MDaemon Server v24.0 Release Notes

MDaemon 24.0.1 - June 25, 2024

SPECIAL CONSIDERATIONS

• [16456] Hosted email options with MDaemon Private Cloud are now available. To learn more, please visit: https://mdaemon.com/pages/mdaemon-email-msp.
  
  

CHANGES AND NEW FEATURES

• [27400] MDRA - Added "Include connection history" option to Security | Dynamic Screening | Notifications.
• [27732] Webmail - Mailto URLs in plain text emails are turned into hyperlinks.
• [27706] Pro theme - Added home mobile phone to the contact list and added tel: links to phone numbers.
• [27778] MDRA - Added an error message at the top of the ActiveSync Client Settings - Global page when no settings are found.
• [27865] MDaemon Connector has been updated to version 8.0.1.
• [27746] Antivirus - AV Updater "Configure Updater" button and the "Updater Configuration" dialog renamed to "Log settings".

FIXES

• [27756] fix to WorldClient and LookOut themes - When replying or forwarding an unread message, that message remains unread instead of marking it as read
• [27663] fix to Pro theme - When the list refresh occurs, the folder list scrolls back to the top
• [27608] fix to Pro theme - attachments are not shown in the message preview
• [27772] fix to Webmail - fixed vulnerabilities in CKEditor 4.22.1
• [27792] fix to Webmail - non-ASCII characters in a user's full name are corrupted in generated read confirmations
• [27820] fix to MDRA - Exception occurs when attempting to view a message in the Retry Queue
• [27834] fix to Webmail - Cannot set categories from the message context menu
• [27787] fix to Antivirus possibly adding incorrect X-MDAV-Infected header information
• [27821] fix to CFEngine.exe possibly using high CPU when IKARUS AV is disabled
• [27843] fix to MDRA - Shared folders can be disabled when MDaemon Connector is enabled
• [27859] fix to Pro theme - subject parameter not being honored in mailto links
• [27866] fix to possible crash in CFilter.exe
• [27856] fix to calendar event text in reminder email is truncated
• [27863] fix to MDaemon GUI - Dynamic Screening Notifications Include connection history setting not saved
• [27872] fix to Webmail - Trailing tildes and other special characters are removed from links in messages
• [27880] fix to Webmail - Message view hangs when loading a badly formatted email

MDaemon 24.0.0 - May 21, 2024

CHANGES AND NEW FEATURES

MDAEMON SERVER

• [27526] MDaemon can collect and send anonymous usage data to MDaemon Technologies. We will use this information to improve the product and its features to better meet the needs of our customers. This can be disabled by unchecking the "Send anonymous usage data" checkbox at Setup | Preferences | Miscellaneous. See our privacy policy.
• [27687] The DKIM option to sign mailing list messages no longer requires content filter processing on each individual list message.
• [27024] The Bad Queue Summary email now has a link to delete all messages. It requires action links to be enabled (at Queues | Mail Queues / DSN | Mail Queues | Holding Queue) and the Remote Administration URL to be set (at Setup | Web & IM Services | Remote Administration | Web Server).
• [16053] ARC (Authenticated Received Chain) - RFC 8617.

  ARC is an email authentication protocol that lets intermediate mail servers digitally sign a message's authentication results. When a downstream mail server does DMARC verification and finds that SPF or DKIM have failed (due to forwarding or mailing list modifications, for example), it can look for ARC results from a trusted server and use them to decide whether to accept the message.

  ARC verification and signing can be enabled at Security|Security Manager|Sender Authentication|ARC Settings. Trusted ARC Sealers are the domains whose ARC results you trust. ARC results from non-trusted domains are ignored when doing DMARC verification. ARC signing needs a selector and a signing domain. You can use the same selector for ARC that you use for DKIM signing, or create a new one. If you host multiple domains and want to use a different selector or signing domain for any of them, click Advanced to configure that. Forwarded messages, mailing list messages, and gateway messages with authentication results are eligible for ARC signing.

