2024 First quarter
2024.03 JESSIE
– Update to major version 2024.01.12, with regular feature and bug patches.
– Update to Exim 4.97.1. Accompanying changes to accommodate new, longer, Exim IDs throughout the web interface, database and back-end tools.
– Update to ClamAV 0.103.8 LTS
– Stability and performance improvements to Fail2Ban and other firewall policies
– Rewrite of URL decoding tool to support generic redirects within URL arguments, as well as to allow searching of nested redirects and some additional shortening/rewriting services
– Changes to ESET installation to avoid causing package manager conflicts
– Add ‘purge all’ function to clear quarantine entries for all addresses in a users group when they have the ‘All addresses’ filter selected.
– Fixes to WebUI DKIM configuration
2023 Fourth quarter
2023.11 JESSIE
– Change to versioning system to provide better understanding of exact patch level. Updated to version 2023.10.24, with regular patches.
– Update to Exim 4.96.2 to patch vulnerabilities
– Initial support for `ipset` to allow for improved firewall performance.
– Significant changes to Fail2Ban. Now uses `ipset` for better performance and reload times. Added multiple ban durations for re-offenses.
– Improved warnings for ‘quick status’ indicator for key resources
– Add parsing of LinkedIn redirect links
– Enforce stricter TLS/SSL certificate policies
– Improve clean-up of database rules when domain is deleted
2023 First quarter
2023.03 JESSIE
– Updated to version 2023.03.14
– New VM images with updates pre-installed
– Update to ClamAV 0.103.7
– Add decoding for additional URL shortening/rewriting services
– Add support for recipient address in quarantine report subject using custom template
– Improved get_status.pl script for human-readability
– Fix to DKIM signing for default domain when not using default key
– Fix to keyboard configuration wizard
2022 Third quarter
2022.08 JESSIE
– Update to version 2022.08.28
– Update to Exim 4.96
– Options to determine what to do with invalid SMTP content: ignore, fix, or reject
– Improvements and patches for ESET EFS anti-virus
– Decoding of common URL redirect services so that final destinations can be tested by RBLs
– Fix to DKIM signing implementation to allow more comprehensive signing
2022 Second quarter
2022.05 JESSIE
– Update to version 2022.05.19
– Initial support for ESET EFS anti-virus
– Add a global max size setting for MailScanner
– New commandline RBL lookup tool
– New white/black/warn list duplicate removal tool
– Improved per-domain SpamC score overrides
2022 First quarter
2022.03 JESSIE
– Update to version 2022.03.09
– Update CA Certificates to support latest browsers
– Update to ClamAV 0.103.5
– Improve the Watchdogs WebUI and email alerts
– Improvement to DNS shorthands (https://support.mailcleaner.net/boards/3/topics/94#DNS-shorthands)
2021 Fourth quarter
– New bayesian deployed
– Update to version 2021.11.16
– Block .xlsb files by default
– Enhanced the TrustedIPs feature to overrule additional checks
– Improve upgrade stability by blocking updates when Git tree is blocked
– Watchdog email alerts to support address
– Allow blocking of port 25 authentication
2021 Third quarter
– Update to version 2021.07.20
– New Baysian database
– Fixed Pyenv, Fail2ban, logs
– SpamC rules
– Search in tracing module allows multiple attributes
2021 Second quarter
– Update to version 2021.05.21
– Upgrade for vulnerable Exim package
– New Spamc Rules
– Fixed Mailscanner issue regarding scripts disarmed
– Add infobox for system watchdogs
– Log SpamHandler events to syslog
2021 First quarter
– New quarantine summary whith separated spam and Newsletters
– Add Show Spam Only to quarantine search
– Hostlist Entry Formatting
– SpamC scores adaptation at domain level
– Whitelists are now applied before blacklists
2020 Fourth quarter
– Reject domains using capital letters
– SpamC scores modification
2020 Second quarter
– Fail2Ban integrated into MailCleaner
– Extention of the anti LOTS_OF_MONEY rule to Cc and Bcc
– Each domain relayed out can have its mails forwarded to a smarthost
– Special work on the phishings due to CoVid
– New field to let administrators set the ciphers they want for SMTP
2020 First quarter
– Per domain exceptions for rules “lot of money”
– Added a whitelist for HTML controls
– Apply SPF exception IP list from SMTP to SpamC
– Update of tracing option “Hide rejected messages”
– Improvment : fix to honour newsletter whitelists except when SpamC is hit.
