Major Updates History

5.0 Oct-05
Valid Core License Keys: issued on or after 1st of Oct'2003.

Platform

The MacOSX/Intel version is released.

Kernel

The CG/PL language has been implemented.
SMTP, POP, PWD: now parsers accept addresses containing quoted space symbols.
Listener: the Reserve for Clients option is implemented.
Log: now the Log Manager does not create more than 1 file in one minute, even if the current log file has exceeded the size limit.

CLUSTER

The core SIP infrastructure supports the Dynamic Cluster environment now ("SIP Farm").

PBX

The PBX Application environment has been implemented.

ROUTER

New wildcard and Escape mechanisms are implemented.
External Helper Routing is implemented.
All-Local Router records are implemented.
All-Domain Aliases can contain wildcards now.

SIGNAL

The signalling component has been re-implemented.
Server-wide/cluster-wide Signal Rules are implemented.
The CDR recording and CDR helpers are implemented.
The Maximal Registration time period option is implemented.
The "externsion part" of a MakeCall telephone number string is cut off when the number is converted into an URI.
Calls to *NN addresses are routed back to the caller now ("Service" calls).
The list of the latest incoming calls is stored in the "account info" data.
Presence from Microsoft clients now expires with the client registration.
SDP recomposition preserves codec priorities.
NOTIFY(keep-alive) requrests are supported now.

RULES

The Execute action now supports the [ROUTE] prefix.
The Mark operation can now set the Media message flag.
The SendURL and SendIM actions are implemented.
The Authenticated condition has been implemented.

Domains/Accounts

Domain Enabled Services settings can be "defaulted" now.
The Login Method settings were moved from Obscure settings to Domain settings.

Mailbox

Group Access rights are implemented.
Mailbox formats have been modified to provide more flags per message.
The "service" messages concept is implemented; "service" messages cannot be seen with IMAP/POP clients.
The Media message flag is implemented.
The total number of unread media messages in maintained.
Changes in the total number of the unread media messages in INBOX mailboxes result in "message-summary" data publish operations (support for MWI phone indicators).

Security

The Certificate Authentication method is supported in all session-based protocols and in the WebUser Interface.
The Request Client Certificate Domain Setting is implemented.
The Certificate Authentication Account Setting is implemented.
The built-in, Server-wide, Cluster-wide, and Domain-wide Trusted Certificates are implemented.
Digest "cnonce" values containing ":" symbols are accepted now.
The Partial Lawful Intercept option now reports all message UIDs listed in WebUser "mailbox views".

FTP

The APPE command is implemented.
The MKD, XMKD, LIST, RMD, XRMD commands accept directory paths with trailing slashes.
ALERT-closing of an TLS channel is supported now.

HTTP

The If-Modified-Since header field is supported now.

LDAP

The "Ignore objectCategory filters" option is implemented.
The "displayName" attribute is generated on-the-fly if needed.

LIST

The "listserver" command processor now accepts list names in the list@domain form.
Size settings now support 64-bit values.

IMAP

Support for $Media and $Service message flags is implemented.

MAPI

The version 1.1.31 of the MAPI Connector is included.

SIP

CANCEL processing has been changed to better support Microsoft packet signing.
Relaying from a far-end NAT to the same far-end NAT is detected and properly processed now.
The module settings have been moved to 4 separated WebAdmin pages.
Multiple Gateways are supported now.
The Gateway Auth Name optional setting is implemented.
The Workaround features have been implemented.
Support for the MacOSX version of Microsoft Messenger is implemented.
The Gateway "Substitute To" setting is implemented.
The Gateway "Call Authenticate" setting is implemented.
Record-Route field generation optimized and streamlined.
The Relay restriction setting is implemented.
The External Gateway names are separated from the Domain names now (to support multiple "gateway accounts" in the same gateway domain).
Proxy Signal/Media Gateway setting is implemented.

SMTP

The When Receiving Domain setting is implemented.
Connections to the port 587 are not rejected when the Reserved for Clients connection limit is reached.
The Reverse-Connection option is implemented.
The Force AUTH option has been moved to the Domain Settings.
The Verify Return-Path and HELO options are separated now.
When using High Security for message sending, the remote server Certificate validity is verified.
The maximum Keep Trying time has been increased to 3 months.

SNMP

Syntax element names changed from COUNTER to COUNTER64.

Media

The Media Channel (Media Server) component has been implemented.

CALENDAR

Tasks and events with zero durations are processed differently than items with unspecified durations.
The TZID parameter is stored without quotation marks.

DNR

RFC2915 (NAPTR) is implemented.

Events

The Send Instant Message and Send URL Notification metods are implemented.

CLI

The PBX Application Administration commands are implemented.
The GETACCOUNTINFO command syntax is extended.
The WebAdmin Interface management commands have been removed.
The READSUBSCRIBERS command has been documented.

WebAdmin

The Domain & Account administration pages have been changed to use the WSSP interface.
The PBX Applications editor is implemented.
The RealTime Settings pages are implemented.
The RealTime Account settings pages are implemented.
The RealTime and SIP monitor pages are implemented.
Inactive addresses (From, To, Cc, etc.) are displayed on the Queue Message Monitor pages now.
The Advanced Real-Time settings can be used in Account Default settings.

WebUser

The DataSet Address Books settings are implemented.
Support for audio message parts (MIME and UUEncode) is implemented.
The XChange Skin has been added.
New Contact items (vCard) are stored with a UID-based Message-ID header field.
The Remove File(s) (remove message attachments) operation is implemented.
Now Bcc addresses are stored with "sent message" copies.
Calendar Recurrence editor now contains the End By control.
Validity of Certificates in digitally signed messages is displayed.
Now HTML attachments are not "cleaned" when they are copied to the personal File Site.
The Hello.wssp page with account "summary" information has been implemented.
Explicit login pages for WML and IMode devices are implemented.
S/MIME export format has been modified to allow "Thunderbird/Firefox" to import exported keys without crashing.
The "media" elements have been added to datasets generated with the generic Mailbox and Message components.

WSSP

The DUMP prefix is implemented (to simplify WSSP code debugging).
The URLSUBST prefix is implemented.
EOL symbols inside expressions are processed as "white spaces" now.

WebSite

The Rename operation is implemented in both WebUser and WebAdmin Interfaces.

4.3 May-05
Valid Core License Keys: issued on or after 1st of May'2003.

Platform

the FreeBSD5/x86_64 (AMD64, EMT64) version is released.
the Windows/Itanium version is released.
SCO OpenServer/Intel version is released.
the --SharedFiles startup parameter is enabled by default on Windows NT/XP/200x platforms. The --NoSharedFiles startup parameter is implemented.

Foundation

the --DefaultStackSize startup parameter is implemented.
the --NoThreadPriority startup parameter is implemented.
the --LocalIPBuffer startup parameter is implemented.

Kernel

now MIME-encoded header fields can be generated using the binary (base64) encoding.
message processing redesigned to support added headers and subject tags in all operations.
the --CreateTempFilesDirectly startup parameter is implemented.
RFC2478 has been implemented.
now network ranges can be specified as address/mask.

ROUTER

the "Enabled" "detailed" address (name+detail) processing has changed to keep detailing on forwarded addresses.
the .via and .relay domain name suffixes are implemented. The .smtp and .smtpq suffices are still supported, but deprecated.
routing to the Forwarded To server now applies to mail-type routes only.

QUEUE

the SMTP Relay address for messages is stored as a Domain Name now. Cluster frontends now can use Domain IPs for messages generated with other cluster members.
now multiple address-level temp-errors generate only one Warning message.
now the Send Return-Receipt To option controls the Relay reports, too.

RULES

Rule-added header fields are now passed to external tasks if the [FILE] prefix is specified.
the Reply and React operations now use the From: and Charset settings specified in the Account WebUser Preferences.
the Current Account Address macro (^r) is implemented for the Reply and React With operations.
multi-line header fields added with the Add Header operation are unwrapped before being used in the Header Field conditions.
now the Redirect/Forward Rule Actions preserve the message Return-Path address if it is empty.
the Security condition is implemented.
the Store Encrypted action is implemented.
the Forward operations now use the From: field specified in the Account WebUser Preferences.
the Tag Subject operation is implemented.

Domains

the Forwarder and Alias management for regular domains has been redesigned (10,000+ object sets can be updated quickly now).

Mailboxes

the Locked attribute is implemented. See the Objects->Mailboxes section for the details

Calendar

now duration = 0 is accepted in iCALENDAR objects.
the Publish/Reply operations can now add the CN attribute to a new attendee.

Security

External AUTH Interface v.7 is implemented (the PLAIN response is supported now).
the Common Name menu for Domain Certificates now contains the "wildcard name" option.
Domain S/MIME settings are implemented.
Heimdal Kerberos keytab files are accepted now.
the DIGEST authentication method for connection-oriented session re-implementated. It now accepts unquoted parameters (such as those sent with Java LDAP modules), and it can be used in Clusters (after all servers are upgraded).
the Advertise Clear Text methods option is implemented. It also implements the LOGINDISABLED capability in IMAP.
the Impersonate Login feature has been implemented (for PLAIN and GSSAPI login methods).

TLS

now empty certificate sets and/or warning alerts are sent in response for "certificate requests" from remote servers.
the Weak Ciphers option is implemented.

Lawful Intercept

the Partial option is supported now.

WebAdmin

the KerberosKeys Domain Access right has been added.
the Storage Used field on the Account Settings page is displayed as a button that can be used for re-synching the used storage counter.
the Settings section rearranged: the Server-Wide Rules and RFC822 Receiver pages are moved to the Queue subsection. The Protection section renamed into the Network section.
the Server-wide and Cluster-wide Rule pages now provide the Comment field.
the NATed IPs page is added to Settings->Network subsection.

CLI

the GetTempBlacklistedIPs command is implemented.
the FindWebUserSession command is implemented.

Directory

the STARTTLS option for Remote Units has been re-implemented according to RFC2830.

LDAP

authentication internals changed to better support LDAP provisioning in Cluster domains.

HTTP

the HTTP Header Fields option for CGI processing is implemented.
the CalendarDataDel realm is supported now (same as the CalendarData realm, but PUT operations delete all existing iCalendar items first).
the CONTENT_TYPE environment variable composed for CGIs now includes the boundary parameter.

FTP

relative path names starting with ".." are supported (Unix-style)

MAPI

the version 1.1.22 of the MAPI Connector is included.
the Encrypt operation is supported now.
the MakeCall feature is implemented.

WebUser

the initial default WebSkin name is now set to "Viewpoint".
the ShowLinks MessageViewer option is implemented.
vCard ADR field processing has been changed to provide better compatibility with Microsoft Outlook.
S/MIME certificates issued by the Server can be refreshed now.
the Encrypt and Decrypt operations are implemented now.
all internal routines now use the selected TimeZone data rather than the current TimeZone shift.
the Skins developed by David Bakkers are included into the basic distribution.
the MakeCall feature has been implemented (calling a phone number listed in Contacts via your SIP devices).
the Browser Authentication Login method is implemented (see the WebMail section for the details).

SIP

RFC3903, RFC3863 are implemented.
the Presence Server is implemented.
Authorization for INVITEs sent to External Gateways is implemented.
TLS Route URIs are supported now.
the "far-end" NAT traversal functionality is implemented.
MediaProxy mechanism redesigned to support call flows crossing the same edge server multiple times.
RFC3892 (Referred-By) is implemented.
support for session update re-INVITEs with multiple media streams added to NAT/Firewall proxies.
Outgoing Proxy support is implemented.
the server-generated Via header fields now contain the server SIP port numbers.

