1 |
|
---|
2 | to 2.4.4 and higher: it is possible now to store the full content of
|
---|
3 | small files in the baseline database. To support this feature with
|
---|
4 | logging to an RDBMS, the DB schema for Oracle needs to be adjusted
|
---|
5 | by converting the link_old, link_new columns from VARCHAR2 to CLOB:
|
---|
6 |
|
---|
7 | -- Oracle:
|
---|
8 | ALTER TABLE samhain.log ADD tmp_name CLOB;
|
---|
9 | UPDATE samhain.log SET tmp_name=link_old;
|
---|
10 | ALTER TABLE samhain.log DROP COLUMN link_old;
|
---|
11 | ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_old;
|
---|
12 |
|
---|
13 | ALTER TABLE samhain.log ADD tmp_name CLOB;
|
---|
14 | UPDATE samhain.log SET tmp_name=link_new;
|
---|
15 | ALTER TABLE samhain.log DROP COLUMN link_new;
|
---|
16 | ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_new;
|
---|
17 |
|
---|
18 | -- Samhain server (yule): if you are logging to the RDBMS via
|
---|
19 | the server (yule), as recommended, you need to also upgrade the
|
---|
20 | server, because earlier versions had a too restrictive limit on
|
---|
21 | the maximum length of an SQL query.
|
---|
22 |
|
---|
23 |
|
---|
24 | to 2.3.3 and higher: a bug has been fixed that resulted in an additional
|
---|
25 | slash at the beginning of the linked path of symlinks in the root
|
---|
26 | directory (symlinks in other directories were not affected)
|
---|
27 |
|
---|
28 | -- this may cause spurious warnings about modified links, if you check
|
---|
29 | against a database created with an earlier version of samhain
|
---|
30 |
|
---|
31 |
|
---|
32 |
|
---|
33 | from lower to 2.3.x: the database scheme has changed slightly.
|
---|
34 | To upgrade, use the following SQL commands in the command-line
|
---|
35 | client of your database:
|
---|
36 |
|
---|
37 | -- MySQL:
|
---|
38 | ALTER TABLE samhain.log ADD COLUMN acl_old BLOB;
|
---|
39 | ALTER TABLE samhain.log ADD COLUMN acl_new BLOB;
|
---|
40 |
|
---|
41 | -- PostgreSQL:
|
---|
42 | ALTER TABLE samhain.log ADD COLUMN acl_old TEXT;
|
---|
43 | ALTER TABLE samhain.log ADD COLUMN acl_new TEXT;
|
---|
44 |
|
---|
45 | -- Oracle:
|
---|
46 | ALTER TABLE samhain.log ADD acl_old VARCHAR2(4000);
|
---|
47 | ALTER TABLE samhain.log ADD acl_new VARCHAR2(4000);
|
---|
48 | DROP TRIGGER trigger_on_log;
|
---|
49 |
|
---|
50 |
|
---|
51 |
|
---|
52 | since 2.2.0: server-to-server relay is possible
|
---|
53 |
|
---|
54 | -- this implies that problems will arise if your server is misconfigured
|
---|
55 | to connect to itself (SetExportSeverity is explicitely set
|
---|
56 | to a threshold different from 'none', and the logserver is set to
|
---|
57 | localhost). The server may deadlock in this case.
|
---|
58 |
|
---|
59 |
|
---|
60 |
|
---|
61 | since 2.1.0: update and daemon mode can be combined
|
---|
62 |
|
---|
63 | -- this implies that '-t update' will start a daemon process if running as
|
---|
64 | daemon is the default specified in the config file. use '--foreground'
|
---|
65 | to avoid starting a daemon process
|
---|
66 |
|
---|
67 |
|
---|
68 |
|
---|
69 | from 1.7.x to 1.8.x: client/server encryption protocol has been enhanced
|
---|
70 |
|
---|
71 | -- 1.7.x clients can connect to a 1.8.x server
|
---|
72 |
|
---|
73 | -- 1.8.x clients can only connect to a 1.7.x server, if they
|
---|
74 | are built with --enable-encrypt=1
|
---|
75 |
|
---|
76 |
|
---|
77 |
|
---|
78 | from 1.6.x to 1.7.x: things to watch out for
|
---|
79 |
|
---|
80 | -- the log server drops root privileges after startup; it needs a logfile
|
---|
81 | directory with write access for the unprivileged user now
|
---|
82 |
|
---|
83 | -- the PID file does not double as lock for the log file anymore; the
|
---|
84 | log file has its own lock now (same path, with .lock appended)
|
---|
85 |
|
---|
86 | -- by default, the HTML status page of the server is in the log directory
|
---|
87 | now; this allows to make the data directory read-only for the server
|
---|
88 |
|
---|