CommuniGate Pro Major Updates History

4.1 Jul-03

The old (pre-Skins) WebUser Interface has been phased out.

Platforms

Linux/x86_64 version is released.
Windows: a new method for local IP Addresses discovery is implemented.
Solaris: the default "application directory" has been moved from "/usr/local/sbin" to "/opt".
Unix: now the fsync()/fdatasync() call is used to flush "rewritten" files to disk.
OS/2: timezone processing has been changed.

Foundation

Non-blocking sockets are implemented (enabled with the --UseNonBlockingSockets option).
The PKCS7 "EnvelopedData" objects with non-constructed encrypted data elements are supported now.
The Blowfish encryption cipher is implemented.

Security

The Lawful Intercept functionality is implemented.
The "WebUser" SASL method is implemented.
The UB-crpt (Unix Blowfish-based) password encryption method is implemented.
The {LANM} and {MSNT} passwords (LAN Manager/Microsoft NT password hashes) are supported now (to simplify migration from Microsoft servers).

RADIUS

RADIUS server is implemented.

MAPI

MAPI Connector is updated.

WebUser

The Groupware (Calendar,Tasks,Contacts,Notes. Free/Busy) functions are implemented.
Spellchecker functions have been added to the compose.wssp page.
The "Use Cookies" option (WebUser Preferences setting) is implemented.
When users are disconnected from the server, they can login again and resume their work. The "disconnect.wssp" page is removed, the "login.wssp" page has been modified.
The "Address Book" panel has been redesigned to provide access to "ACAP dataset", Directory, and Contact-type mailboxes. The Filter functionality is added.
Address Books support Groups now.
HTML->WML message body translation is implemented.
When the Alerts page is displayed instead of some other page, the Alerts page now returns back to that page.
The "generic mailbox" Web Application code now detects the X-Color message header fields and places them into the "color" element of message dictionaries. This feature can be used to highlight certain messages in mailboxes.
The "Edit Draft" operation processes attachments in the draft message.
Mailbox.wssp: the processor now adds the "notText" element to messages with Content-Type different from "text/*" (so the "attachment" icon can be displayed).
The settings.wssp page can be divided into serveral pages (settings.wssp, settings1.wssp, settings2.wssp, settings3.wssp), all with the same processing code.
The MDN setting (Never, Manual, Auto) is implemented.
The DisableIPWatch and DisableUseCookie options are added to the login.wssp page.
Multiple Directory-type Address Books are implemented.
Additional "sanity" checks for HTML code were added to disable <script> elements in misformed HTML data.
The Trash and other Default mailboxes can be selected now (for example, the "Deleted Items" mailbox can be used as the WebUser "Trash").
The "in frame" option for viewing HTML message parts is implemented via the htmlpart.wssp file.
The TakeAddress, TakeCertificate operations are applied to the currently selected address book.
S/MIME: various encryption methods are implemented. The Encryption Method settings has been added to the WebUser Settings.
The To header field can be included into the Mailbox Viewer field set.
Messages sent with the Password Recovery component now have a non-empty Return-Path.
Reply/ReplyAll operations use the text/html part of the original message if a text/plain part cannot be found.

WSSP

The "ISEVEN" function is implemented.
The LOCALCALENDARDATE and LOCALCALENDARTIME constructs are implemented.
The DATE: and other date/time prefices now use formatting "pictures". These pictures can be altered using the DatePictures dictionary.
The MAILBOXMENU processing has been changed from a enum-type menu to a string-type menu.

Kernel

The Euro sign has been added to ISO-8859-x charsets.
On some platforms (BeOS) the OS could return an empty system name, causing "Internal Router Loop"s.
The MDN generator is implemented.
VCard objects are supported now (RFC2425, RFC VCard 2.1)
Algorithms used in "picture" comparison routines ("*"-wildcarded operations) have been improved.
Calendar: the old (VCal 1.0) format is supported now.
MIME parser accepts empty lines in embedded uuencoded files.
Processing of ORCPT parameters has been changed.
From:/Sender: addresses for auto-generated messages have the "RealName" <address> format.
If a message file with bare-LF gets into the Queue on a 2-byte-EOL platform (Win, OS/2), bare-LFs are not sent out.
DataSets: a faster Dictionary file writing method is used.