SIGNAL

the Signal to Unknown Names Domain settings are implemented.
multiple AORs can be processed now. Full support for Redirect responses is implemented.

CLUSTER

frontend TLS pass-through decrypting improved to handle large data block sequences.
HTTP inter-server communication changed to support multi-step authentication schemes.

LIST

the Service Fields Posting Policy option is implemented.
the To And Cc option processing has been extended.
the ^B (message sequence number) text macro is implemented.

SMTP

the Always Use EHLO option is implemented.
the Hide Received fields option is implemented.
RFC3865 ("No Soliciting") is implemented.
RFC3848 is implemented.
RFC2033 (the LMTP protocol) is implemented.
delay times for "temporarily rejected" messages and recipients are customizable now.
now the SPF records are not checked for Client and White Hole IP Addresses.

RADIUS

MS-CHAPv1 and MS-CHAPv2 MPPE key generation is implemented.
Digest authentication is implemented.
the MS-CHAPv1 and MS-CHAPv2 authentication methods are supported (enabled Windows VPN clients).

PIPE

Rule-added header fields are now passed to external tasks if the [FILE] prefix is specified.
multi-line routing headers (Envelope-To, To/Cc) are supported now.

RPOP

multi-line routing headers (Envelope-To, To/Cc) are supported now.

Migration

the --fixLongLines MoveIMAPMail utility option is implemented.

Bug Fixes

Bug Fix: CLUSTER: 4.0: Personal WebSite URLs were passed to backends with "URL escapes" removed.
Bug Fix: CALENDAR: RRULE parsing could stop on the UNTIL parameter.
Bug Fix: RULES: 4.1: the Mark Redirected operation actually cleared the Redirected flag.
Bug Fix: HELPERS: 4.2: failed helpers were restarted even when the Use option was disabled.
Bug Fix: LIST: 4.0: certain multipart messages sent to a list could crash the server.
Bug Fix: LDAP: 4.0: response to a final DIGEST-MD5 SASL challenge was processed incorrectly.
Bug Fix: SMTP: 4.1: initial prompt timeouts for "last" relays were shorter than timeouts for other relays.
Bug Fix: GROUPS: 3.2: the Remove Author from Distribution option could not be disabled in Directory-based Domains.
Bug Fix: WebUser: 3.5: mailbox renaming operation could incorrectly rename mailbox subscription elements.
Bug Fix: WebUser: 4.1: header fields with ISO-2022 data could be composed incorrectly.
Bug Fix: HTTP: 4.2.3: inter-cluster Keep-Alive processing was broken.

4.2 Jul-04
Valid Core License Keys: issued on or after 15th of November'2001.

Platform

the NetBSD/Intel version is released.
the OpenVMS/Alpha and OpenVMS/IA64 versions are released.
Linux/Itanium version is re-released (using modern hardware and libraries)
FreeBSD 5.x/Intel version is released.
on MacOSX/Darwin the default PWD port is set to 8106 instead of 106 to avoid conflicts with Apple's own "Password Server".
the Windows installer adds the "tcpip" dependency into the "Service" record it creates.
External Tasks: non-waiting "kills" are employed to avoid problems with some Linux kernels.

Foundation

the getpwnam_r buffer increased to avoid crashes in some versions of Linux system libraries.
ISO-2022-JP encoding routines have been updated.
"gethostbyname" OS calls have been removed on most platforms (were used only to get the server computer own name).
additional error checks added to handle "disk full" errors.
the "object checking routines" do not slow down the system any more, the --NoObjReleaseCheck flag has been phased out.

Kernel

all components (LIST, RULEs, etc.) now write their tags that can be checked with the Submit Address Rule condition. See the Transfer section for the details.
Japanese EUC-JP and Shift-JIS character sets are supported now.
the ISO-8859-13,ISO-8859-14,ISO-8859-16 charsets are supported now.
the Windows extensions are added to the ISO-8859-x charsets.
charset processing has been modified: charset aliases are supported now.
now the IP Address List settings can contain "exclude addresses" lines.
now the date-time parser accepts separator symbols.

ROUTER

the Mail:,Access:, and Live: record prefixes are supported now.
now if object is a forwarder to user@domain, mailbox#object addresses are routed to mailbox#user@domain addresses.

QUEUE

file opening algorithm has been changed to allow parallel file opening/closing.
the Queue directory "foldering" is implemented (see the Transfer section of the manual for the details).
the limit on number of queued messages is implemented.
the Send Return-Receipts To setting is implemented.

Rules

recurrent Events can be auto-accepted now.
now the [bcc] prefix is supported in the Redirect/Forward actions.
the Accept operation now understands meeting requests [mis]formatted with Apple's iCal application.
Domain Rule processing has been changed: all Domain Rules with priorities >5 are exectued before Account Rules, with priorities <= 5 are executed after Account Rules.
the Existing Mailbox condition is implemented.
now the Mark action can be used in the Server-Wide and Cluster-Wide Rules.

Domains

new group member addresses in Directory-based Domains are stored as "groupMember" attributes.
"empty" records for Directory-based Domains got their own objectClasses that include their RDN attributes.0
alias processing has been redesigned to support large number (100,000+) of aliases efficiently.
object management has been changed to avoid problems with concurrent domain deletion and domain access operations.
Domain Foldering is implemented (can be specified on the Domain Defaults page).
now Directory-based domains process forwarders and aliases locally, even if they have been created on a different "host" server (in a distributed domain or a Static Cluster).

Accounts

the SIP access mode setting is implemented.
the Account Quota options have been moved from the Local Module settings into Account Settings and Server Strings.
the Over Quota Notice message functionality has been implemented.

Groups

messages distributed via Groups now get the X-Autogenerated: group header (so they are not considered Human-Generated)
the Disable Email and Disable Live Communication options are implemented.

Mailboxes

the concept of "hidden" messages is implemented; "hidden" messages can be seen only by those who have the Admin access right for the Mailbox.
the TextMailbox Manager implements mailbox indexing.

WebSite

now it is possible to read and write files in chunks.
support for non-ASCII file and folder names is implemented (websitebody.wssp modified).
the "is directory" flag is now checked before attempting to read a file.

Calendar

Task Reply messages now contain copies of the Task Description field.
Recurrent event conflicts are detected now.
Data Import and HTTP Publishing operations now support CANCEL items. They can be used to remove existing items from the target mailbox.
incorrectly formatted VTIMEZONE elements created by Apple's iCal are accepted now.
iCalendar EXDATE fields are supported.
now the recurrent events are stored together with their Time Zone information, and they are interpreted "within" that Time Zone.
when Free/Busy info is built, the time zones associated with the Events are used instead of the default Server zone.

Protection

POP, IMAP, ACAP: after several login errors a delay is introduced into all responses, not only into the 'failed authentication' ones.
The LAN IPs settings have been implemented. The "Process LAN IP Addresses as Clients" setting has been implemented.

Security

the External Authenticator Protocol Version 5 is implemented: the Router-type prefixes for the NEW command, the [NORELAY] tag for the ROUTED response.
the Kerberos Authentication method (RFC1510) has been implemented. The Security->Kerberos page has been added to the Domain Settings, the Kerberos: Allow to Use option has been added to Account Settings, the Advertise GSSAPI option has been added to the Obscure settings.
the GSSAPI SASL method is implemented.
the DIGEST and NTLM authentication methods added to the HTTP modules.
the Advertise APOP method option is implemented (see the Security section of the manual).

Kerberos

"principal" comparison rules were relaxed (to support Active Directory KDC).
Triple-DES methods are supported now.
added a workaround for Apple's Mail.app bug (excessive bytes at the end of Kerberos tokens).

TLS

extended support for duplex operations.

Lawful Intercept

the Mailbox option is supported now.
changes in the Settings now take effect on the currently opened accounts, too.

WebAdmin

the "Open Active Log showing last" setting is implemented (a new Log Manager setting).
when the current Log file page is opened, the initial "From" time is set to the current time minus 2 minutes.
the SMTP settings page has been redesigned (divided into 3 pages).
the Test Address button has been added to the Client IPs and Blacklisted IPs pages.
the Charset admin preference is supported on the Monitors pages now.
now the "date created" information is displayed on the Account Settings page.
several account aliases can be specified in one field (separated with comma signs).
Directory-Based Domains: the Template updating mechanism has been improved.

CLI

the CREATEWEBUSERSESSION command got new optional parameters.
the GETWEBFILE and PUTWEBFILE commands have new parameters now.
the GETDOMAINLOCATION command is implemented.
The GETLANIPS,SETLANIPS,GETCLUSTERLANIPS,SETCLUSTERLANIPS commands have been implemented.
the PROCESSBOUNCE command is implemented.

Directory

Remote Units close connections to remote servers if an error occurs.
WebAdmin LDIF/LMOD import routines have been redesigned.
WebAdmin Delete Record operation has been implemented.
LDIF/LMOD import of base64-encoded data is implemented.
RFC2253 (DN syntax rules) is implemented.
all DN size limits have been increased to 1024 bytes.
Remote Units: the maximum acceptable DN size has been increased from 256 to 1024 bytes.
the RFC2798 implemented (all additional inetOrgPerson attributes have been added to the built-in Local Unit schema).

LDAP

now LDAP Provisioning allows a client to retrieve effective settings directly from the Account Manager.
the status of the "criticality" control extension flag is changed to "optional".
RFC2891 (sorting) is implemented.
RFC2696 (paging) is implemented.
all DN size limits have been increased to 1024 bytes.

HTTP

when closing a Keep-Alive connection on time-out, the TLS "quit" packet is not sent (a workaround for MS IExplorer SSL/TLS bug).
validity checks added to /redirect/ and /sredirect/ realm processing.
the "Personal WebSite Prefix" became a Domain Setting now. The "~" prefix now always works (in addition to the specified Prefix).
the "Default WebPage" became an Account Setting now.
if a URL w/o a trailing slash refers to a Personal File Site subdirectory, the "redirect" HTTP response is generated.
if a CGI output starts with "HTTP/", no HTTP header data is added by the Server.
if a CGI output starts with the "Status:" field, that field it used to form the response code and response text.

FTP

"data channel" close optimization (introduced in 4.2b6) removed as a workaround for MacOS Fetch client bug.
the AUTH SSL and AUTH TLS-P commands are supported now.
GSSAPI MIC,ENC,CCC commands are supported now.
GSSAPI-based security for control and data channels has been implemented.
now files are uploaded and downloaded in chunks, thus allowing large (100MB+) file handling in both single-server and Cluster environments.

TFTP

ERROR packets are processed now.
excessive data bytes in ACK packets are ignored now.
the TFTP module has been implemented.

MAPI

the version 1.1.12 of the MAPI Connector is included.
WebUser Interface settings integration is implemented.
Kerberos Authentication is supported now.
Multiple-language support is added to the client and server components. Now the localization file is always installed with the client component.
submitted messages are marked as "authenticated" if the Return-Path is routed to the E-mail address of the current user.
now the Refresh button on the Settings->General page reloads the server-side MAPI DLL.