• [27737] Added support for SEM files without "blacklist" and "whitelist" in their names: BLOCKLIST.SEM, SENDERBLOCKLIST.SEM, RCPTBLOCKLIST.SEM, CREDSMATCHEXEMPTLIST.SEM, DMARCEXEMPTLIST.SEM.
• [27425] Changed the Hijack Detection account frozen notification email to say the exact reason the account was frozen.
• [27612] MDaemon disables the MDaemon Connector client auto-updater in versions before 7.0.6, to work around an auto-updater bug in those versions.

REMOTE ADMINISTRATION (MDRA)

• [27727] Added an option to allow Webmail users to create temporary links that can be shared with anyone at Main | Webmail Settings | Settings (global), Domain Manager | Edit | Webmail Settings, and Account Manager | Edit | Settings. Added the Document Links management tools at Main | Webmail Settings | Document Links. The tools allow Global Admins to see what links are being shared, when they were created, how many times they have been downloaded, and the last download. In addition, admins can revoke any link.
• [27120] Added license status to the Main | Status page.
• [18409] Added an option for Webmail to "Disable hyperlinks in spam and messages that fail DMARC, DNSBL, or SPF authentication" which is enabled by default. An additional option to make an exception "when the From header matches a contact in the domain's or user's Allowed Senders contact lists" was added for both Block HTML images and Disable hyperlinks.
• [27304] Added the number of accounts used to the Main | Status page, and added the same to the Registration page.
• [27349] Added an option at Main | Webmail Settings | Branding to upload a background image for the Webmail sign-in page.
• [27367] Added a setting "Allow WebAuthn Sign-In to bypass the Two Factor Authentication page" at Main | Remote Admin Settings | Settings. This setting is enabled by default on clean installs.
• [27413] Changed the list of registered credentials on the user settings page to only display Passwordless Sign-In credentials and added the same type of list to the Two Factor Auth Device Authentication portion of the page for the related registered credentials.
• [27366] Added a setting "Allow WebAuthn Sign-In to bypass the Two Factor Authentication page" at Main | Webmail Settings | Settings and Main | Domain Manager | Edit | Webmail Settings. This setting is enabled by default on clean installs.
• [27450] Moved the proxy settings from the AV Config updater to Setup | Server Settings | Proxy Settings.
• [27517] Added a Delete button on the Message Search page at Messages and Queues | Message Search. Admins can now delete messages from a user's mailbox.
• [27518] Added the ability for global admins to search all mailboxes in a given domain for specific messages at Messages and Queues | Message Search

