Skip to content

Latest commit

 

History

History
1602 lines (1053 loc) · 116 KB

NEWS.md

File metadata and controls

1602 lines (1053 loc) · 116 KB

Change Log

6.2.70 (2022-11-11)

Full Changelog

Incompatible changes:

  • sympa_wizard.pl was deprecated. About alternatives see #508.

Implemented enhancements:

  • Linux: Replace spawn-fcgi by systemd socket for wwsympa/sympasoap #799
  • CLI: Add "sympa review list@domain [--status]" #1102
  • CLI: Add "sympa bouncers reset", "sympa bouncers del" commands #1058
  • Prevent the use of the list address as subscriber that receive mails #533
  • CLI: Deprecate sympa_wizard.pl #508
  • Have code formatting guideline #319
  • 🚸 — Add anchors to prefs to ease linking (like in FAQ, etc.) #1328
  • Remind name of the opened list in the notification #1313

Fixed bugs:

  • Crash with the broken message with "multipart/signed" MIME type #1454
  • Fix typos #1432
  • CLI: Only the first loading of sympa.conf used the --config option #1425
  • Fix outdated link to Data::Password variables #1426
  • Missing dependency Pod::Usage #1417
  • File names in incoming spool can be truncated #1410
  • SympaSOAP: Result by setCustom with parameter including non-ASCII characters is broken #1407
  • sympa_soap_client.pl fails if SOAP call returns hash result. #1415
  • The owner unnecessarily sees the pop-up stating a message is waiting for moderation #1406
  • Unable to set custom attribute using the SOAP API, if none already set #1401
  • Unsubscribe and Signoff Requests Cause Sympa Service Crash in 6.2.68 #1359
  • Add owner with non-default options, e.g. "privileged" profile, not working #1329
  • Blocklist is sensitive to spurious whitespace #1377
  • When closed list is restored, subscribers won't be restored #1380
  • WWSympa: File paths of archived messages may be exposed in the result of arcsearch #1364
  • WWSympa: "Synchronize ... with data sources" button is not shown #1355
  • tidyallrc was not included in source dist #1382
  • CLI: Bugs that crash command line interface #1375 #1344
  • 🐛 — Missing some id on input tags #1358
  • Protect email addresses in archive search #1312

Closed issues:

  • Remove user menu entries showing only information #1393
  • Sympa Debian issues #971
  • Probem typo #115

Other changes:

  • Use new domain name and list addresses for Sympa in the source #1463
  • Update translations #1472

6.2.68 (2022-01-25)

Full Changelog

Incompatible changes (from 6.2.66) :

  • sympa.pl: --import option was deprecated. Use --add option instead #1251.

Implemented enhancements:

  • Show list names when purging closed lists [#1311](Show list names when purging closed lists).

Fixed bugs:

  • Database: Nested transaction crashes #1330.
  • Test: add request omits quiet option #1326.
  • Upgrade: some parameters in list config files may be removed during upgrade from 6.1.x to 6.2.x #1321.
  • Improve xgettext.pl #1320.
  • WWSympa: Predefined fonts are hard to read comfortably #1305.
  • SpamAssassin rejects anonymized messages originally posted by Mozilla #1306.

Merged pull requests:

  • Migration to the new domain (1) #1337.
  • More fixes for #1286 #1319.
  • Update .gitignore #1316.
  • Suppress non-fatal warnings in the tests #1309.

6.2.67b.3 (2021-12-20)

Full Changelog

Incompatible changes:

  • sympa.pl: --import option was deprecated. Use --add option instead #1251.

Implemented enhancements:

  • sympa.pl: Now sympa.pl has the new name sympa and the new command line format #1286. For backward compatibility, The older name and form will also be supported.
  • sympa.pl: Adding a new option --add, and expand --add and --del options #1251 #1282 #1285

Fixed bugs:

  • Cosmetic problems in Listmaster Admin menu #1294
  • Listmaster Admin's menu entry "Edit Robot Config" missing when in "Skins, CSS and colors" #1291
  • Create a list as copy does not copy all configuration (template files) #1290
  • make check: PERL5LIB environment variable was overwritten #1299
  • macOS: t/Tools_File.t fails. #1288

Merged pull requests:

  • Adding the workflow for automated testing #1287 #1301

6.2.67b.2 (2021-11-26)

Full Changelog

Implemented enhancements:

  • Build process: Use configured Perl on "make tidyall" #1269

Fixed bugs:

  • Config: The warning that password_hash parameter should not be changed is obsoleted (see also #1277)
  • Included owners won't be removed even if they have been removed from the data source #1272
  • WWSympa: Misleading line folding in the tooltip #1262
  • footer_type no longer omits text/html parts #1271
  • Fix outdated "intranet" sample in create_list schema description. #1267
  • WWSympa: CAS negotiation can be messed via query parameter #1255 #1261

Merged pull requests:

  • Cleanup: Avoid using bareword filehandles. And some cleanups #1226

6.2.67b.1 (2021-10-24)

Full Changelog

Implemented enhancements:

  • S/MIME: Simplify the method to get email addresses in X.509 certificates #1239
  • Refactoring: Cleanup reporting on web UI #1247
  • sympa.pl: Add del command to remove emails from list #911

Fixed bugs:

  • MySQL: probe_db() cannot update int fields with MySQL 8.0.17 or later #1252
  • WWSympa: Invalid POST data breaks sso_login form for all users #1245
  • Unuseful emails to listmaster. #1244
  • Memory consumption while archive download #1235

6.2.66 (2021-09-29)

No changes.

6.2.65b.2 (2021-08-30)

Full Changelog

Implemented enhancements:

  • Add summary of outstanding moderation requests in "My lists" page #1194.
  • edit_list.conf should not be loaded multiple times to waste memory #1172.

Fixed bugs:

  • Robot listmasters could edit site templates #1224.
  • Make the characters used for e-mail addresses conform to RFC 5322 #1217.

Merged pull requests:

6.2.65b.1 (2021-07-30)

Full Changelog

Implemented enhancements:

  • Improving data source synchronization performance #1186.

Fixed bugs:

  • custom_attribute parameters are not transferred when subscribe action wasn't forwarded to the owner #1199.
  • Drop dependency Socket6 #1211.
  • WWSympa: Update jQuery to 3.6.0 #1204.
  • custom_robot_parameter parameter was broken #1207.
  • Typos in mhonarc_rc.tt2 (formerly mhonarc-ressources.tt2) #1206.

Merged pull requests:

  • Refactor internals of config (2) #1214.

6.2.64 (2021-06-30)

Full Changelog

Merged pull requests:

  • Some more changes to #1174 #1202

Closed issues:

  • Excessive memory usage after upgrading to Sympa 6.2.62 #1170

6.2.63b.2 (2021-06-21)

Full Changelog

Implemented enhancements:

  • Add create_list.closed scenario. #1191
  • Make distribution_ttl and inclusion_notification_feature site-wide #1183

Fixed bugs:

  • S/MIME: Extracting certificate with multiple email values fails #1196
  • Noises in HTTP server error log #1185
  • delete_list_member() failed removing subscribers' pictures #1189

6.2.63b.1 (2021-05-31)

Full Changelog

Implemented enhancements:

  • Hide archive download link from users without proper permissions #1176 #1179
  • Obsolete escape_chars() / unescape_chars() #1167
  • Use web URL in instruction if web interface is available #1159
  • Add list visibility scenario for logged in users. #1140
  • Add ability to forbid some list names #672

Fixed bugs:

  • bulk.pl don't deliver mails if failed to personalize #1174
  • Newlines in header fields added by ARC feature should be normalized #1168
  • Error emails to listmaster from repeated set_netidtoemail_db calls #1163
  • Sympa should not lock out users using password authentication with LDAP #1132
  • mailto: link cannot be detected by some MUAs #1124
  • Comments in HTTP Accept-Language field should be omitted #1152
  • Empty paragraph in list config should not be warned. #1150

Closed issues:

  • Support scripts for maintenance #538

6.2.62 (2021-04-27)

Full Changelog

Incompatible changes (since 6.2.60):

  • cookie parameter in sympa.conf was obsoleted #1091. For more details read Security Advisory 2021-001.
  • By a request from the user with English background, the term "blacklist" was replaced with "blocklist". By this change, names of some parameters and configuration file were changed #1111 #1144. This change will be migrated automatically during upgrading process.
  • MHonArc resource template mhonarc-ressources.tt2 was renamed to mhonarc_rc.tt2 and format of tags in it was changed. Existing customizations will be migrated automatically during upgrading process #1095.
  • Remove undocumented backtick syntax in sympa.conf #1086. If sympa.conf includes the parameter values enclosed in backticks (`...`), any programs of Sympa will abort.
  • Drop support for Perl prior to 5.16 #1030.