WebUser

Recurrent event display method changed, the calendarpart.wssp file updated.
the Arabic dictionary file has been added. The RTL/LTR tags added to all Stock Skin pages to support Right-to-Left scripts and languages, the "ralign" elements added to the mailboxes.wssp page.
the German and Dutch dictionary files have been added.
information about event conflicts is displayed (using the statusCode, conflictingID variables).
the Chinese (Simplified) and Slovak dictionary files have been added.
Directory Address Book now put RDNs into the attribute list to comply with LDAP standards.
Directory Address Book search function now checks the cn, mail, and uid attributes.
the "style" tag parameters are removed when displaying HTML messages, as these parameters can contain scripts.
the Portuguese language support has been added.
the special WML and I-Mode Skins are supported now. WAP/WML and I-Mode/cHTML Parameters are added to WebUser Preferences. Basic default WML and IMode Skins are created. The WML portions are removed from the Basic Unnamed Skin. See the WebApp section of the manual for the defails.
the special <REDIRECT> tags are supported now. These tags can be used to return HTTP redirect responses. See the AppCodes section for more details.
several fields have been added to the Certificate/Key export format, to support Windows 2000 Key import functions.
the French dictionary file has been added.
all text strings are moved from the Basic Skin into its strings.data file, Basic and GoldenFleece Skins modified.
multi-lingual Skins are supported now (the Language WebUser Preference), some language files are included into the Basic Skin.
stateless requests now use the Skin specified in the Domain Default Account WebUser Preferences (rather than the Unnamed Skin).
URLs with "anchors" (such as http://aaa.dom/xxx#anchor) are supported now.
named Stock Skins are supported now. The "Golden Fleece" Stock Skin is included into the distribution.
the Private Item Event/Task switch is implemented.
the Reply All operation removes duplicate and "self" addresses from To and Cc fields.
"flowed" text formatting has been improved (locates non-original lines and removes trailing spaces from them)
now XML tags are removed from the displayed HTML code to stop the XML-based scripting tricks.
now the strings.data file is cached only when it is needed.
FreeBusy file processing has been changed (Outlook 2003 is supported now).
the DeleteAll operation is implemented on the mailbox.wssp page (not included into the Stock Skin), and on the mailboxsettings.wssp page.
the "disabled" option for the ShowHTML setting is supported now.
Show Images setting is implemented. It controls how the objects (images, etc.) with external references are processed.
the Apply to Sub-Folders option is implemented (mailboxsettings.wssp).
the Priority field can be added to regular (non-event) composed messages.
the References header field is supported now.
the TimeZone setting is implemented.
the QP and Base64-encoded calendar MIME parts are displayed now.
Directory-type Address Books now support the "Take Certificate" action.
Apple vCards (Unicode-formatted) are supported now.
now S/MIME certificates can be generated by users themselves.
the Password Recovery message does not contain the name of the account any more.

WSSP

the EQUALSNOCASE operation is implemented.
the JAVASCRIPT prefix is implemented.

SIP

External Gateway support has been added.
Media Proxies now support re-INVITE requests.
Media Proxy Loops are detected and eliminated.
TCP proxing for "msdata" streams is implemented, providing NAT/Firewall support for the "Share Application", "Remote Assistance", and other TCP-based features of Windows Messenger.
SIP server/proxy is implemented (including NAT support and media proxy).
support for non-standard protocol used in Windows Messenger 5.0 is implemented.

CLUSTER

the outgoing SMTP channels now use the Cluster name in the HELO/EHLO commands.
SMTP module now checks remote peers IP addresses against the IP addresses assigned to local domains (to avoid loops via load balancer IPs).
now Submit Address conditions work in Account-level Rules, too.
SMTP: messages directed to non-cluster accounts are not submitted remotely, thus avoiding inter-cluster loops.
reloading of shared domains during controller failover is handled by several threads now.
pre-locking is implemented to avoid problems with accounts being accessed by non-controller backends immediately before or after they are being created.
inter-cluster communications have changed to support larger file uploades.
initial Domain loading (non-controller): domain renaming/deletion is supported now.
Domains loading during a non-controller member startup has been improved.
Remote Queue processing has been implemented.

SNMP

the imapMAPIActive element is implemented.

LIST

if the Hide From addresses option is selected, the Reply-To addresses are removed from messages.
message subjects are now MIME-decoded before being used for confirmation and digest subject checks.
now Subject Prefix strings can contain special symbol combinations (^N, etc.).
a Domain Administrator can modify List settings and subscriptions only if the CanAccessLists right is granted.
the WebAdmin interface is redesigned to support Cluster-safe calls and the CanAccessList Domain Access Right.
the feed trailer-footers are QP-encoded when they are inserted into a quoted-printable-encoded text.

IMAP

the Content-Location data extension is added to the BODYSTRUCTURE output.
now the untagged UIDNEXT response is returned for the SELECT and EXAMINE commands.
multi-APPEND now uses only one temp file for all received messages.
support for $Hidden flag is implemented.
processing of the STATUS command has been changed to allow for custom STATUS flags (used in MAPI).
the REPLACEACL command is implemented.
the SETQUOTA command is fully implemented.

SMTP

The Original Return-Path domain is used for DNS verifications when the Forwarded To option is enabled.
the Blocked Addresses to Remember option has been implemented.
now warning messages are sent when individual recipients are delayed.
special processing of the port 587 (RFC2476) is implemented.
the Relay to Any IP Address and Accept Wakeup settings can be set to "nobody" now.
now explicitly specified White Hole addresses are not temp-blacklisted.
the header field added for blacklisted addresses can contain macro-symbols now.
the SPF Verification functionality has been added.
the @12.34.56.78: queue prefixes are not added to host names included into Hold Mail lists (to support ATRN retrieval for those hosts).
the alternative Keep Trying setting for messages with empty Return-Paths is implemented.
the Delay Prompt option is implemented.
a 2-seconds delay is introduced before sending any error-type response to a non-client sender.
when a Return-Path address routes to a local Group or Mailing List, the Force AUTH option is applied, too.
Sender Disconnect after errors option now works for non-Client senders only.
the Recipients per time period Limit is implemented.
sending to a domain is rejected immediately if all domain MX records cannot be resolved because of non-timeout problems.

LOCAL

now Over-Quota notice messages are generated using 2 different Server Strings: one when an incoming message has been delivered, and the other one - when an incoming message is too big.
delivery to "direct" mailboxes has been optimized.
the algorithm for "Over Quote" notice message generation has been changed.
delivery of an account queue is now finished after 2 minutes, causing queue rescheduling, to avoid delivery thread usurpation by an account with a huge queue.

RADIUS

External Helper support is implemented (to check request attributes and to produce response attributes).
Accounting Log is implemented.
EAP-MD5 (RFC1994, RFC2284, RFC2869) is implemented.

PIPE

PIPE: submitted messages now get the "client/trusted" flag (instead of the "authenticated" flag they got before).

PWD

PWD: now APOP-type prompts are sent to Cluster members even if the APOP autentication is switched off.

DNR

DNR: now the resolver checks that results of MX search operations are not listed in the Dummy IP Addresses list.

Utilities

Utilities: several minor changes in the sendmail utility.

Bug Fixes

Bug Fix: Foundation: 2.8: A "BigNumber library" negative number processing error could cause self-check exceptions.
Bug Fix: Kernel: 3.5: some internal routines processed Japanese and Korean charsets incorrectly.
Bug Fix: Kernel: 4.1: the TimeZone GMT->local conversion routine did not process daylight saving times.
Bug Fix: Calendar: 4.1: concurrent modifications of the same Calendar object could cause "soft deadlock".
Bug Fix: Calendar: 4.1: when recurrent events were stored, the DTEND property was not stored in the local time format.
Bug Fix: Calendar: RRULE parsing could stop on the UNTIL parameter.
Bug Fix: Calendar: the HTTP Delete operation (used to erase all calendar items) could crash the server.
Bug Fix: CLUSTER: the controller incorrectly checked if an account was in use on other backends when a rename/remove operation was requested.
Bug Fix: GROUPS: 3.2: the Remove Author from Distribution option could not be disabled in Directory-based Domains.
Bug Fix: Queue: 4.1: If a message was submitted immediately after server startup (most likely - via the PIPE module) it could be left unprocessed till the next server restart.
Bug Fix: RULES: 4.1: Rule Comments could be lost if Rule names/priorities were modified.
Bug Fix: RULES: 4.1: the Accept Event action incorrectly processed Non-Busy events (such as All-Day Events).
Bug Fix: RULES: 4.1: the Accept Event action did not decode quoted-printable and base64-encoded MIME parts.
Bug Fix: WebAdmin: 3.5: custom Domain Admin Preferences.html pages were ignored.
Bug Fix: WebAdmin: 4.1: the UTF-8 "BOM" symbols were removed on upload syntax check only, and were not removed from the stored files.
Bug Fix: CLI: 4.1b: the CREATEWEBUSERSESSION command incorrectly processed the WML parameter.
Bug Fix: CLI: 3.5: a malformed WebFile command could crash the server.
Bug Fix: CLI: 4.1: the GETTEMPCLIENTIPS command could return garbage after the data.
Bug Fix: CLI: 4.1: web site access security problem has been fixed.
Bug Fix: CLI: 3.5: the ClearDomainSkinCache/ClearServerSkinCache/ClearClusterSkinCache commands could crash the server.
Bug Fix: LDAP: 3.5: the STARTTLS extended request was not processed correctly.
Bug Fix: LDAP: 4.0: response to a final DIGEST-MD5 SASL challenge was processed incorrectly
Bug Fix: Skins: 3.5: rapid and concurrent update operation of the same strings.data file could crash the server.
Bug Fix: WebUser: 4.1: HTML encoding for Shift-JIS icorrectly processed half-width katakana.
Bug Fix: WebUser: 4.1b: the X-Priority header field values were generated incorrectly.
Bug Fix: WebUser: 4.1: the TakeAddress operation could cause "soft deadlock".
Bug Fix: WebUser: 4.0: the Mailbox Rename function could crash the server.
Bug Fix: WebUser: 4.1: Directory Address Books with non-ASCII names did not work properly.
Bug Fix: WebUser: 4.1b: message with empty body and no attachment were sent w/o the Content-Type field and the header separator line.
Bug Fix: WebUser: 4.1: the Notes mailboxes were given the IPF.stickyNote class instead of IPF.StickyNote, causing problem for MS Outlook.
Bug Fix: WebUser: non-ASCII attachment names were encoded incorrectly if the selected charset was not UTF-8.
Bug Fix: HTTP: 3.5: "dirty" SNMP counters could be added to http* statistical elements if an SSL/TLS connection could not be established.
Bug Fix: HTTP: 4.1: the /CalendarData/ login realm was specified incorrectly.
Bug Fix: FTP: 3.5: "resuming" FTP uploads could crash the server.
Bug Fix: FTP: 4.0: the server tried to bind outgoing connections to a fixed port, thus creating problems for multiple "active" file transfers.
Bug Fix: SMTP: 4.1: initial prompt timeouts for "last" relays were shorter than timeouts for other relays.
Bug Fix: SMTP: 3.0: AUTH-ed messages were not relayed if the Relay to Non-Client IPs setting was set to Nobody.
Bug Fix: LIST: 4.0: certain multipart messages sent to a list could crash the server.
Bug Fix: IMAP: 2.0: the LISTRIGHTS response did not include the "required rights" element.
Bug Fix: Migration: 3.0: the MoveIMAPMail utility could crash on 64-bit platforms.
Bug Fix: Utils: 2.0: the sendmail utility incorrectly checked error codes.
Bug Fix: Directory-Based Domains: 4.0: if an account was auto-created (by means of adding a directory record) and the domain Template contained an Initial Message, the server could crash.

4.1 Jul-03

The old (pre-Skins) WebUser Interface has been phased out.

