@endelwar endelwar released this Jul 19, 2018 · 8 commits to 1.2 since this release

Assets 2

MailWatch 1.2.10

Changelog

Compatibility

  • Disable geoip for php <5.4 (#1075)

Fixes

  • Fix version display for geoip (#1063)
  • Improve MaxMindDB version detection
  • Fix schema for user table to not allow empty type (#1067
  • Simplify ClamAV version detection (#1060)
  • Detect failed collation change on db connect and set manually (#1078)
  • Fix mail filter for normal users (#1084)
  • Fix missing translation in quarantine report emails (#1090)

@endelwar endelwar released this Apr 18, 2018 · 20 commits to 1.2 since this release

Assets 2

MailWatch 1.2.9

Changelog

Improvements

  • Use new GeoLite2 database to replace deprecated GeoLite Legacy databases

Fixes

  • Parse correctly GPG signed e-mail (#1053)
  • Send empty quarantine reports over user_manager (#1054)

@endelwar endelwar released this Mar 26, 2018

Assets 2

MailWatch 1.2.8

Changelog

Improvements

  • Add ldap debug script
  • Update documentation
  • Improve sudo config to work with Postfix and Exim
  • Add mailwatch_update_sarules.php cronjob script
  • Use MAILWATCH_SMTP_HOSTNAME if defined on Release from quarantine (#1038)
  • Enable use of dn field as username field (#427, #1029)

Fixes

  • Fix Postfix log processor (#1021)
  • Make msre reload script work on systemd
  • Fix error on undefined $_SERVER['HTTPS'] index
  • Fix logout process (#1044)
  • Fix email validation for username (#1042)

@endelwar endelwar released this Dec 1, 2017

Assets 2

MailWatch 1.2.7

tl;dr

SECURITY FIX: update MailScanner .pm modules to prevent bypass of blacklists.
IMAP auth support, better handling of Hebrew charset, we speak 日本語 now!

Changelog

Security

  • More restricted access to library and public available files (#990)
  • Fix email blacklist bypass when an email with more than 2 normal recipient is processed (#255, #992)

Improvements

  • Add check for path of postconf, exim and sendmail executables in sf_version.php (#948)
  • Enable use of '&' in username (#964)
  • Add f-prot 6 virus scanner support
  • Enlarge localhost ip detection to full 127.0.0.0/8 class
  • Add IMAP auth support (#961)
  • Better support for Hebrew charset
  • Add Japanese language translation
  • Updated translations
  • Some code refactoring

Fixes

  • Uniform use of IMAGES_DIR as a relative path instead of an absolute path (#944)
  • Fix admins editing domain admins
  • Fix LDAP sAMAccountname not being used for login (#955)
  • Fix domain admins not being able to change own password
  • Fix ONLY_FULL_GROUP_BY MySQL error (#733)
  • Fix UTF8 headers in viewmail
  • Update sudoers file to use mailq to match conf.php.example

@endelwar endelwar released this Sep 5, 2017 · 99 commits to 1.2 since this release

Assets 2

MailWatch 1.2.6

tl;dr

SECURITY FIX: less permission to domain admin on editing other domain admin

Changelog

Security

  • Restrict domain admin permission so that they can only modify/create/delete regular users. Also, emails must be used for all non-admin accounts (#940)

Improvements

  • Add entries counter on white and black list (#509)
  • Changed character set used in quarantine release email to UTF-8 (#910)
  • Upgrade.php alters tables only if needed
  • Fixes for dangerous content display on detail.php (#939)

Fixes

  • Fix upgrade script for compatibility with MySQL 5.7 and 8.0 strict SQL mode
  • Fix PHP header warning for cli scripts
  • Fix invalid colors for multiple y-axes in a line graph (#926)
  • Remove wrong alter table on audit_log.user which revert length to 255 from 191
  • Convert delay from seconds to mysql time format in MTA log processor (#924, #941)

@endelwar endelwar released this Aug 21, 2017 · 128 commits to 1.2 since this release

Assets 2

MailWatch 1.2.5

tl;dr

A maintenance release that fixes some MySQL/MariaDB upgrade issues and improves user experience

Changelog

Improvements

  • Support for multiple virus scanners and multiple top viruses (#874)
  • Add detection of MySQL or MariaDB in upgrade process (#873)
  • Prevents Mail Queue summary from duplicating mail count when local server is defined in RPC list (#904, #905)
  • Enhance upgrade.php with check for conf.php syntax and MailScanner.conf existence
  • Better UI on tables and graphs
  • Improved translations