Fixed bugs:

  • [CVE-2020-26880] root privilege escalation from user sympa by modifying sympa.conf #1009.
  • xgettext.pl: Templates shouldn't be processed as Perl source #1143 #1149.

6.2.61b.2 (2021-04-05)

Full Changelog

Implemented enhancements:

  • Refactoring: Add shelve_personalization method #1070
  • Scenarios: Skip approval for owner subscription and unsubscription #1133

Fixed bugs:

  • DMARC protection: X-Original-DMARC-Record header field may break message #1113
  • Slow updates to lists (edit_list_conf cache not working) #1090

6.2.61b.1 (2021-02-18)

Full Changelog

Incompatible changes:

  • By a request from the user with English background, the term "blacklist" was replaced with "blocklist". By this change, names of some parameters and configuration file were changed #1111. This change will be migrated automatically during upgrading process.
  • MHonArc resource template mhonarc-ressources.tt2 was renamed to mhonarc_rc.tt2 and format of tags in it was changed. Existing customizations will be migrated during upgrading process #1095.
  • Remove undocumented backtick syntax in sympa.conf #1086.
  • Drop support for Perl prior to 5.16 #1030.

Implemented enhancements:

  • Replace 'blacklist' with 'blocklist' [#1111].
  • WWSympa: Make it clear that wwsympa_url needs to include the protocol #1115.
  • WWSympa: Add autocomplete="off" to all forms unless explicitly enabled #1114.
  • sympa.pl: Fix and speed up --make_alias_file command #1046.
  • Skip execution of aliases_program in newaliases script if value is "none" #1061.
  • WWSympa: Avoid nuisance messages using renewpasswd page #1076.
  • Improve labels for personalization control #1060.

Fixed bugs:

  • Protect web archive against spam harvesters: "only show gecos" doesn't seem to work #1107
  • Default configuration breaks web GUI post #1104.
  • bulk.pl daemon crashes if it failed to load private key #1110.
  • Upgrade process may fail searchkey_list value overflowing that column size #1053 #1106.

Merged pull requests:

  • Fix code duplication for merge/personalization feature #1063.

6.2.60 (2021-01-04)

Full Changelog

Incompatible changes (since 6.2.58):

  • The behaviour of the personalization / merge feature has been changed and may affect the processing of your emails. We strongly recommend to read the Upgrading notes if you have this feature enabled globally or for some lists.

Implemented enhancements:

  • Several options at installation and run time to get rid of setuid wrappers were introduced. See Upgrading notes for details.

Fixed bugs:

  • This release includes a security fix for [CVE-2020-29668] (Unauthorised full access via SOAP API due to illegal cookie). If you are running SOAP/HTTP interface (sympa_soap_sever.fcgi), upgrading is strongly recommended. See also Security Advisory for details.
  • Missing language on edit subscriber view #1048
  • Limit scope and permission of personalization (merge_feature) #1037 #1066
  • Log the reason for LDAP SSL connection error #596
  • Add proper exit code on errors to SOAP client script #1043 (racke)
  • Remove useless dkim_feature parameter in list config #1036

Merged pull requests:

  • Update AUTHORS.md #1065
  • Updating sympa_config(5) #1071

6.2.59b.2 (2020-12-07)

Full Changelog

Changes:

  • Personalization (formerly sometimes called "merge feature") is now restricted by default: It is enabled only when the message is posted via web interface, and is applied only on footer and header (if any). This behavior may be changed using personalization list parameter, however, listmasters are recommended to review whether wide range of conversion as previous versions is required. See also #1037.
  • Now the setuid wrappers may be disabled, if installation process allows. Packagers are encouraged to provide configuration not using setuid wrappers as possible. See also #943 and related issues/PRs.

Implemented enhancements:

Fixed bugs:

  • Unauthorised full access via SOAP API due to illegal cookie #1041
  • Missing language on edit subscriber view #1048
  • Personalization (merge_feature) should be limited #1037
  • ldap ssl connexion no error message #596
  • Add proper exit code on errors to SOAP client script. #1043 (racke)

Merged pull requests:

  • DKIM signing not working if dkim_feature in domain context was not enabled (#1036) #1050 (ikedas)

6.2.59b.1 (2020-11-25)

Full Changelog

Implemented enhancements:

  • Show subjects of archived mails before deletion’s confirmation #1025 (ldidry)

Fixed bugs:

  • Follow up to SA 2020-002 (CVE-2020-10936) #943:
    • Use alias wrapper only if it is really needed #946
    • Add option to ./configure which prevents installation of sympa_newaliases-wrapper #1031
  • MySQL: Upgrading fails due to stricter SQL mode #1028
  • 🐛 — Fix confirmation for reporting as spam while deleting an archived mail #1022 (ldidry)
  • Update a dependency MHonArc #1004 (ikedas)

Closed issues:

  • Regression in the FCGI wrapper for WWSympa #1020

6.2.58 (2020-10-20)

Full Changelog

Changes (since 6.2.56) :

  • No owner defined in a list is no longer treated as error_config. Instead, if no owner defined and something has to be sent to owners:
    • If possible, discard incoming message and send back DSN to original sender;
    • or, notifications to owners will be redirected to listmaster(s). See also #955.

Fixed bugs:

  • Upgrade to 6.2.57b.2 fails : dies in _load_include_admin_user_file() #1016
  • Oracle: 'ORA-00904: "EMAIL": invalid identifier' #1013
  • WWSympa: get_inactive_lists was not listing the current list owners/editors #1005 (salaun-urennes1)
  • Cannot include privileged owner from list even if it has to #969 [Additional fix]

Merged pull requests:

  • sympa_newaliases.pl: Removing ineffective command line options #1008

Closed issues:

  • Mail loop for sympa-request address #1018

6.2.57b.2 (2020-09-23)

Full Changelog

Implemented enhancements:

  • sympa.pl: Add an option "--rebuildarc=list@domain" to rebuild archives #994 (ldidry)

Fixed bugs:

  • Typo of default/mail_tt2/helpfile.tt2 #990
  • ARC::Signer died because of a malformed "Authentication-Results:" header field #988
  • CAS: logout_path does not work #986
  • Cannot include privileged owner from list even if it has to #969
  • Mail loop with sympa-request address because of misconfiguration #957
  • Update fr.po #979 (bikepunk)
  • Updating Sympa::List's POD #1001 (racke & ikedas)

Closed issues:

  • About the automatic start of Sympa #981

6.2.57b.1 (2020-07-25)

Full Changelog

Changes:

  • No owner defined in a list is no longer treated as error_config. Instead, if no owner defined and something has to be sent to owners:
    • If possible, discard incoming message and send back DSN to original sender;
    • or, notifications to owners will be redirected to listmaster(s). See also #955.