– Improvement Firewall restart process
– Fixed ClamAV filename check
– Logs are now kept for 1 year by default
– White and black -lists for IPs per domain (SMTP and SpamC)
– ClamSpam check for Malformed databases at startup
– Mails subject and/or attachment names in logs
– Added a validation for HELO names
– RBLs timeouts field in the web interface
– Extend per domain IP-WiteLists to the whole Antispam part
– Fix some issues with TrustedSources
– Extend IP-Whitelist to newsl
– Prevent unnecessary tests for ClamAV and ClamSpam
2019 Fourth quarter
– Update to version 2019.10.02
2019 Third quarter
– Improvements in LDAP code
– MIB for SNMP has been improved
– scripts releasing messages has been improved
– New detection of languages
– Improved SpamC rules
– database handlers were not correctly closed
2019 Second quarter
– Staightened rules about DKIM
– Improved greylist statistics reports
– Improved languages detection in Newsletter
– Improved SpamC rules
2019 First quarter
– SPF checks and rules improvements
– Minor bugs and security fixes
– Increase remote configuration backup time
– Swedish and Turkish languages added (user interface)
– Filetype filtering management improved
– NTP support improved
– Communication and security between master and slaves improved for clustering
– API improvements
2018 Fourth quarter
– New rules for phishing, malware and specific malicious content
– Security fixes
– New URIBL list added (SISA)
– Anti spoofing rules improved
– New Auto Bad URI specific for online payments
– IPV6 support improved
– New RBLs for phishing added
Spamhaus and SURBL option support
2018 Third quarter
2018.08 JESSIE
– New VM package compatibility and stability
– New languages: Chinese (Simplified), Norwegian Bokmål, Portuguese (Brazil) and Portuguese (Portugal) for the user interface
– Dynamic language integration
– New interface to manage newsletters
– Extend newsletter whitelist to check both envelop and body sender
– Update DNS root databases
Kaspersky option support
– New useful scripts for managing lists and batch release
– Fix initial database synchronisation bug
– Fixes in the REST API
– Adjusting MailCleaner internal rules (SpamC, newsletter, etc.)
2018.06 JESSIE
Second quarter 2018
– Wizard installer rebuilded
– DB sync problems corrected
– Automatic update script for next updates
– Bayesian databases downloads improvement
– Email adresses matching improvement
– Improving the first startup of the VA
– Typos removed
– IPv6 bug in exim configuration fixe
– Fixes in the REST API
– Allows the addition of entries to sudoers
– Implemented the anti-breakdown system
2018.02 JESSIE
First quarter 2018
– ‎New VM package compatibility and stability
– Kernel update following Spectre and Meltdown vulnerabilities discovery
– Automatic update after first network interface initialization
– [bug] Automatic update request before installation wizard launch
2017.09 JESSIE
Fourth quarter 2017
– ‎[bug] SMTP banner corrected to reflect Community Edition by default
– [bug, ui] Corrected: choice of a country other than Afghanistan (improper filter on the field)
– Added MailCleaner to weblate translation site
– [bug] Fix firewall restart status
– [translation] Added support for languages: Albanian, Chinese (Simplified), Chinese (Traditional), Hindi, Norwegian Bokmål (nb_NO), Portuguese, Polish, Russian, Slovak, Swedish.
– [ui] Removed warnings about “Purging environment” in Exim
– [ui] Added script: wizard_switch.sh [-c ] [-b] [-s] — To disable/enable the wizard (per MailCleaner)
– [bug, db] Possible desynchronization during wizard process has been removed
– [ui] Warning for unchanged default password for VM
2017.09 JESSIE
Third quarter 2017
– Configuration / backup network interface (
– ‎Possibility to change MailCLeaner’s host ID (this feature does not apply to cluster configurations)
– Automatic update of MailCleaner code (rolling updates)
– ‎ClamAV and ClamSpam now include cld, cvd and compressed files in their accepted signature db files
– ‎[bug] Corrected: ClamAV update process does not require ClamAV to be running anynmore. ClamAV will start even if its database is not present or corrupted.
– ‎[bug] Corrected: if the slave database is not available to update a spam or newsletter status, another try will be performed upon recovery
– ‎Auto-configuration feature added (Enterprise Edition only): daily auto download and apply of our maintained reference configuration.
– ‎Possibility to whitelist ClamSpam rules (For such cases, please ask our support team per ticket)
– [bug] ‎Chunking bug corrected by disabling chunking as advised by Exim team.
– ‎[ui] TLS warning hidden between internal stage.
