Releases: hestiacp/hestiacp
1.6.5 Service release
Bugfixes
- Add missing translation strings (#2778 @myrevery)
- Add check if folder exists in v-change-web-domain-docroot (#2778)
Security
- Improve random bytes generator (#2774)
- Don't allow /inc/2fa/secret.php called from the web browser directly (#2784 @mayappear)
- Improve CSRF Origin Check Bypass (#2785 @mayappear)
- Fix vulnerability in Docuwiki Quick Install App @redStarP2 (CVE 2022-xxx-xxx)
1.6.4 Service release
Fixed an issue with Quick installer apps and Downloading logs
Change log:
- Fixed an issue with downloading log files
- Fixed an issue with installing Quick Installers (#2762, #2760, @divinity76)
- Fixed an issue with Apache Access / Awstats logs IP after using v-update-sys-ip (#2759 @adion-gorani)
1.6.3 Service release
Features
- Add additional support for bcrypt for mail passwords (#2752 @divinity76)
Bug fixes
- Fixed an issue with restart Apache2 and Nginx after v-update-letsencrypt (#2748, #2563, #2744, #2677)
- Avoid out of memory serving large logfiles (#2741, #2736, @divinity76
- Use secure RNG to generate passwords (#2726)
- Allow PHP templates to be selected in Quick installer apps (#2713, #2711, #2690)
- Update translations (#2750)
Dependencies
- Update hestia-php to 8.1.8
1.6.2 Service release
This update is recommended for all users of HestiaCP and includes bug fixes.
- Fixed an issue with rate limits in Exim4 and make it more bullet proof (#2703)
- Fixed an issue with system-filter not propperly loaded in Exim4 for Exim 4.94 and Ugrades from 1.5.x
1.6.1 Service release
This update is recommended for all users of HestiaCP and includes bug fixes.
Bugfixes
- Fixed an issue with rate limit and alias domains (#2676, #2666)
- Fixed an issue with reject spam option (#2687, #2864)
- Fixed an issue in the installer when sieve is enabled (#2675, #2668)
- Fixed an issue with File manager in development mode (#2682 #2644)
- Fixed multiple small in templates (#2659 @ledoktre, #2680, #2671, #2679, #2670, #2681, #2699)
- Fixed add second check if DNS resolving fails (#2678)
- Fixed an issue where v-change-sys-hostname does not update host file (#2688 #2683)
- Fixed an issue with IDN conversions not working on new server installs (#2692 @wojsmol)
Enchantments
- Improve restart behaviour php-fpm
- Improve updating process to make it faster.
- Removed outdated / never used test scripts (#2685)
Dependencies
- Update hestia-nginx to 1.23.0
- Update PHPmailer to 6.6.3
- Update Roundcube to 1.5.3
1.6.0 Feature / Major release
This update is recommended for all users of HestiaCP and includes new features, bug fixes and quality improvements.
Features:
- Added support for Ubuntu 22.04 Jammy (#2537 #2489)
- Added support Exim rate limits for email accounts via UI (#2225 and #2523 @madito)
- Added support to delete spam when reaching certain threshold (#2206 and #2200 @madito)
- Added support to send mail to an unauthenticated SMTP relay (#2441 @clarkchentw)
- Replace default MD5 encoding with ARGON2ID for Debian 10 and Ubuntu 20.04 and higher (#2421 @stsimb)
- Added support for Yescrypt (#2235 / #2499)
- Upgrade backend to PHP8.1 due to compatibility issues Jammy (#2515)
- Introduce new api allowing users to use certain commands over API (#2535 and #1333)
- Allow "Purge" cache button visible on templates with the name cacheing-your-template-name (#2526 #2530)
- Add hooks to hestia-nginx and hestia-php (#2440)
- Update DNS cluster to support new API system (#2587)
Deprecated
- Dropped support for Debian 9 for new installs (#2537)
- Dropped support for RSSH on Ubuntu 18.04 on install (#2537)
- Dropped support for TLS1.1 and older for Dovecot (#2012 and #2538)
Note: If you are planning to upgrade your server from Ubuntu 20.04 or 18.04 to 22.04 make sure to update MariaDB first to 10.6!
1.5.15 Service release
This update is recommended for all users of HestiaCP and includes bug fixes.
1.5.14 Service release
This update is recommended for all users of HestiaCP and includes bug fixes, security patches and quality improvements.
1.5.13 Service release
Fixes an issue edit / add dns record
1.5.12 Security release
This update is recommended for all users of HestiaCP and contain a patch security patch