Implemented enhancements:

  • Deprecate implicit sync_include in Sympa::List constructor #955 (ikedas)

Fixed bugs:

  • Cannot include privileged owner from list even if it has to #969
  • Uunexpected error log "Unable to verify S/MIME signature" #963
  • "false" values in XML file prevent list creation #953
  • (Re)allow lists to only have owners from data sources #92
  • Every time users were loaded via include_sql_query Sympa would raise warnings #941 (salaun-urennes1)

Merged pull requests:

Closed issues:

  • Please wait.... infinite spinner #279

6.2.56 (2020-05-24)

Full Changelog

Changes (since 6.2.54) :

  • http_host parameter has been deprecated by the new wwsympa_url_local parameter #916 (ikedas). If you used http_host parameter, you possibly need removing it (See note).

Implemented enhancements:

  • configure: New options --disable-setuid_fcgi & --disable-setuid_queue not to install setuid wrappers #943
  • Sync_Include: Add a button to synchronize owners / moderators in Web interface #857
  • list index performance update for wwsympa.fcgi do_lists subroutine #925 (olivov) & (ikedas)
  • Improve logging of archive errors due to possible permission problems #908 (racke)
  • Data sources: remote file/remote list: Log description of certificate of the peer #897 (ikedas)

Fixed bugs:

  • [SA 2020-002] Security flaws in setuid wrappers #943
  • Sync include from commandline oblivious of errors #907
  • ldap_2level_query "select2 all" is returning only one result #893
  • t/Tools_Text.t test failing in Sympa 6.2.54 #892
  • File names in URLized parts are incorrect #889
  • Multiple component wwsympa_url with mod_proxy_fcgi is broken #879. Fixed as the request URI will be split into SCRIPT_NAME and PATH_INFO by Sympa itself.
  • Scenario: Prevent crashing by fatal error in syntax of regexp #860
  • Cannot remove owners/editors when their external data source as removed #858
  • After login, the last content (image), not always the last page, is shown #580
  • Typos in set_index() of some DatabaseDriver classes. #936 (ikedas)
  • Two fixes related to list families #933 (salaun-urennes1)
  • Fix missing content for listmaster admin template edits in the web interface #921 (racke)
  • spam_protection list paramter did not derive its default from robot/site config #915 (ikedas)
  • Fix logging of open file error in constructor of Sympa::Config_XML. #906 (racke)
  • Some bugs related to urlize mode #900 (ikedas)
  • URLize: Use filesystem-independent escaping for names of files stored #891 (ikedas)
  • Update bug tracker url in serveradmin section. #884 (racke)

Closed issues:

  • The translation server is down (nginx problem) #855

6.2.54 (2020-02-24)

Full Changelog

Changes (since 6.2.52) :

Implemented enhancements:

  • Prevent welcome emails on import with --quiet. #851 (racke)

Fixed bugs:

  • [SA 2020-001] Security flaws in CSRF prevension #886
  • Death of the wwsympa process bug #876
  • Spurious errors for PGP/MIME multipart/signed messages #867
  • WWSympa: review: Unable to sort by "Sources" column in subscriber list #866
  • Bugs in scenario processing #849 #846 #845 #844 #841
  • Data source: File: gecos was ignored #873 (ikedas)
  • Urlize mode bug fixes #840 (dverdin) #871 (ikedas)

Merged pull requests:

6.2.52 (2019-12-27)

Full Changelog

Fixed bugs:

  • Scenario : error-performing-condition #831

6.2.50 (2019-12-22)

Full Changelog

Changes (since 6.2.48) :

  • Some scenarios and list creation templates for "intranet" use cases were made optional: They have been moved into samples/ #119. See also "upgrading notes" for details.

Merged pull requests:

6.2.49b.3 (2019-12-15)

Full Changelog

Fixed bugs:

  • sympa.conf-dist comments format is not supported by Conf::_load_config_file_to_hash() #822
  • sympa_msg.pl: Rejection reports are suppressed #820

6.2.49b.2 (2019-12-03)

Full Changelog

Fixed bugs:

  • Bugs injected by previous release #815, #813

Merged pull requests:

  • Updating dependency Test::Pod #811 (ikedas)
  • Demote Sympa::List debug messages when invoking constructor and load method #810 (racke)

6.2.49b.1 (2019-11-23)

Full Changelog

Changes:

  • Some scenarios and list creation templates for "intranet" use cases were made optional: They have been moved into samples/ #119.

Implemented enhancements:

  • Message distribution: Unexpected number of sessions regarding nrcpt and avg values #604
  • Message plugin: Prevent Sympa daemon crash due to a broken plugin module. #807 (racke)
  • sympa.pl: Add option to notify lists’ owners when opening lists from command line #790 (ldidry)
  • Scenario: Enhancements on scenarios #782 (ikedas)

Fixed bugs:

  • Missing dkim authentication method in several scenario files #775, #803
  • No "Date:" header field in messages posted directly from the sympa web site #791
  • Data source: LDAP / LDAP 2 level datasource not returning results #785
  • LDAP auth crash / task_manager.pl crash due to lack of IPv6 support #784
  • DMARC settings seemingly not working as described in documentation #783
  • Archive directories of any lists may be created even if archive is unavailable, or Sympa may crash #736
  • Prevent warning caused by empty description in XML list definition file. #802 (racke)

Merged pull requests:

  • Various improvements to --sync-include output #787 (racke)
  • Test: Supports recent version of Test::Compile #772 (ikedas)
  • Refactor family #771 (ikedas)
  • Update gettext support bundled in the source distribution #757 (ikedas)

6.2.48 (2019-09-29)

Full Changelog

Changes (since 6.2.44) :

  • Perl: From now on, Perl earlier than 5.10.1 will never be supported #620.
  • Data sources: Codebase has entirely been rewritten. Some behavior will be changed #693.

Implemented enhancements:

  • Drop support for Perl 5.8.x #620.
  • Improving data sources #693.
  • Rename some modules for spool-like objects #608

Fixed bugs:

  • Error message "Use of uninitialized value $2" while instancing family lists #749
  • Robot verification for --make_alias_file command line option #746
  • Pending lists not clearly shown as "pending" in the web GUI #738
  • WWSympa: viewlogs: selected type of action is not preserved #742 (ikedas)
  • Fix errors "Can't use an undefined value as an ARRAY reference" while running sympa.pl --modify_list #741 (salaun-urennes1)
  • Improving data sources #693.

Closed issues:

  • Translation server certificate is expired #734

Merged pull requests:

  • Remove last traces of VOOT support. #747 (racke)

6.2.46 (2019-09-23)

Withdrawn.

6.2.45b.3 (2019-08-23)

Full Changelog

Implemented enhancements:

  • Handle pending lists with sympa.pl #637

Fixed bugs:

  • Request date for renamed lists #720
  • mail_tt2/moderate.tt2 : mailto: links intermittantly line wrapped #709
  • Attachment with long filename can break list archives #699
  • 6.2.44 Cannot delete a moderator/owner #698
  • Text wrapping consumes large amount of memory. #722 (ikedas)
  • WWSympa: send_mail: Restrict MIME content type of uploaded HTML text (#716) #721 (ikedas)

Closed issues:

  • Autodetect MIME type of uploaded message files? #716

Merged pull requests:

6.2.45b.2 (2019-07-27)

Full Changelog

Fixed bugs:

  • Fix crash of RC4 encrypted password notice. #706 (racke)

Merged pull requests:

6.2.45b.1 (2019-07-20)

Full Changelog

Changes:

  • Perl: From now on, Perl earlier than 5.10.1 will never be supported #620.
  • Data sources: Codebase has entirely been rewritten. Some behavior will be changed #693.

