v5.1.7

Changelog

• Bug fix: corrected Postfix whiteliting mechanism during rebuilds.
• Moved executable dtrx to mb-dtrx

Upgrade Notes

This update may require a special switch as fail2ban was added as an additional package. To upgrade:

apt-get update
apt-get --with-new-pkgs upgrade

Optional Updates

If you wish to manually update your Nginx TLS support to the new model, edit the Mailborder files in /etc/nginx/site-available and change the ssl_protocols parameter to this: ssl_protocols TLSv1.2 TLSv1.3;

Ubuntu 20.04 LTS

This upgrade is supported, but is not required. You may continue to run Ubuntu 18.04 LTS.

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to the latest version of Mailborder as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to the latest version of Mailborder and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• If you need or want help, contact Mailborder support.

v5.1.6

Changelog

• Added the option to verify sender address syntax during SPF checks. There is also a whitelist for certain domains that regularly violate RFC 5321.
• Moved RBL evaluation from the standard Postfix method to a policy service. This allows logging RBL rejections to the to the database.
• Updated mb-read to read "mailborder_version" strings behind comment (#) lines.
• Updated rejection text in SPF from RFC 3696 to RFC 5321.
• Updated SPF domain whitelists to properly trim whitespace from a list of domains.
• Updated build process to convert generated configuration files to Unix removing the BOM.
• Updated mb-os-check to check for /var/lib/mailborder
• Updated mb-os-check to check for more file, directories, and permissions
• Reorganized mb-rebuild structure and build order to make more effective use of Postfix hash, pcre, and regex.
• Updated all Nginx configurations to remove TLSV1 from new installations and add TLSV1.3 support to new installations.
• /etc/mailborder/conf.d/rbls.conf has been moved to /etc/mailborder/conf.d/rbl.cf with more options. Enter any custom RBLs on the custom_rbl_list line. The old /etc/mailborder/conf.d/rbls.cf is safe to delete.
• Added fail2ban to package requirements and added an SASL monitor to automatically ban remote hosts probing SASL with random logins.
• Corrected an index name on the log_spf_reason database table.

Upgrade Notes

This update may require a special switch as fail2ban was added as an additional package. To upgrade:

apt-get update
apt-get --with-new-pkgs upgrade

Optional Updates

If you wish to manually update your Nginx TLS support to the new model, edit the Mailborder files in /etc/nginx/site-available and change the ssl_protocols parameter to this: ssl_protocols TLSv1.2 TLSv1.3;

Ubuntu 20.04 LTS

This upgrade is supported, but is not required. You may continue to run Ubuntu 18.04 LTS.

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to the latest version of Mailborder as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to the latest version of Mailborder and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• If you need or want help, contact Mailborder support.

v5.1.5

Updates

• Mailborder now logs SPF rejections to the database. The menu item is located in [ system > SPF reject log ]. You can use this information to whitelist certain IP addresses or domains from SPF checks. However, this should only be done on a short term basis until the remote domain's SPF record is corrected. The configuration file with the SPF settings is here: /etc/mailborder/spf.cf but put your edits in /etc/mailborder/conf.d/spf.cf
• Added Spanish (Spain) language.
• Fixed minor bug in Nginx for new installations.
• Added bi-directional flows for both inbound and outbound email for Portal users and groups.

Ubuntu 20.04 LTS

This upgrade is supported, but is not required. You may continue to run Ubuntu 18.04 LTS.

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to the latest version of Mailborder as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to the latest version of Mailborder and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• If you need or want help, contact Mailborder support.

v5.1.4

Service Changes

• Mailborder now uses its own native SPF evaluation engine. The new engine does a better job at evaluating newer SPF records with wildcard formats. It is set to sane values out of the box. The configuration file with the settings is here: /etc/mailborder/spf.cf but put your edits in /etc/mailborder/conf.d/spf.cf
• You can now add custom Postfix smtpd_milters by editing the file /etc/mailborder/conf.d/postfix.cf and adding them to the appropriate line. Your custom milters will be added after the Mailborder DKIM and DMARC evaluation during configuration rebuilds.
• An automatic ClamAV fix was added. As many people found out, there is a change between Ubuntu 16 and 18 with systemd which would cause ClamAV to fail and email would stop being processed. This automatic fix checks for the right settings and autocorrects them. A server suffering from this will need to be rebooted for the changes to take effect. This check will automatically run every time Mailborder is upgraded. It can be manually executed with the command: mb-os-check -r as the root user or with sudo.

