v0.53.POWER.2

This is an hotfix release (again)

Folks on version v0.53.POWER.0 do not need to upgrade.

A bad merge conflict borked the bootstrap script. Should be fixed now.
The original release notes can be read in the v0.53.POWER.1 release

v0.53.POWER.1

This is an hotfix release

Only applies to new installations. Existing installations on v0.53.POWER.0 don't need to upgrade.

Fixes

• Changed the download endpoint for Z-Push, because the original one is now broken.

v0.53.POWER.0

Changes imported from upstream (Mail-in-a-Box v0.53)

Software updates

• Upgraded Roundcube plugins:
• • Persistent Login to 5.2.0;
• • HTML5 Notifier to 0.6.4;
• Upgraded zpush to 2.6.2;

Mail

• The box will now send DMARC reports to the senders that explicitly request them;
• Fixed an edge case in the daily reports' date;

Backups

• Backblaze B2 is now supported!
• Added an option to sort the Custom DNS entries by domain and QNAME;

Bugfixes

• Fixed a bug where the nginx local.conf file could be changed due to domain ordering issues. The ultimate side effect of this is that the admin account would get spammed nearly every day with nearly useless certificate provisioning emails.

v0.52.POWER.3

This is an hotfix release

Fixes the following regressions

• The POST admin endpoint /system/pgp/wkd would always error with code 500 due to not actually returning "OK" at the end;
• The noreply-daemon@<primary-hostname> name isn't automatically added on setup, requiring adding a new user for that to happen. Now the setup automatically adds this;

v0.52.POWER.2

New Features

• PGP Keys (Warning: still somewhat in beta phase)

• • The admin panel now carries a section where you can manage keys that matter the most to you or your organization;
• • This update also comes with a Web Key Directory which is purposed to be a direct replacement to the public keyservers (with advantages of it's own);
• • • As far as I can tell the implementation is fully compliant with the current draft for WKD which can be viewed here;
• • The enigma plugin on Roundcube has been enabled;
• • Emails sent by the daemon to the administrator will now be signed:
• • • Caveat: In order not to annoy non-PGP users, only the plaintext part of the message is signed. The HTML part of it is not signed.
• • Soon™: You'll be able to encrypt the backups using a public key of your choice that you imported.

• Hidden feature (for now): No-reply addresses

• • Currently only noreply-daemon@example.com is in this list. At the moment, for internal usage only.
• • Goal: These addresses can send mail but not receive it. Mail sent to these addresses is rejected with a custom message.

• Mailbox Quotas

• • This feature has been merged from jrsupplee's fork (without any major changes): https://github.com/jrsupplee/mailinabox
• • Quotas can be managed in the Users page of the admin panel.

Other Changes

• Mail by the system is now sent from System Management Daemon <noreply-daemon@example.com>. This should address some complaints that sometimes this kind of mail is incorrectly sent to the spam folder;
• As stated above, the plaintext part of the system reports are now PGP-signed;
• Added a nice default welcome page. This does not affect existing users;

v0.52.POWER.1

Changes

• The admin panel no longer displays the distribution signature (#9);
• Some status checks may now appear "greyed out". This is for situations that do not warrant warnings being issued;
• • For example: When redirecting one of your domains' A record to somewhere else, status checks would display a warning. But because this is most likely an intentional change, it doesn't really qualify as a warning. So it will appear as "greyed out" (aka Not Applicable) instead.

Software Updates

Webmail

• Roundcube updated to version 1.4.11;

Nextcloud

• Nextcloud updated to version 20.0.8;
• Calendar updated to version 3.5.1;

Admin Panel

• JQuery updated to version 3.6.0;
• FontAwesome updated to version 5.15.3;

v0.52.POWER.0

Changes imported from upstream (Mail-in-a-Box v0.52)

Software updates

• Upgraded Roundcube to version 1.4.10;
• Upgraded zpush to 2.6.1;

Mail

• Incoming emails with SPF/DKIM/DMARC failures now get a higher spam score, and these messages are more likely to appear in the junk folder, since they are often spam/phishing;
• Fixed the MTA-STS policy file's line endings;

Control panel

• A new Download button in the control panel's External DNS page can be used to download the required DNS records in zonefile format;
• Fixed the problem when the control panel would report DNS entries as Not Set by increasing a bind query limit;
• Fixed a control panel startup bug on some systems;
• Improved an error message on a DNS lookup timeout;
• A typo was fixed;

DNS

• The TTL for NS records has been increased to 1 day to comply with some registrar requirements;

System:

• Nextcloud's photos, dashboard, and activity apps are disabled since we only support contacts and calendar;
• • Forker note: I might look into a way to let users optionally enable these again;

Other Changes

Software updates

• Upgraded NextCloud to version 20.0.6;
• • Upgraded Contacts to version 3.4.3;
• • Upgraded Calendar to version 2.1.3;
• Upgraded Bootstrap to version 4.6.0;
• Upgraded FontAwesome to version 5.15.2;

Development

• If a mailinabox-ca.crt file is in the root of the repository, then the setup process will automatically import it as a CA certificate. This is useful if you want to test HTTPS in a local environment (where, for example, Let's Encrypt will not work);

v0.51.POWER.1 - UI Updates

Fixes

• Fixed a regression introduced by v0.51.POWER.0 where the ordering of the modal header element was reverted to the one used in Vannilla Mail-in-a-Box (this happened due to a very complicated merge conflict).

Before	After

• Fixed a regression that was introduced on v0.44.POWER.1 - Bootstrap 4 dropped glyphicons (used in Bootstrap 3, used in Vannilla MIAB), but this was never noticed. I've added FontAwesome (version 5.15.1) to replace those. For example, icons on the aliases list should now appear:

Other changes

• Changed the Status Checks interface so that the status checks can use the whole width of the page.

v0.51.POWER.0

Changes imported from upstream (Mail-in-a-Box v0.51)

• Upgraded Nextcloud from to 20.0.1 (with Contacts from 3.3.0 to 3.4.1 and Calendar from 2.0.3 to 2.1.2)
• Upgraded Roundcube to version 1.4.9.
• The MTA-STA max_age value was increased to the normal one week.
• Two-factor authentication (TOTP) can now be enabled for logins to the control panel. However, keep in mind that many online services (including domain name registrars, cloud server providers, and TLS certificate providers) may allow an attacker to take over your account or issue a fraudulent TLS certificate with only access to your email address, and this new two-factor authentication does not protect access to your inbox. It therefore remains very important that user accounts with administrative email addresses have strong passwords.
• TLS certificate expiry dates are now shown in ISO8601 format for clarity. (YYYY-MM-DD)

Other changes

• Upgraded Bootstrap to version 4.5.3

v0.50.POWER.1 - dot-nginx.conf reversal

This release reverts 1 feature (sort of)

• The "dot-nginx.conf" feature has been reverted. This is due to two reasons:
• • The architecture of the system was faulty to the point where we delegated to the user things that should have been delegated to the machine. This meant that, for example, public certificate paths had to be updated manually.
• • Moreover, the "vanilla" Mail-in-a-Box already has a similar system (even though it's very poorly or not documented at all), on which we will fall back on.
• • • Custom nginx directives for a domain example.com are stored in /home/user-data/www/example.com.conf - the difference between MiaB and Power-MiaB is that this file will always exist.
• • We still keep the changes that make it so that the Webmail (on the /mail path) will now be served on the primary directory only.

Other changes

• Nextcloud was updated to version 19.0.3
• Admin panel: Bootstrap was updated to version 4.5.2