Platforms

Linux/x86_64 version is released.
Windows: a new method for local IP Addresses discovery is implemented.
Solaris: the default "application directory" has been moved from "/usr/local/sbin" to "/opt".
Unix: now the fsync()/fdatasync() call is used to flush "rewritten" files to disk.
OS/2: timezone processing has been changed.

Foundation

Non-blocking sockets are implemented (enabled with the --UseNonBlockingSockets option).
The PKCS7 "EnvelopedData" objects with non-constructed encrypted data elements are supported now.
The Blowfish encryption cipher is implemented.

Security

The Lawful Intercept functionality is implemented.
The "WebUser" SASL method is implemented.
The UB-crpt (Unix Blowfish-based) password encryption method is implemented.
The {LANM} and {MSNT} passwords (LAN Manager/Microsoft NT password hashes) are supported now (to simplify migration from Microsoft servers).

RADIUS

RADIUS server is implemented.

MAPI

MAPI Connector is updated.

WebUser

The Groupware (Calendar,Tasks,Contacts,Notes. Free/Busy) functions are implemented.
Spellchecker functions have been added to the compose.wssp page.
The "Use Cookies" option (WebUser Preferences setting) is implemented.
When users are disconnected from the server, they can login again and resume their work. The "disconnect.wssp" page is removed, the "login.wssp" page has been modified.
The "Address Book" panel has been redesigned to provide access to "ACAP dataset", Directory, and Contact-type mailboxes. The Filter functionality is added.
Address Books support Groups now.
HTML->WML message body translation is implemented.
When the Alerts page is displayed instead of some other page, the Alerts page now returns back to that page.
The "generic mailbox" Web Application code now detects the X-Color message header fields and places them into the "color" element of message dictionaries. This feature can be used to highlight certain messages in mailboxes.
The "Edit Draft" operation processes attachments in the draft message.
Mailbox.wssp: the processor now adds the "notText" element to messages with Content-Type different from "text/*" (so the "attachment" icon can be displayed).
The settings.wssp page can be divided into serveral pages (settings.wssp, settings1.wssp, settings2.wssp, settings3.wssp), all with the same processing code.
The MDN setting (Never, Manual, Auto) is implemented.
The DisableIPWatch and DisableUseCookie options are added to the login.wssp page.
Multiple Directory-type Address Books are implemented.
Additional "sanity" checks for HTML code were added to disable <script> elements in misformed HTML data.
The Trash and other Default mailboxes can be selected now (for example, the "Deleted Items" mailbox can be used as the WebUser "Trash").
The "in frame" option for viewing HTML message parts is implemented via the htmlpart.wssp file.
The TakeAddress, TakeCertificate operations are applied to the currently selected address book.
S/MIME: various encryption methods are implemented. The Encryption Method settings has been added to the WebUser Settings.
The To header field can be included into the Mailbox Viewer field set.
Messages sent with the Password Recovery component now have a non-empty Return-Path.
Reply/ReplyAll operations use the text/html part of the original message if a text/plain part cannot be found.

WSSP

The "ISEVEN" function is implemented.
The LOCALCALENDARDATE and LOCALCALENDARTIME constructs are implemented.
The DATE: and other date/time prefixes now use formatting "pictures". These pictures can be altered using the DatePictures dictionary.
The MAILBOXMENU processing has been changed from a enum-type menu to a string-type menu.

Kernel

The Euro sign has been added to ISO-8859-x charsets.
On some platforms (BeOS) the OS could return an empty system name, causing "Internal Router Loop"s.
The MDN generator is implemented.
VCard objects are supported now (RFC2425, RFC VCard 2.1)
Algorithms used in "picture" comparison routines ("*"-wildcarded operations) have been improved.
Calendar: the old (VCal 1.0) format is supported now.
MIME parser accepts empty lines in embedded uuencoded files.
Processing of ORCPT parameters has been changed.
From:/Sender: addresses for auto-generated messages have the "RealName" <address> format.
If a message file with bare-LF gets into the Queue on a 2-byte-EOL platform (Win, OS/2), bare-LFs are not sent out.
DataSets: a faster Dictionary file writing method is used.

IMAP

RFC3516 (Binary Content Extension) is implemented.
Internal UID processing has been changed to support unsigned 32-bit numbers.
The LOGIN-REFERRALS keyword has been added to the CAPABILITY list.

PWD

The STLS command (similar to POP3 STLS command) has been implemented.
The challenge-response SASL methods are supported now.

SMTP

The Default IP Address setting is implemented.
The "temporary blacklist" is implemented.
The Disconnect Sender options are implemented.
The SMTP input module is redesigned.

LOCAL

The "Delay" settings have been added, the "percent full" processing has been changed to use the current size + new message size in computations.

PIPE

The headers added by Server-wide rules are passed to the external task.

ACAP

Data strings with binary zeros are now converted to "data" elements, so they can be stored and sent out without string cutting (required for phone numbers in Mulberry address books).

HTTP

The Personal WebSite management page is renamed from Index.html into Index.wssp.
The "freebusy.wssp" Personal WebSite page processor has been implemented. It can be accessed as http://server:8100/~user/freebusy.wssp
If the Personal Web Site "freebusy.vfb" file does not exist, the module creates a dummy FreeBusy dataset and returns it to the client.
The Request Size Limit setting is implemented (WebAdmin:Settings->WebUser).
The Default Page Name setting is implemented (WebAdmin:Settings->WebUser).
The "local part" Routing result is processed now, allowing an administrator to reroute Domain-level URLs to subdirectories inside Personal Web Sites.
The HTTP_COOKIE envir-variable is passed to CGI scripts.
The /CalendarData/ realm is implemented to support subscribe/publish HTTP operations for groupware applications.

FTP

Secure (TLS) data connections are supported now.

LIST

Several routines have been changed to tie the owner account to the Cluster controller, and to support the owner renaming operation in a Cluster.
Headers and footers are converted into HTML if they are inserted into an HTML text.
Non-standard Yahoo bounce reports are processed now.
The Moderate Guests posting policy option is implemented.
With the "notify owner" option switched on, the owner gets a message if a subscription was terminated due to confirmation time-out.

GROUP

The Reject Automatic Messages option is implemented.

RULES

The Domain-wide Rules are implemented.
The Header Field condition can use the "in" and "not in" operations.
The Source Rule condition is implemented (and documented).
The EXECUTE action passes the headers added by other rules and actions to the external task.
The Accept Request action is implemented. It allows to set up accounts for shared resources like conference rooms and schedule them automatically.
The Enable Vacation button is supported now (it enables the Vacation Rule and clears the Reply Addresses dataset).
The [RCPT] and [ORCPT] Execute prefixes can be used with Account-level rules.
The [ACCNT] prefix is implemented.
The ^R macro can be used in Reply and React actions to include the original To: header field.
The Submit Address condition is implemented.
Non-ASCII mailbox names are now encoded into the "modified UTF-7" charset.

CLI

The GETDOMAINRULES and SETDOMAINRULES commands are implemented.
The ROUTE command now has an optional "MAIL" parameter.
The GETROUTERSETTINGS and SETROUTERSETTINGS commands are implemented.
The [GET|SET][SERVER|CLUSTER]WebUserDefaults commands are documented.
The GETEFFECTIVEWEBUSER command is implemented.
The GETCURRENTCONTROLLER command is implemented.
The SETMAILBOXCLASS command is implemented.
The DELETEDIRECTORYRECORDS and INSERTDIRECTORYRECORDS commands are implemented.
The REJECTQUEUEMESSAGE and GETTEMPCLIENTIPS commands are implemented.
The REMOVEACCOUNTSUBSET command is documented.

ACCOUNT, DOMAIN

When an Account is being renamed or removed, all WebUser sessions with that account are closed first.
The WebCal Service setting is implemented. This Service controls availability of the WebUser Calendaring functions.
The "LDAP" 'service' is added to the set of Account/Domain services.
The listMailboxes functions returns mailbox aliases, even if the search pattern is specified as "~myaccount/...".
Directory-based Domains: Domain Rules are implemented.

Directory Integration

The "cn" and "sn" attributes are generated as non-empty strings, to allow integration with OpenLDAP and other LDAP servers.

LDAP, Directory

Remote Units can connect to remote LDAP servers securely.
Local Units: "top" entries (with empty DNs) can be created and removed.
The "greaterOrEqual" and "lessOrEqual" operations are implemented.

External Programs

The QUIT command has been implemented.
AUTH: the ROUTED and FAILURE responses to the NEW command are supported now.

TLS

Session caching scheme has been redesigned. Old scheme was not properly releasing unused TLS session data under heavy TLS load.

Events

The special symbol combination "^2" can be used to include the actual SNMP element value into the event messages.

ROUTER

The All-Domain Aliases settings are moved from the Local module settings to the Router settings.

QUEUE

The Outgoing Flow Control option is implemented (to block your own spammer users).
The "Warning" message text can be customized now.

Protection

An option is added to specify if a special Header field should be added to messages from blacklisted addresses, or if those messages should be rejected.

WebAdmin

The General->Spelling page with spell checker settings is added.
The Account Template page allows you to specify "classes" for automatically created mailboxes.
The Account Template and Account Default page references have been changed.
The Clear 'Replied Addresses' List command is added to the Account Rules page.
Skins: tar-archive uploading in implemented.

MAILBOX

Renaming of mailbox X into X/Y is allowed again, if the rename operation does not involve submailboxes (renaming mailing list mailboxes into list achives).
The anyone@ special ACL name is implemented to allow users to grant mailbox access rights to all accounts in their own Domains.
The anyone@domainName special ACL name is implemented to allow users to grant mailbox access rights to all accounts in the specified Domain.
The TextMailbox Manager now uses the fsync() call for all mailbox update operations. This is required in Dynamic Clusters based on certain Cluster File Systems.

SNMP

SNMP: "trafficIn" and "trafficOut" elements have been added, the RPOP and LDAP elements have been added.

CLUSTER

LDAP: the account-based BIND operation can now be used in a Cluster.
The virtual mailbox manager does not send empty UID ERASE commands.
New log settings have been added.

Migration

The MoveIMAPMail command now copies mailbox ACLs (if supported).
MoveIMAPMail: the --copyMailboxClass option is implemented.

Bug Fixes

Bug Fix: CLUSTER: IMAP/ACAP: login operation failed if the password contained non-printable symbols or symbols '\' and/or '"'.
Bug Fix: 4.0-4.0.6: RPOP: users could create new RPOP records with poll period smaller than the specified limit.
Bug Fix: 4.0-4.0.6: when deleting a Domain, the server tried to re-create an Index.data file after the Domain directory has been removed.
Bug Fix: 3.5x-4.0x: WSSP: the ISINDEX function call caused parser errors.
Bug Fix: 3.1x-4.0x: ACAP: responses for multi-value entries contained excessive space symbols.
Bug Fix: PIPE: 3.4-4.0x: if a submitted file had the Envelope-ID header field, the message header was corrupted.
Bug Fix: IMAP: when searching foreign accounts with "special" INBOXes, the INBOX name was returned without the "foreign account" prefix.
Bug Fix: Directory: The Remote Unit manager incorrectly encoded the trivial "TRUE" and "FALSE" search conditions.
Bug Fix: 3.0-4.0: Misformed URLs for message parts could crash the server.
Bug Fix: MAILBOX: 4.0-4.1b8: the "Concurrently used large buffers" Obscure setting was reset on server restart.
Bug Fix: LDAP: 4.0-4.1b8: STARTTLS command was processed incorrectly.
Bug Fix: RULES: 4.0-4.1b8: string objects with the ADDHEADER external filter data were not released.
Bug Fix: WebUser: 3.5-4.1b9: when a WebUser Preference setting was set to the "default" value, the old value was not deleted from the dataset file.
Bug Fix: DOMAIN: 4.0-4.1b9: Default WebUser Preference could not be created in new Directory-based Domains.