Ubuntu 20.04 LTS

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to the latest version of Mailborder as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to the latest version of Mailborder and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• Select the default option to keep everything except /etc/apparmor.d/usr.sbin.clamd which needs to be replaced with the new version.
• If you need or want help, contact Mailborder support.

v5.1.3

Bug Fixes

• Core API session checks corrected to eliminate false warnings
• Removed DNSRBL as it is now defunct
• Removed Abuseat RBL as their format no longer works with Mailborder's MTA
• Updated CPU reporting graphs to adjust load based on the number of system processors

Updates and Features

• Updated the Mailborder filter to identify pattern matches made in the Scan Report
• DrWeb AV handler updated to handle scanner errors
• Postfix master.cf updated to lift processing limits for milter on 127.0.0.1 (elimination of self-throttling)
• Enabled Spamassassin spoof checks to check senders with obfuscated from addresses
• Enabled Spamassassin Phishing checks with data from Phishtank and OpenPhish
• Moved Spamassassin from GUI to /etc/mailborder/conf.d/spamassassin.cf
• Added Spamassassin Razor directory and updated to use local servers
• Modified Spamassassin config to use the caching DNS server on the local server
• Revised and reordered MTA settings in GUI
• Removed default spam score from MTA settings as it was confusing and not used
• Moved Postfix max queue time from GUI to /etc/mailborder/conf.d/postfix.cf
• Updated Postfix SPF evaluation mechanism
• Moved SPF configuration file to /etc/mailborder/spf.cf

Performance Notes

Some major performance enhancements are included with this update in regard to scanning speed with this release. DNS checks slow scanning speed on Mailborder servers. Mailborder server configurations have been updated to find and use Razor and Pyzor DNS services that are closer in geographical location and faster in replies. This typically results in spam scanning that is 4 to 8 times faster than the previous model for Mailborder customers outside of the United States. This also improves spam scanning speed for customers within the United States that is 2 to 4 times faster.

Spamassassin has also been modified to use the local caching DNS server at 127.0.0.1 that runs on all Mailborder servers regardless of the server's network configuration. This will also provide moderate to extreme scanning speed increases depending on each server's network and location.

How to Upgrade

To update your Mailborder server(s), run the following commands with root privileges from the command line:

• apt-get update
• apt-get dist-upgrade

Ubuntu 20.04 LTS

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to Mailborder 5.1.2 as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to 5.1.2 and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• Select the default option to keep everything except /etc/apparmor.d/usr.sbin.clamd which needs to be replaced with the new version.
• If you need or want help, contact Mailborder support.

v5.1.2

Bug Fixes

• Fixed potential records count bug in database if similarly named table existed in another database.
• Fully updated mb-os-checks during installation and upgrades.
• Corrected some local timezone issues on the GUI dashboard.
• Fixed portal quarantine report table dates to match portal user timezone correctly.

Updates and Features

• Updated ClamAV frequency checks to 24.
• General code cleanup.
• Logrotate updated.
• mb-filter updated.
• GUI fonts updated.

To update your server(s), run the following commands with root privileges from the command line:

• apt-get update
• apt-get dist-upgrade

Ubuntu 20.04 LTS

This upgrade can easily take an hour on a fast connection. Plan accordingly.

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to Mailborder 5.1.2 as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to 5.1.2 and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• Select the default option to keep everythingexcept /etc/apparmor.d/usr.sbin.clamd which needs to be replaced with the new version.
• If you need or want help, contact Mailborder support.

v5.1.1

Ubuntu 20.04 LTS

• Ubuntu 20.04 LTS is now supported.
• Upgrades from Ubuntu 18.04 to 20.04 on existing Mailborder servers is also supported.