IMAP

RFC3516 (Binary Content Extension) is implemented.
Internal UID processing has been changed to support unsigned 32-bit numbers.
The LOGIN-REFERRALS keyword has been added to the CAPABILITY list.

PWD

The STLS command (similar to POP3 STLS command) has been implemented.
The challenge-response SASL methods are supported now.

SMTP

The Default IP Address setting is implemented.
The "temporary blacklist" is implemented.
The Disconnect Sender options are implemented.
The SMTP input module is redesigned.

LOCAL

The "Delay" settings have been added, the "percent full" processing has been changed to use the current size + new message size in computations.

PIPE

The headers added by Server-wide rules are passed to the external task.

ACAP

Data strings with binary zeros are now converted to "data" elements, so they can be stored and sent out without string cutting (required for phone numbers in Mulberry address books).

HTTP

The Personal WebSite management page is renamed from Index.html into Index.wssp.
The "freebusy.wssp" Personal WebSite page processor has been implemented. It can be accessed as http://server:8100/~user/freebusy.wssp
If the Personal Web Site "freebusy.vfb" file does not exist, the module creates a dummy FreeBusy dataset and returns it to the client.
The Request Size Limit setting is implemented (WebAdmin:Settings->WebUser).
The Default Page Name setting is implemented (WebAdmin:Settings->WebUser).
The "local part" Routing result is processed now, allowing an administrator to reroute Domain-level URLs to subdirectories inside Personal Web Sites.
The HTTP_COOKIE envir-variable is passed to CGI scripts.
The /CalendarData/ realm is implemented to support subscribe/publish HTTP operations for groupware applications.

FTP

Secure (TLS) data connections are supported now.

LIST

Several routines have been changed to tie the owner account to the Cluster controller, and to support the owner renaming operation in a Cluster.
Headers and footers are converted into HTML if they are inserted into an HTML text.
Non-standard Yahoo bounce reports are processed now.
The Moderate Guests posting policy option is implemented.
With the "notify owner" option switched on, the owner gets a message if a subscription was terminated due to confirmation time-out.

GROUP

The Reject Automatic Messages option is implemented.

RULES

The Domain-wide Rules are implemented.
The Header Field condition can use the "in" and "not in" operations.
The Source Rule condition is implemented (and documented).
The EXECUTE action passes the headers added by other rules and actions to the external task.
The Accept Request action is implemented. It allows to set up accounts for shared resources like conference rooms and schedule them automatically.
The Enable Vacation button is supported now (it enables the Vacation Rule and clears the Reply Addresses dataset).
The [RCPT] and [ORCPT] Execute prefices can be used with Account-level rules.
The [ACCNT] prefix is implemented.
The ^R macro can be used in Reply and React actions to include the original To: header field.
The Submit Address condition is implemented.
Non-ASCII mailbox names are now encoded into the "modified UTF-7" charset.

CLI

The GETDOMAINRULES and SETDOMAINRULES commands are implemented.
The ROUTE command now has an optional "MAIL" parameter.
The GETROUTERSETTINGS and SETROUTERSETTINGS commands are implemented.
The [GET|SET][SERVER|CLUSTER]WebUserDefaults commands are documented.
The GETEFFECTIVEWEBUSER command is implemented.
The GETCURRENTCONTROLLER command is implemented.
The SETMAILBOXCLASS command is implemented.
The DELETEDIRECTORYRECORDS and INSERTDIRECTORYRECORDS commands are implemented.
The REJECTQUEUEMESSAGE and GETTEMPCLIENTIPS commands are implemented.
The REMOVEACCOUNTSUBSET command is documented.

ACCOUNT, DOMAIN

When an Account is being renamed or removed, all WebUser sessions with that account are closed first.
The WebCal Service setting is implemented. This Service controls availability of the WebUser Calendaring functions.
The "LDAP" 'service' is added to the set of Account/Domain services.
The listMailboxes functions returns mailbox aliases, even if the search pattern is specified as "~myaccount/...".
Directory-based Domains: Domain Rules are implemented.

