Major upgrade of mail server
I have a mail server in AWS that is currently running Ubuntu 18. Every time I log in, I am reminded that I can upgrade to Ubuntu 20.
On Ubuntu 18, the dovecot version is 3.3.0-1ubuntu0.3. On Ubuntu 20, it is 2.3.7.2-1ubuntu3. Many other packages, probably including the mysql server, would also be upgraded.
Dovecot and Postfix use a postfixadmin database in mysql for users, and postfix is using dovecot-lda to deliver mail. I am using managesieve from dovecot on roundcube webmail. As far as I know, my own user is the only one with sieve scripts actually in use ... and I have a LOT of filters/folders for various mailing lists.
I've been a little bit terrified of doing an upgrade, because I do have a couple of people using my mail server for real work email and I don't want to disrupt them.
I'm writing today to find out what are the likely pain points I might encounter when doing this kind of major upgrade, and if there is any helpful information that can help me get through those problems. I'm hoping that it will go smoothly and everything just works.
Here's the doveconf -n output: https://apaste.info/FUgF
If I have been silly enough to include sensitive data from the config, I would appreciate a heads up so I know what passwords to change. I did a quick glance and didn't see anything.
Thanks, Shawn
First thing to note is that Ubuntu 18.04 is a Long Term Service release, and will be supported until 2023. So no matter how naggy Ubuntu is, you don't actually HAVE to upgrade at this point. You may disable the prompt if if bothers you: just remove or comment out the relevant file in /etc/update-motd.d/
Now the pressure is off, and you have a bit more time, maybe the best idea would be to build and configure a new server using Ubuntu 20, or any other distro, and then migrate the data over to it with dsync. That affords you an opportunity to test the new config before one final sync, and switching the MX records to point to the new server.
If for any reason you are locked into upgrading the current server, the only advice I can offer from a recent dovecot migration between an Ubuntu 18 server and a Ubuntu 20 server, was that the default SSL settings are considerably improved, which meant that a lot of the clients, who were using ancient versions of Outlook, were unable to connect. I needed to downgrade the security (against my better judgement) in order to let them connect, commenting out the line # ssl_min_protocol=TLSv1.2 so that it defaulted to TLSv1. You might wish to bear this in mind, although any modern email client won't have any problems.
Good luck!
P.
On 08/07/2021 09.15, Shawn Heisey wrote:
I have a mail server in AWS that is currently running Ubuntu 18. Every time I log in, I am reminded that I can upgrade to Ubuntu 20.
On Ubuntu 18, the dovecot version is 3.3.0-1ubuntu0.3. On Ubuntu 20, it is 2.3.7.2-1ubuntu3. Many other packages, probably including the mysql server, would also be upgraded.
Dovecot and Postfix use a postfixadmin database in mysql for users, and postfix is using dovecot-lda to deliver mail. I am using managesieve from dovecot on roundcube webmail. As far as I know, my own user is the only one with sieve scripts actually in use ... and I have a LOT of filters/folders for various mailing lists.
I've been a little bit terrified of doing an upgrade, because I do have a couple of people using my mail server for real work email and I don't want to disrupt them.
I'm writing today to find out what are the likely pain points I might encounter when doing this kind of major upgrade, and if there is any helpful information that can help me get through those problems. I'm hoping that it will go smoothly and everything just works.
Here's the doveconf -n output: https://apaste.info/FUgF
If I have been silly enough to include sensitive data from the config, I would appreciate a heads up so I know what passwords to change. I did a quick glance and didn't see anything.
Thanks, Shawn
On 2021-07-08 1:29 a.m., Plutocrat wrote:
First thing to note is that Ubuntu 18.04 is a Long Term Service release, and will be supported until 2023. So no matter how naggy Ubuntu is, you don't actually HAVE to upgrade at this point. You may disable the prompt if if bothers you: just remove or comment out the relevant file in /etc/update-motd.d/
Now the pressure is off, and you have a bit more time, maybe the best idea would be to build and configure a new server using Ubuntu 20, or any other distro, and then migrate the data over to it with dsync. That affords you an opportunity to test the new config before one final sync, and switching the MX records to point to the new server.
It would also be a good opportunity to switch to using the official Dovecot repositories. https://repo.dovecot.org/
On 08/07/2021 09.15, Shawn Heisey wrote:
I have a mail server in AWS that is currently running Ubuntu 18. Every time I log in, I am reminded that I can upgrade to Ubuntu 20.