Implemented enhancements:

  • Make it clear that a list is being moderated #636
  • Add « report as spam » button in archives #634
  • Make it clear on web interface that a list is being moderated #638 (ldidry)

Fixed bugs:

  • stats page generates entries in Apache error log #700
  • web_tt2/info.tt2 generates some noise in Apache error log #688
  • Death of the task_manager process #681
  • Error in web_tt2/subindex.tt2 #673
  • DMARC protection: "p" tag was not applied to subdomains #654
  • Missing path after installation #274
  • mtime of files like .last_change.admin were not updated #671 (ikedas)

Merged pull requests:

Full Changelog

Changes (since 6.2.42) :

  • Indentation of web templates are corrected #582, #592. Though this change will not affect functionality, administrators might have to apply their customization to the new templates again.
  • WWSympa: TLS client authentication: Now it gets rfc822Name in X.509v3 subjectAltName, otherwise emailAddress attribute in subject DN #571. Note that earlier efforts getting attribute such as MAIL, Email in subject DN are no longer supported.
  • ARC: Now Mail-DKIM 0.55 or better is required for ARC support.
  • WWSympa: Admin function to bulk unsubscribe which has been provided by 6.1.x was restored #27.

Fixed bugs:

  • "Use of uninitialized value $salt" on --import #656
  • Improve handling of missing sympa/web_tt2 during upgrade #652

Merged pull requests:

  • Support Test::Compile 2.0.0 #664 (ikedas)
  • Remove all unneeded files from foundation-icons directory #649 (xavierba)

Full Changelog

Implemented enhancements:

  • Hide full email addresses in archives #621
  • Add a button for full export of subscribers #616 (ldidry)
  • Prevent unnecessary DB access in add_list_member #615 (seblgr)
  • Regression from 6.1: Missing admin function to bulk unsubscribe #27

Fixed bugs:

  • Exception when attempting to add myself to list after Shibboleth authentication #641
  • Archive not found when list renamed with capital letter #624
  • Edit message header/footer template links lost in 6.2.42? #622
  • Improving handling of boilerplate configuration #609
  • Extra space at the end of line in topics.conf #581
  • Spurious MHonArc Search warnings for undefined search parameters #613
  • Regression from 6.1: Missing admin function to bulk unsubscribe #27

Full Changelog

Changes:

  • Indentation of web templates are corrected #582, #592. Though this change will not affect functionality, administrators might have to apply their customization to the new templates again.
  • WWSympa: TLS client authentication: Now it gets rfc822Name in X.509v3 subjectAltName, otherwise emailAddress attribute in subject DN #571. Note that earlier efforts getting attribute such as MAIL, Email in subject DN are no longer supported.
  • ARC: Now Mail-DKIM 0.55 or better is required for ARC support.

Implemented enhancements:

  • Indentation of web templates are corrected #582 (ldidry), #592 (ikedas)
  • Successive config files inconsistency #31
  • Add sympa.conf-dist #595 (ldidry)
  • WWSympa: TLS client authentication: Get email from certificate according to S/MIME #571 (ikedas)

Fixed bugs:

  • Upgrading from 6.2.40 to 6.2.42 may break sympa.conf/robot.conf #578
  • No log entry when message is rejected via email #548
  • Sympa::Aliases::Template creates exclusive lock on local storage #593, #602 (ikedas)
  • Sympa::Scenario::new() was unable to load scenario filename including dots #589 (salaun-urennes1)
  • dkim_sign: Normalize CRLF->LF for DKIM-Signature #588 (zmousm)
  • Slight change in list admins cache expiry. #583 (dverdin)
  • ARC: Comment in Authentication-Results field prevents check on srvid (See #575) #585 (ikedas)

Closed issues:

  • failed_to_create_web_session #612

6.2.42 (2019-03-20)

Full Changelog

Changes (since 6.2.40) :

  • Built-in authantication: RC4 reversible encryption of password storage in database was dropped #87. To rehash encrypted passwords, see "Upgrading notes"
  • Format of session cookie was changed #87. Session cookies generated with earlier releases will be invalidated.
  • Authorization schearios: The "default" scenario files named *.default (regular file or symbolic link) are no longer available #528 #540. See also "Upgrading notes".
  • Files for message footer and header were renamed to message_footer and message_header #507.
  • WWSympa: LDAP authentication will no longer perform search operation twice #453. Now it retrieves entry for the user by a search operation at once, then checks if account is available by a bind operation.
  • WWSympa: Feature of sympa_altemails cookie was removed #487. alternative_email_attribute parameter in auth.conf was deprecated.
  • Primary auth.conf, crawlers_detection.conf and trusted_applications.conf will be used by non-primary domains by default #432. Previously primary ones were omitted.

Implemented enhancements:

Fixed bugs:

  • SSO session refresh won't reset WWSympa's session #560

6.2.41b.2 (2019-03-09)

Full Changelog

Changes:

  • Built-in authantication: RC4 reversible encryption of password storage in database was dropped #87.
  • Format of session cookie was changed #87. Session cookies generated with earlier releases will be invalidated.

Implemented enhancements:

  • Password encryption: Dropping Crypt::CipherSaber #87
  • WWSympa: Features of archives and shared repository should be able to be disabled #555 (ikedas)

Fixed bugs:

  • S/MIME: 'setPublicKey' dies on broken cert, causes spindle to resend mails indefinitely #565
  • import.tt2: non-working line break in tooltip #562
  • Upgrade: Exclusion robot could not be guessed for user #546
  • Scenario: Confusion between parameter name and function name #520
  • Password has to be reset after logging out #167
  • sympa_test_ldap.pl misses bind password #558 (ikedas)
  • bounce_email_prefix parameter was not considered to prevent reserved addrresses for list name (PR#455) #552 (ikedas)

Merged pull requests:

  • Additional removal of code to kill VOOT support. #553 (ikedas)
  • Kill VOOT support #550 (xavierba)
  • Prepare minimal sympa.conf at install time (cf. #508) #547 (ikedas)
  • Maintenance support scripts (2) #544 (ikedas)

6.2.41b.1 (2019-02-02)

Full Changelog

Changes:

  • Authorization schearios: The "default" scenario files named *.default (regular file or symbolic link) are no longer available #528 #540. See also "Upgrading notes".
  • Files for message footer and header were renamed to message_footer and message_header #507.
  • WWSympa: LDAP authentication will no longer perform search operation twice #453. Now it retrieves entry for the user by a search operation at once, then checks if account is available by a bind operation.
  • WWSympa: Feature of sympa_altemails cookie was removed #487. alternative_email_attribute parameter in auth.conf was deprecated.
  • Primary auth.conf, crawlers_detection.conf and trusted_applications.conf will be used by non-primary domains by default #432. Previously primary ones were omitted.