WEBMAIL

• [27097] Pro theme - Added an option to allow users to create temporary links that can be shared with anyone. In the document list, the user can click on the link action icon to the right to create a link. The user can also use the dialog to delete the link. If a link exists for a document, a link icon will appear before the file name in the document list.
• [27217] Improved performance by reducing the amount of disk I/O.
• [27112] Empty hrefs in HTML anchors in emails will now be removed to prevent invalid behavior.
• [26002] Created an Allowed Senders public folder that is checked for the "Do Not Block Images for Allowed Senders" and "Do Not Disable Hyperlinks for Allowed Senders" options. This folder is currently only used by Webmail, not by the MDaemon server or spam filter.
• [13195] Added the user options "Request Delivery Confirmation" and "Request Read Confirmation" at Settings | Compose. When these are set to Yes, the corresponding checkboxes are checked in the Compose view
• [13892] Pro theme - Added a note in the message header list that says "You replied to/forwarded this message on" the corresponding date.
• [13631] Pro theme - Added an option to display and manage old reminders from the navigation bar at Settings | Notifications "Display event and task reminders in the navigation bar". Setting is enabled by default.
• [18409] Added an option to "Do Not Disable Hyperlinks for Allowed Senders" at Settings | Personalize. When hyperlinks are disabled in a message, "Hyperlinks are disabled. Click here to enable them." will be displayed at the top of the message window.
• [14469] Added the ability to set the color of a calendar in the Pro theme. The setting is available by right clicking a calendar in the Calendars View, going to Settings | Folders and clicking on a calendar from the folder list, and while creating a new calendar in the New Folder dialog. The color setting is honored in LookOut and WorldClient themes.
• [27393] Changed the list of registered credentials on the Settings | Security page to only display Passwordless Sign-In credentials and added the same type of list to the Two Factor Auth Device Authentication portion of the page for the related registered credentials.
• [27430] Pro theme - Added "Show Header Details" at Settings | Personalize to always show the header details in the message views.
• [27483] Pro theme - Added instructions on how to use the availability UI on the Publish Schedule dialog.
• [27558] Pro theme - Upgraded the HTML editor, TinyMCE, from version 6.0 to version 6.8.
• [27546] Pro theme - Updated the translations for the in-browser instant messenger.
• [27572] Pro theme - Added a font option to the Settings | Personalize page.
• [27574] Pro theme - Added the ability to drag and drop attachments and documents download links to the desktop. Only works with Chrome-based browsers.
• [27537] Pro theme - Added a toggle arrow for the CC and BCC fields in the compose view.
• [27573] Pro theme - Reduced the list and menu padding for desktop browser sizes.
• [27587] Pro theme - Added a link in the menus to copy/move items to the last folder items were copied or moved to.
• [27516] Pro theme - Updated the language on the Publish Schedule page to use "Duplicate" instead of "Copy" for adding existing availability to other days.
• [27592] Pro theme - Updated the Folder Actions page.
• [27536] Changed the "Import Messages" icon to a down arrow instead of an up arrow.
• [27708] Added more contrast between the read and unread status of messages in the message list.
• [27752] Updated CKEditor to v4.22.1.

ACTIVESYNC

• [25294] Improved SmartForward/SmartReply Operation when <ReplaceMime/> is NOT specified.
  Previous versions contained code that was compliant with the EAS 2.5 Spec for SmartForward. Furthermore, SmartReply did not support inline images in the replied to message. This new code supports this. The style css fragment that controls the div within which the replied to / forwarded message is placed, continues to be customizable. See the ActiveSync operation Samples ActiveSync_DomainSettings_*.xml and ActiveSync_GlobalSettings.xml. Unless explicitly specified, domain settings will use the global formatting settings.
• [27222] ActiveSync Management changes are logged to the AirSync-Mgmt log file.
• [27266] The ActiveSync server honors the Webmail option to use the X-Forwarded-For header.

OTHER

• [27468] XMLAPI - Added App Passwords management.
• [27450] Moved proxy settings out of AV updater screen to Setup | Server Settings | Proxy Settings in MDaemon.
• [2386] Content Filter - Added support for foreign characters for rules editing and searches. Content filter configuration files (CFilter.ini and CF*.dat) have been converted to UTF-8. If you need to revert to a previous version and have non-ASCII characters in these files, convert them to ANSI or restore them from backup.
• [27281] Updated DQS SpamAssassin files for HBL content and fixes.
• [27749] Dynamic Screening - If you encounter "The network path was not found" errors, edit the registry at HKLM\SOFTWARE\Alt-N Technologies\MDaemon\DynamicScreening\Configuration and set Server to "." and UseCustomServer (DWORD) to 1.
• [27760] Updated ClamAV to version 1.0.6 LTS.
• [27123] MDaemon Connector has been updated to version 8.0.0.

