eBox 0.11 ready to rock

December 4 2007

Categories: Releases

Hi fellow eBox users!

Your favourite development team proudly presents eBox 0.11. As usual, this is our stable version after testing and bugfixing 0.10.99.

Let us highlight some of the new features eBox ships.

The DHCP and HTTP proxy modules have been pimped out and improved to take advantage of our Ajax framework. Users and groups also joined the Ajax club and now you can list users on a cool Ajax table which is searchable.

On the system status side we have added two new reporting pages which will be very useful. A page to show disk usage information, this way you will not need to log into your machine anymore to check your disk space. Also for those who are running RAID systems, there is a new entry where you can check its status.

Do you remember the openVPN bundle you can download with your user configuration ready-to-use? Now it’s even nicer as it ships a Windows openVPN installer, turning the task of connecting remote users to your LAN into a piece of cake.

This and much more in eBox 0.11

ChangeLog eBox 0.10.99 and 0.11

eBox

  • 0.11 Fix issue with multiple models and models with params.This triggered a bug in DHCP when there was just one static interface
  • 0.11 Fix _checkRowIsUnique and _checkFieldIsUnique
  • 0.11 Fix paging
  • 0.11 Trim long strings in log table, show tooltip with the whole string and show links for URLs starting with “http://”
  • Add disk usage information
  • Show progress in backup process
  • Add option to purge logs
  • Create a link from /var/lib/ebox/log to /var/log/ebox
  • Fix bug with backup descriptions containing spaces
  • Add removeAll method on data models
  • Add HostIP, DomainName and Port types
  • Add readonly forms to display static information
  • Add Danish translation thanks to Allan Jacobsen

DHCP

  • Use the new model/view framework. UI uses Ajax
  • Show eBox domain server if DNS is installed
  • Show eBox IPs on default gateway selection

DNS

  • Expose methods in module’s API

openVPN

  • 0.11 Bugfix. Allow RIP connections on tap interfaces
  • Windows bundle can be created to include the openVPN windows installer
  • Log openVPN status
  • Treat openVPN like internal interfaces

Squid

  • Use new model/view framework. UI uses Ajax
  • Simplify content filter interface

Traffic Shaping

  • Use last model/view changes to get rid of the multitable code
  • Remove rules using an object when it’s removed
  • Use services module
  • Now traffic shaping rules are aware about gateway changes
  • Bugfix. Add external interface rules to PREROUTING otherwise rules are not applied due to NATed sources

Users and groups

  • List users using Ajax table

eBox 0.10.99 ready to download

November 21 2007

Categories: Releases

Hi fellow eBox users!

Your favourite development team proudly presents eBox 0.10.99. As usual, this is our beta release before 0.11.

Let us highlight some of the new features eBox ships.

The DHCP and HTTP proxy modules have been pimped out and improved to take advantage of our Ajax framework. Users and groups also joined the Ajax club and now you can list users on a cool Ajax table which is searchable.

On the system status side we have added two new reporting pages which will be very useful. A page to show disk usage information, this way you will not need to log into your machine anymore to check your disk space. Also for those who are running RAID systems, there is a new entry where you can check its status.

Do you remember the openVPN bundle you can download with your user configuration ready-to-use? Now it’s even nicer as it ships a Windows openVPN installer, turning the task of connecting remote users to your LAN into a piece of cake.

This and much more in eBox 0.10.99…

eBox

  • Add disk usage information
  • Show progress in backup process
  • Add option to purge logs
  • Create a link from /var/lib/ebox/log to /var/log/ebox
  • Fix bug with backup descriptions containing spaces
  • Add removeAll method on data models
  • Add HostIP, DomainName and Port types
  • Add readonly forms to display static information
  • Add Danish translation thanks to Allan Jacobsen

DHCP

  • Use the new model/view framework. UI uses Ajax
  • Show eBox domain server if DNS is installed
  • Show eBox IPs on default gateway selection

DNS

  • Expose methods in module’s API

openVPN

  • Windows bundle can be created to include the openVPN windows installer
  • Log openVPN status
  • Treat openVPN like internal interfaces

Squid

  • Use new model/view framework. UI uses Ajax
  • Simplify content filter interface

