Releases: mailwatch/MailWatch
Releases · mailwatch/MailWatch
1.2.3
MailWatch 1.2.3
tl;dr
Several improvement on user sessions and quarantine reports, plus a lot of fixes, above all browser multitab surfing and multiselect on message operations
Changelog
Improvements
- Better compatibility for MySQL 5.7 (ONLY_FULL_GROUP_BY)
- Disable broken VIRUS_INFO per default
- Better handling of Postfix message ids
- Allow plus sign in username
- Add ability to send quarantine report to single user
- Enable users to immediately send his own quarantine report
- Add ability for users to select the language of the gui
- Converted some graph to Chart.js
- Warn about installing PHP XML extension where not present
- Add option to specify HELO hostname for SMTP transactions
- Improved Sendmail queue code
- Allow blacklisting and whitelisting an entire TLD
- Use domain admin username as domain filter
- Database driven session enhancements
- Add per user session timeout
- Provides visual display of release and learned messages
- Enhanced detail page printing
- Enhanced upgrade.php
- Localization updates
- Code refactoring to clean up duplication and code smell
Fixes
- Ignores MailScanner config files (conf.d/*) in subfolders and hidden files
- Options in messages operations do not select all the lines when clicking S/H/F/R
- Fix issue where Mail Queue on status page displayed intermittently
- Fix sa-learning in languages containing special chars in submit text (e.g. German)
- Fix session conflict and multitab surfing
- Fix broken html with certain virus names
- Fix duplication of default rule in msre_edit.php
- Fix errors with /etc/cron.daily/mailwatch scripts
- Create.sql can be run on MySQL <= 5.5 again
- Fix & encoding in links
- Fix SA-Learn blocking apache server
1.2.2
1.2.1
MailWatch 1.2.1
tl;dr
A lot of fixes for session management and some regressions introduced in 1.2.0; Improved performance and decoding of queue files
Changelog
Improvements
- Show RBL list in Message Detail
- Better decoding of sender and subject in Mail Queue
- Disable browser caching to prevent token mismatch
- Add unique token to logged emails
- Clean orphaned filter in upgrade.php
- Add optional skinning of web interface
- Moved upgrade doc to online documentation
- Improved performance
- Enhanced session expiration
- Prevents domain admins from editing their own filters
- Allows domain admins to view, edit, add, and delete users in their filter domains
- Code refactoring to clean up duplication and code smell
Fixes
- Fix regression on some input validation (the Bad Dog Biting Bug™)
- Rename 00MailWatchConf.pm to MailWatchConf.pm, which is failing on some perl versions
- Fix Audit log access
- Don't permit logged in Admin/Domain admin to delete his/her user
- Fix MailWatchConf.pm loading on some platforms
- Remove double ldap_escape on username
- Fix upgrade.php failing on some MariaDB versions
- Fix MIME part visualization
- Fix session loop
1.2.0 - Final Release
This is the Final Release of MailWatch 1.2.0.
tl;dr
Security fixes, a lot.
Changelog
- Multiple vulnerability fixed
- Fixed invalid mime message parsing
- Improved upgrade.php script
- Update filters when user is deleted or renamed
- Provides administrator the ability to combine quarantine reports into a single report
- Better support for remote postfix queue count
- Code refactoring and fixes
1.2.0 - Release Candidate RC5
This is the Release Candidate 5 of MailWatch 1.2.0.
tl;dr
More power to domain admin, new script structure and names, user password reset, no more editing of .pm files, Improve support for IPv6/Exim/UTF-8.
Changelog
- Add the ability for domain admins to create/edit/delete users of the same domain
- Reorganization of Tools directory
- Add filter on audit report
- Add the possibility to 'Clear' bayes database in Bayes Info page
- Add password reset
- Move database setup in separate perl module (00-MailWatch-conf.pm)
- Improved upgrade.php script
- Improve compatibility with MailScanner V5
- Improve IPv6 support
- Improve UTF8 compatibility and add support for utf8mb4 in perl module
- Improve LDAP compatibility
- Add better Exim queue count
- Fix printing in some reports
- Fix for auto/unknown Virus scanner
- A lot of cosmetic enhancement
- Code cleanup
- Updated translations
1.2.0 - Release Candidate RC4
This is the Release Candidate 4 of MailWatch 1.2.0.