Implemented enhancements:

  • Feature request: a "delete my account" button #300
  • Add a global 'quiet_subscription' setting which enforce the "quiet add" policy #503
  • WWSympa: Deprecate 'sympa_altemails' cookie #487
  • LDAP authentication no longer requires the second search operation with user DN #453
  • Feature request: domains blacklist #295 #537 (ldidry)
  • Weaken sympa and wwsympa/sympa soap link #525 (xavierba)

Fixed bugs:

  • Inconsistent location of messge footer/header files #507
  • Issue with the message sent to owners to allow unsubscribing #469
  • deleting subscribers with empty user selection #408
  • WWSympa: Owners/moderators in list panel aren't updated #543 (ikedas)
  • Owner page is empty #541 (ikedas)
  • Mail command unavailable in confirmation requests #534 (ikedas)
  • Invalid default scenarios #528 #540 (ikedas)
  • WWSympa: Deprecate sympa_altemails cookie #487
  • Primary auth.conf won't be used by robots #432
  • sympa.pl --upgrade_config_location doesn't respect configured user/group #519 (ikedas)
  • A scalar parameter in list config without value is warned #515 (ikedas)
  • make distcheck fails #510 (ikedas)

Closed issues:

  • parameter owner in sympa config file not considered by sympa 6.2.38 #530
  • Domain blacklist #523

Merged pull requests:

6.2.40 (2019-01-19)

Full Changelog

Fixed bugs:

  • Public archives not available with sympa-6.2.38 #527

6.2.38 (2018-12-21)

Full Changelog

Changes (since 6.2.36):

  • Tasks: Task files will be put in tasks subdirectory. Previously they were put in global_task_models or list_task_models subdirectory #394. Older task files will be automatically copied to new places during upgrading process.
  • Oracle Database: There is a change on usage of db_host parameter #431. See "Upgrading notes" and instruction for details.
  • WWSympa: Login form was refactored #424. Some templates including web_tt2/login.tt2 and web_tt2/login_menu.tt2 were changed.
  • Now the lists with bounce addresses can not be created #455. Addresses with local part "bounce" or prefix "bounce+" are used for bounce management and should not be used as list addresses.

Implemented enhancements:

  • Feature request: add a "global" mail signature #301
  • Adding ARC support #153

Fixed bugs:

  • Long email addresses in system messages might be folded #502
  • Moderation process on the lists with obsoleted parameter host fails #277
  • File extension may contain spaces by using gettext_strftime() #506 (ikedas)
  • WWSympa: Loading home page takes long time #504 (ikedas)
  • WWSympa: Older CSS files would be cleared #498 (ikedas)

Closed issues:

  • Bug in logic. Password is in md5 format, not rehashing #489

Merged pull requests:

6.2.37b.3 (2018-12-08)

Full Changelog

Implemented enhancements:

  • Add token to prevent CSRF #492 (racke) #493 (ikedas)
  • Added a --copy_list parameter in the sympa.pl command #470
  • Feature: add a "report abuse" button on lists info page #323

Fixed bugs:

  • Crash in create_list_request when list name is missing #490
  • member dn fetched from first ldap_2level request are not exactly the same of the second ldap request #474
  • Template parsing problems in parameterizable data sources #461
  • Owners et editors dont get imported from config files while upgrading to 6.2.36 #459
  • Family updates don't propagates owners/editors changes in the database #309
  • Prevent warning on undefined salt variable. #488 (racke)
  • Fix shared docs zip upload to send multiple files at once #482 (ldidry)
  • Broken custom_attribute field in member.dump #480 (ikedas)
  • Fix missing quotes in init script #479 (rseichter)
  • WWSympa: Suppress verbose log on cookie #464 (ikedas)

Merged pull requests:

  • Fix code tidying #486 (ldidry)
  • Add files produced by patch to Git exclusion list. #485 (racke)

6.2.37b.2 (2018-11-03)

Full Changelog

Changes:

  • Tasks: Task files will be put in tasks subdirectory. Previously they were put in global_task_models or list_task_models subdirectory #394. Older task files will be automatically copied to new places during upgrading process.
  • Oracle Database: There is a change on usage of db_host parameter #431. See "Upgrading notes" for details.
  • WWSympa: Login form was refactored #424. Some templates including web_tt2/login.tt2 and web_tt2/login_menu.tt2 were changed.

Implemented enhancements:

  • Optimization of web GUI / adding an index on prev_id_session DB field #451
  • Exim's bounce text changed - need to update ProcessBounce.pm #448
  • Make third person singular pronouns gender neutral #443 (ecawthon)
  • Use tidyall to ease tidying files #440 (ldidry)
  • Add support for TLSv1.3 #439 (ikedas)
  • Oracle: Make db_name parameter allow net service name or connection identifier along with SID #431 (ikedas)
  • Refactoring task_manager.pl #394 (ikedas)

Fixed bugs:

  • Sympa 6.2.36: Crash of web interface when editing list moderators #456
  • Database: family_exclusion field can break not_null constraint during upgrade #442
  • pod2man: unable to format list_config.pod #435
  • Base class package "Class::Singleton" is empty #434
  • The lists with "bounce" addresses should not be created #455 (ikedas)
  • Moving/copying a list, existing list may be overwritten #454 (ikedas)
  • Add support for TLSv1.3 #439 (ikedas)
  • CSS cannot be updated if css.tt2 was older than previously generated CSS. #427 (ikedas)
  • Refactoring and repairing login form #424 (ikedas)

Closed issues:

  • The translation server is completely unreliable #449
  • Change of case in original strings in the translation site does not result in warnings for translated languages #374

Merged pull requests:

6.2.37b.1 (2018-10-06)

Full Changelog

Implemented enhancements:

  • Adding ARC support #153 --- Under beta testing

Fixed bugs:

  • Error escaping apostrophe on stats page #428
  • Create ${expldir}/${robot} directory if it does not exists #421 (k0lter)

Closed issues:

  • DMARC and Reply-to munging #224

Merged pull requests:

6.2.36 (2018-09-23)

Full Changelog

Changes (since 6.2.34):

  • Scenarios: subscribe.* and unsubscribe.* were modified. Now authentication by target user is required when an anonymous/other user requested these actions #390. Previously, if "open" scenario was used, an anonymous user on web interface could add subscriber without confirmation.
  • WWSympa: Home-made color picker in CSS configuration page was replaced with external plugin jQuery MiniColors #369.
  • WWSympa: referer and failure_referer parameters fed to login form (see documentation for details) are limited within scope of cookie_domain parameter value to prevent XSS / open redirect #268.
  • WWSympa: HTMLArea is no longer supported #416.
  • Configure script: Default value of --with-lockdir option became /var/lock/subsys not according to localstatedir #403.
  • Systemd support: Some unit files generated by source package were renamed: wwsympa.service and sympasoap.service #406.
  • Database: Sybase (Adaptive Server Enterprise) is no longer supported #147. It is reported that none uses it.

Implemented enhancements:

  • Update startup scripts #406 (ikedas)
  • Domain without available wwsympa_url parameter should deny web access #405 (ikedas)
  • Let the default of --with-lockdir be /var/lock/subsys always #403 (ikedas)

Fixed bugs:

  • DKIM per-list options not saved #412
  • Merge_feature active and attached file with special characters #409
  • Error in the name of a function in wwsympa.fcgi #404
  • Internal Server Error: Can't locate object method "_marshal_format" in Spool.pm (71) #401
  • Rename a list takes incredible time #368
  • Avoid "subscribe spam" #302
  • XSS and open redirect on login form, CVE-2018-1000671 #268
  • Update startup scripts #406 (ikedas)

Closed issues:

  • create_db.Sybase still useful ? #147
  • Issues with sending mails using special French characters #178

Merged pull requests:

6.2.35b.1 (2018-08-26)

Full Changelog

Changes:

  • Scenarios subscribe.* and unsubscribe.*: Now authentication by target user is required when anonymous/other user requested these actions #390. Previously, if "open" scenario was used, an anonymous user on web interface could add subscriber without confirmation.
  • WWSympa: Home-made color picker in CSS configuration page was replaced with external plugin jQuery MiniColors #369.