Fixes

  • Fixes issue when sanitization causes ampersand to be html-ified (#882)
  • Fix mailwatch-sendmail-relay init script (#881)
  • Fix code for php 5.3 compatibility (#889)
  • Fix path to mtalogprocessor file in senmail_relay (#912)
  • Remove on update/default value for timestamp in maillog table (#915)
  • Permit up to 20 chars in first part of Postfix msgid (#652)

@endelwar endelwar released this Jun 18, 2017 · 172 commits to 1.2 since this release

Assets 2

MailWatch 1.2.4

tl;dr

A maintenance release that finish the work on graph migration to ChartJs and visual display of release and learned messages

Changelog

Improvements

  • Converted remaining graph to Chart.js and removed JpGraph dependency
  • Add OS detection in Software Version page
  • Add geoip_update cron script
  • New graph: Messages per Hour for the last 24 hours
  • Recognition of Message/Partial as attachment in view mail
  • Beautify error message on database exception
  • Add visual display for released and learned messages
  • Add a comunity code of conduct
  • Localization updates

Fixes

  • Fix wrong MAILWATCH_SMTP_HOSTNAME defined check
  • Correct some graph generation
  • Fix timestamp field autoupdating in maillog table
  • Fix status mail queues in MailWatch cluster

@endelwar endelwar released this Jun 12, 2017 · 227 commits to 1.2 since this release

Assets 2

MailWatch 1.2.3

tl;dr

Several improvement on user sessions and quarantine reports, plus a lot of fixes, above all browser multitab surfing and multiselect on message operations

Changelog

Improvements

  • Better compatibility for MySQL 5.7 (ONLY_FULL_GROUP_BY)
  • Disable broken VIRUS_INFO per default
  • Better handling of Postfix message ids
  • Allow plus sign in username
  • Add ability to send quarantine report to single user
  • Enable users to immediately send his own quarantine report
  • Add ability for users to select the language of the gui
  • Converted some graph to Chart.js
  • Warn about installing PHP XML extension where not present
  • Add option to specify HELO hostname for SMTP transactions
  • Improved Sendmail queue code
  • Allow blacklisting and whitelisting an entire TLD
  • Use domain admin username as domain filter
  • Database driven session enhancements
  • Add per user session timeout
  • Provides visual display of release and learned messages
  • Enhanced detail page printing
  • Enhanced upgrade.php
  • Localization updates
  • Code refactoring to clean up duplication and code smell

Fixes

  • Ignores MailScanner config files (conf.d/*) in subfolders and hidden files
  • Options in messages operations do not select all the lines when clicking S/H/F/R
  • Fix issue where Mail Queue on status page displayed intermittently
  • Fix sa-learning in languages containing special chars in submit text (e.g. German)
  • Fix session conflict and multitab surfing
  • Fix broken html with certain virus names
  • Fix duplication of default rule in msre_edit.php
  • Fix errors with /etc/cron.daily/mailwatch scripts
  • Create.sql can be run on MySQL <= 5.5 again
  • Fix & encoding in links
  • Fix SA-Learn blocking apache server

@endelwar endelwar released this Apr 4, 2017 · 323 commits to 1.2 since this release

Assets 2

MailWatch 1.2.2

tl;dr

oops! fixed malfunctioning SpamAssassin learn and release command

Changelog

Fixes

  • Regression in SA Learning and Releasing not working in detail page

@endelwar endelwar released this Apr 3, 2017 · 329 commits to 1.2 since this release

Assets 2

MailWatch 1.2.1

tl;dr

A lot of fixes for session management and some regressions introduced in 1.2.0; Improved performance and decoding of queue files

Changelog

Improvements

  • Show RBL list in Message Detail
  • Better decoding of sender and subject in Mail Queue
  • Disable browser caching to prevent token mismatch
  • Add unique token to logged emails
  • Clean orphaned filter in upgrade.php
  • Add optional skinning of web interface
  • Moved upgrade doc to online documentation
  • Improved performance
  • Enhanced session expiration
  • Prevents domain admins from editing their own filters
  • Allows domain admins to view, edit, add, and delete users in their filter domains
  • Code refactoring to clean up duplication and code smell

Fixes

  • Fix regression on some input validation (the Bad Dog Biting Bug™)
  • Rename 00MailWatchConf.pm to MailWatchConf.pm, which is failing on some perl versions
  • Fix Audit log access
  • Don't permit logged in Admin/Domain admin to delete his/her user
  • Fix MailWatchConf.pm loading on some platforms
  • Remove double ldap_escape on username
  • Fix upgrade.php failing on some MariaDB versions
  • Fix MIME part visualization
  • Fix session loop