2017.09 JESSIE
– Merging of both Community Edition and Enterprise Edition (future maintenance will be easier)
– Better spoofing protection
– MailCleaner “Configurator Wizard” added
– Apache updated to version 2.4.25 (64bits) and Php to version 5.6.29
– ‎New Apache configuration with updated Cyphers
– Exim updated to version 4.88 #2
– Perl updated to version 5.20.2 (correction of a lot of bugs in Custom modules, MailScanner and SpamAssassin parsing)
– Security issues have been fixed
– MailCleaner custom kernel has been replaced by the Debian default kernel (future updates will be easier)
– Real time filtering switches for .js/.jse , .docm/.dotm , .wsf : in archives or not (activation made only through command line)
– Update system moved to git
– Public released code on GitHub
– New registration page for Enterprise or Community (optionnal)
– New graphical theme
– Tooltips for feature descriptions (admin interface)
– Two new languages: Italian and Dutch (user interface only)
2016061501 – 2016.06 upgrade to GANDALF– (feature, filtering) Added black list for system, domain and user.
– (feature, filtering) Added new anti-spoofing detection.
– (feature, admin gui) Added partial Tooltip documentation for admin gui.
– (feature, filtering) Added news RBLs: Invaluement SIP, SIP-INV, SIP24.
– (feature, translation) Added IT translation for user interface.
– (feature, translation) Added Dutch translation for user interface.
– (feature, system) New Watchdog system to intercept known bugs before correction.
– (bugfix, system) Fixed locales installation to en-us.UTF-8.
– (bugfix, filtering) Fixed subject encoding issue with newsletters.
– (bugfix, filtering) Fixed DOCX blocked as executeable.
– (bugfix, log) Added SQL binary log cleaning.
– (bugfix, filtering) Fixed score increase when ClamSpam or UriRBLs answer is too big.
– (bugfix, antivirus) Fixed ClamAV bad parsing for fr locales.
– (bugfix, system) Moved package system to archive.
– (bugfix, system) Fixed a specific situation where patch version could regress.
– (improvment, filtering) Disable list.dnswl.org.
– (improvment, filtering) Newsletters rules auto update.
– (improvment, system) Updated DB schema to allow check_db auto repair.
– (improvment, filtering) Force retain newsletters in quarantine for new Mailcleaner installations.
– (improvment, system) Added employee keys for support
– (improvment, system) Removed company global key for support
2016013101 – 2016.01 upgrade to SUMMERTIME– (bugfix, UI) Fixed missing translations in reset password form.
– (bugfix, security) Fixed XSS vulnerability in login form.
– (bugfix, security) Removed PHPINFO page.
– (bugfix, UI) Removed PHP WARNING messages.
– (bugfix, filtering) Removed legacy RBL.
– (improvment, filtering) Added ClamAV SecuriteInfo signatures.
– (improvment, filtering) Added new RBLs.
– (improvment, filtering) Added Kaspersky Anti-Virus optionnal module.
– (improvment, filtering) Added Newsletter’s module.
2015063001 – 2015.06 upgrade to PATCHWORK– (bugfix, admin gui) – Each administrator account has now a unique name
– (bugfix, filtering) – Better detection of messages and attachments in foreign languages (Chinese and Hebrew tested, probably some others concerned)
– (bugfix, filtering) – Better detection of new Microsoft Office documents (xlsx, docx, dat etc…)
– (bugfix, maintenance) – Clean spam quarantine beginning by a number in database (spam_num)
– (improvement, maintenance) – To limit inodes consumption, count files are now purged (one year retention period)
– (bugfix, translation) – Some German translation were corrected
– (improvement, filtering) – The EPS attachment type was added and is allowed by default
– (bugfix, typography) – The word Codabase was corrected: Codebase
– (bugfix, admin gui) – The content quarantine is now correctly sorted on both date and time
– (bugfix, admin gui) – Unescaped character prevent message release
– (bugfix, admin gui) – Invalid character in headers corrupts quarantine message display
– (bugfix, admin gui) – Single quote in local part of email address prevents a lot of things
– (improvement, MC team tools) – Big improvements about reporting false-positive to nospam@mailcleaner.net (Delays and future filtering greatly improved). Same thing planned for false-negative reported to spam@mailcleaner.net
2014120101 – 2014.10 upgrade– (security, admin gui) – set Cypher priority
– (security, admin gui) – support of TLS v1.1 v1.2
– (upgrade, os) – major upgrade of ClamAV (clamd & ClamSpam), openssl
2014102101 – 2014.10 upgrade– (improvement, smtp) – changed LDAP callout behavior to accept on failure
– (improvement, filtering) – added X-Auto-Response-Suppress on detected spams
– (bugfix, filtering) – fixed potential white space before subject in quarantined messages
– (bugfix, admin gui) – increased the Trusted IPs/Network field size
– (feature, smtp) – added authenticated users blocking list
– (bugfix, smtp) – fixed LDAP quoting
– (improvement, os) – improved IPv6 firewalling support
– (improvement, smtp) – increased limit in SPF included resolutions