Implemented enhancements:

  • Accept multiple attributes in include_ldap_ca.attrs #400 (almarin)
  • Notify user that they already subscribed to a list #386
  • Don't show Autocrypt headers in web archive #316
  • --open_list command line option #62
  • Improve performance of purge operation #377 (cgx)
  • Introducing external js color picker plugin #369 (ikedas)

Fixed bugs:

  • Accept multiple attributes in include_ldap_ca.attrs #400 (almarin)
  • sympa.pl --change_user_email no longer working with 6.2.34 #389
  • Lost owners on list copy #384
  • Sympa sysv init script not LSB compiliant #376
  • Error on closing a list that was already closed from command line #372
  • Unable to close a list via SOAP client #339
  • Prevent the use of the list address as owner or moderator #297
  • 6.2.34 owner_domain fixes #393 (mpkut)
  • List.pm: ensure uniqueness when adding to source id list #392 (mpkut)
  • WWSympa: Rendering bug with IE #380 (ikedas)
  • Styles for help contents are broken. #379 (ikedas)
  • Fix SQL query to fetch all lists of a family #367 (cgx)
  • Fix do_search_list sub to trim leading/trailig whitespace #387 (olivov)

Closed issues:

  • sympa.js bundles part of MochiKit #334
  • Unable to import a large file of e-mails to a maillist using wwsympa #177

Merged pull requests:

  • Avoid rehashing user password hashes in {add,update}_global_user() #398 (mpkut)
  • Add copyright notice to sympa.js #320 #396 (xavierba)
  • Rename a list takes incredible time #368 #388 (ikedas)

6.2.34 (2018-07-05)

Full Changelog

Changes:

  • cpanfile to manage depencency modules was introduced #355. ModDef.pm was deprecated.
  • Directory organization under static_content directory was changed #220.
  • WWSympa: UI framework was switched to Foundation Sites 6 #170. Appearances of web interface were slightly changed, and several web templates were changed much.
  • WWSympa: wwsympa_url parameter became optional #330. Conversely, if this parameter was not specified in robot.conf, web interface will be disabled for that domain. Existing configuration will be automatically fixed during upgrading process.
  • sympa.conf.bin and robot.conf.bin will no longer be created/updated #284. They were not used anyway. config.bin for list config will still be available.
  • List parameter host was deprecated #43. If you were using it, you should check alias files: See "Upgrading notes" for details.
  • Owners and moderators are no longer stored in list config file: They are stored only in database #49.
    • New pages to configure them were added to web interface #275.
    • New functions --dump_users and --restore_users to dump and restore users in database were added to sympa.pl command line utility #232 #267.
    • List creation templates will not need modification. However, if you were creating lists not using those templates, i.e. creating list directories and necessary files manually, you may also have to create dump files (See "Dump files" for details).

Implemented enhancements:

Fixed bugs:

Merged pull requests:

  • Refactor config pages (not a bug) #354 (ikedas)
  • Tidy up all files #353 (ldidry)
  • Remove tabs in default tt2 templates + some indentation changes #352 (ldidry)
  • SympaSOAP: closeList crashes. #349 (ikedas)

6.2.33b.2 (2018-06-21)

Full Changelog

Changes:

  • WWSympa: UI framework was switched to Foundation Sites 6 #170. Appearances of web interface were slightly changed, and several web templates were changed much.
  • sympa.conf.bin and robot.conf.bin will no longer be created/updated #284 (ikedas). They were not used anyway. config.bin for list config will still be available.

Implemented enhancements:

  • Update help: GDPR #276
  • static_content directory structure #220
  • WWSympa: Switch to Foundation 6 #170
  • WWSympa: wwsympa_url would be optional #330 (ikedas)

Fixed bugs:

  • ERROR (search) - Missing argument filter #341
  • Family updates don't propagates owners/editors changes in the database #309
  • PostgreSQL: Issues related to utf8 flag #305
  • Both send.confidential and send.private scenari files use the same gettext text #175
  • fix misspellings #338 (taggart)
  • Support for spam reporting in bulk. Moved the bulk moderation controls. #332 (sivertkh)
  • Remove superfluous sort from dup_var function. #324 (racke)
  • Binary cache files for sympa.conf/rebot.conf are useless #284 (ikedas)

Closed issues:

  • Request: notify translators when new strings are available #333
  • HTML signature with Unicode characters generates 'rejected_authorization' error #181

Merged pull requests:

6.2.33b.1 (2018-05-03)

Full Changelog

Changes:

  • List parameter "host" was deprecated #43.
  • Owners and moderators are no longer stored in list config file: They are stored only in database #49. New pages to configure them are added to web interface #275 (ikedas).

Implemented enhancements:

  • Add support for the subscribers.db.dump format in sympa.pl #232

Fixed bugs:

  • Error message is missing one parameter #263
  • Erroneous typing in templates #266
  • cookie parameter protection #243
  • Spurious error on duplicate keys with admin sync #11

Merged pull requests:

6.2.32 (2018-04-19)

Full Changelog

Implemented enhancements:

  • Updates for bcrypt support #238 (mpkut)
  • Duplicate precedence header tripping up Amazon SES #110

Fixed bugs:

  • 2018-001 Security breaches in template editing [c791843]
  • sympa_soap_client: bug in logic #244
  • Sympa ldap search escapes chars incorrect #234
  • Anyone can unsubscribe a member of a list with open scenario #233

6.2.30 (2018-03-26)

Full Changelog

Fixed bugs:

  • PostgreSQL: Unable to edit owners/subscribers with 6.2.26 and 6.2.28 #240

6.2.28 (2018-03-22)

Full Changelog

Fixed bugs:

  • Date in 'subscriber option' in epoch format #230

6.2.26 (2018-03-20)

Withdrawn.

6.2.25b.3 (2018-03-13)

Full Changelog

Changes:

  • Parameters to specify location of CSS and subscriber pictures were introduced #172. If you have specified --with-staticdir configure option or static_content_path/static_content_url parameter, you may have to fix up. See Upgrading notes for details.
  • css_url and css_path parameters in robot.conf are no longer available: Those in sympa.conf are used #172. Also see notes above.
  • access_web_archive.* scenarios are renamed to archive_web_access.* #216. If you have customized any of these scenarios, you have to rename them under config directory.
  • Web interface: If a user try to access info page of list, they will be silently redirected to home page, both when access is restricted and when list does not exist #193. This behavior is intended not to expose existence of lists.

Implemented enhancements:

  • Location of static_content and css directories #172
  • Feature: support for Bcrypt password hashes #225 (mpkut)

Fixed bugs:

  • Unify scenario names #216
  • Rejection message returned when suscribing to a list restricted info access #193

Merged pull requests:

  • Deprecate datetime field type in database #223 (ikedas)

6.2.25b.2 (2018-03-05)

Full Changelog

Changes:

  • Parameters to specify location of CSS and subscriber pictures were introduced #172. If you have specified --with-staticdir configure option or static_content_path parameter, you may have to fix up. See Upgrading notes for details.

  • smtpc (sympa_smtpc) is no longer bundled. It was moved to an independent repository #201.

  • On 6.2.28 (the next of next stable), it is planned that "host" list parameter will be deprecated #43. Notice may be shown during upgrading process.

