPMs for 2.1.1 on RHEL 5 .x are available here: http://packages.atrpms.net/dist/el5/dovecot/
It broke the ability to do NTLM authentication in our case however, while 1.0.7 worked fine. Not sure if this is a problem with the RPMs, the new version of Dovecot, or a problem with our setup but the research we've done so far makes it look like an issue with the new version and 5.x.
- Phil
-- View this message in context: http://dovecot.2317879.n4.nabble.com/Suggestions-for-upgrading-dovecot-1-0-7... Sent from the Dovecot mailing list archive at Nabble.com.
Am 26.02.13 12:08, schrieb Götz Reinicke - IT Koordinator: <...>
Hi folks,
after some different considerations, we decided to do "just" a minor upgrade on the old/current hardware and OS version.
We did the rpm upgrade from 1.0.x to 1.2.x and for now there are no problems. Just a few more warnings regarding "Corrupted index cache file".
But no user complains. From my POV there is a significant performance boost on my large mailboxes...
At the time we can get new hardware and maybe change some other things in our setup we will go wit 2.x I bet.
so thanks for al the feedback! Regards . Götz-- Götz Reinicke IT-Koordinator
Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke@filmakademie.de
Filmakademie Baden-Württemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de
Eintragung Amtsgericht Stuttgart HRB 205016
Vorsitzender des Aufsichtsrats: Jürgen Walter MdL Staatssekretär im Ministerium für Wissenschaft, Forschung und Kunst Baden-Württemberg
Geschäftsführer: Prof. Thomas Schadt
participants (4)
-
Götz Reinicke - IT Koordinator
-
PhilQ
-
Spyros Tsiolis
-
Steffen Kaiser