FIXES

• [27215] fix to possible crash in MDaemon.exe when the POP3 server is overloaded
• [27321] fix to XMLAPI - Crash in MDASMgmt while using the ActiveSync operation
• [27482] fix to Pro theme - Days with no availability remain highlighted
• [27484] fix to WorldClient theme - Device Registration page success message has HTML encoded quotes
• [27490] fix to Pro theme - attachment filename is HTML encoded
• [27326] fix to Webmail - additional empty lines appear when replying to a message sent by an Outlook client
• [27542] fix to Pro theme - Calendar date jumper not working in the Calendars view
• [27543] fix to Pro theme - Calendar View - event hover appears inconsistent
• [27549] fix to Pro theme - New Contact window opens with the cursor focus in the Comments
• [27467] fix to Webmail - When creating a recurring meeting request and then changing it to a single event, the dates are incorrect in the updated request
• [27555] fix to Pro theme - Receiving notification that there are 0 new messages in a folder
• [27562] fix to Pro theme - The Mark All Read option in the folder options dropdown menu does not refresh the folder counts
• [26269] fix to Pro theme - If resizing the browser window from under 992px to over 1200px the resize misbehaves
• [27577] fix to Pro theme - Write permissions are required to insert messages
• [27583] fix to Pro theme - Basic headers displays +1 more when there is only one recipient
• [27469] fix to Webmail - Searching for non-ASCII characters is case sensitive
• [27601] fix to Pro theme - side navigation menus have hidden toggle button on Android devices
• [27597] fix to MDRA - Browser Users pop-up menu only displays first 50 accounts
• [27582] fix to IKARUS config files getting overwritten by installer
• [27629] fix to Pro theme - unsubscribed folders not shown in Settings | Folders
• [27638] fix to Pro theme - Message list shows times using a combination of 24 hour time and AM/PM
• [27639] fix to MDRA - Certain characters displayed incorrectly when modifying filtered log searches
• [27642] fix to XMPP server - Sometimes a contact will show 'waiting authorization' when the contact is already subscribed
• [27648] fix to Pro theme - Global settings used instead of domain settings when a subdomain is used
• [27610] fix to Thunderbird is unable to find and list CalDAV calendars via Auto Discovery (RFC 6764)
• [27669] fix to MDRA - incorrect Content Filter Add Attachment view displayed when OnlyUseAttachmentFolder is enabled
• [27670] fix to MDRA - Mailing List - "Enable Digest support for this mailing list" setting is not saved when a user does not include the spool time
• [27674] fix to MDRA - List Admin permissions are inconsistent
• [27675] fix to Pro theme - When clicking the edit icon on the Email Templates page, the body is not displayed
• [27692] fix to MDRA - ActiveSync - Allow List should be Exempted Client List
• [27697] fix to Pro theme - AI Email Assist does not work in the compose view when composing in plain text
• [27566] fix to Antivirus - quarantined messages sometimes have attachments removed
• [27661] fix to possible crash in MDaemon.exe when opening corrupted contacts folder
• [27724] fix to possible crash in MDaemon.exe
• [27734] fix to subject of a recurring event changed in Webmail may be corrupted in MDaemon Connector
• [27531] fix to Webmail server's "HTTPS only" option does not apply to ports added in the binding setting
• [23734] fix to non-ASCII filenames in a particular message are corrupted in Webmail
• [27686] fix to DMARC processing ignores SPF pass for null sender (MAIL FROM:<>)
• [27740] fix to attachments added to tasks in MDaemon Connector may not be accessible on the server
• [27747] fix to Pro theme - Messages opened in the external view do not honor the Date Format setting
• [27751] fix to MDRA - you must specify a proxy host when use proxy is disabled
• [27738] fix to Pro theme - Unable to print more than the first page of a multi-page email
• [27755] fix to Pro theme - The Mark As Read On Preview option set to Never Mark As Read does not have any effect
• [27744] fix to SpamAssassin temp folder left on disk
• [27029] fix to MDRA - "Today Only" button does not work with a date format other than MM/DD/YYYY
• [27180] fix to XMLAPI - ItemOperation mail attach and detach failing
• [27693] fix to ActiveSync - after adding a folder exclusion, items a client has already downloaded in that folder are not deleted
• [27711] fix to AutoDiscover - Thunderbird does not configure itself to use encryption