source: trunk/docs/README.UPGRADE@ 171

Last change on this file since 171 was 170, checked in by katerina, 18 years ago

Plenty of compiler warnings fixed, SQL query length fixed, doc update.
File size: 3.1 KB
Line 
1
2to 2.4.4 and higher: it is possible now to store the full content of
3 small files in the baseline database. To support this feature with
4 logging to an RDBMS, the DB schema for Oracle needs to be adjusted
5 by converting the link_old, link_new columns from VARCHAR2 to CLOB:
6
7 -- Oracle:
8 ALTER TABLE samhain.log ADD tmp_name CLOB;
9 UPDATE samhain.log SET tmp_name=link_old;
10 ALTER TABLE samhain.log DROP COLUMN link_old;
11 ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_old;
12
13 ALTER TABLE samhain.log ADD tmp_name CLOB;
14 UPDATE samhain.log SET tmp_name=link_new;
15 ALTER TABLE samhain.log DROP COLUMN link_new;
16 ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_new;
17
18 -- Samhain server (yule): if you are logging to the RDBMS via
19 the server (yule), as recommended, you need to also upgrade the
20 server, because earlier versions had a too restrictive limit on
21 the maximum length of an SQL query.
22
23
24to 2.3.3 and higher: a bug has been fixed that resulted in an additional
25 slash at the beginning of the linked path of symlinks in the root
26 directory (symlinks in other directories were not affected)
27
28 -- this may cause spurious warnings about modified links, if you check
29 against a database created with an earlier version of samhain
30
31
32
33from lower to 2.3.x: the database scheme has changed slightly.
34 To upgrade, use the following SQL commands in the command-line
35 client of your database:
36
37 -- MySQL:
38 ALTER TABLE samhain.log ADD COLUMN acl_old BLOB;
39 ALTER TABLE samhain.log ADD COLUMN acl_new BLOB;
40
41 -- PostgreSQL:
42 ALTER TABLE samhain.log ADD COLUMN acl_old TEXT;
43 ALTER TABLE samhain.log ADD COLUMN acl_new TEXT;
44
45 -- Oracle:
46 ALTER TABLE samhain.log ADD acl_old VARCHAR2(4000);
47 ALTER TABLE samhain.log ADD acl_new VARCHAR2(4000);
48 DROP TRIGGER trigger_on_log;
49
50
51
52since 2.2.0: server-to-server relay is possible
53
54 -- this implies that problems will arise if your server is misconfigured
55 to connect to itself (SetExportSeverity is explicitely set
56 to a threshold different from 'none', and the logserver is set to
57 localhost). The server may deadlock in this case.
58
59
60
61since 2.1.0: update and daemon mode can be combined
62
63 -- this implies that '-t update' will start a daemon process if running as
64 daemon is the default specified in the config file. use '--foreground'
65 to avoid starting a daemon process
66
67
68
69from 1.7.x to 1.8.x: client/server encryption protocol has been enhanced
70
71 -- 1.7.x clients can connect to a 1.8.x server
72
73 -- 1.8.x clients can only connect to a 1.7.x server, if they
74 are built with --enable-encrypt=1
75
76
77
78from 1.6.x to 1.7.x: things to watch out for
79
80 -- the log server drops root privileges after startup; it needs a logfile
81 directory with write access for the unprivileged user now
82
83 -- the PID file does not double as lock for the log file anymore; the
84 log file has its own lock now (same path, with .lock appended)
85
86 -- by default, the HTML status page of the server is in the log directory
87 now; this allows to make the data directory read-only for the server
88
Note: See TracBrowser for help on using the repository browser.