Languages

• Thai language added.
• Simplified Chinese language added.
• Bulgarian language added.
• Missing German language file fixed.

Bug Fixes

• Phishing detection corrected to not identify as virus.
• Empty blacklist and whitelist entries now removed and corrected automatically.
• Fix a bug in Child server installation of the criterion database.
• Criterion database permissions corrected.
• Email Objects will now correctly be added to the Postfix routing tables.
• Dr.Web antivirus results are now read correctly.
• Updated filter to allow images in signature blocks regardless of file names or extensions if the image MIME type is allowed via policy.
• Fixed GUI row color display for non-quarantined items.
• Increased receive timeout on ClamAV Freshclam for slow connections.
• OS checks now automatically correct PHP FPM services.
• Permissions on Mailborder services corrected.
• Permissions on Mailborder cron files corrected.
• innodb_file_format_max removed from MariaDB installations running Ubuntu 20.04.
• Various code corrections addressing execution or depreciation warnings.

Updates and Features

• System reporting mechanism updated.
• Antivirus report format updated.
• Added whitelist option to message release dialogs.
• Whitelists and Blacklists now allow multiple options for email, domain, host, and network.
• Portal Users can now whitelist during the quick web release.
• Database structure updates.
• Mailborder package repository updated.

To update your server(s), run the following commands with root privileges from the command line:

• apt-get update
• apt-get dist-upgrade

To upgrade from Ubuntu 18.04 to 20.04:

• First, upgrade to Mailborder 5.1.1 as shown above.
• Take a snapshot or full backup of some kind.
• Edit /etc/apt/sources.list and change the bionic reference to focal for the Mailborder repository. (deb.mailborder.com) Do this after upgrading to 5.1.1 and before running the next step.
• Run as root: do-release-upgrade --allow-third-party
• Select the default option to keep everythingexcept /etc/apparmor.d/usr.sbin.clamd which needs to be replaced with the new version.
• If you need or want help, contact Mailborder support.

v5.0.20

You must perform the upgrade using the dist-upgrade option.

apt-get dist-upgrade

• Added support for Dr.Web antivirus. This is a very affordable and effective add-on for Mailborder. We don't sell the license for this product. You can obtain a 90 day trial and a 40% discount on their website. More details and instructions are here: https://www.mailborder.com/ops/drweb/
• Updated code to fully support Eset 7.x
• Added features to test and restart failed spam and antivirus services.
• Added option to reboot the Mailborder server if spam and antivirus services cannot be recovered. See /etc/mailborder/engine.cf
• Updated several options in /etc/mailborder/engine.cf
• Implemented a fix for servers not correctly identifying macros in file attachments.
• Corrected the engine rebuild from overwriting the Postfix master.cf.
• Partial configuration writes can now be implemented on servers with Postfix configuration locks.
• Added the option to disable Reject Unverified Recipient in the Mail Transport Settings.
• Updated install script to support Elementary OS 5.x
• Added additional indexing to the Master database for a performance increase.
• Removed ion-icons from Jquery loads.

v5.0.19

• Added Malay language support.
• Updated syslog messaging for delayed database inserts.
• Updated MTA RBL Whitelist to also whitelist reverse DNS checks.
• Updated milter to log postfix queue ID's to aid in transaction tracing.
• Virtuoso will now perform immediate directory cleanups during service restarts in addition to the existing timed cleanups.
• Critical bug fix: the milter previously had a chance to overwrite recipients under certain rare conditions. This has been corrected in this release.

v5.0.18

• Added Dutch language support.
• Whitelisting will now allow override of spoofing triggers.
• Performance update for database tables.
• Virtuoso engine updated to limit email batches to 100 per cycle.
• Fixed language slug in the portal user quarantine report.
• New installations include facebook and fbworkmail exceptions for SPF checks to account for SPF redirects.
• Corrected whitelist and blacklist record display in the Master GUI.
• Fixed language string translation for the default group name in the Portal group admin edit screen.
• Added spam rule to ensure Mailborder release and update email notices are not marked as spam.