All Versions
39
Latest Version
Avg Release Cycle
86 days
Latest Release
351 days ago

Changelog History
Page 1

  • v2.8.28 Changes

    October 14, 2021

    ๐Ÿ”„ Changes

    • ๐Ÿ’ฅ breaking: dkim.js has changed the constructor opts
    • ๐Ÿ“œ tls_socket: more flexible pem file parsing #2986
      • move bad certs into different directory, avoid test suite noise
    • added ability to define a default relay in relay_dest_domains
    • spamassassin: replace msg_too_big & should_check with should_skip #2972
    • spamassassin: allow returning DENYSOFT on errors #2967
    • dep: use caret version range for all dependencies #2965
    • 0๏ธโƒฃ outbound: disable outbound to localhost by default #2952
    • ๐ŸŒฒ connection error logging: use key-value paris #2921
    • 0๏ธโƒฃ tls: change default to NOT send TLS client certs #2902
    • dep: redis is now a dependency #2896
    • ๐Ÿ‘‰ use address-rfc2821 2.0.0
    • http: use CDN for bootstrap/jquery, drop bower #2891
    • โฌ‡๏ธ drop support for node 10 #2890

    ๐Ÿ†• New features

    • ๐Ÿ”ง tls: require secure and verified sockets for configured hosts/domains
    • ๐Ÿ”Œ DKIM plugin has got a couple of config options now
    • tls: add no_starttls_ports - an array of incoming ports where STARTTLS is not advertised
    • outbound: add local_mx_ok config #2952
    • ๐Ÿ”Œ skip plugins at runtime by pushing name into transaction.skip_plugins #2966
    • outbound: add ability to specify delay times for temporary fails in temp_fail_intervals #2969

    ๐Ÿ›  Fixes

    • bounce: correctly set fail recipients #2901
    • bounce: correctly set bounce recipients #2899
    • Get local_ip from getsockname() instead of server properties #2914
    • Received header TLS section adheres more closely to RFC 8314 #2903
    • ๐Ÿ–จ use RFC-2045 Quoted-Printable in email message body
    • ๐Ÿ‘‰ use RFC-2047 Q encoded-words in email headers
  • v2.8.27 Changes

    January 05, 2021

    ๐Ÿ”„ Changes

    • โฌ†๏ธ bump verions of several dependencies #2888
    • propagate hmail notes to split copies #2887
    • ๐ŸŒฒ log.ini: add json to list of formats in config doc #2881
    • exclude port 587 from TLS NO-GO feature #2875
    • ๐Ÿ”Œ strip haraka-plugin- prefixes off plugin names in config/plugins #2873
    • pass smtp.ini config from Server into connections & transactions #2872

    ๐Ÿ†• New features

    • โž• add ability to disable SMTPUTF8 advertisement #2866

    ๐Ÿ›  Fixes

    • assure headers.max_lines is initialized as integer #2878
    • require haraka-net-utils >= 1.2.2 #2876
  • v2.8.26 Changes

    November 18, 2020

    ๐Ÿ”„ Changes

    • โž• add config options for OAR & AR headers #2855
    • ๐Ÿ”Œ plugins.js: also strip haraka-plugin prefix from plugin.name #2846
    • smtp_forward/spamssassin: grab refs of conn/txn to avoid crashes due to lack of existence. #2847
    • outbound: add extended reason to bounce message #2843
    • hgrep: replaced perl script with shell script #2842
    • connection: send temp error when requested #2841
    • โšก๏ธ headers: updated deprecated messages #2845
    • hmail: socket.on -> socket.once #2838
    • hmail: check for zero length queue file #2835
    • 0๏ธโƒฃ outbound: add os.hostname() as default for outbound HELO #2813
    • ๐Ÿ‘‰ use node v10's mkdir instead of mkdirp #2797
    • CI: drop appveyor and Travis #2784
    • ๐Ÿ‘• lint: add 'prefer-template'
    • โšก๏ธ update async to version 3.2.0 #2764
    • โšก๏ธ update redis to version 3.0.0 #2759
    • remove deprecated max_unrecognized_commands from config #2755
    • ๐Ÿ‘ CI: add ES2017 support, drop node 8 #2740
    • ๐Ÿ›  fix broken bannering on nested mime parts #2736
    • โช restore TLS version info, set correctly #2723
    • ๐Ÿ‘ better error message when invalid HELO hostname is rejected
    • bring STARTTLS "TLS NO-GO" feature in line with Outbound's #2792
    • โž• add listener for secureConnect #2828
    • โœ‚ removed plugins/data.headers to haraka-plugin-headers #2826
    • โž• add zero-length queue size check
    • send temp instead of hard error when asked to by unrecognized_command