On Ubuntu 18, the dovecot version is 3.3.0-1ubuntu0.3. On Ubuntu 20, it is 2.3.7.2-1ubuntu3. Many other packages, probably including the mysql server, would also be upgraded.
It's generally a good thing to be reminded to upgrade. Regardless of whether or not a certain release is considered Long Term Service — if there are major unresolved problems with the platform or supported software that are not fixed — then it will be necessary and appropriate to upgrade as soon as the "nag" issue is fixed in the next release assuming other problems are not being introduced at the same time.
Otherwise if everything "works" and there are no major security issues, then it's not such a hurry, but plans should be made to upgrade in any case.
On July 8, 2021 5:46:25 AM AKDT, Oscar del Rio delrio@mie.utoronto.ca wrote:
On 2021-07-08 1:29 a.m., Plutocrat wrote:
First thing to note is that Ubuntu 18.04 is a Long Term Service release, and will be supported until 2023. So no matter how naggy Ubuntu is, you don't actually HAVE to upgrade at this point.
-- Sent from my Android device with K-9 Mail. Please excuse my brevity.
On 7/8/2021 7:46 AM, Oscar del Rio wrote:
It would also be a good opportunity to switch to using the official Dovecot repositories. https://repo.dovecot.org/
I tried this, and at first couldn't figure out why the packages were in a broken state that wouldn't install. Then I realized I had added the repo for focal (20.04) but I'm still on bionic (18.04). Now the packages are good to go for getting dovecot upgraded and problems resolved before I do the OS upgrade. I have gone through the notes on the wiki for upgrading from 2.2 to 2.3 and only found a very small number of things that needed updating.
I'm going to start doing upgrades in about an hour.
Thanks, Shawn
Hi Shawn
I recently did a similar upgrade project of a dovecot-postfix-amavis Mailserver from CentOS 6 to CentOS 7.
What I did was first creating a new test-server with the new OS. Than I copied all the maildirs from the productive server to the testing server, so I could simulate the upgrade without any interuption for the users.
I then configured the new versions (specially dovecot) as close as possible to the old configuration. => Never introduce new features as part of an upgrade, as it complicates the upgrade and makes it much harder to trace errors. If you want to use new features of the updated sofware plan the introduction of these as a new project after successful migration. For this you can easily re-use the test-server you’ve built in the first part to verify they will not break anything.
After I was confident, that everything will work, I planed a short downtime for the mail service over night, did a full backup and a VM Snapshot (very helpful, if you are running a virtualized mailserver!) and just re-installed the new OS, upgrading the server in-place. After the imnstallation and initial configuration, I applied the new configuration to all mail components and testet each of them to ensure they are working properly.
good luck, Steven
-- https://steven.varco.ch/ https://www.tech-island.com/
Am 08.07.2021 um 03:15 schrieb Shawn Heisey elyograg@elyograg.org:
I have a mail server in AWS that is currently running Ubuntu 18. Every time I log in, I am reminded that I can upgrade to Ubuntu 20.
On Ubuntu 18, the dovecot version is 3.3.0-1ubuntu0.3. On Ubuntu 20, it is 2.3.7.2-1ubuntu3. Many other packages, probably including the mysql server, would also be upgraded.
Dovecot and Postfix use a postfixadmin database in mysql for users, and postfix is using dovecot-lda to deliver mail. I am using managesieve from dovecot on roundcube webmail. As far as I know, my own user is the only one with sieve scripts actually in use ... and I have a LOT of filters/folders for various mailing lists.
I've been a little bit terrified of doing an upgrade, because I do have a couple of people using my mail server for real work email and I don't want to disrupt them.
I'm writing today to find out what are the likely pain points I might encounter when doing this kind of major upgrade, and if there is any helpful information that can help me get through those problems. I'm hoping that it will go smoothly and everything just works.
Here's the doveconf -n output: https://apaste.info/FUgF
If I have been silly enough to include sensitive data from the config, I would appreciate a heads up so I know what passwords to change. I did a quick glance and didn't see anything.
Thanks, Shawn
participants (5)
-
justina colmena ~biz
-
Oscar del Rio
-
Plutocrat
-
Shawn Heisey
-
Steven Varco