March 2011

Clamav and OS X 10.6.7

For those of you who have installed Clamav, you may have noticed that there was a warning about a bug in bzip which mean that clamav couldn’t use it while scanning. With the 10.6.7 update the bug in bzip is no longer present. Apple in their wisdom did not update to the latest version of bzip, they instead fixed the bug in the currently installed version of bzip (1.0.5).

Now that the bug is fixed, clamav is able to use bzip. Unfortunately, for those of us who compiled and installed clamav before the 10.6.7 update, clamav needs to be recompiled and installed to do so.

Simply follow the updating instructions as though clamav 0.97 were an update and not a simply a rebuild.
Upgrading ClamAV.

There is no need to reconfigure anything.

Postfix updated to 2.8.2

Here is a new version of Postfix, just released and I’ve got it tested on Snow Leopard and Leopard on my test machines. It solves some small bugs as listed below:

  • Bugfix: postscreen DNSBL scoring error. When a client disconnected and then reconnected before all DNSBL results for the earlier session arrived, DNSBL results for the earlier session would be added to the score for the later session. This is very unlikely to have affected any legitimate mail.
  • Workaround: the SMTP client did not support mail to [ipv6:ipv6addr].
  • Portability: FreeBSD closefrom() was back-ported to FreeBSD 7, breaking FreeBSD 7.x support retroactively.
  • Portability: the SUN compiler had trouble with a pointer expression of the form “(“text1″ “text2″) + constant” so we don’t try to be so clever.

Some people have reported problems with updating from an older version (before 2.8.x) that the TLS is no longer working. If you upgrade please add this line to your configuration file:

smtpd_tls_exclude_ciphers = SSLv2, aNULL, ADH, eNULL

and restart postfix. Everything should work as expected.

As usual you can read the instructions on how to upgrade Postfix at Upgrading Postfix.

Mac OS X update 10.6.7 and Security Update 2011-001

I’ve just installed the updates on all my test machines running Snow Leopard 10.6.7 and Leopard 10.5.8 before running it on my production server. I did a couple of tests on the machines and could not see an immediate problem. Therefore I’m happy to inform you that the Mac OS X 10.6.7 update does not introduce any problem for our setup.

The Security Update 2011-001 however does change something on Leopard. I’ve noticed that it adds apple’s idea of a security feature to the configuration file. To correct it please comment out or delete the following line from ‘/etc/postfix/‘:

inet_interfaces = localhost

Restart postfix (reloading config does not work) with:

sudo postfix stop

Postfix should restart automatically (if not run “sudo postfix start”).

PHP released 5.3.6

The PHP development team just released 5.3.6. I haven’t found any problem with this version and I installed it on most of my test servers.

There are a lot of bugs solved in this release, you can read all about them in the ChangeLog.

For instructions on how to upgrade PHP please read: Upgrading PHP.

MySQL released 5.5.10

MySQL released a new version of the 5.5.x branch which is already usuable in our setup when you read this blogpost. It works perfectly on my test machine. It includes several high-impact changes to address scalability and performance issues in MySQL Server. Please note that MySQL 5.5.10 does also have an incompatible change besides the enhancements and bugfixes. Read the release notes for more details.

Please note that because the library is incompatible you might need to recompile all your library depended apps like PHP, Postfix and Dovecot. Please also the change in the library reference that is still an issue. (it’s now 18 instead of 16)

sudo install_name_tool -id /usr/local/mysql/lib/libmysqlclient.18.dylib /usr/local/mysql/lib/libmysqlclient.dylib

Also I would like to mention an interview with Tomas Ulin, Vice President, MySQL Engineering, who answers questions about the GA release of MySQL 5.5.

Read this documentation on how to ugrade this version using the package installer of MySQL.

Next Page »