    ๐Ÿ†• New features

    • ๐Ÿ‘ Allow web interface to be bound to unix socket #2768
    • ๐Ÿ”ง tls: add configurable minVersion to tls socket options #2738
    • connection_close_message: added ability to override close connection message replacing closing connection. Have a jolly good day. #2730
    • โž• add JSON format for logging #2739
    • ๐Ÿ‘Œ support binding web interface to unix socket

    ๐Ÿ›  Fixes

    • check for punycode domain names when resolving MX, avoid crash #2861
    • wait until entire message is spooled when spool_after in use #2840
    • hmail: add missing space in temp_fail emitter #2837
    • ๐Ÿ›  fix outbound config reloading after outbound split #2802
    • ๐Ÿšš smtp_forward: remove redundant outbound hook #2796
    • ๐Ÿ”Œ smtp_forward: this plugin does not use the queue_outbound hook anymore #2795
    • ๐Ÿ›  Fix connection pool not being unique when hosts and ports were equal between domains #2789
    • ๐Ÿ›  fix connection pool not being unique when hosts and ports were equal between domains #2788
    • ๐Ÿ›  Fix outbound.bounce_message To: header (and add Auto-Submitted) #2782
    • ๐Ÿ›  Fix support for DKIM signing when forwarding and aliasing is enabled #2776
    • ๐Ÿ‘ Better error message when EHLO hostname does not have a dot #2775
    • ๐Ÿ›  fix bannering on nested mime parts #2737
    • TLS: don't abort loading certs in config/tls dir when an error is encountered. Process every cert file and then emit errors. #2729
    • โช restore TLS version, correctly #2723
  • v2.8.25 Changes

    October 11, 2019

    ๐Ÿ”„ Changes

    • ๐Ÿšš conn: remove TLS version from header #2648
    • Actually enforce using key for INTERNALCMD #2643
    • trans: assign conditions to named vars #2638
    • โฌ‡๏ธ drop node.js v6 support #2632
    • โœ… conn: use is_local instead of localhost addr tests #2627
    • โœ… spamassassin: spamassassin: strip useless WS from tests #2624
    • โšก๏ธ es6: many updates #2615, #2674, #2680
    • โšก๏ธ systemctl: update service definition #2612
    • ๐Ÿ’… lint: bracket style to match newer eslint:recommended #2680
    • ๐Ÿ‘• lint: use object shorthands (eslint:recommended) #2680
    • logger: use safer Object.prototype.hasOwnProperty #2680
    • outbound: permit # char in SMTP status code response #2689
    • โšก๏ธ dkim_sign: improve docs, add tests, es6 updates #2649
    • โช dkim_sign: restore default key signing feature #2649
    • โšก๏ธ tmp module: update to latest #2614
    • โšก๏ธ semver: update to latest #2616, #2651
    • โšก๏ธ async: update to latest #2653, #2664
    • ๐Ÿ—„ repo cleanup: replaced deprecated plugins with list #2681
    • โœ… spf: es6 patterns, results.pass, test improvements, es6 patterns #2700