4.0 Nov-02

Platforms

OS2/Intel version is released.
QNX/Intel version is released.
FreeBSD/Alpha version is released.
HPUX/Itanium version is released.
Linux/Itanium version is released.

Events

Events are implemented.

MAPI

MAPI Connector is released.

FTP

the FTP module is implemented. See the Access->FTP section of the manual for details.

Security

The MSN SASL method is implemented.
The WebAdmin "Security" page now accepts multi-certificate CA Chains.
The Advertise NTLM SASL Method option has been added to the Obscure Settings page.
The External Authentication API has been changed (see the Security section for more details).
The Advertise secure SASL Methods option has been added to the Obscure Settings page.
SNMP: the "AUTH" group of statistic elements has been implemented.

Protection

Now "Unblacklisted" (White Hole) addresses can be specified using their DNS Names.
DNR error codes can be processed with the Blacklisting by DNS option (making it possible to blacklist all hosts that do not have reverse DNS records).

WebAdmin

The Admin Preferences for the Domain List page are implemented.
The internal Domain Administration realm has been changed to "/DomainAdmin/" to fix various URL access problems.
The Show Aliases option is implemented.
Directory: the Browser can display non-ASCII data now.
"disabled" RPOP periods are supported now.
Now the Server Up-Time is displayed on the Settings -> General page.
Now administrators without the CanCreateGroup access right cannot modify any group data.
GROUP: several member addresses can be entered in one field now.
The Threads Monitor has been implemented.
The Access Monitor pages have been re-implemented. LDAP, FTP, ACAP, PWD monitors are implemented.
Name filtering is implemented on the SNMP Element List Monitor page.
HTTP responses now have explicitly specified charsets in the Content-Type headers.
Login page for Domain WebAdmin Interfaces now lists "Other Domains" that this Domain Admnistrators can open.
The Server-Wide and Cluster-Wide "default WebAdmin" pages are supported now.

HTTP

The module has been divided into two modules (HTTP Admin and HTTP User).
CGI: the SCRIPT_NAME parameter does not contain the "additional path" data now.
CGI: now an external program receives the PATH_INFO and REQUEST_URI parameters.
the OPTIONS method is implemented.

SMTP

The Recipients/Message setting has been implemented.
The actual address of the blacklisted host is now included into the negative (591) SMTP server response.
Now the Send Secured and Hold Mail names can include the wildcard (*) symbols.
The Advertise NTLM AUTH option has been removed from the SMTP module settings.

Local Delivery

Now distribution to all@domain is prohibited for the messages with an empty return-path (to stop the "bounce mail distribution" attacks.
The Always Add the Envelope Addresses Field option is implemented.

LIST

Mail header composing routines have been changed.
The digesting algorithm has been changed to avoid "message dropping" when the number of collected messages is higher than the digest limit.
Now the ^I macro can be used in the Hello and GoodBye messages.

IMAP

Message set and UID message set processing has been changed, to treat an M:N range as the N:M range if M > N.
RFC3348 (CHILDREN extensions) is implemented.
Now the GETQUOTA/GETQUOTAROOT commands can be used to retrieve mailbox store information for foreign mailboxes.
Additional extensions are implemented to simplify communication with the MAPI Connector.

RPOP

RPOP: internal scheduling mechanisms have been re-designed.
RPOP: the secure (TLS) option is implemented. The WebSkin, WebAdmin, WebUser RPOP files are updated to accomodate the new option.

PIPE

Now the module does not try to "fix" multi-line From: and Sender: header fields in submitted messages.

Router

Router: update procedue has been modified to avoid crashes during Router Table updates under heavy load.

Rules

The EACH ROUTE and ANY ROUTE condition processing has been changed.
"String lists" are implemented. The Auto-Reply Rule has been modified to send only one reply to each sender.
Now the Subject and From Name fields are MIME-decoded and converted into UTF-8 before processing.
The ^S and ^F macros are now implemented as ^S/^s and ^F/^f macros.

External Filterin

The version 2 API is implemented: the ADDHEADER response code is supported now.
Support for multiple External Filters is implemented.
The API has been extended (the INTF command added, the DISCARD response is supported now).

LDAP

Binary data are supported now.
If the "Substitute with uid in conditions" option is enabled, the "equals to" search operation ignores the "@domain" part of the search string.
SASL authentication for mail=accountName BindDN is implemented.
Now when the Direct LDAP Provisioning is enabled, BIND operations can use the Account Manager.
LDAP provisioning now detects the unixPassword attribute and stores its value as a U-crpt'ed Password.

Directory

The DNs of found records are now checked against the Access Rights. If the RDN is not allowed to be read, the record is not returned to the client.
Remote Units: binary data are supported now.
New Unit names are now checked for "bad symbols".
To comply with RFC2256, the cn and dc attributes have been moved from the organization objectClass to the communiGateDomain objectClass.

Cluster

Now the cluster-wide RFC822 Filters are not applied when a message is transferred between cluster members for local delivery.
Extremely large responses that cannot be read by a requesting cluster member are replaced with an error code on the serving member.
Now all inter-cluster connections are initiated using the specified "local cluster IP address".
Failover algorithms have been imporved.
SMTP: the "*" forward to option (meaning "to all frontends") is supported now.
The account info is now displayed on Account list and Account Settings WebAdmin pages of all Cluster members.
Statistics: the "Dynamic Cluster requests" SNMP elements have been added.
Virtual Mailbox manager did not read the UID information for appended messages. As a result the IMAP APPEND and COPY operations applied to virtual mailboxes did not return the extended UIDPLUS codes.
The GetAccountInfo CLI command is "clusterized" now.
Now users with the Require Secure Login setting enabled can login using secure connections to frontends.
SMTP: ETRN commands and Wake-up E-mails release queues on all Dynamic Cluster members.

Mailbox Manager

The "oldest message" info is now stored in the mailbox meta-data dictionary.
The information about the number of Unseen messages is cached now.
The RENAME operation now automatically creates all "outer" mailbox folders needed to create the target mailbox.
The MaxMailboxes Account Setting is implemented.

Account Manager

The Public Info Custom Settings are implemented.
The Rename In Folder option is implemented. The "renameInPlace" attribute has been added to the Directory Schema.
Passwords in newly created accounts are encrypted using the effective password encryption method.
Now the userCertificate attribute is automatically stored in the Directory (together with the RealName/cn attribute).

Domain Manager

The MAPI and TLS Account and Domain "Enabled Service" options are implemented.
Now the Index.data file is kept in sync with the Domain Accounts (rather than created on server shutdown).
Now the Index.data file can be stored in the "Index" subdirectory (to simplify symlink processing).

Alerts

Account-level Alerts have been implemented.

CLI

The GETSUBSCRIBERINFO command is implemented.
The SETPOSTINGMODE command is implemented.
The LISTADMINDOMAINS command is implemented.
The GETACCOUNTALERTS, SETACCOUNTALERTS, POSTACCOUNTALERT, and REMOVEACCOUNTALERT commands have been implemented.
The GETSNMPELEMENT command has been implemented.
The RELEASESMTPQUEUE command is implemented.

Personal Web Sites

Now the default.html file is retrieved for all types of "directory links" (http://server/~user/dir1/dir2/).
Max directory nesting level has been increased to 6.

WebUser Interface

Now Named Skins can be used in Stateless requests (such as login.wssp requests).
Message rendering is controlled by .wssp files now.
The WML requests are supported now.
The "use Letter charset" option is implemented.
The Auto-signup component code can put Custom Attribute values into the new Account settings.
The Store Attachments (Files) function is implemented (the message.wssp page has been extended).
Settings: the SecureMail settings page is implemented. It can be used to import PFX (.pfx) and PKCS12 (.p12) files with personal private keys and certificates.
Message: decryption of S/MIME encrypted messages is implemented.
Message: digital signature verification of S/MIME signed messages is implemented.
Message: the "Take Certificate" function is implemented (you can now add certificates from signatures to the Address Book)
Compose: the "Send Encrypted" option is implemented.
Compose: the "Send Signed" option is implemented (it can be used to send digitally signed letters)
The PublicInfo page has been implemented
The MIME->HTML converter checks for binary 0 symbols now.
Moving a message between "own" mailboxes (including moving a message to the Trash) temporarily disables storage quota checks.
HTTP responses for .wspp requests now have explicitly specified charsets in the Content-Type headers.
The information about the number of Unseen messages in now available on the mailboxes.wssp page.
The text/enriched format is supported now.
The DeliveryReport code and the .wssp file have been added.
The Notify when Read option has been added to the Compose code and .wssp file.
Several new SESSION dataset elements have been added.
The EmptyTrash HTTP parameter has been renamed into EmptyTrashNow; now it is processed for all session requests.
Default charset processing has been changed.
.wssp pages for stateless requests can (and should) use the %%filesRef%% variable to form file reference URLs.
The HTMLTRUNCATED prefix is implemented. Mailbox field values are not truncated by the server code itself.
the DATE:, DATETIME:, LOCALDATETIME:, DATETIMESHORT:, LOCALDATETIMESHORT: prefixes are implemented.
The "mailbox" processing code has been changed, so the Sent and Received column values are now returned as "date"-type elements.
The "mailboxes" processing code now adds the "parent" element to the mailbox elements.

Foundation

Condition locks are re-implemented for all platforms. Old implementation could cause excessive thread waiting times on an overloaded system.
Many new cryptography routines are implemented.
Binary data can now be stored in directories, datasets, and other basic objects.
The cryptography routines have been optimized to increase SSL/TLS performance.
The --closeStuckSockets command line option has been implemented.
Linux: the "application directory" for Linux systems has been changed from /usr/local/sbin to /opt
Win32: OS privileges needed to enable external program termination are enabled explicitly now.
Win32: under Windows NT/200/XP "OS Log" messages are now stored in the "System Event Log".
Tru64: the system mode allowing 65000+ file descriptors is enabled now.

Miscellaneous

TLS: block ciphers are supported now.
ENQUEUER: the Hop Counter Limit settings is implemented.
SMTP, POP: the RFC822 encoder has been redesigned.
MIME: Search for body strings now works for non-ASCII strings specified in various charsets.
Migration: now the MoveIMAPMail program supports the --byOne parameter.

Charsets

ISO-8859-10 and ISO-8859-15 charsets are supported now.
Ukranian KOI8-U charset is supported now.
data encoded using Korean charsets can be converted to and from the UTF-8 charset.
the GBK charset is supported now.