Directory Integration

The "cn" and "sn" attributes are generated as non-empty strings, to allow integration with OpenLDAP and other LDAP servers.

LDAP, Directory

Remote Units can connect to remote LDAP servers securely.
Local Units: "top" entries (with empty DNs) can be created and removed.
The "greaterOrEqual" and "lessOrEqual" operations are implemented.

External Programs

The QUIT command has been implemented.
AUTH: the ROUTED and FAILURE responses to the NEW command are supported now.

TLS

Session caching scheme has been redesigned. Old scheme was not properly releasing unused TLS session data under heavy TLS load.

Events

The special symbol combination "^2" can be used to include the actual SNMP element value into the event messages.

ROUTER

The All-Domain Aliases settings are moved from the Local module settings to the Router settings.

QUEUE

The Outgoing Flow Control option is implemented (to block your own spammer users).
The "Warning" message text can be customized now.

Protection

An option is added to specify if a special Header field should be added to messages from blacklisted addresses, or if those messages should be rejected.

WebAdmin

The General->Spelling page with spell checker settings is added.
The Account Template page allows you to specify "classes" for automatically created mailboxes.
The Account Template and Account Default page references have been changed.
The Clear 'Replied Addresses' List command is added to the Account Rules page.
Skins: tar-archive uploading in implemented.

MAILBOX

Renaming of mailbox X into X/Y is allowed again, if the rename operation does not involve submailboxes (renaming mailing list mailboxes into list achives).
The anyone@ special ACL name is implemented to allow users to grant mailbox access rights to all accounts in their own Domains.
The anyone@domainName special ACL name is implemented to allow users to grant mailbox access rights to all accounts in the specified Domain.
The TextMailbox Manager now uses the fsync() call for all mailbox update operations. This is required in Dynamic Clusters based on certain Cluster File Systems.

SNMP

SNMP: "trafficIn" and "trafficOut" elements have been added, the RPOP and LDAP elements have been added.

CLUSTER

LDAP: the account-based BIND operation can now be used in a Cluster.
The virtual mailbox manager does not send empty UID ERASE commands.
New log settings have been added.

Migration

The MoveIMAPMail command now copies mailbox ACLs (if supported).
MoveIMAPMail: the --copyMailboxClass option is implemented.

Bug Fixes

Bug Fix: CLUSTER: IMAP/ACAP: login operation failed if the password contained non-printable symbols or symbols '\' and/or '"'.
Bug Fix: 4.0-4.0.6: RPOP: users could create new RPOP records with poll period smaller than the specified limit.
Bug Fix: 4.0-4.0.6: when deleting a Domain, the server tried to re-create an Index.data file after the Domain directory has been removed.
Bug Fix: 3.5x-4.0x: WSSP: the ISINDEX function call caused parser errors.
Bug Fix: 3.1x-4.0x: ACAP: responses for multi-value entries contained excessive space symbols.
Bug Fix: PIPE: 3.4-4.0x: if a submitted file had the Envelope-ID header field, the message header was corrupted.
Bug Fix: IMAP: when searching foreign accounts with "special" INBOXes, the INBOX name was returned without the "foreign account" prefix.
Bug Fix: Directory: The Remote Unit manager incorrectly encoded the trivial "TRUE" and "FALSE" search conditions.
Bug Fix: 3.0-4.0: Misformed URLs for message parts could crash the server.
Bug Fix: MAILBOX: 4.0-4.1b8: the "Concurrently used large buffers" Obscure setting was reset on server restart.
Bug Fix: LDAP: 4.0-4.1b8: STARTTLS command was processed incorrectly.
Bug Fix: RULES: 4.0-4.1b8: string objects with the ADDHEADER external filter data were not released.
Bug Fix: WebUser: 3.5-4.1b9: when a WebUser Preference setting was set to the "default" value, the old value was not deleted from the dataset file.
Bug Fix: DOMAIN: 4.0-4.1b9: Default WebUser Preference could not be created in new Directory-based Domains.