Implemented enhancements:

  • Location of static_content and css directories #172

Fixed bugs:

  • Notification not sent to the owner when a list is confirmed by a listmaster #212
  • Firefox freezes on "Edit robot config" page #206
  • Language test fails #195
  • Change bundled Raleway font from TTF to OTF #190
  • Sending an html page to the list from URL doesn't work on 6.2.18 #44

Closed issues:

  • opensmtpd setup documentation #32

Merged pull requests:

  • Add Language.t to list of tests for Travis. #209 (racke)
  • Use standard 644 perms for $sysconfdir/README #203 (xavierba)
  • Issue #43: Preliminary notice on abolishment of "host" list parameter. #202 (ikedas)

6.2.25b.1 (2018-02-12)

Full Changelog

Implemented enhancements:

  • Restore default_ttl parameter #145
  • moderation UI doesn't allow mass operations #122

Fixed bugs:

  • Hardcoded max picture size in picture_upload.tt2 #180
  • Synchronize members with data source and task manager crash randomly #166
  • there is a 'f' missing in a print function #159
  • $localstatedir/sympa/static_content/css directory not created at install time #148
  • Create $staticdir/pictures directory #189 (xavierba)
  • "libexecdir" is misleadingly used instead of "execcgidir" #165 (ikedas)
  • WWSympa: Redirect without Status field may bring to empty page #164 (ikedas)
  • Inconsistencies in implementation and documentation of typical list profile (create list templates) #157 (ikedas)

Closed issues:

  • RAM consumption is too damn high #24

Merged pull requests:

  • Update bundled Raleway font with OTF flavour #191 (xavierba)

6.2.24 (2017-12-21)

Full Changelog

Fixed bugs:

  • Bundled jquery-ui library is vulnerable to an XSS #78
  • Editing Moderators Requires Restart to Take Effect #7

Closed issues:

  • Notify owner's list when a non-member sends on a mailing list #142

6.2.23b.3 (2017-12-14)

Full Changelog

Changes:

  • If ca_file and ca_path parameters are not specified, CA certificate stores defined by OpenSSL on each system will be used. Previously no certificate stores were not chosen in such case. #116
  • The "html" reception mode was deprecated. Now it became just a synonym of "mail" (normal) reception mode. #125

Implemented enhancements:

  • Feature: optionally restrict list ownership to specific domains (owner_domain) #131 (mpkut)

Fixed bugs:

  • Cosmetic issue in error message with ldap driver #132
  • No attach recived from mailing list where subscribes are set hmtl-only mode option #125
  • default/ca-bundle.crt is outdated #116
  • Characters in pages are garbled (get "mojibake") with Perl 5.22.0 or later #134 (ikedas)

Merged pull requests:

6.2.23b.2 (2017-11-30)

Full Changelog

Fixed bugs:

  • Perl dies when changing priveleged list owners via web interface #37
  • Fix listname typo #121 (jean1)

Merged pull requests:

  • Before rebuilding admin_table, won't clear it #71 #130 (ikedas)
  • Remove outdated ca-bundle.crt and use system default #116 #129 (ikedas)
  • Remove "html" reception mode #125 #127 (ikedas)

Closed issues:

  • version 6.2.22, problem with virtual hosts #106
  • Database connections not being closed #6

6.2.23b.1 (2017-11-20)

Full Changelog

Changes:

  • "%" sign in SQL data source no longer need escaping by duplicating it, i.e. "%%". Administrators on the sites allowing SQL datasources are recommended to check datasource settings and modify them as necessity. #66
  • WWSympa: FastCGI support became mandatory. CGI mode was deprecated. #69
  • important_changes.pl in source distribution was removed. Notable changes will no longer be noticed during building process. #73
  • sympa.spec and META.json will no longer be bundled in source distribution. #77
  • Bundled jQuery libraries were upgraded to jquery 3.2.1, jquery-migrate 3.0.1 and jquery-ui 1.12.1 to avoid XSS vulnerability. #78
  • Now topics.conf treats topic names ignoring cases. Previously names including uppercase letters were ignored. #91
  • alias_manager.pl was obsoleted. Alias files will be updated by internal module directly. Though alias_manager.pl is still available for backward compatibility, it will be removed in the future. #118
  • Several typos and bad wordings in English translation catalog were corrected. Some phrases in default templates, scenarios and tasks were changed. [1e2e094]

Implemented enhancements:

  • Refactoring alias manager: Obsolete alias_manager.pl #118 (ikedas)
  • Suppress saving stats file, and solve problem about on-memory cache #105 (ikedas)
  • Cache list info in Sympa::Scenario::verify to reduce overhead of pinfo… #97 (mpkut)
  • Feature: add scenari to restrict message submission to list owners #96 (mpkut)
  • Add use_tls, ssl, version etc to valid LDAP options in Scenario.pm #95 (mpkut)
  • When fallback language "en" is used, use "en_US" translation catalog #84 (ikedas)
  • Refactoring requests more #81 (ikedas)

Fixed bugs:

  • Archived-At: field on resent messages in archive are wrong. #111
  • Review.tt2 button correction. #98
  • Change redirect after incorrect choosepasswd - UX suggestion #93
  • Topic names in topics.conf with uppercase are ignored #91
  • Fix ridiculous English spelling for spam protection button #80
  • Change Redirect After List Admin Updates a User's Email - UX Suggestion #76
  • important_changes.pl is broken #73
  • Log list not sorted for date #70
  • include_ldap_query and include_ldap_2level_query behaving differently #63
  • Responsive table breaks form submission #61
  • Changes on POD format for transition to Markdown #123 (ikedas)
  • Insignificant bugs related to cache #120 (ikedas)
  • Refactoring alias manager: Obsolete alias_manager.pl #118 (ikedas)
  • Refactoring requests 5 #109 (ikedas)
  • Suppress saving stats file, and solve problem about on-memory cache #105 (ikedas)
  • Old variable names used in listmaster error mail #104 (sivertkh)
  • Fix CSS attributes for un-hovered navigation menu items using color_5 #94 (mpkut)
  • Bugs on subscribe request with custom attributes and/or authorization #89 (ikedas)
  • Refactoring requests more #81 (ikedas)
  • "%" sign in SQL data source would be escaped #66 (ikedas)

6.2.22 (2017-10-01)

Full Changelog

Fixed bugs:

  • "sympa.pl --change_user_email" was broken #65 (ikedas)

  • upgrade_send_spool.pl could leave some messages not upgraded [diff]

6.2.20 (2017-09-22)

Full Changelog

Changes:

Fixed bugs:

  • Button label confusing on form to send HTML page #54
  • Text change / typo fix in change_email_request template #52
  • smtpc build warnings #50
  • Sympa doesn't log DBI error on connect #34
  • Internal server error in WebUI when email has removed from list #28
  • Missing Function "action_change_email" on serveradmin.tt2 #25
  • Bounced crash - missing Encode::HanExtra #8
  • FCGI scripts will not always restart when they are updated #58 (ikedas)

Closed issues:

  • MHonArc depedency not detected #59

Merged pull requests:

  • Issue #25: move_user function was broken #55 (ikedas)
  • Issue #37: WWSympa/edit_list: Removing owner may cause crash. #38 (ikedas)

6.2.19b.2 (2017-09-10)

Full Changelog

Implemented enhancements:

  • Additional bug fixes and enhancements for PR #45 #48 (ikedas)
  • Activating options in XSS Parser #45 (almarin)

Fixed bugs:

  • smtpc build warnings #50
  • Additional bug fixes and enhancements for PR \#45 #48 (ikedas)
  • [bug] Upgrading from Sympa prior to 6.2b.5, digest spool could not be upgraded [8c2b5dd]

Closed issues:

  • Language change won't affect, 6.2.18 #46
  • SMIME digital signatures in HTML formatted emails show tampering #16

Merged pull requests:

  • Issue #25: move_user function was broken #55 (ikedas)

6.2.19b.1 (2017-08-21)

Full Changelog

Changes

  • WWSympa: The "change_email" function deprecated by 6.2 was restored as "move_user". Check Listmaster Admin Menu (serveradmin) and User preferences (pref) pages.

