Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
GitLab Fleet Scaling: Migrate to Debian 13 as Base Image

The underlying VM on which GitLab CI/CD jobs are executed will be migrated to Debian 13.
This has no effect on the Docker image in which the respective job is executed, which is normally already debian:stable.

Reference: #67

Start maintenance window: 22/09/2025 23:00
Stop maintenance window: 23/09/2025 02:00

Mailcow important changes for update from legacy to master

We will update Mailcow from legacy to the newest master version, which contains the following breaking changes:

  1. Login With the update, the login screens for users, domain administrators, and administrators are now separate:

Users log in as usual at the following URL: https://mail.example.com/

Domain administrators now use https://mail.example.com/domainadmin

Administrators use https://mail.example.com/admin

The SOGo web interface is now only accessible via the user login at https://mail.example.com/; after a standard direct redirect to SOGo, the Mailcow settings are still accessible via the link (wrench icon, top right). The Login URL for Roundcube User does not change.

  1. Two-factor authentication (2FA) Users/mail accounts that have 2FA enabled must now use app passwords to log in via mail protocols such as SMTP/IMAP, etc., for example when using a local email client or the Roundcube web interface. Each user can create these after logging into their Mailcow account under "App Passwords".

Take a close look at the changes, update your documentation accordingly, and feel free to contact us at any time if you have any questions or concerns.

Start maintenance window: 29/09/2025 23:00
Stop maintenance window: 30/09/2025 02:00

Past Incidents

Monday 29th January 2024

Managed Server Version 9: Debian Updates, scheduled 1 year ago

We will update the following packages to the latest version.

  • docker-ce/bookworm 5:25.0.1-1~debian.12~bookworm amd64 [upgradable from: 5:25.0.0-1~debian.12~bookworm]
  • docker-ce-cli/bookworm 5:25.0.1-1~debian.12~bookworm amd64 [upgradable from: 5:25.0.0-1~debian.12~bookworm]
  • docker-ce-rootless-extras/bookworm 5:25.0.1-1~debian.12~bookworm amd64 [upgradable from: 5:25.0.0-1~debian.12~bookworm]
  • docker-compose-plugin/bookworm 2.24.2-1~debian.12~bookworm amd64 [upgradable from: 2.24.1-1~debian.12~bookworm]

Start maintenance window: 29/01/2024 23:00
Stop maintenance window: 30/01/2024 02:00

MongoDB 4.4.28, scheduled 1 year ago

We will update MongoDB to version 4.4.28.

Start maintenance window: 29/01/2024 23:00
Stop maintenance window: 30/01/2024 02:00

Kibana 8.12.0, scheduled 1 year ago

We will update Kibana to version 8.12.0.

Start maintenance window: 29/01/2024 23:00
Stop maintenance window: 30/01/2024 02:00

Elasticsearch 8.12.0, scheduled 1 year ago

We will update Elasticsearch to version 8.12.0.

Start maintenance window: 29/01/2024 23:00
Stop maintenance window: 30/01/2024 02:00

Mailcow 2024-01b, scheduled 1 year ago

We will update Mailcow to version 2024-01b.

Start maintenance window: 29/01/2024 23:00
Stop maintenance window: 30/01/2024 02:00

Wednesday 24th January 2024

Managed Server Version 8: Debian Updates, scheduled 1 year ago

We will update the following packages to the latest version.

  • openjdk-11-jre-headless/oldstable-security 11.0.22+7-1~deb11u1 amd64 [upgradable from: 11.0.21+9-1~deb11u1]
  • openjdk-11-jre/oldstable-security 11.0.22+7-1~deb11u1 amd64 [upgradable from: 11.0.21+9-1~deb11u1]

Start maintenance window: 24/01/2024 23:00
Stop maintenance window: 25/01/2024 02:00

Tuesday 23rd January 2024

No incidents reported

Monday 22nd January 2024

Sentry 24.1.0, scheduled 1 year ago

We will update Sentry to version 24.1.0.

Start maintenance window: 22/01/2024 23:00
Stop maintenance window: 23/01/2024 01:00

Roundcube 1.6.6, scheduled 1 year ago

We will update Roundcube to version 1.6.6.

Start maintenance window: 22/01/2024 23:00
Stop maintenance window: 23/01/2024 01:00

Managed Server Version 7/8/9: Debian Updates, scheduled 1 year ago

We will update the following packages to the latest version.

Managed Server Version 9

  • containerd.io/bookworm 1.6.27-1 amd64 [upgradable from: 1.6.26-1]
  • docker-buildx-plugin/bookworm 0.12.1-1~debian.10~bookworm amd64 [upgradable from: 0.11.2-1~debian.10~bookworm]
  • docker-ce/bookworm 5:25.0.0-1~debian.10~bookworm amd64 [upgradable from: 5:24.0.7-1~debian.10~bookworm]
  • docker-ce-cli/bookworm 5:25.0.0-1~debian.10~bookworm amd64 [upgradable from: 5:24.0.7-1~debian.10~bookworm]
  • docker-ce-rootless-extras/bookworm 5:25.0.0-1~debian.10~bookworm amd64 [upgradable from: 5:24.0.7-1~debian.10~bookworm]
  • docker-compose-plugin/bookworm 2.24.1-1~debian.10~bookworm amd64 [upgradable from: 2.21.0-1~debian.10~bookworm]