4.0 Nov-02

Platforms

OS2/Intel version is released.
QNX/Intel version is released.
FreeBSD/Alpha version is released.
HPUX/Itanium version is released.
Linux/Itanium version is released.

Events

Events are implemented.

MAPI

MAPI Connector is released.

FTP

the FTP module is implemented. See the Access->FTP section of the manual for details.

Security

The MSN SASL method is implemented.
The WebAdmin "Security" page now accepts multi-certificate CA Chains.
The Advertise NTLM SASL Method option has been added to the Obscure Settings page.
The External Authentication API has been changed (see the Security section for more details).
The Advertise secure SASL Methods option has been added to the Obscure Settings page.
SNMP: the "AUTH" group of statistic elements has been implemented.

Protection

Now "Unblacklisted" (White Hole) addresses can be specified using their DNS Names.
DNR error codes can be processed with the Blacklisting by DNS option (making it possible to blacklist all hosts that do not have reverse DNS records).

WebAdmin

The Admin Preferences for the Domain List page are implemented.
The internal Domain Administration realm has been changed to "/DomainAdmin/" to fix various URL access problems.
The Show Aliases option is implemented.
Directory: the Browser can display non-ASCII data now.
"disabled" RPOP periods are supported now.
Now the Server Up-Time is displayed on the Settings -> General page.
Now administrators without the CanCreateGroup access right cannot modify any group data.
GROUP: several member addresses can be entered in one field now.
The Threads Monitor has been implemented.
The Access Monitor pages have been re-implemented. LDAP, FTP, ACAP, PWD monitors are implemented.
Name filtering is implemented on the SNMP Element List Monitor page.
HTTP responses now have explicitly specified charsets in the Content-Type headers.
Login page for Domain WebAdmin Interfaces now lists "Other Domains" that this Domain Admnistrators can open.
The Server-Wide and Cluster-Wide "default WebAdmin" pages are supported now.

HTTP

The module has been divided into two modules (HTTP Admin and HTTP User).
CGI: the SCRIPT_NAME parameter does not contain the "additional path" data now.
CGI: now an external program receives the PATH_INFO and REQUEST_URI parameters.
the OPTIONS method is implemented.

SMTP

The Recipients/Message setting has been implemented.
The actual address of the blacklisted host is now included into the negative (591) SMTP server response.
Now the Send Secured and Hold Mail names can include the wildcard (*) symbols.
The Advertise NTLM AUTH option has been removed from the SMTP module settings.

Local Delivery

Now distribution to all@domain is prohibited for the messages with an empty return-path (to stop the "bounce mail distribution" attacks.
The Always Add the Envelope Addresses Field option is implemented.

LIST

Mail header composing routines have been changed.
The digesting algorithm has been changed to avoid "message dropping" when the number of collected messages is higher than the digest limit.
Now the ^I macro can be used in the Hello and GoodBye messages.

IMAP

Message set and UID message set processing has been changed, to treat an M:N range as the N:M range if M > N.
RFC3348 (CHILDREN extensions) is implemented.
Now the GETQUOTA/GETQUOTAROOT commands can be used to retrieve mailbox store information for foreign mailboxes.
Additional extensions are implemented to simplify communication with the MAPI Connector.

RPOP

RPOP: internal scheduling mechanisms have been re-designed.
RPOP: the secure (TLS) option is implemented. The WebSkin, WebAdmin, WebUser RPOP files are updated to accomodate the new option.

PIPE

Now the module does not try to "fix" multi-line From: and Sender: header fields in submitted messages.

Router

Router: update procedue has been modified to avoid crashes during Router Table updates under heavy load.

Rules

The EACH ROUTE and ANY ROUTE condition processing has been changed.
"String lists" are implemented. The Auto-Reply Rule has been modified to send only one reply to each sender.
Now the Subject and From Name fields are MIME-decoded and converted into UTF-8 before processing.
The ^S and ^F macros are now implemented as ^S/^s and ^F/^f macros.