Bug Fixes

Bug Fix: SNMP: 64-bit COUNTER data in responses had the APP 1 type instead of the APP 6 type.
Bug Fix: RULES: the Remember From action could crash the server if no parameter was specified.
Bug Fix: MAILBOXES: in some rare situations concurrent access to a mailbox could crash the server.
Bug Fix: DEQUEUER: if a message had a pending request to generate a "delayed warning" report, and the delayed address failed/succeeded at the same time, the server could crash.
Bug Fix: Rules: ROUTE conditions could crash the server if an incoming message was rejected because it had "too many hops".
Bug Fix: Log: 1.0-4.0.1: certain "unusual" data elements could cause the Log engine crashes.
Bug Fix: WebUser: 3.0-4.0.1: the "message open" procedure could cause deadlocks.
Bug Fix: CLUSTER: the CREATEWEBUSERSESSION, GETWEBUSERSESSION, KILLWEBUSERSESSION CLI commands could fail in a cluster.
Bug Fix: External Program parameters were parsed with a wrong parser (adjacent quoted strings were catenated).
Bug Fix: images downloaded from Personal WebSites via WebAdmin Interface could be damaged.
Bug Fix: the "copyMessages" Mailbox Manager routine ignored errors when it was copying large (over 1MB) messages followed by a smaller message.
Bug Fix: WebUser: the text/enriched converter did not replace single EOL with a white space symbol.
Bug Fix: CLUSTER: failure of a cluster member on a heavily loaded cluster could cause a deadlock in the current Cluster controller.
Bug Fix: the MIME parser could return negative part size values for misformed MIME messages.
Bug Fix: IMAP: the QUOTA STORAGE responses now specify sizes in 1K units.
Bug Fix: CLUSTER: SMTP: successful client authentication did not reset the "blacklisted IP" flag.
Bug Fix: MAILBOX: the "Recent" flag was not always processed correctly in the concurrent access environments.
Bug Fix: the Big5->UTF-8 convertion routine did not process all Big5 symbols correctly.

3.5 18-Dec-01

Platforms

Linux/S390 version is released.
Linux/M68K version is released.

Domains, Accounts, Objects

Domains,WebUser Settings: non-ASCII attributes are supported now.
Account Templates: the Initial Message text now can start with the [charset] prefix.
DIRECTORY INTEGRATION: Server-Wide and Cluster-Wide settings are implemented.
WebAdmin: Admin account Preferences processor has been changed.
Migration: the MoveAccounts program and its parameters have been changed.
Mailboxes: the "Redirected" message status is implemented.
Groups: non-ASCII "real names" are supported now.
Accounts: non-ASCII "real names" and "custom attributes" are supported now.
Account Templates: non-ASCII "real names", "custom attributes", and mailbox names are supported now.
WebSite: nested folders are supported now. The WebAdmin WebSite.html and WebUser WebSite.html and UserSiteIndex.html files have been updated.
Now Domain Administrators can controll several Domains. See the SysAdmin section of the manual for more Details.

Protection

The Banned Header and Body line settings are implemented. See the Protection section of the manual.
The Client By Name option is implemented.
The Unblacklistable (WhiteHole) Addresses list is implemented.
RBL: RBL resposnes in the 127.1.x.x range are now recognized as "blacklist it" responses.

Security

The login-disabling options protecting Accounts from Password Attacks are implemented.
Now Certificate Signing Requests can be generated and new Certificates can be set without prior removing of an existing certificate.
The SASL NTLM method now works with Macinotsh versions of Microsoft products (Outlook Express, Entourage)
The SASL NTLM authentication method is supported now (this method allows you to use the "Secure Password Authentication" option in Microsoft products).

DNR

The "search PTR records" operation is implemented.
The new Custom setting allows an administrator to specify DNS Server addresses explicitly. See the SysAdmin section for the details.
Additional settings are implemented.
Requests to RBL servers are sent "quickly", so if an RBL server is down incoming SMTP connections do not time-out.

WebAdmin

Preferences now work for Secondary Domain Administrators, too.
The Charset parameter has been added to the Administrator Preferences.
Alerts are stored using the UTF-8 charset.
The /MainAdmin/ realm is implemented (see the HTTP section of the manual).
Log settings can now be changed only if the Administrator has the CanModifySettings Server Access rights.
Additional Monitor Access Rights are implemented.

WebUser

WebSkins are implemented. Now all domains that do not have files in the Account subfolder of the old custom WebUser Interface directory use the new Skins Interface.
The "Trash" mailbox can now be replaced with a mailbox alias (useful to create a "shared Trash" mailbox for several accounts).
The "Redirected" message status is set when a message is redirected or forwarded.
Renaming and remove mailboxes when the Show Subscribed option is enabled now renames/removes the mailbox and submailboxes from the Subscription list.
The Composer encodes non-ASCII attachment file names.
URLs for non-ASCII attachments are now composed in the UTF8 charset (to work with Windows Internet Explorer).
Address Books records are sorted now.
Attachments in the AppleDouble format are displayed correctly.
Auto-wrap algorithms have been changed.
The autoWrap "flowed" option has been added.
The charset parameter of message parts containing the ASCII-only symbols is ignored now.
The directory processing has been changed, the directory.wssp and the sessiondirectory.wssp pages have been modified.
Now when Sent and Drafts mailboxes are auto-created, they are auto-subscribed to and the mailbox list is refreshed.
More tags and tag parameters are cleaned out from HTML message portions now.

Directory

The folderIndex and adminDomainName attributes have been added to the CommuniGateDirectoryDomain objectClass in the default Schema.
The mailListSettings and groupOptions attributes have been added to the default Directory Schema.
The fileData attribute and the CommuniGateWebInterface objectClass have been added to the default Directory Schema.
The CAChain attribute has been added to the default Schema.
The mailListSettings and groupOptions attributes have been added to the Directory Schema.
Spaces around the comma signs are removed from the DN strings
The "search"-type operations now enter the subtrees stored on different Units.

Foundation

Thread priority routines are implemented.
Linux: the STTask routines have been changed to avoid leaving "zombies" of killed processes.
BSD: the STDictoryEnumerator routines have been changed to avoid directory-detection problems on NFS filesystems.
AIX: build parameters have been modified to support 6000+ threads.
Startup: Unix startup scripts have been modified to support a custom Startup.sh file in the {Base} directory.

LDAP

Start TLS (RFC2830) is supported now.
The Compare operation is implemented.
LDAP-based provisioning for regular domains is implemented (see the Directory Integration section of the manual).

SNMP

The WebAdmin Monitor interface to SNMP data is implemented.
The "total number of jobs"-type parameters now have the Counter data type.
HTTP monitoring elements have been added.
Processing of "not-found" elements have been changed to match the SNMPv2 specs.

ROUTER

The parser has been changed to allow special symbols in the left part of the alias records (records like <FAX=*> = * can be used now).
Now account alias records can be used for the Central Directory-based Routing.

RPOP

Now the Leave On Server option works with any types of UIDs remote servers present and the list of retrieved UIDs is preserved between Server restarts.
The APOP option is added to individual RPOP records.
When retrieving mail from Unified Domain-Wide Accounts without using Special Headers, the module now checks that To:/Cc: addresses can be routed to a Local account (rather than just checking that they are directly addressing the Main Domain).

Cluster

The "virtual mailbox" code has been redesigned.
Mailing List Archives can be browsed via any cluster member.
The GETLIST and UPDATELIST commands work with any Cluster member.
The Create/Rename/remove operations for Forwarders and Groups work with any Cluster member.
Accounts in Shared Directory-based Domains can be administered from any Cluster member.
The Cluster-Wide Rules are implemented.
The Cluster-Wide Router Table is implemented.
Cluster-wide Default Domain Settings, Default Account Settings, Alerts, and WebSkins are implemented.
The cluster-wide Protection settings are implemented.
The Dynamic Cluster Controller now tries to move the owner account to itself before creating a mailing list.
The IMAP and ACAP backend login responses now carry the "Relay" flag.
Slave startup procedure has been changed to avoid problems on systems with a large number of shared domains.
Header fields added with the frontend Server Rules are now stored by backends.

SMTP

The TURN command is implemented to support dial-up client sites running Microsoft Exchange servers.
Now the ATRN command is always accepted from non-client addresses (after the AUTH command).
A workaround for sending mail to buggy firewall relays is implemented.
The Wake up Now button has been added to the SMTP Settings WebAdmin page.
The "send encrypted wherever possible" option is implemented.
When message sending fails because the receiving host drops the connection, the message is re-enqueued (to avoid queue blocking for hosts that violate standards and just drop connections when they do not want to accept certain messages).
Input messages exceeding the size limit are received, but they are not stored in files.
The Advertise NTLM AUTH option is implemented.
Now when the module sends the STARTTLS command, it uses the SSLv3 (rather than SSLv2) "hello" operation.
The Force AUTH option is implemented.

Local Delivery

The X-Special-Delivery: test header field now works with the Local Delivery module, too: messages with that field are not stored in the Account mailboxes.
If a message is delayed by a Cluster backend, the entire account queue is suspended now.
The SNMP statistics elements have been implemented.

POP

The parameterless AUTH command is supported now (for MS Outlook compatibility).
Access to empty INBOX mailboxes has been optimized.
The STARTTLS/STLS option is seen in the CAPABILITY response only if the addressed Domain has the Security Certificate option enabled.

IMAP

The FETCH algoriths have been changed to avoid loading large messages into memory.
The STARTTLS/STLS option is seen in the CAPABILITY response only if the addressed Domain has the Security Certificate option enabled.
Non-standard parameters of the Content-Type and Content-Disposition fields are retrieved now.

CLI

The Cluster-wide versions of the commands dealing with Default Domain and Default Account settings are implemented.
The Alert Adminstration commands are implemented.
The LISTSUBSCRIBERS command is implemented.
The WRITELOG command is implemented.
Banned Header, Protection, and Cluster Protection commands are implemented
GETACCOUNTSUBSCRIPTION and SETACCOUNTSUBSCRIPTION commands are implemented.
GETMAILBOXALIASES and SETMAILBOXALIASES commands are implemented.
The GETCLUSTERRULES and SETCLUSTERRULES commands are implemented.
The GETCLUSTERROUTERTABLE and SETCLUSTERROUTERTABLE commands are implemented.
The GETACCOUNTEFFECTIVESETTINGS and GETDOMAINEFFECTIVESETTINGS commands are implemented.
The [GET|UPDATE|SET][ACCOUNT|DOMAIN] commands have been renamed into the [GET|UPDATE|SET][ACCOUNT|DOMAIN]SETTINGS commands. Old names continue to work, too.
The [GET|SET][CLUSTER]DIRECTORYINTEGRATION commands are implemented.
The Skin Administration commands are implemented.
The GETCLIENTIPS and GETBLACKLISTEDIPS commands are implemented.
The GETWEBUSERSESSION and KILLWEBUSERSESSION commands are implemented.
The SetAccountPassword command is implemented.

LIST

when archive mailboxes are swapped, the newly created archive mailbox gets the ACLs of the old archive mailbox
The "Hide From Address" option is implemented.
RFC2919 (LIST-ID header field) is implemented.
Additional subscriber address checks are implemented to avoid self-subscribing of the special mailing list addresses (-on, -subscribe, -off, etc.)

PIPE

Foreign Queue processing is implemented.
[STDERR], [FILE], [RCPT], and [RETPATH] tags are implemented.

Rules

Reply and React texts can start with a [charset] prefix.
The Vacation Rule priority is not set to 2, to make the server apply it before the Redirect All Rule.

Directory-Based Domains

Groups are supported now.
Custom WebUser and WebAdmin Interfaces are supported now.
Skin support is implemented.

