Releases: stalwartlabs/mail-server
v0.10.5
v0.10.4
[0.10.4] - 2024-10-08
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin.
Added
- Detect and ban port scanners as well as other forms of abuse (#820).
- ACME External Account Binding support (#379).
Changed
- The settings
server.fail2ban.*
have been moved toserver.auto-ban.*
. - The event
security.brute-force-ban
is nowsecurity.abuse-ban
.
Fixed
- Do not send SPF failures reports to local domains.
- Allow
nonce
in OAuth code requests. - Warn when there are errors migrating domains rather than aborting migration.
v0.10.3
[0.10.3] - 2024-10-07
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin. Enterprise users wishing to use the new LLM-powered spam filter should also upgrade the spam filter rules.
Added
- AI-powered Spam filtering and Sieve scripting (Enterprise feature).
Changed
- The untrusted Sieve interpreter now has the
vnd.stalwart.expressions
extension enabled by default. This allows Sieve users to use theeval
function to evaluate expressions in their scripts. If you would like to disable this extension, you can do so by addingvnd.stalwart.expressions
tosieve.untrusted.disabled-capabilities
.
Fixed
- S3-compatible backends: Retry on
5xx
errors. - OIDC: Include
nonce
parameter inid_token
response.
v0.10.2
[0.10.2] - 2024-10-02
To upgrade first upgrade the webadmin and then replace the stalwart-mail binary. If you read these instructions too late, you can upgrade to the latest web-admin using curl -k -u admin:yourpass https://yourserver/api/update/webadmin
.
Added
- OpenID Connect server (#298).
- OpenID Connect backend support (Enterprise feature).
- OpenID Connect Dynamic Client Registration (#4)
- OAuth 2.0 Dynamic Client Registration Protocol (RFC7591) (#136)
- OAuth 2.0 Token Introspection (RFC7662).
- Contact form submission handling.
webadmin.path
setting to override unpack directory (#792).
Changed
Fixed
v0.10.1
v0.10.0
[0.10.0] - 2024-09-21
This version includes breaking changes to how accounts are stored. Please read UPGRADING.md for details.
Added
- Multi-tenancy (Enterprise feature).
- Branding (Enterprise feature).
- Roles and permissions.
- Full-text search re-indexing.
- Partial database backups (#497).
Changed
Fixed
v0.9.4
[0.9.4] - 2024-09-09
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin.
Added
- Support for global Sieve scripts that can be used by users to filter their incoming mail.
- Allow localhost to override HTTP access controls to prevent lockouts.
Changed
- Sieve runtime error default log level is now
debug
.
Fixed
- Ignore INBOX case on Sieve's
fileinto
(#725) - Local keys parsing and retrieval issues.
- Lookup reload does not include database settings.
- Account count is incorrect.
v0.9.3
[0.9.3] - 2024-08-29
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin.
Added
- Dashboard (Enterprise feature)
- Alerts (Enterprise feature)
- SYN Flood (session "loitering") attack protection (#482)
- Mailbox brute force protection (#688)
- Mail from is allowed (
session.mail.is-allowed
) expression (#609)
Changed
authentication.fail2ban
setting renamed toserver.fail2ban.authentication
.- Added elapsed times to message filtering events.
v0.9.2
[0.9.2] - 2024-08-21
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin.
Added
- Message delivery history (Enterprise feature)
- Live tracing and logging (Enterprise feature)
- SQL Read Replicas (Enterprise feature)
- Distributed S3 Blob Store (Enterprise feature)
Changed
Fixed
v0.9.1
[0.9.1] - 2024-08-08
To upgrade replace the stalwart-mail
binary and then upgrade to the latest web-admin.
Added
- Metrics support (closes #478)
- OpenTelemetry Push Exporter
- Prometheus Pull Exporter (closes #275)
- HTTP endpoint access controls (closes #266 #329 #542)
- Add
options
setting to PostgreSQL driver (closes #662) - Add
isActive
property to defaults on Sieve/get JMAP method (closes #624)
Changed
- Perform
must-match-sender
checks after sender rewriting (closes #394) - Only perform email ingest duplicate check on the target mailbox (closes #632)