External Filterin

The version 2 API is implemented: the ADDHEADER response code is supported now.
Support for multiple External Filters is implemented.
The API has been extended (the INTF command added, the DISCARD response is supported now).

LDAP

Binary data are supported now.
If the "Substitute with uid in conditions" option is enabled, the "equals to" search operation ignores the "@domain" part of the search string.
SASL authentication for mail=accountName BindDN is implemented.
Now when the Direct LDAP Provisioning is enabled, BIND operations can use the Account Manager.
LDAP provisioning now detects the unixPassword attribute and stores its value as a U-crpt'ed Password.

Directory

The DNs of found records are now checked against the Access Rights. If the RDN is not allowed to be read, the record is not returned to the client.
Remote Units: binary data are supported now.
New Unit names are now checked for "bad symbols".
To comply with RFC2256, the cn and dc attributes have been moved from the organization objectClass to the communiGateDomain objectClass.

Cluster

Now the cluster-wide RFC822 Filters are not applied when a message is transferred between cluster members for local delivery.
Extremely large responses that cannot be read by a requesting cluster member are replaced with an error code on the serving member.
Now all inter-cluster connections are initiated using the specified "local cluster IP address".
Failover algorithms have been imporved.
SMTP: the "*" forward to option (meaning "to all frontends") is supported now.
The account info is now displayed on Account list and Account Settings WebAdmin pages of all Cluster members.
Statistics: the "Dynamic Cluster requests" SNMP elements have been added.
Virtual Mailbox manager did not read the UID information for appended messages. As a result the IMAP APPEND and COPY operations applied to virtual mailboxes did not return the extended UIDPLUS codes.
The GetAccountInfo CLI command is "clusterized" now.
Now users with the Require Secure Login setting enabled can login using secure connections to frontends.
SMTP: ETRN commands and Wake-up E-mails release queues on all Dynamic Cluster members.

Mailbox Manager

The "oldest message" info is now stored in the mailbox meta-data dictionary.
The information about the number of Unseen messages is cached now.
The RENAME operation now automatically creates all "outer" mailbox folders needed to create the target mailbox.
The MaxMailboxes Account Setting is implemented.

Account Manager

The Public Info Custom Settings are implemented.
The Rename In Folder option is implemented. The "renameInPlace" attribute has been added to the Directory Schema.
Passwords in newly created accounts are encrypted using the effective password encryption method.
Now the userCertificate attribute is automatically stored in the Directory (together with the RealName/cn attribute).

Domain Manager

The MAPI and TLS Account and Domain "Enabled Service" options are implemented.
Now the Index.data file is kept in sync with the Domain Accounts (rather than created on server shutdown).
Now the Index.data file can be stored in the "Index" subdirectory (to simplify symlink processing).

Alerts

Account-level Alerts have been implemented.

CLI

The GETSUBSCRIBERINFO command is implemented.
The SETPOSTINGMODE command is implemented.
The LISTADMINDOMAINS command is implemented.
The GETACCOUNTALERTS, SETACCOUNTALERTS, POSTACCOUNTALERT, and REMOVEACCOUNTALERT commands have been implemented.
The GETSNMPELEMENT command has been implemented.
The RELEASESMTPQUEUE command is implemented.

Personal Web Sites

Now the default.html file is retrieved for all types of "directory links" (http://server/~user/dir1/dir2/).
Max directory nesting level has been increased to 6.