    ๐Ÿ†• New features

    • spf: add config option to fail on NONE #2644

    ๐Ÿ›  Fixes

    • โœ‚ mailheader: fully quality header name in _remove_more #2647
    • haraka: Connection.createConnection is not a constructor #2618
    • problems with japanese characters in body and part header #2675
    • toobusy: fix hook name (connect_pre -> connect) #2672
    • outbound: watch for socket timeouts #2687
    • outbound: permit # char prefix in SMTP status code response #2691
    • mailheader: strip whitespace between encoded-words #2702
  • v2.8.24 Changes

    March 12, 2019

    ๐Ÿ”„ Changes

    • early_talker: skip if sender has good karma #2551
    • โšก๏ธ dockerfile: update to node 10 #2552
    • โšก๏ธ Update deprecated usages of Buffer #2553
    • early_talker: extend reasons to skip checking #2564
    • tls: add 'ca' option (for CA root file) #2571
    • outbound: little cleanups #2572
    • smtp_client: pass pool_timeout to new SMTPClient #2574
    • 0๏ธโƒฃ server: default to nodes=1 (was undefined) #2573
    • โœ… test/server: use IPv4 127.0.0.1 instead of localhost #2584
    • queue/smtp_*: add v3 upgrade notice and config setting #2585
    • spf: use the skip config for helo/ehlo checks #2587
    • spf: avoid 2nd EHLO evaluation if EHLO host is identical #2592
    • ๐Ÿ”จ queue.js refactoring #2593
    • ๐Ÿ“œ Log dkim_sign parse errors with connection ID #2596
    • โšก๏ธ Update ipaddr.js to the latest version #2599
    • โฑ make inactivity timeout match docs #2607

    ๐Ÿ†• New Features

    • Implement SIGTERM graceful shutdown if pid is 1 #2547
    • tls: require validated certs on some ports with requireAuthorized #2554
    • spamassassin: disable checks when requested #2564
    • clamd: permit skipping for relay clients #2564
    • outbound: exported outbound.temp_fail_queue, outbound.delivery_queue and add TimerQueue.discard()
    • ๐Ÿ”Œ status: new plugin #2577

    ๐Ÿ›  Fixes

    • ๐Ÿ”Œ mf.resolvable: reduce timeout by one second (so < plugin.timeout) #2544
    • LMTP blocks under stress #2556
    • invalid DKIM when empty body #2410
    • prevent running callback multiple times on TLS unix socket #2509
    • โž• add missing callback when listing queue and empty directory
    • ๐Ÿ“œ correct MIME parsing when charset: utf8 and encoding: 8bit #2582
    • 0๏ธโƒฃ spamassassin: default check flags to true #2583
    • โฑ smtp_client: destroy when connection gets conn timeout error #2604
    • ๐Ÿšš on error and timeout, remove listeners and destroy conn. #2606
  • v2.8.23 Changes

    November 18, 2018

    ๐Ÿ”„ Changes

    • tighten Haraka pattern in .gitignore #2542
  • v2.8.22 Changes

    November 17, 2018

    2.8.22 - Nov 17, 2018

    ๐Ÿ†• New Features

    • ๐Ÿ”Œ enable tls/ssl for rabbitmq amqplib plugin #2518

    ๐Ÿ›  Fixes

    • hmail: don't send RSET to LMTP #2530

    ๐Ÿ”„ Changes

    • clamd: add check.authenticated, check.private_ip, check.local_ip option
    • ๐Ÿ‘‰ use get_decoded on headers that may be encoded #2537
    • connection: move max_mime_part config load to connection init #2528
    • outbound: init TLS when we send email, not when old queue file is loaded #2503

    ๐Ÿ”„ Changes

    • โšก๏ธ relay: update port 465 doc #2522
    • ๐ŸŒฒ hmail: log the correct err message #2531
    • ๐Ÿ”Œ ob/tls: consistently use obtls (vs plugin) for "this" name #2524
    • outbound: add domain to loginfo message #2523
    • โž• Add connection.remote.is_local #2532
    • โšก๏ธ update license #2525
    • perf: move max_mime_parts config load to connection init #2529
    • โšก๏ธ update semver to version 5.6.0 #2517
    • โž• added hint to encrypted file authentication #2514
    • ๐ŸŒฒ dkim_sign: improved log messages #2499
    • ehlo_hello_message: config/ehlo_hello_message can be used to overwrite the EHLO/HELO msg replacing , Haraka is at your service #2498
    • connection: add connection.remote.is_local flag for detecting loopback and link local IPs
    • โž• add .name to outbound TLS for logs #2492
  • v2.8.21 Changes