Traffic Shaping

  • Use last model/view changes to get rid of the multitable code
  • Remove rules using an object when it’s removed
  • Use services module
  • Now traffic shaping rules are aware about gateway changes
  • Bugfix. Add external interface rules to PREROUTING otherwise rules are not applied due to NATed sources

Users and groups

  • List users using Ajax table

eBox platform at FOSSCAMP 2007

October 26 2007

Categories: Releases

eBox platform will be attending the FOSSCAMP 2007. The event will be held in Cambridge, Massachusetts, USA.

eBox will be represented by Javier Uruen. One of the main topics to discuss is the imminent adoption of Ubuntu as system base for the upcoming eBox platform 1.0.

This decision will open new ways of collaboration between both projects. During this event we will exchange ideas, comment on roadmaps, and try to coordinate efforts to have eBox platform running in Ubuntu as soon as possible.

eBox 0.10 ready to rock

October 19 2007

Categories: Releases

Hi fellow eBox users,

You favourite development team proudly presents the release of eBox platform 0.10. After a few days of testing eBox 0.9.100 we come up with the official release for these series.

Let’s recap, shall we? These are some of the awesome features which have been added:

  • Firewall: this module has been extended in such a way that you will not need to hack eBox anymore to add custom rules to the INPUT or OUTPUT chain. Now it’s more flexible, and it’s easier to add rules for services which are not managed by eBox itself. The UI totally has been totally pimped out and takes advantage of the generic AJAX table
  • Services: this is a new module that has been introduced for convenience. It allows the users and other modules to create services which can be used by modules using iptables-like rules. So far, only the firewall module and some parts of the core use this module, but modules like traffic shaping or networking will eventually use it too.
  • Events: we have included a neat framework to inform our users whenever an interesting event happens. Currently, we have just implemented a few events such as the machine is running out
    of disk space, a service has been stopped unexpectedly or eBox is up. The cool thing about all this is you can be told what is happening through your favourite Jabber client, so yes, it’s what you think, now eBox talks to you if we have a situation :)
  • Objects, DNS: And again, we are glad to announce that these two modules are joining the group of modules whose UI exploits the user experience provided by Ajax technology. Also, the DNS module automatically configures reverse resolution.
  • Control center: This new module is meant to be used for those system administrators who want to deploy machines running eBox in different locations. It provides a unique point of control to ease the management of a group of eBox machines. It automatically configures openVPN and apache under the hood to create a secure connection with the control center. Currently, the control center has no graphical user interface as it’s just a bunch of useful commands to carry out the necessary operations to set up the scenario. It uses SOAP to expose the eBox API to remote scripts which can be executed within the control center. Now we have the necessary infrastructure to implement the required features for this sort of scenario. So the next step is to get feedback from users who wish to have several machines running eBox and what they would expect from this control center. Once we agree which features are required we will think how to create a more friendly interface on top of it. Some examples of using the control center are: accessing every eBox connected to your control center, receiving events and alerts from a group of eBoxes, synchronising LDAPs amongst a group of machines, forcing software updates, uploading periodic backups…


Some notes on upgrading

As the upgrading process can be a critical task we suggest you backup your configuration before proceeding with the upgrading process

Please be advised that the firewall module has been modified to make it more flexible. We have tried our best to import your old data to the new module. Yet we strongly recommend you check your firewall configuration after upgrading.

Change log for eBox 0.10

ebox

  • Add EventDaemon
  • Add watcher and dispatch framework to support an event architecture on eBox
  • Add watcher to check if there is space left on disk
  • Add watcher to check if a given serivice is restarted too many times in a short period
  • Add watch to check if eBox is currently up
  • Add generic from
  • Improvements on generic table: paging, filtering..
  • Add Swedish translation

network

  • Fix bug with static routes which prevented them from working if the multigateway support was enabled
  • Fix bug importing gateway IP addresses from network configuration
  • Added /22 netmask setting iface IP address
  • Update models to new API
  • Get rid of custom controllers

ntp

  • Use services module

objects

  • Use the new model/view framework. Now you can edit object and member names.