Implemented enhancements:

  • Make "http_host" parameter optional #36 (ikedas)
  • WWSympa: Improving "add", "del" etc. functions. Adding "import" function #30 (ikedas)
  • WWSympa: Improving subscribe, signoff and auth functions #26 (ikedas)

Fixed bugs:

  • sympa_msg: uninitialized value #40
  • Sympa 6.2.16 - Unsubscribe Does Not Work #29
  • Update smtpc to 0.2: A bug fix and a change #42 (ikedas)
  • Several errors by "make install" #39 (ikedas)
  • WWSympa: Improving "add", "del" etc. functions. Adding "import" function #30 (ikedas)
  • WWSympa: Improving subscribe, signoff and auth functions #26 (ikedas)

Merged pull requests:

  • Issue #40: Warning on uninitialized value during delivery to the list #41 (ikedas)
  • Add DBI error string to error message "Can't connect to Database" #35 (racke)
  • Issue #25: Restoring the function to change an email over all lists #33 (ikedas)

6.2.18 (2017-06-25)

Full Changelog

Changes:

  • Moving INSTALL to INSTALL.md and slightly updating content. [506c435]
  • Added euskara (Basque) and galego (Galician) to default of supported languages (supported_lang). [ff700f7]

Closed issues:

  • Version number for next stable release #21

6.2.17b.2 (2017-06-15)

Full Changelog

Changes:

  • Renaming Norwegian translation catalogs: Dropping region suffix "_NO" to be "nb" and "nn". [999ae07]
  • [change] Translation site and feedback contact have moved. [c044e96]

Fixed bugs:

  • include_ldap_query parameter attrs not valid (6.2.17b1) #22
  • Editing Moderators Requires Restart to Take Effect #7
  • Editor should always be translated to Modérateur in fr #19 (jcdelepine)
  • Fixed bugs on Debian Project (see Full Changelog for details):
    • Make the build reproducible (Chris Lamb)
    • Fix log severity in some command line tools used in postinst (Emmanuel Bouthenot)
    • Fix various typos in documentation and manpages (Emmanuel Bouthenot)
    • Remove reference to a template which no longer exists (Emmanuel Bouthenot)

Merged pull requests:

  • Issue #22: Parameters for LDAP attribute description are too restrictive #23 (ikedas)

6.2.17b.1 (2017-05-29)

Full Changelog

Implemented enhancements:

  • Improved on-line help on list configuration edit form #15 (ikedas)
  • [6.2] Rewriting code on list configuration form #13 (ikedas)
  • Features in subversion repository (see Full Changelog for details):
    • [12965] Separate executable upgrade_shared_repository.pl. Ordinarily, it will be invoked automatically during upgrading process.
    • [12953] WWSympa: Function to view messages (held messages, bounces and notifications) works, even if javascript is disabled. As a result, almost all functions of web interface are available again in the environment without javascript.
    • [12862] Adding the template to visualize the lists of lists including the current list.

Changes:

  • Changes in subversion repository (see Full Changelog for details):
    • [12937] MICRO-CAL by Amroune Selim has retired. Instead, jQuery UI Datepicker Widget is introduced.
    • [12934] WWSympa: Action URLs no longer may contain e-mail addresses in their path components. For example: http://host.name/sympa/editsubscriber/list/email%40addr.ess ...is no longer available; http://host.name/sympa/editsubscriber/list?email=email%40addr.ess ...may be used ("%40" is the encoded form of "@"). Because, e-mail addresses can contain slashes ("/") while web servers cannot handle slashes in URL path appropriately: Query parameter would be better to be used.
    • [12893] WWSympa: When a name of newly uploaded file in shared document repository is duplicate of exisiting file, uploading will no longer be confirmed. Instead, a suffix (2), (3), ... will be added to name of the new file.

Fixed bugs:

  • sympa_msg.pl crashed with an include_users_ldap_2level #12
  • [6.2] Rewriting code on list configuration form #13 (ikedas)
  • [6.2] New code for list config semantics #9 (ikedas)
  • riseup fixes to templates #4 (taggart)
  • Late changes on svn repo #2
    • [bug] wwsympa: Virtual robots in serveradmin/vhosts and rename_list_request pages were not shown correctly.
    • [bug] If originator address in message contains upper-case letters, "tag this mail for deletion" in archive won't be shown. Fixed by correcting mhonarc-ressouorces.tt2. Rebuilding is needed to correct past archives.
  • [bug][#11020] List admins changes not synchronized with admin_table #1 (salaun-urennes1)
  • Fixed bugs in subversion repository (see Full Changelog for details):
    • [12972] [#11014] [Comitted by M. Deranek] SQLite: While upgrading Sympa by "sympa.pl --upgrade", upgrading proceduce may fail complaining about non-existent indexes. Fixed by skipping non-existing indexes and tables to be removed.
    • [12970] [#11024] [Reported by S. Hornburg, LinuXia Systems] An "obsoleted" list parameter header_list is saved in list config as garbage. Fixed by removing useless default value.
    • [12969] [#10969] [Reported by M. Perini, Università degli Studi di Perugia] In "Listing messages to moderate" page, "Distribute" action fails with error "ERROR (distribute) - Missing argument id|idspam", if it is done in the dialog shown by clicking "View" button. Fixed by not opening new dialog but transiting confirmation page to choose message topics.
    • [12968] [#10968] [Submitted by S. Hornburg] Visibility settings in topics.conf were ignored. Fixed by cheking topics_visibility scenario along with subtopics.
    • [12966] [Reported by A. Meaden, Univ of Kent and submitted by F. Lachapelle, Developpement Strategique Sophos Inc.] The database log does not record any messages that were successfully delivered to mailing lists. Fixed by adding an appropriate call to db_log().
    • [12959] [Reported by A. Gouaux] Exclusion table can not be updated when a user is deleted. Because family_exclusion column is a primary key in exclusion_table but may not have implicit default. Fixed by assigning an empty value to such field explicitly.
    • [12956] [Submitted by D. Stoye, Humboldt-Universitat zu Berlin] A typo in sympa.wsdl broke SOAP interface.
    • [12948] WWSympa: viewbounce & viewmod: If the list name or the email address contains "+", incorrect web links to attachments are generated. Fixed by encoding special characters in generated links.
    • [12929] [#10866] [Reported by A. Bernstein, Electric Embers] At least on FreeBSD, init script cannot detect orphaned PID file: Such PIDs are treated as active. Fixed by checking existence of process more strictly.
    • [12927] [#6988] [Reported by D. Pritts, Internet2] Using cookie web_archive_spam_protection, user is not redirected to their originally requested page. Fixed by preserving path info the user initially specified.
    • [12911] nginx with systemd: If SCRIPT_FILENAME CGI environment variable is set, wwsympa service will terminate when wwsympa.fcgi is updated. Fixed by adding "Restart=always" option to unit file.
    • [12907] [Reported by several listmasters] WWSympa: Link prefetch feature by some browsers may fetch "Unsubscribe" link off the stage so that the users may unsubscribe themselves unconsciously. "Subscribe" and "Delete" (file) links are alike. Fixed by adding a step to demand confirmation: Blocked action is stored in session, user is brought to confirmation page and, if user confirms, the action will be processed.
    • [12902] File names generated by some applications on Mac OS X (uploaded files, files in ZIP archive, ...) may not be shown correctly on other platforms: Accentsare shown separately. Fixed by applying Normalization Form C (NFC) to file names.
    • [12867] When reading the shared documents, file names were not converted from the URL form to the local storage form, leading to errors when downloading files containing spaces or special characters.
    • [12858] sympa.pl --purge_list didn't purge list in the family: It was marked family_closed. Fixed by really purging such list.
    • [12857] [#5976] [Reported by I. Vindenes, Universitetet i Oslo] Users can subscribe to a pending list even if allow_subscribe_if_pending parameter is set to off.
    • [12855] WWSympa: Color picker in skinsedit page did not support devices with touch panel. Fixed by handling appropriate browser events. Confirmed by recent version of Safari on iOS at least.
    • [12853] WWSympa: Color picker in skinsedit page did not work sane. Fixed by calculating right metrics. Confirmed by recent version of Mozilla Firefox, Google Chrome and Internet Explorer.
    • [12848] [#10808] [Reported by X. Bachelot] Suppressing some warnings by C compiler at build time.

See the file ONEWS and the commit log of Historic releases of Sympa about earlier history.