    July 20, 2018

    ๐Ÿ†• New Features

    • โฌ†๏ธ outbound: skip STARTTLS after remote host fails TLS upgrade #2429
    • dns_list_base: introduce global plugin.lookback_is_rejected flag #2422

    ๐Ÿ›  Fixes

    • replace all _ chars in hostnames with code points #2485
    • Don't die on invalid commands #2481
    • outbound: check list exists before attempting to use it #2478
      • refactor outbound/hmail.process_ehlo_data #2488
    • tls: skip when redis is undefined #2472
    • Don't run delivered hook on LMTP fail #2470
    • Add tls_socket.load_tls_ini() to tls.register() #2465

    ๐Ÿ”„ Changes

    • outbound/tls: make into a class #2474
    • ๐Ÿ”Œ plugins: clear timeout on cancel #2477
    • ๐Ÿ“œ txn.parse_body consistently a boolean #2476
    • โšก๏ธ update ipaddr.js to version 1.8.0 #2468
  • v2.8.20 Changes

    June 29, 2018
    • ๐Ÿ†• New Features
      • n/a
    • ๐Ÿ›  Fixes
      • data_headers: check defined-ness of hdr_address after try/catch #2458
      • tls: remove tls.ini loading from plugins/tls #2459
      • tls: remove invalid opt from load_tls_ini #2456
      • outbound: escape values in HTML bounce correctly #2446
      • dkim_sign: catch exceptions when address-rfc2822 fails to parse From #2457
    • ๐Ÿ”„ Changes
      • logger: Add "obj" log param to log hook that contains log data by type #2425
      • logger: include outbound client ID in logging #2425
      • logger: allow specifying uuid in params when logging #2425
  • v2.8.19 Changes

    June 26, 2018
    • ๐Ÿ†• New features
      • outbound: received_header=disabled supresses outbound Received header addition. #2409
      • auth_base.js: check_plain_passwd and check_cram_md5_passwd can now pass message and code to callback routine
      • spf: allow bypass for relay and AUTH clients #2417
      • spf: optionally add OpenSPF help text to rejection #2417
      • auth_base: prevent storing of AUTH password in connection.notes.auth_passwd by setting plugin.blackout_password. #2421
    • ๐Ÿ›  Fixes
      • Mitigate MIME part explosion attack #2447
      • Always prefix ClamAV with a Received header #2407
      • plugins/data.headers.js: wrap address-rfc2822 header parse into try block #2373
      • tls_socket: as client, only apply TLS opts if config is valid #2414
      • when installing, creates config/me if missing #2413
      • queue/qmail-queue: fix a 2nd crash bug when client disconnects unexpectedly #2360
      • remove desconstruction of SMTP commands to prevent exception #2398
      • attstream: return self so that pipe() calls can be chained together. #2424
      • outbound: fix dotfile cleanup to consider platform-based prefix. #2395
      • outbound: fix handling of LMTP socket when a socket path is specified. #2376
    • ๐Ÿ”„ Changes
      • relay: move relay acl check to connect_init so flag is set earlier #2442
      • process_title: add total recipients, avg rcpts/msg, recipients/sec cur/avg/max and messages/conn #2389
      • when relaying is set in a transaction, don't persist beyond the transaction #2393
      • connection.set supports dot delimited path syntax #2390
      • remove deprecated (since 2.8.16) ./dsn.js
      • Add transaction.msg_status property that reflects message status. #2427
      • Add transaction.notes.proxy object that hold HAProxy details. #2427
      • spamassassin: make relay header configurable. #2418
      • deprecate max_unrecognized_commands plugin in favor of limit. #2402
      • xclient: add support for DESTADDR/DESTPORT. #2396