Bug Fixes

Bug Fix: Cluster: the "addMessages" operation did not work correctly with Virtual Mailboxes.
Bug Fix: CLUSTER: WebAdmin: Personal WebSite administration did not work across Cluster members.
Bug Fix: ROUTER/DNR changes in 3.5b1 effectively disabled the SMTP RBL feature.
Bug Fix: RULES: the Reply/React operations in 3.5b1 incorrectly inserted the From:/Sender: header field.
Bug Fix: WebUser/WebAdmin: in 3.4b3 version custom file uploading could fail in regular (non-directory-based) Domains.
Bug Fix: CLUSTER: renaming a shared domain did not rename Domain Aliases on all cluster members.
Bug Fix: WebUser: non-standard MIME content types and subtypes could be returned corrupted.
Bug Fix: new (Skin-based) List Archive Browser pages did not have the correct charset specified.
Bug Fix: old (Web-User and WebAdmin) List Subscribers pages could crash the server if the list had the Require Confirmation option disabled.
Bug Fix: Skins: the default rules.wssp and rule.wssp files did not have the closing </SELECT> tag, causing problems for Netscape browsers.
Bug Fix: Skins: the webUserSiteIndex internal code routine misplaced the account name (was shown as an error code).
Bug Fix: WebUser: the Auto-wrap algorithm for "flowed" texts could cause crashes on some platforms.
Bug Fix: HTTP: the Redirect operation placed "http://" into the Location header even if the current connection was an https one.
Bug Fix: Viewing the "Queue" Monitor page could cause Queue deadlock.
Bug Fix: Rules: if the Reply/Reply All operation parameter was specified with the "+" sign and additional headers, the Cc: headers were not processed at all, and Bcc: headers caused parsing errors.
Bug Fix: Mailbox renaming for non-top level mailboxes did not work with the "rename Submailboxes" option.
Bug Fix: Directory: Remote Units: the Search operation returned "unstripped" DNs when the "Server Base" setting was non-empty.
Bug Fix: 3.3-3.5b9 a rare deadlock situation (in all prior versions) could stop ENQUEUER and DEQUEUER processors if an administrator opened the Message Monitor page.
Bug Fix: 3.2-3.5b9 message file stored in the MDIR mailboxes by Cluster backends could be improperly replaced with file links if the Reuse Temp Files option was enabled.
Bug Fix: 3.4-3.5b9: supplementary send-phase relay checking algorithms were not the same as the input-phase algorithms, causing relay refusals in some rare situations.
Bug Fix: 3.3-3.5b9: Directory: Local Unit: the delete record operation incorrectly checked if record children existed.
Bug Fix: 3.4-3.5b9: CLUSTER: the POP3 "relaying enabled" flags were not processed correctly on frontends.

3.4 28-Feb-01

Platforms

OpenBSD/Intel version is released.
BeOS/Intel version is released.

Domains, Accounts, Objects

Directory-based Domains: Personal WebSite support is implemented.
Directory-based Domains: Account Removal is implemented.
Directory-based Domains: Account Renaming now renames the Account files, too - if they reside within the DirectoryDomains file directory.
Directory-based Domains: Forwarders are implemented.
Directory-based Domains: when account is auto-created on first access, the INBOX mailbox and other account details (suppl. mailboxes, mailbox aliases, subscriptions, etc.) are automatically created, too.
Statistics on received messages (per Domain) is collected now.
The global DomainAliases.tdb file is phased out. Now the DomainAliases.data file in the Settings directory of the Domain subdirectories is used to store this domain aliases. The content of DomainAliases.tdb is moved automatically to those files, and the DomainAliases.tdb file is renamed into DomainAliases.tdb.unused.
Domains: the Send To Forwarders option has been added to the Mail to All panel.
Template: Initial (default.html) page for Personal WebSites can be specified now.
Template: Initial (Greeting) message can be specified now.
Forwarders: addresses without '@' and '%' symbols are qualified using the forwarder Domain name.
Account: the Collect Account Statistics setting is implemented (the Obscure page).
Account: the new method is used to recalculate the MailStore size stored in the .info files.
Passwords: the --BatchLogon command line parameter is documented.
Passwords: now the U-crpt password encryption can be used on Windows-based servers, too.
The Consult External Authenticator Domain Settings is implemented.

Mailboxes

MDIR mailboxes are now parsed correctly even if the message internal date was set to 0.
The ACL subsystem has been redesigned.
Foreign mailboxes can be renamed and deleted now.
The mailbox view creation algorithm has been changed.
The "~username" mailbox aliases are implemented now - they provide access to all shared mailboxes in the specified account.
Now all 'outer' mailboxes are automatically created when a sub-mailbox is created.

Queue

ENQUEUER design is multi-threaded now.
The Dequeuer messages can be customized now (using the General->Strings page).
the Copy Failure Reports option is implemented.
Delivery delay warnings are implemented.

Clusters

A separate Domain Controller is implemented.
The Account Controller is completely redesigned.
The Account and Domain Controllers now automatically move to a different backend server if the current Controller backend server fails.
Error codes reported by backends are now transparently relayed via frontends to client mailers.
POP Alert messages generated on backends are now relayed via frontends to client mailers.
Backend IMAP alerts issued at the login time are now passed to the client.
Errors on inter-server SMTP connections do not turn on delays and other anti-attack mechanisms.
Personal Web Site support now works in both Static and Dynamic Clusters w/o exceptions.
Domain Aliases are now properly initiated during the frontend and "slave" backend starups, and the domain aliases are properly removed from all servers when the domain is removed.
Non-local IP Addresses can be assigned to shared domains in Static Clusters.
Domain Aliases now work for Shared Domains (Dynamic CLUSTER).
Directory-based Domains can be used for Static Clustering now.
"Virtual" Mailbox objects are implemented (allowing an account opened on one server to access mailboxes in an account opened on a different server).

Router

ROUTER: algorithms used for Local Domain Routing are redesigned.

Security

The PLAIN authentication method now uses an empty challenge string.
The Hide Unknown Account Error option is implemented and it is enabled by default. See the Security section for more details
The External Authenticator internals are redesigned, its settings are moved to the Helpers page.

Plugins

Content Filtering/Anti-Virus API is implemented (see the Rules section).
McAfee scanning plugin is implemented.

Directory

Directory: Remote Units: the Server Subtree setting is implemented.
Directory: many attributes and objectClasses have been added to the Local Unit built-in Schema.
Directory: the Import LDIF and Import LMOD functions are implemented in the WebAdmin Interface.
Directory: the Search Results Limit setting is added to the Local Unit settings.
Directory: Local: the Enforce Schema setting is implemented (it is now enabled by default).
DIRECTORY: the "cn=schema" subtree is implemented. The Local Unit schema can be retrieved and extended using the 'cn=schema' record.

Directory Integration

The "UID Subtree" setting is implemented.
The mail attribute processing can be fine-tuned now. See the LDAP Module chapter for the details.
The 'Store Passwords for Regular Accounts' option is implemented.
The hostServer attribute can be renamed now.
Forwarder records are now included into the Domain directory subtree.

POP

The message size has been added to the RETR command response (to make Netscape mailer show its progress bar correctly).
The login response line contains the total size of all messages in the mailbox (to make the Netscape e-mail client happy).

ACAP

The PREFIX, SUBSTRING, and SUFFIX filters are implemented.

HTTP

The Personal Web Site prefix is now detected after URL decoding.

IMAP

The Content-Description field is processed now.
The MULTIAPPEND extension is implemented.
RFC2971 (the "ID" extension) is implemented.

LIST

The HELP command is implemented.
The Content-Transfer-encoding header field is removed from distributed 'feed' messages only if its value is '7bit' (previous versions removed the header with the value of '8-bit', too).
delivery to Lists now works without exceptions in both Dynamic and Static Clusters.
the "Special" posting mode processing has been changed to make it possible to subscribe lists to other lists.

RPOP

Processing is re-scheduled when an RPOP record changes its poll period value.

PIPE

The Queue (Wait) page is added to the WebAdmin Monitors.

SMTP

Relay To Client settings can be set to "no".
Relaying settings have been modified.
The Send Warnings setting is implemented.
If LDAP connections to the Central Directory fail, the SMTP module now returns a non-fatal error code for unroutable addresses.
The Local IP Address for outgoing SMTP connections can be specified now.
The server now reports the "DNS Loop" situation only if a remote host name resolves into an IP Address the SMTP Listener is enabled for.
The domain name used in the ATRN command must be included into the Hold Mail for Domains list.
The Advertise 8BITMIME option is implemented.

Local Delivery

The Send Warnings setting is implemented.
Delivery to "all" now works without exceptions in both Dynamic and Static Clusters.

Rules

Rules: the [RCPT] Execute operation prefix is implemented.
Rules: The Redirect All simplified Rule now has the "Preserve To/Cc fields" option.

SNMP

The CGatePro-MIB.txt file now includes the absolute OIDs.

WebUser Interface

The Session Time Limit setting is implemented.
If the Save a Copy option is selected on the Compose page and the mailbox with the specified name does not exist, a new mailbox is automatically created.
The Thai charsets support is implemented.
The Reply operation now uses a smarter algorithm to find plain text message portions.
The Strings.data file now contains the "Translator" dictionary that can be used to translate pop-up menus like those used in the Rule composer.
The "Print-friendly" message link is implemented, the Strings.data "MessageHeaderEnd" string has been modified.
The X-UUEncode MIME encoding is supported now.
The UUencoded files embedded into plain text messages are displayed now.
The keywords INBOX and Trash can be "translated" in the Strings.data file now, so these "fixed-name" mailboxes can be "renamed on screen".
The HeaderNames dictionary is added to the Strings.data file. It can be used to change the names of the RFC822 header fields used on the Mailbox and Message pages.
Japanese (ISO-2022-JP) characters are now correctly processed in the message header fields on the Compose page.
The UTF8 mode for the Chinese (Big5 and GB2312) encodings is supported now.
The UTF8 mode for the Japanese (ISO-2022-JP) encodings is supported now.

CLI

The StatReset keys were added to the Domain and Account Statistics data.
The CREATEWEBUSERSESSION command is implemented.
The GETWEBFILE, LISTWEBFILES, GETWEBFILESINFO, PUTWEBFILE, DELETEWEBFILE, and RENAMEWEBFILE commands are implemented.
The GETACCOUNTSTAT, RESETACCOUNTSTAT, GETDOMAINSTAT, and RESETDOMAINSTAT commands are implemented.
The GETACCOUNTLISTS and GETDOMAINLISTS return value types are changed to dictionary.
The GETDOMAINLISTS is now the preferred name for the LISTLISTS command. This command now works
The MAINDOMAINNAME command is implemented.
The DELETEMAILBOX, RENAMEMAILBOX commands are implemented.
The RefreshOSData, GetRouterTable, and SetRouterTable commands are implemented.
The LISTMAILBOXES, CREATEMAILBOX, GETMAILBOXINFO, GETMAILBOXACL, SETMAILBOXACL, and GETMAILBOXRIGHTS commands are implemented.

Admin

WebAdmin: Administrator Preferences are implemented (see the SysAdmin->HTTP section of the manual for more details).
WebAdmin: the Preferences settings are implemented for POP,IMAP,ACAP,LIST,SMTP,LOCAL,PIPE, and RPOP Monitors.
WebAdmin: the Preferences settings are implemented for the Domain Account List page.
WebAdmin: all numeric settings can now be set to some "other" (unlisted) value.
WebAdmin: now Account Rules can be specified in the Account Import file.
The "Drop Server Root privilege" options are implemented (Unix only). See the SysAdmin section for the details.

TLS/SSL

TLS 3.1 is implemented.
The Generate Key option is added to the Domain Security page.
Support for 2048-bit keys and long Certificates is added.
The Certificate Authority Chain option is implemented.
The nested TLS negotiations are supported now. They are used to implement strong (128-bit) SSL encryption with weak (40-bit), "export-legal" products.

Misc

Migration: the MoveIMAPMail and MovePOPMail utilities now support the --noTimeOut flag.
The old DataBase Managers (handling the .tdb and .ldb files) are phased out.
Notifier: the Log Level and Queue size can now be specified using the Obscure page.

