Froxlor bugfix release 2.2.6

New:

• [settings] add new settings to set default values for customer antispam options for new email addresses (settings advanced-mode)
• [cron] add new task to (re)configure mail/ftp services with let's encrypt; refs #1297
• [system] allow admins without change-serversettings to adjust dkim flag of domains
• [ui] hide webserver-ssl-options for new domains if no default ssl-ip-addresses are selected in the settings
• [languages] added Hungarian translation (#1310)

Security:

• force admin email addresses to be unique and not be used for customers, fixes GHSA-7j6w-p859-464f
• do not output potentially unsafe content, fixes GHSA-26xq-m8xw-6373

Fixes:

• show necessary dns entries for mail/antispan also in admin-view of domain
• fix empty firstname/name but set company when editing a customer via API
• allow cidr (forward slash) in spf settings-regex; fixes #1295
• correctly create ssl-redirect if let's encrypt is already activated; fixes #1294
• set sender-address of emails which were sent using an admin/a reseller to the global settings email so sending it using provided smtp - settings will not fail antispam checks; fixes #1289
• fix permissions of global mysql-user for customers; fixes #1286
• can-edit-domain is not required to create subdomains of that domain if subdomains are allowed
• set cookie SameSite option to 'Lax' for loginlinks to work as intended; fixes #1299
• corrected regex for dns CAA entries; fixes #1300
• add safety when unsetting isemaildomain flag in domain, fixes #1305
• fix deletion of webserver-logfiles when customer gets deleted, thx to irisdina
• fix plaintext-mail content, thx to AlexL
• fix 'show necessary dns entries for mail/antispan also in admin-view of domain' if bind is enabled but domain is not using nameserver

Full Changelog: 2.2.5...2.2.6

2.2.5

• fixed editing email-address catchall-flag not working - #1288
• fixed wrong settings-index-name for apache-2.4 flag - #1290

Full Changelog: 2.2.4...2.2.5

2.2.4

New:

• [config-services] add validation for empty or non-existing configuration template xml files
• [antispam] add rewrite-subject flag to email-edit form; hide spam-related settings if 'bypass_spam' is activated; add possibility to disable rejection of spam-mails, refs #1282
• [updater] add possibility to ask for potential update question in CLI updater and also pass them as options to override them

Fixes:

• fix timestamp matching regex, add lmtp to receving service regex and skip lines not including the main target service name in maillog parser
• fix successful login when using email 2fa
• fix language replacement and fix 'sending messages' after successfully sending prior, thx to Davidd
• [php-fpm] remove 'date.timezone' from php_admin_values (superfluous as it is in php_values)
• [antispam] set rewrite_subject to a slighty higher score then used for add_header, fixes #1275
• exchange toggler-links with checkboxes in email edit form to be able to adjust all parameters at once, fixes #1277
• store IDN email-usernames in ACE, as dovecot/postfix need them this way
• do not issue let's encrypt for email_only domains (in case they were web-enabled prior, we do not unset former settings to ease reverting back when disabling email_only)
• fix incorrect width of APCu Hit/Miss bar (#1283)
• check whether mysql-user exists prior to DROP USER for mysql < 5.7
• fix wrong fieldname in email-domain-overview

Full Changelog: 2.2.1...2.2.4

2.2.1

Changes

• add condition to the remember-me checkbox for updaters when the
  token-table does not exist yet
• dont generate dhparam file as fallback but use defined FFDHE4096
  group; fixes #1270
• Fix missing proftpd-mod-wrap installation (#1272)
• show antispam options for email-editing only if enabled
• fix storing multiple-choice-select values, thx to 21MILEX on
  Discord, fixes #1269
• Add |raw to h5 in formfields template (#1268)

Release froxlor 2.2 - New Antispam feature, API enhancements and SSL improvements

Details, see https://bit.ly/rls2200

Release candidate froxlor 2.2.0-rc3

Full Changelog: 2.2.0-rc2...2.2.0-rc3

Release candidate froxlor 2.2.0-rc2

What's Changed

• merge current enhancements from main branch to v2.2 by @d00p in #1261

Full Changelog: 2.2.0-rc1...2.2.0-rc2

Release candidate froxlor 2.2.0-rc1

What's Changed

• Ensure XPath for ConfigDaemon matches exactly one element by @z-e-r-0-t in #1224
• Bump follow-redirects from 1.15.3 to 1.15.4 by @dependabot in #1222
• Check for Argon2 support before using constant PASSWORD_ARGON2X by @z-e-r-0-t in #1228
• Bump vite from 4.4.12 to 4.5.2 by @dependabot in #1229
• Rename dovecot config file generated be renew hook to ensure it gets after default froxlor config file by @z-e-r-0-t in #1233
• Use ftpserver from .xml during install by @z-e-r-0-t in #1234
• Ensure that DMARC entries are generated as subdomain, Allow overwriting of DMARC and SPF subdomain records by @z-e-r-0-t in #1237
• Bump follow-redirects from 1.15.4 to 1.15.6 by @dependabot in #1244
• Fix "expires" option cannot have a year greater than 9999 by @halfgaar in #1246
• Bump vite from 4.5.2 to 4.5.3 by @dependabot in #1247
• Add config for Ubuntu 24.04 - Noble Numbat by @rex2630 in #1251
• Automatic assigment of "worker_processes" in nginx by @rex2630 in #1252
• Finished Czech translation of the froxlor panel by @rex2630 in #1254
• Update README.md by @Starcalc in #1255
• Bump braces from 3.0.2 to 3.0.3 by @dependabot in #1257

New Contributors

• @halfgaar made their first contribution in #1246
• @Starcalc made their first contribution in #1255

Full Changelog: 2.1.9...2.2.0-rc1

Froxlor security bugfix release 2.1.9

• [security] fix in mysql-logger, see GHSA-x525-54hf-xr53 - published one week after release, on May 10th
• [install] add compatibility for mariadb-dump executable instead of mysqldump

Full Changelog: 2.1.8...2.1.9

Froxlor bugfix release 2.1.8

• [settings] fix "session expires" option, #1246
• [UI] fix missing csrf tokens for some ajax requests
• [Cron] also add logfiles to virtual-host if it's a redirect

Full Changelog: 2.1.7...2.1.8