firewall

  • Load ip_nat_ftp module
  • Use new model/view framework which implies several changes. UI uses Ajax
  • Now the user can add rules to INPUT/OUTPUT chain
  • Use the new services module

openvpn

  • Clients backup their certificates
  • Add API to support internal VPNs
  • Fix issue with www server to guess IP
  • Improvements on port availability
  • Only announce routes for RFC1918
  • Relax checking of advertised routes
  • Do not downgrade privileges from root to another user/group to avoid problems when reconnecting

users and groups

  • Allow dots in user names

samba

  • Create group directory with 0770
  • Add users to Domain Users group

services

  • First release

mail

  • Fix some typos

mailfilter

  • Bugfix. Removal of external domain

  • Configure firewall to open fort for freshclam

dns

  • Add reverse resolution
  • Use new model/view framework. UI uses Ajax

eBox 0.9.100 ready for testing

September 26 2007

Categories: Releases

Hi fellow eBox users,

The eBox development team proudly presents the release of our last beta version for the 0.10.x series. We keep adding cool stuff to your favourite administration tool.

If you are going to get tired of reading a long announcement, skip the following part and go to the bottom to see how you can help us test eBox .

Let me introduce some of the new features this new release sports:

  • Firewall: this module has been extended in such a way that you will not need to hack eBox anymore to add custom rules to the INPUT or OUTPUT chain. Now it’s more flexible, and it’s easier to add rules for services which are not managed by eBox itself. The UI totally has been totally pimped out and takes advantage of the generic AJAX table
  • Services: this is a new module that has been introduced for convenience. It allows the users and other modules to create services which can be used by modules using iptables-like rules. So far, only the firewall module and some parts of the core use this module, but modules like traffic shaping or networking will eventually use it too.
  • Events: we have included a neat framework to inform our users whenever an interesting event happens. Currently, we have just implemented a few events such as the machine is running out
    of disk space, a service has been stopped unexpectedly or eBox is up. The cool thing about all this is you can be told what is happening through your favourite Jabber client, so yes, it’s what you think, now eBox talks to you if we have a situation :)
  • Objects, DNS: And again, we are glad to announce that these two modules are joining the group of modules whose UI exploits the user experience provided by Ajax technology. Also, the DNS module automatically configures reverse resolution.
  • Control center: This new module is meant to be used for those system administrators who want to deploy machines running eBox in different locations. It provides a unique point of control to ease the management of a group of eBox machines. It automatically configures openVPN and apache under the hood to create a secure connection with the control center. Currently, the control center has no graphical user interface as it’s just a bunch of useful commands to carry out the necessary operations to set up the scenario. It uses SOAP to expose the eBox API to remote scripts which can be executed within the control center. Now we have the necessary infrastructure to implement the required features for this sort of scenario. So the next step is to get feedback from users who wish to have several machines running eBox and what they would expect from this control center. Once we agree which features are required we will think how to create a more friendly interface on top of it. Some examples of using the control center are: accessing every eBox connected to your control center, receiving events and alerts from a group of eBoxes, synchronising LDAPs amongst a group of machines, forcing software updates, uploading periodic backups…

eBox needs you

As this version version is shipping a rewritten firewall, and that is a key module for eBox. We would like to ask you to help us test this version.

To do so we have uploaded the packages to the unstable repository so you will have to explicitly add the apt sources to your installation if you are willing to help. An easy way to test eBox is installing it on a virtual machine and restoring your production backup and check everything is ok.

deb http://ebox-platform.com/debian/unstable/ ebox/
deb http://ebox-platform.com/debian/unstable/ extra/

Execute the following commands to install the new version:

apt-get update
apt-get install “^ebox-.*”

An installer-cd and a live-cd will be available very soon.

If you experience problems send us a bugreport and you will be helping the project in a great way.

What’s next?

We will test this release for at least one week. After that, we will officially release 0.10 with the bug fixes added during the week and some UI changes which could not make it to this one.

