Koozali.org: home of the SME Server

Obsolete Releases => SME 7.x Contribs => Topic started by: ltwally on April 01, 2010, 03:37:46 AM

Title: roundcube upgrade
Post by: ltwally on April 01, 2010, 03:37:46 AM

The version of Roundcube in the contribs works fine... but it is over 3 years old.  In that time, there have been several security holes exploited (and hopefully patched).

Has anyone had any success upgrading to the latest version (0.3.1.1) ? 
Thanks

Title: Re: roundcube upgrade
Post by: janet on April 01, 2010, 04:16:51 AM

ltwally

The generic approach is to go to the website for the application, read their upgrade procedures and recommendations, note any system or package dependency requirements for the newer (latest) application version, and then follow the upgrade instructions.

Please write up your notes and add them to an exiting wiki article or create a new one.

Title: Re: roundcube upgrade
Post by: ltwally on April 01, 2010, 05:57:54 AM

Quote from: mary on April 01, 2010, 04:16:51 AM

ltwally

The generic approach is to go to the website for the application, read their upgrade procedures and recommendations, note any system or package dependency requirements for the newer (latest) application version, and then follow the upgrade instructions.

Please write up your notes and add them to an exiting wiki article or create a new one.

That was insightful.  Thank you.

Now... if anyone else has actually done the procedure, would you mind posting your thoughts on the experience?

Title: Re: roundcube upgrade
Post by: janet on April 01, 2010, 08:34:14 AM

ltwally

Did you do an advanced search of the forums or read the roundcube website

Here is says that php 5.2.1 is required so that means using the sme php5 cgi upgrade or sme 8
http://roundcube.net/about#features

Here are the upgrade instructions on the roundcube site
http://trac.roundcube.net/wiki/Howto_Upgrade


Here is a generic approach for ampache (which is generically similar approach to upgrading any app)
http://forums.contribs.org/index.php/topic,43289.0.html

See also these roundcube forum posts
http://forums.contribs.org/index.php/topic,45334.msg220032.html#msg220032
http://forums.contribs.org/index.php/topic,44000.msg210786.html#msg210786

Title: Re: roundcube upgrade
Post by: ltwally on April 01, 2010, 08:38:02 PM

Mary,

I had already found most of that... I was just asking for some feedback on anyone that had done the process.  Nothing else.

Though, I had not seen http://forums.contribs.org/index.php/topic,45334.msg220032.html#msg220032

Good to know there weren't any surprises.

Thank you for that link.

Title: Re: roundcube upgrade
Post by: piran on April 01, 2010, 09:31:33 PM

Quote from: ltwally on April 01, 2010, 03:37:46 AM

...there have been several security holes exploited (and hopefully patched).

I can't provide you with any RC experience on your project.
However I can state that almost every (failed) exploit burst
I see in the logs seems to be roundcube-related. Be thorough;~)