tl;dr
This RC4 of MailWatch 1.2 adds PHP7 compatibility, migrate to mysqli extension and adds compatibility to LDAP servers other than Active Directory
Changelog
- Move to MySQLi PHP extension
- PHP 7 compatibility
- Use utf8mb4 on capable systems (MySQL >= 5.5.3)
- Fix geoip function dereclaration
- Warn on missing sa-learn binary
- Add SA_PREFS to list of SpamAssassin rules direcotory
- Improve session cookie security
- Upgrade pear packages
- Filter LDAP username and password before passing them to LDAP server
- Improve LDAP compatibility with server other than Active Directory
- Remove password change functionality for LDAP Domain Admin and User
- Permit LDAP login with password containing special characters
- Code cleanup
- Updated translations
1.2.0 - Release Candidate RC3
This is the Release Candidate 3 of MailWatch 1.2.0.
tl;dr
This RC3 of MailWatch 1.2 fixes a lot of bugs and adds autorelease feature in mail reports
Changelog
- Update postfix relay documentation (GH #320)
- Update JpGraph to 4.0.1 (GH #289)
- Fix Reports.php and Lists.php when used in languages other than English (GH #307, GH #288)
- Proper expansion multiple %var% references in MailScanner parameters (GH #311)
- Updated traslation
- Add HIDE_UNKNOWN config option (GH #240, GH #254)
- Add Autorelease feature (one click release of quarantined emails) (GH #260)
- Fix per user spam score defaults (GH #263)
1.2.0 - Release Candidate RC2
This is the Release Candidate 2 of MailWatch 1.2.0.
tl;dr
This RC2 of MailWatch 1.2 fixes some misbehaviours of RC1 and improve "total mail by date" report
Changelog
- Fix name collision in queries (GH #243)
- Fix loading of SpamAssassin rule description if it starts with a space (GH #242)
- Fix login bypass on LDAP introduced in RC1 (GH #246, GH #248)
- Improve rep_total_mail_by_date report (GH #249, GH #250, GH #251)
- Fix LDAP search for 'mail' prefix (GH #252)
- Try to not encode multiple times a string that is already UTF8 (GH #225)
1.2.0 - Release Candidate 1
This is the Release Candidate 1 of MailWatch 1.2.0.
tl;dr
This RC1 of MailWatch 1.2 implements translation of user interface, secure user's password hashing and some layout fix
Changelog
- Display load average if /proc/loadavg doesn't exists but /usr/bin/uptime does
- Improve loggings for connections not coming from 127.0.0.1
- Add hide High Spam and High MCP options
- Update geoip.inc to v1.15
- Fix path in the install manual
- Add Microsoft Active Directory compatibility support
- Fix timezone warning on sf_version and viewmail
- Check GeoIP data file size before using GeoIP functions
- Add hide Non Spam option
- Quick hack on fixing duplicate header issue (#154)
- Fix reports graph color management
- A better sendmail_relay init file
- Fix GeoIP extension and php libary conflict on constants definition
- get_conf_truefalse returns true if value is a string
- Enable LDAP over SSL
- Fix virus count sorting on "Virus Report"
- Remove additional slashes in "SpamAssassin Rule Description Update"
- Adding translation to user interface
- Add LOGO path in conf.php.example and changes done in corresponding files.
- layout changes in quarantine.php, other.php, sf_version.php
- Removed duplicate PHP function in tools/Cron_jobs/quarantine_report.php (is in functions.php)
- Changes in tools/Sendmail_relay/INSTALL (to be accurate with Debian/Ubuntu)
- Changes in tools/Sendmail_relay/sendmail_relay.init (change maillog to mail.log)
- Background color change in login.php
- Add clamav and spamassassin version in sf_version.php
- Changes in INSTALL and UPGRADING (to be accurate with Debian/Ubuntu)
- Modified footer function in functions.php (page footer and DEBUG for page_creation_timer)
- Add a check for 'subtests=' to add space after comma (to fit the screen) in sa_lint.php
- Upgrade password hash function from MD5 to a crypt() compatible one
- Add option to enable/disable IP address resolution on status page
- Improving upgrade.php script
- Sanitize user input on reports
- Rewrite of GeoIP file download procedure
- Decline login as LDAP group
- Move luser add-on to another git repository
- Better logging of UTF8 subjects
1.2.0 - Beta 8 (Security Fix)
This is the Beta 8 release of Mailwatch 1.2.0.
This beta release of MailWatch 1.2 implement tons of security fixes
tl;dr
Primarily a security fix release, also hides MCP-related fields if MCP is not enabled
Changelog
- Correct unexpected behaviour in viewpart.php if one or more headers are not set
- Refactor message part viewer
- Sanitize user input
- Hide MCP-related fields if MCP is not enabled in MailScanner