Three internationally recognized experts join Spanish open source project eBox Platform prior to its commercial launch

Stephen R. Walli – former vice-president of Open Source Development Strategy at Optaros and business development manager in the Windows Platform team at Microsoft –, Mikko Puhakka – researcher of Open Source/IT Business models at Helsinki University of Technology (Finland) and seed investor into MySQL in 2001 – and Timo Teimonen – ex vice president of Nokia and Head of Nokia Ventures – join the board of directors of eBox Platform prior to its commercial launch.

eBox Platform is an open source project developed during the last three years by Warp Networks, a Spanish open source consultancy, with the objective of creating a user-friendly server for corporate networks. The project is about to reach its first stable version in October 2007 and Warp Networks is now preparing the launch of commercial services with the incorporation of the above mentioned international experts in start-ups and in the development of sustainable business models on open source products.

“I have long experience with enterprise market while I was working in IBM but even more experience in defining new global business opportunities while running Nokia Ventures Organization. Warp Networks with its eBox Platform seems to combine these both and even with a solid market performance” said Timo Teimonen. “I’m excited in working with top tier open source project that has a competent team and clear position in enterprise market.”

“To me start-ups, having worked with them since early nineties, are all about entrepreneurs, and as Ignacio is one of the most impressive Open Source Business CEOs I have come across joining the board on his invite was a very easy decision” stated Mikko Puhakka. “eBox has all the elements of becoming a major factor in the software and open source business.”

Among other services, eBox Platform provides access to the Internet, network security, integrated email server with antivirus and antispam, resource sharing or groupware communication for corporate networks. The platform is designed by merging the simplicity of network appliances with the flexibility offered with Linux servers. At the moment the project has more than 40,000 downloads and a fast-growing community of developers and users behind. Since June 2007 eBox Platform is being ported to Ubuntu, the most popular Linux distribution, and it is a good candidate to become the default tool for servers administration in Ubuntu.

“Systems configuration and administration are always confusing and costly problems for small and medium enterprises. Warp Networks solves that problem with the eBox Platform” said Stephen R. Walli. “It is a privilege to be working with the Warp team as they deliver and expand their business solutions using open source software.”

“The idea of eBox Platform arose from a true need to easily manage corporate networks and after three years of development we can proudly say that the project has become a reality, counting with a strong community of users and developers” stated Ignacio Correas, CEO of Warp Networks. “We are positive the newly appointed board of directors will manage to put eBox at an outstanding position in the international open source business ecosystem.”

ebox 0.9.99 ready to download

August 6 2007

Categories: Releases

Hi fellow eBox users,

Your favourite development team never stops coding, even in summer holidays when everybody else is enjoying the sun while having a piña colada, the eBox team stays inside to restlessly add new features and modules.

We are proud to announce the first release of our next milestone. This release is shipped with the new mail filter module which extends the functionality of eBox to scan e-mails to detect viruses and spam.

The mail filter module can be used along with the existing mail module, or it can be used to filter mail coming from external servers.

As mentioned above, this is the first release for our next milestone 0.10.x series which will include:

  • mail filter
  • new firewall module
  • SOAP interface which will allow us to build on top of it a control centre to easily deploy and administrate several eBox machines
  • big improvements on the development framework

Changelog for eBox platform 0.9.99

libebox

  • Enhanced HTML mason templates

ebox

  • Added Portuguese translation
  • Added Russian translation
  • Bugfix: bad changed state in modules after restore from backup

network

  • Restore conntrack mark in OUTPUT chain to make traffic generated in eBox come out through the right route

mail

  • Fixed bug in configuration backup
  • Allow other modules to define mail filters

software

  • use onSuccess in Ajax call to avoid getting responses different to 200 when upgrading packages

CA

  • CA is password aware if user wants to

eBox 0.9.3 is out

June 25 2007

Categories: Releases

Hi again,

We have just uploaded a new revision which contains a couple of bugfixes.

These issues only affected those installations using multipath rules and a language other than English.

Changelog eBox 0.9.3 [codename quickie]

network

  • Use value() instead of printableValue() in protocol
  • Add iptables rule to chain OUTPUT in mangle table to send traffic originated in eBox through the default router

Hi everybody,

Here we are again with a new release 0.9.2. This latest version, brought to you by your favourite development team, is mainly a bugfix release. No long paragraphs to show off cool stuff this time, just wait for 0.10.

