The Release Notes (and the linked Patch Installation Guide) don't mention it, but this patch round need be/should be installed only on mailbox servers.
The 10.x servers I have patched so far downloaded only the latest zimbra-patch package; no other Zimbra packages had updates available.
The zimbra-patch package is not installed on LDAP, Proxy nor MTA servers; only on Mailstore servers. So when you do like yum update or apt-get upgrade, if the zimbra-patch package isn't already installed, the upgrade process won't install it (nor should you).
After a customer called me to ask, and I noticed this on our own hosting farm, I opened a Support Case to confirm, which Support did.
Since I and my customers have a detailed pre-patch backup process (in case a patch installation goes sideways), I pointed out to Zimbra Support that had we known from the Release Notes that this was mailstore-only patch, it would have saved us and our customers a fair amount of time.
I appreciate Zimbra releasing this security fix promptly; the Modern UI enhancements were a nice little bonus. But it would have saved us more than an hour had we known we did not have to back up our LDAP, MTA nor Proxy servers -- not to mention the concern when no updates were offered on those servers.
Hope that helps others,
Mark
The 10.x servers I have patched so far downloaded only the latest zimbra-patch package; no other Zimbra packages had updates available.
The zimbra-patch package is not installed on LDAP, Proxy nor MTA servers; only on Mailstore servers. So when you do like yum update or apt-get upgrade, if the zimbra-patch package isn't already installed, the upgrade process won't install it (nor should you).
After a customer called me to ask, and I noticed this on our own hosting farm, I opened a Support Case to confirm, which Support did.
Since I and my customers have a detailed pre-patch backup process (in case a patch installation goes sideways), I pointed out to Zimbra Support that had we known from the Release Notes that this was mailstore-only patch, it would have saved us and our customers a fair amount of time.
I appreciate Zimbra releasing this security fix promptly; the Modern UI enhancements were a nice little bonus. But it would have saved us more than an hour had we known we did not have to back up our LDAP, MTA nor Proxy servers -- not to mention the concern when no updates were offered on those servers.
Hope that helps others,
Mark
Statistics: Posted by L. Mark Stone — Wed Oct 09, 2024 4:55 pm