– (feature, filtering) – added avoidable hosts list in PreRBls module
– (feature, filtering) – added support for optional MessageSniffer module
– (feature, gui) – added auto-detection of starttls on LDAP connector
– (bugfix, admin gui) – cleaning of some output in logs view
– (improvement, admin gui) – changed defaults for DKIM DNS record information to match current recommendations
– (improvement, os) – added Squeeze LTS for long support security updates
– (upgrade, os) – major upgrade of Apache, MySQL, PHP and SpamAssassin packages
– (upgrade, security) – removed usage of SSLv3
2013121801 – minor update– (feature, smtp) – Added full DMARC support, including optional reporting
– (feature, filtering) – added checks of hostname-domain pairs of well know mail senders to avoid PreRBLs hits
– (improvement, filtering) – improved handling of corrupted TNEF archives
– (improvement, http) – improved SSL security
– (improvement, smtp) – added NTLM authentication support
– (improvement, smtp) – LDAP callout now accept messages on query failure (instead of temporary rejection)
– (feature, smtp) – added SMTP authentication cache
2013100802 – minor update– (feature, user) – address grouping in user’s quarantine and summary
– (improvement, admin gui) – improved display of connection error between hosts
– (improvement, admin gui) – hiding of SSL certificate key
– (improvement, system) – remove useless TRACE/TRACK options of HTTP server
– (improvement, system) – improved update check and download
2013073001 – upgrade to 2013.7– (feature, user) – added bypass all filtering option
– (feature, admin gui) – added local address verification connector
– (feature, admin gui) – added automatic password generation for local user
– (feature, smtp) – added smtp_accept_max_per_connection option
– (feature, user) – added digest links for automatic login
– (improvement, admin gui) – improved SSL/TLS handling with LDAP connectors
– (improvement, filtering) – improved CommTouch plugin integration
– (improvement, filtering) – improved UriRBL handling of urls
– (feature, smtp) – added recipient blacklist
– (improvement, filtering) – improved prefilters handling of large messages
– (feature, filtering) – added MailCleaner whitelist
– (fix, filtering) – fixed IPv6 handling for TrustedSources prefilter
– (improvement, filtering) – improved ClamSpam dataset downloads
– (fix, admin gui) – increased timeout value when releasing blocked content
– (improvement, gui) – changed password scheme to crypt-sha512
2012021601 – upgrade to 2012.2– (feature, updates) – added RSS feed information
– (feature, admin gui) – added information on tracing panel
– (feature, admin gui) – downloadable log extracts from tracing panel
– (feature, admin gui) – added callout cache clearing button
– (feature, filtering) – added option for rejecting bad reverse DNS at SMTP level
– (feature, filtering) – added option to avoid PreRBLs check when SPF record is good (to avoid hotmail, gmail, etc.. from being blocked)
– (feature, admin gui) – added per domain/user external archiving option
– (feature, admin gui) – added per domain/user “send a copy to” option
– (feature, admin gui) – added Reply-To option for error messages
– (feature, system) – full IPv6 support
– (feature, admin gui) – added IPv6 and IPv4 virtual IPs management
– (feature, API) – added user and address management API
2011082901 – upgrade to 2011.9– (improvement, admin gui) – improved status display of hosts with automatic reloading
– (improvement, admin gui) – added all SMTP level statistics (rejection, relaying, etc…)
– (improvement, admin gui) – added system hardware statistics (i/o, network, etc…)
– (feature, user gui) – added dugest summary mode
– (improvement, admin gui) – added system mail sender address (for summaries, can now be different that support address)
– (feature, SMTP relaying) – added full DKIM signing/verifying
– (feature, SMTP relaying) – added full BATV signing/verifying
– (feature, SMTP) – added option for rejecting bad SPF at SMTP level
– (feature, filtering) – added option for rejecting messages from the same domain (anti-spoofing, per domain)
– (feature, filtering) – added option for rejecting incoming/relaying unencrypted session (per domain)
– (improvement, admin gui) – added new domain configuration panel for outgoing relay options
– (improvement, SMTP relaying) – added option to prevent relaying messages from unknown domain
– (improvement, admin gui) – added better SSL/TLS certificate handling in web gui (immediate check of validity)
– (feature, filtering) – added SPF dnslist in TrustedSources module
– (feature, monitoring) – added new MailCleaner official SNMP MIB, downloadable in https://yourmailcleaner/admin/downloads/MAILCLEANER-MIB.txt
– (feature, admin) – added RESTFull and SOAP API for external domains management, documentation available here: https://new.mailcleaner.net/downloads/MailCleanerAPI.pdf
2011051201 – Exim upgrade to 4.76
2011050601 – Exim upgrade for CVE-2011-1764
2010122001 – upgrade to 2010.4