WebUser Interface

Now Named Skins can be used in Stateless requests (such as login.wssp requests).
Message rendering is controlled by .wssp files now.
The WML requests are supported now.
The "use Letter charset" option is implemented.
The Auto-signup component code can put Custom Attribute values into the new Account settings.
The Store Attachments (Files) function is implemented (the message.wssp page has been extended).
Settings: the SecureMail settings page is implemented. It can be used to import PFX (.pfx) and PKCS12 (.p12) files with personal private keys and certificates.
Message: decryption of S/MIME encrypted messages is implemented.
Message: digital signature verification of S/MIME signed messages is implemented.
Message: the "Take Certificate" function is implemented (you can now add certificates from signatures to the Address Book)
Compose: the "Send Encrypted" option is implemented.
Compose: the "Send Signed" option is implemented (it can be used to send digitally signed letters)
The PublicInfo page has been implemented
The MIME->HTML converter checks for binary 0 symbols now.
Moving a message between "own" mailboxes (including moving a message to the Trash) temporarily disables storage quota checks.
HTTP responses for .wspp requests now have explicitly specified charsets in the Content-Type headers.
The information about the number of Unseen messages in now available on the mailboxes.wssp page.
The text/enriched format is supported now.
The DeliveryReport code and the .wssp file have been added.
The Notify when Read option has been added to the Compose code and .wssp file.
Several new SESSION dataset elements have been added.
The EmptyTrash HTTP parameter has been renamed into EmptyTrashNow; now it is processed for all session requests.
Default charset processing has been changed.
.wssp pages for stateless requests can (and should) use the %%filesRef%% variable to form file reference URLs.
The HTMLTRUNCATED prefix is implemented. Mailbox field values are not truncated by the server code itself.
the DATE:, DATETIME:, LOCALDATETIME:, DATETIMESHORT:, LOCALDATETIMESHORT: prefices are implemented.
The "mailbox" processing code has been changed, so the Sent and Received column values are now returned as "date"-type elements.
The "mailboxes" processing code now adds the "parent" element to the mailbox elements.

Foundation

Condition locks are re-implemented for all platforms. Old implementation could cause excessive thread waiting times on an overloaded system.
Many new cryptography routines are implemented.
Binary data can now be stored in directories, datasets, and other basic objects.
The cryptography routines have been optimized to increase SSL/TLS performance.
The --closeStuckSockets command line option has been implemented.
Linux: the "application directory" for Linux systems has been changed from /usr/local/sbin to /opt
Win32: OS privileges needed to enable external program termination are enabled explicitly now.
Win32: under Windows NT/200/XP "OS Log" messages are now stored in the "System Event Log".
Tru64: the system mode allowing 65000+ file descriptors is enabled now.

Miscellaneous

TLS: block ciphers are supported now.
ENQUEUER: the Hop Counter Limit settings is implemented.
SMTP, POP: the RFC822 encoder has been redesigned.
MIME: Search for body strings now works for non-ASCII strings specified in various charsets.
Migration: now the MoveIMAPMail program supports the --byOne parameter.

Charsets

ISO-8859-10 and ISO-8859-15 charsets are supported now.
Ukranian KOI8-U charset is supported now.
data encoded using Korean charsets can be converted to and from the UTF-8 charset.
the GBK charset is supported now.

Bug Fixes

Bug Fix: SNMP: 64-bit COUNTER data in responses had the APP 1 type instead of the APP 6 type.
Bug Fix: RULES: the Remember From action could crash the server if no parameter was specified.
Bug Fix: MAILBOXES: in some rare situations concurrent access to a mailbox could crash the server.
Bug Fix: DEQUEUER: if a message had a pending request to generate a "delayed warning" report, and the delayed address failed/succeeded at the same time, the server could crash.
Bug Fix: Rules: ROUTE conditions could crash the server if an incoming message was rejected because it had "too many hops".
Bug Fix: Log: 1.0-4.0.1: certain "unusual" data elements could cause the Log engine crashes.
Bug Fix: WebUser: 3.0-4.0.1: the "message open" procedure could cause deadlocks.
Bug Fix: CLUSTER: the CREATEWEBUSERSESSION, GETWEBUSERSESSION, KILLWEBUSERSESSION CLI commands could fail in a cluster.
Bug Fix: External Program parameters were parsed with a wrong parser (adjacent quoted strings were catenated).
Bug Fix: images downloaded from Personal WebSites via WebAdmin Interface could be damaged.
Bug Fix: the "copyMessages" Mailbox Manager routine ignored errors when it was copying large (over 1MB) messages followed by a smaller message.
Bug Fix: WebUser: the text/enriched converter did not replace single EOL with a white space symbol.
Bug Fix: CLUSTER: failure of a cluster member on a heavily loaded cluster could cause a deadlock in the current Cluster controller.
Bug Fix: the MIME parser could return negative part size values for misformed MIME messages.
Bug Fix: IMAP: the QUOTA STORAGE responses now specify sizes in 1K units.
Bug Fix: CLUSTER: SMTP: successful client authentication did not reset the "blacklisted IP" flag.
Bug Fix: MAILBOX: the "Recent" flag was not always processed correctly in the concurrent access environments.
Bug Fix: the Big5->UTF-8 convertion routine did not process all Big5 symbols correctly.