Managed Server Version 8

  • blackfire/any 2:2.24.4 amd64 [upgradable from: 2:2.24.3]
  • containerd.io/bullseye 1.6.27-1 amd64 [upgradable from: 1.6.26-1]
  • tzdata/oldstable-updates 2021a-1+deb11u11 all [upgradable from: 2021a-1+deb11u10]
  • docker-buildx-plugin/bullseye 0.12.1-1~debian.10~bullseye amd64 [upgradable from: 0.11.2-1~debian.10~bullseye]
  • docker-ce/bullseye 5:25.0.0-1~debian.10~bullseye amd64 [upgradable from: 5:24.0.7-1~debian.10~bullseye]
  • docker-ce-cli/bullseye 5:25.0.0-1~debian.10~bullseye amd64 [upgradable from: 5:24.0.7-1~debian.10~bullseye]
  • docker-ce-rootless-extras/bullseye 5:25.0.0-1~debian.10~bullseye amd64 [upgradable from: 5:24.0.7-1~debian.10~bullseye]
  • docker-compose-plugin/bullseye 2.24.1-1~debian.10~bullseye amd64 [upgradable from: 2.21.0-1~debian.10~bullseye]

Managed Server Version 7

  • blackfire/any 2:2.24.4 amd64 [upgradable from: 2:2.24.3]
  • containerd.io/buster 1.6.27-1 amd64 [upgradable from: 1.6.26-1]
  • docker-buildx-plugin/buster 0.12.1-1~debian.10~buster amd64 [upgradable from: 0.11.2-1~debian.10~buster]
  • docker-ce/buster 5:25.0.0-1~debian.10~buster amd64 [upgradable from: 5:24.0.7-1~debian.10~buster]
  • docker-ce-cli/buster 5:25.0.0-1~debian.10~buster amd64 [upgradable from: 5:24.0.7-1~debian.10~buster]
  • docker-ce-rootless-extras/buster 5:25.0.0-1~debian.10~buster amd64 [upgradable from: 5:24.0.7-1~debian.10~buster]
  • docker-compose-plugin/buster 2.24.1-1~debian.10~buster amd64 [upgradable from: 2.21.0-1~debian.10~buster]

Start maintenance window: 22/01/2024 23:00
Stop maintenance window: 22/01/2024 02:00

Managed Server Version 8/9: Update PHP 8.3.2/8.2.15, scheduled 1 year ago

We will update PHP 8.2 to version 8.2.15. (Managed Server v8 / Managed Server v9)

We will update PHP 8.3 to version 8.3.2. (Managed Server v9)

ops-php82/unknown 8.2.15-ops-56477 amd64 [upgradable from: 8.2.14-ops-55703] ops-php83/unknown 8.3.2-ops-56459 amd64 [upgradable from: 8.3.1-ops-00003]

Start maintenance window: 22/01/2024 23:00 CEST Stop maintenance window: 22/01/2024 24:00 CEST

GitLab 16.7.3, scheduled 1 year ago

We will update GitLab to version 16.7.3.

Start maintenance window: 22/01/2024 23:00
Stop maintenance window: 23/01/2024 02:00

Network Maintenance, scheduled 1 year ago

We will update soft- and firmware throughout our network. During the update, route changes may occur, but no downtime is to be expected.

Start maintenance window: 22/01/2024 23:00 Stop maintenance window: 23/01/2024 02:00

Managed Server Version 8: Postfix Configuration: Forbid Bare Newlines to Prevent SMTP Smuggling

To deliver mails sent locally through sendmail or SMTP, our web servers do use a local Postfix installation each. This is used to deliver mails sent through web applications running on those servers. Under certain circumstances, it might be possible to inject a second email into the delivery process (details) through an application, for example by using a tailored message within an unsecured contact form.

Therefore, we changed the configuration to forbid bare newlines to close this loophole under all circumstances. Standard SMTP implementations will not be affected, so we do not expect any drawbacks. Nevertheless, should you run into a problem with your application, please contact us to decide the proper proceedings.

Reference #1480

Managed Server Version 9: Postfix Configuration: Forbid Bare Newlines to Prevent SMTP Smuggling

To deliver mails sent locally through sendmail or SMTP, our web servers do use a local Postfix installation each. This is used to deliver mails sent through web applications running on those servers. Under certain circumstances, it might be possible to inject a second email into the delivery process (details) through an application, for example by using a tailored message within an unsecured contact form.

Therefore, we changed the configuration to forbid bare newlines to close this loophole under all circumstances. Standard SMTP implementations will not be affected, so we do not expect any drawbacks. Nevertheless, should you run into a problem with your application, please contact us to decide the proper proceedings.

Reference #1480

Sunday 21st January 2024

No incidents reported

Saturday 20th January 2024

No incidents reported

Friday 19th January 2024

No incidents reported

Thursday 18th January 2024

Cockpit: Version 3.19.0
  • #926 [TASK] adjust VAT in PDF reports from 7.7 to 8.1%
  • #933 [TASK] Terraform: update to version 1.6.6
  • #935 [TASK] update dependencies
  • #938 [TASK] billing: disable PDF export
  • #939 [TASK] domains: add support for .bot and .wang
  • #926 [FEATURE] server list: show live resource usage for version 9 servers
  • #926 [FEATURE] server version 9 details: add tab to show performance, service & webserver status
  • #926 [FEATURE] website version 9 details: add tab to PHP websites to show PHP FPM status
  • #936 [FEATURE] website version 8: add PHP 8.3
  • #936 [FEATURE] website version 9: add PHP 8.3
  • #934 [BUGFIX] server form: ajust configuration for ip-cidr version 4

Reference: #935