We have added two features which we thought were worth releasing as soon as possible:

  • Backups are accessible via samba. This is useful to deal with large files as many browsers can’t manage them properly
  • Enable/disable logging per module. This is an interim solution until we provide a better mechanism to rotate and remove logs.

Change log eBox platform 0.9.2 [codename torito bravo]

ebox

  • Add browser warning when uploading files
  • Enable/disable logging modules

dhcp

  • Check fixed ip’s name against domain name syntax

network

  • Always add weighted routers when configuring routers. Instead of adding them when traffic balancing is enabled. Use iptables to send unmarked packets through the default router.

squid

  • Add nasty workaround to try to stop and create swap directories for squid

samba

  • Add ebox backup directory as a shared resource to download/upload
    files
  • Create smbldap_bind.conf which contains password with mask 0600

openvpn

  • Fix a bug related to unscaped characters
  • Added support for hidden clients

mail

  • Create sasl configuration which contains password with 0600 mask

Matt Willsher has developed a subversion module for eBox Platform, integrating this version control system into your favorite open source project :-) It is not the first module developed by eBox community, but it is really interesting, well-coded and worth of blogging. By the way, it will be integrated in next official versions of eBox.

I took the liberty of sending a few questions to Matt, which he answered promptly. Here is the mini-interview:

Question: You just released the subversion module for eBox, adding a new feature to this platform. How did you take the decision of coding it? What was your motivation?

Answer: I was looking to set up a server at home and had evaluated various platforms for the task. Having built a box from the ground up for the job, I got tired of the amount of work required to add new services and servers, especially as the machine grew in complexity – LDAP, Kerberos, Netatalk, Samba. Adding new things got trickier. So I tried eBox and was very impressed with the ethos of the project – the ease of use, it being open source, uniformity of data use and broad range of well though out features. Plus I’ve never configured Samba so quickly!

One thing was missing for me though – Netatalk integration. I’ve been wanting to get back into coding for a while as I’ve not done any in some time. The OO nature of the framework was ideal and Perl is a language I used some time ago, so I thought I’d give it a go.

Q: How did you find the whole process of coding a new eBox module? Which aspects did you find outstanding and what things you think could be improved?

A: I started about two weeks ago working for a couple of hours every other day or so, working from the module template code and the Jabber module source. Considering I’ve not done any serious Perl in quite a number of years I was very pleasantly surprised with how easy it was. Most impressive to me has been the simplicity of using the framework. The final subversion package comes out at 9K, which I think says a lot about the framework. That’s all the user handling, configuration generation, GConf integration, web interface and daemon control.

In terms of the improvements, the developers guide is useful as a starting point but could do with more content. Things like the package building and autoconf side would be useful and would mean I didn’t have to bother the guys on the IRC channel so much. I’m really looking forward to the API docs as they will make things easier. There could be some streamlining in some of the supporting modules, especially the LDAP module, but these are minor issues and didn’t hinder development to any real degree.

Q: Was it fun? :-)

A: Yes, it certainly was! I’ve done this in my spare time, which I don’t have huge amounts of, and it’s been great. Any short fall in the documentation has more than been made up by the guys on the #ebox IRC channel.

Q: What new features would you like added to eBox? Are you planning to develop other new modules?

A: There is a lot of things on the roadmap that have gotten me excited, especially RAID and LVM – while they can be set up via the installer it’ll be great to set them controllable via the web interface. I’d really like to see an SNMP server that exports a whole wealth of information and then have that used by the reporting engines. I think things like that make it more appealing to the larger SMEs and Enterprises, not to mention stats geeks like myself ;)

As for my own plans, I’ve got to do a little code tidying and commenting of the subversion module, then I’m starting on a Netatalk module. After that is Moblock and after that perhaps Kerberos. At some point I’d also like to implement basic monitoring/graphing of remote SNMP devices but I’m waiting to see what you guys come up with on the reporting side before I start that one.

Q: Now that you know more deeply about eBox and its developers, what do you think about the project? Honestly?

A: Quite honestly it’s to me the most exciting open source projects I’ve come across in some time – the flexibility it provides is remarkable. The developers are great and happy to help. My first experience of coding for eBox has been thoroughly enjoyable. I’m looking forward to getting on with my next module now and learning more about eBox!