Foundation

Foundation: the STSkipList data structure is implemented.
Foundation: the OS Password checking routines now check for the OS Account and Password expiration dates.

Bug Fixes

MAILBOX: the 'mailbox list' routine incorrectly capitalized names of 'xxxx/inbox' sub-mailboxes.
Log recording stopped if the total size of all logs generated since the last server restart exceeded 4GB.
Domains could not be removed if the domain Default WebUser Preference set has been used at least once.
WebUser: the default reply text routine could incorrectly insert quotation marks. In some rare cases it could cause a system crash.
WebUser: not all special symbols in mailbox names were properly URL-encoded.
WebUser: if a custom WebUser Interace file was empty, the server could crash.
TLS sessions interrupted in the negotiation phase could crash the server.
Domains: when the Main Domain was renamed, the Domain Directory Subtree was not renamed.
WebAdmin: the size-type parameters could not be set to 'Default (XXX)' values.
ENQUEUER: Messages with several 'Subject:' headers were processed incorrectly.
LIST: the 'banned' mode could not be set for lists with disabled archiving.
ACAP/IMAP: if the AUTHENTICATE command was interrupted, the NO response was returned instead of the BAD response.
ACAP: data strings with special symbols are returned as literals now.
POP, IMAP: SASL AUTH methods incorrectly supported the "short-form" syntax.
Directory: Local Units incorrectly processed some update requests ("add" attribute sets were processed as "replace" sets).
OS Passwords did not work on the AS/400 platform.
the default Directory Schema did not contain the "cn" attribute for the "organization" objectClass.
Directory: Multi-Level searches in Local Units could return incomplete DNs. This could also cause the LDAP module to stop on-the-fly creation of the "mail" attributes.
Incorrect parallel initialization could cause the PIPE module to crash on startup.
The RPOP module could accept To: and Cc: addresses as "trusted" when working without the "Special-header" option (this could result in unwanted relays).
Personal WebSite: URLs for site files did not contain URL escape symbols, some of the access utilities did not remove the URL escape symbols.
CLUSTER: POP logins could fail on backends.

3.3 16-Jul-00

Update Note: the 3.3 version uses a completely new Directory Manager. If some of your Domains had the Directory Integration setting set to Keep In Sync, open those Domain Settings in the newly installed 3.3 version, and click the "Insert All" button in the Directory Integration Panel.

Platforms

OS/400 version is released.
Linux/Sparc version is released.
Linux/StrongARM version is released.

Domains, Accounts, Objects

Groups are implemented. GROUP-related CLI commands are implemented.
Forwarders are implemented. FORWARDER-related CLI commands are implemented.
The Directory-based Domains are implemented.
The "Mobile" setting is enforced now: domains and account w/o that Access Mode cannot be accessed from non-client IP addresses.
The 2-Letter 2-Level Domain Hashing now provides a workaround for accounts with 1-letter names and for accounts that have the dot symbol as the second symbol of their names.
The Generate Index option is implemented. It can be used to decrease the restart time for domains with 100,000+ accounts.
OS Names can be explicitly set for individual Accounts.
Automatic "account is over quota" alerts are implemented. See the SysAdmin->Alerts section of the manual.

Mailboxes

Mailbox Aliases are implemented (see the Objects->Mailboxes section of the manual). Mailbox aliases can be used to provide access to foreign mailboxes for IMAP clients (such as MS Outlook / OE) that cannot process foreign mailbox names in the Mailbox Subscription lists.
Mailbox aliases are transparent now (included into mailbox hierarchy views).
The BSD Mailbox Manager now checks the size of text lines in new messages.
The .mdir (MailDir) format is redesigned to store the number of message text lines in message file names. This should help some mailers (such as Netscape) correctly process messages with attachments retrieved from Unix servers.

Queue

The DEQUEUER engine is redesigned and converted into a multi-threaded one.
Messages with extremely long header fields (>100K) are now rejected with the SMTP, RPOP, PIPE, or POP (XTND XMIT) modules.

Router

The Add Name to Non-Qualified Domain Names option is implemented.

Directory

The Directory Manager is implemented.
The File-based Directories are implemented.
The LDAP-based Directories are implemented (with caching)
The .tdb and .ldb DataBase Managers are being phased out.
Multiple Sub-tree storage units are implemented.
Schema editor is implemented.
Remove and Relocate Storage Unit operations are implemented.
Access Rights (ACLs) are implemented.
Browser and Access Right WebAdmin pages are implemented.
File(Local Units): the updates merging daemon is implemented.
Storage Unit deletion is implemented.

Directory Integration

The Directory Integration Settings are implemented (Domains section)
The special-case dc RDN attribute is supported now.
The Delete All operation now removes only the records for accounts created on this Server.
Mailing lists and Groups are now automatically added/updated in the Directory if the Domain Integration setting is set to Keep In Sync.

LDAP

Implementation is based on the Directory Manager now.
RFC2254 is implemented.
The 'mail' attribute is now composed on-the-fly for records of the CommuniGateAccount objectClass.
The authentication methods are improved and documented.
Case-insensitive dictionaries are now used in modify-type operations.

ACAP

The output buffering method has been changed.
Datasets entry names are case-insensitive now.

HTTP

WebUser port handling has been changed to support domain-style Personal Web Sites (i.e. http://user.domain.com can be processed as http://domain.com/~user/ now).
CGI environment variables HTTP_AUTHORIZATION and HTTP_REFERER are added.
CGI program name in a URL can now be followed by '/' and some URL string.
CGI programs now inherit the environment variables of the Server (under Windows, this is needed to open TCP/IP sockets in CGIs).

IMAP

The output buffering method has been changed.
The APPEND command now checks if the message text lacks the trailing EOL and fixes it. This is a workaround for the Netscape Messenger bug.

LIST

The Special posting mode is implemented to allow subscribing of a mailing list to some other list.
The First Digest At setting processing has been changed (see the LIST module manual).
The Digest generator has been modified to fit the RFC1153 requirements.
Feed headers and trailers are correctly inserted into base64-encoded messages.

RPOP

Added support for remote POP servers that do not return the number of messages in the initial UIDL response.

SMTP

The SIZE EHLO response does not include the '=' sign now.
The AUTH=address Mail From parameter is now supported.
Batch-splitting for messages with multiple recipients in one domain is implemented.
Log reporting of relayed messages is improved.
The Send Encrypted option is implemented to support server<->server encrypted message transfer.
RFC2645 (ATRN) is implemented in both server and client modes to support mail delivery to hosts with dynamic IP addresses.
Secure connections with forwarding servers are supported now.

Local Delivery

All-domain aliases are case-insensitive now.
The new Alert Text option allows you to specify the "over the quota" alert message text.
The Account Detail addressing Routing options are implemented.

Rules

The Current Date and Time of Day Rule conditions are implemented.
The Write To Log action is implemented.
Comparison operations now ignore the surrounding angle brackets in the envelope (Recipient, Return-Path) addresses.
The Current Day conditions are implemented.
The "[FILE]" and "[STDERR]" Execute command tags are implemented.

SNMP

SNMP agent is implemented.
StalkerMIB ObjectID has been changed to 5678 - the IANA-registered Stalker ObjectID.
WebUser monitoring agents are implemented.
SMTP monitoring agents are implemented.
IMAP monitoring agents are implemented.
TLS monitoring agents are implemented.
POP module totaling-type reporting is implemented.
64-bit Counters are implemented, some MIB elements have been switched to the COUNTER format.

WebUser Interface

Korean, Chinese, and UTF-8 encodings are supported now.
The Mailbox page now remembers the filter and search strings and the position in the selected message set.
The Empty Trash button is now implemented on the Mailboxes Page.
UTF8 Mode Setting is implemented. The Settings.html and Compose.html pages have been modified.
The Settings.html, RPOP.html pages have been changed (^m has beed added).
Compose: now the From, To, Cc, and Reply-To original letter headers are MIME-decoded first.
The Use MIME for Headers option is implemented. When this option is selected, the Subejct, To, Cc, and Bcc header fields containing non-ASCII symbols are MIME-encoded.
Alerts, Bye, Hello, List, ListArchive, Public, Rules, Rule, RPOP, Subscribers, Subscription pages now include the '=' (charset) macro symbols.
the '^$' macro (domain name) now works in all Account pages.
All ISO-8859-x and windows-125x charsets are now supported in the UTF-8 mode.
Longer, alpha-numeric "session passwords" are used now.
The DirectoryFields arrays are added to the Strings.data file.
The Files realm is implemented to provide access to arbitrary files in the WebUser directory.
Attachment file names and HTML text portions are MIME-decoded and (optionally) converted to UTF-8 now.
Texts using the japanese ISO-2022-jp charsets should be displayed correctly now.
The Directory Search page can now use the "internal CGatePro" names instead of the standard attribute names (i.e. RealName instead of cn).
Security: the Security Certificate (RFC2585) link is added to the Login page. See the Security section of the manual.
Non-ASCII mailbox names are supported now.
format=flowed processing (RFC2646) is implemented.
Korean (ISO-2022-KR) and Chinese (Big5) letters are correctly converted into HTML code.
The Certificate link is displayed only if the domain has a Custom Certificate.
The Mailing Lists link is displayed only if the domain has some mailing lists.
The Sent and Draft mailbox names are properly "defaulted" now. The WebUser Settings.html page has been changed.
The simplified Chinese (GB2312) charset is supported now.

Admin

The WebSite, BasicAccountSettings, and WebUserSettings Domain Access Rights are implemented.
The --noLockFile command line option is implemented.
Clicking the Refresh button on the General Settings page tells the Server to re-read the DNS addresses from the OS.
The Account Template page now includes the Initial Mailbox Aliases panel.
The Obscure WebAdmin Page: the Central Directory settings are phased out.
The GetAccountLocation, GetServerRules, and SetServerRules CLI commands are implemented.

TLS/SSL

client-side secure connections are implemented.
the SSL 3.0/3.1 interaction is improved (interoperability with both Microsoft products and open source utlitities).
TLS session recycler is implemented.

Foundation

DNS addresses are now correctly retrieved from the Windows 2000 Registry.
A faster version of 'write to file' method is implemented (now used to store aliases, forwarders, groups, and account info).

Manual

The WebMail section is created to contain all user-level information about the WebUser Interface.
The HTTP and HowTo sections are updated to provide the information about username.domain.dom Personal Web Site URLs.
The Directory, Directory Integration and Clusters pages are updated.

Bug Fixes

CLUSTER: slave nodes refused to connect to the controller if one of the shared domains had the WebCache option disabled.
SMTP, RPOP: if a remote server was misconfigured, garbage left in the response buffers could cause problems when connecting to other servers serving that remote domain.
the Header-field Rule condition did not process wildcard symbols correctly.
WebUser: the "New" counters on the Mailboxes page were not updated properly.
SMTP: the "relayHost" field was not always filled correctly resulting in garbage on the SMTP Monitoring pages.
CLI: GetAccountAliases command could crash the server is the specified domain did not exist.
ACAP: multi-level searches in Dictionary DataSets could cause synchronisation deadlocks.
ACAP: MODTIME responses for the SEARCH command were returned untagged.
ACAP: the optional metadata list in the RETURN clause of the SEARCH command was not properly parsed.
under IRIX, AIX, HP/UX daylight saving times for the local time zones was not detected correctly.
Rules: Rule Editor could crash the server if some of the condition or action fields were missing in the (customized) form.
POP: the CAPA command was not processed in the TRANSACTION state.
Binary zeros in message headers could crash the server.