3.5 18-Dec-01

Platforms

Linux/S390 version is released.
Linux/M68K version is released.

Domains, Accounts, Objects

Domains,WebUser Settings: non-ASCII attributes are supported now.
Account Templates: the Initial Message text now can start with the [charset] prefix.
DIRECTORY INTEGRATION: Server-Wide and Cluster-Wide settings are implemented.
WebAdmin: Admin account Preferences processor has been changed.
Migration: the MoveAccounts program and its parameters have been changed.
Mailboxes: the "Redirected" message status is implemented.
Groups: non-ASCII "real names" are supported now.
Accounts: non-ASCII "real names" and "custom attributes" are supported now.
Account Templates: non-ASCII "real names", "custom attributes", and mailbox names are supported now.
WebSite: nested folders are supported now. The WebAdmin WebSite.html and WebUser WebSite.html and UserSiteIndex.html files have been updated.
Now Domain Administrators can controll several Domains. See the SysAdmin section of the manual for more Details.

Protection

The Banned Header and Body line settings are implemented. See the Protection section of the manual.
The Client By Name option is implemented.
The Unblacklistable (WhiteHole) Addresses list is implemented.
RBL: RBL resposnes in the 127.1.x.x range are now recognized as "blacklist it" responses.

Security

The login-disabling options protecting Accounts from Password Attacks are implemented.
Now Certificate Signing Requests can be generated and new Certificates can be set without prior removing of an existing certificate.
The SASL NTLM method now works with Macinotsh versions of Microsoft products (Outlook Express, Entourage)
The SASL NTLM authentication method is supported now (this method allows you to use the "Secure Password Authentication" option in Microsoft products).

DNR

The "search PTR records" operation is implemented.
The new Custom setting allows an administrator to specify DNS Server addresses explicitly. See the SysAdmin section for the details.
Additional settings are implemented.
Requests to RBL servers are sent "quickly", so if an RBL server is down incoming SMTP connections do not time-out.

WebAdmin

Preferences now work for Secondary Domain Administrators, too.
The Charset parameter has been added to the Administrator Preferences.
Alerts are stored using the UTF-8 charset.
The /MainAdmin/ realm is implemented (see the HTTP section of the manual).
Log settings can now be changed only if the Administrator has the CanModifySettings Server Access rights.
Additional Monitor Access Rights are implemented.

WebUser

WebSkins are implemented. Now all domains that do not have files in the Account subfolder of the old custom WebUser Interface directory use the new Skins Interface.
The "Trash" mailbox can now be replaced with a mailbox alias (useful to create a "shared Trash" mailbox for several accounts).
The "Redirected" message status is set when a message is redirected or forwarded.
Renaming and remove mailboxes when the Show Subscribed option is enabled now renames/removes the mailbox and submailboxes from the Subscription list.
The Composer encodes non-ASCII attachment file names.
URLs for non-ASCII attachments are now composed in the UTF8 charset (to work with Windows Internet Explorer).
Address Books records are sorted now.
Attachments in the AppleDouble format are displayed correctly.
Auto-wrap algorithms have been changed.
The autoWrap "flowed" option has been added.
The charset parameter of message parts containing the ASCII-only symbols is ignored now.
The directory processing has been changed, the directory.wssp and the sessiondirectory.wssp pages have been modified.
Now when Sent and Drafts mailboxes are auto-created, they are auto-subscribed to and the mailbox list is refreshed.
More tags and tag parameters are cleaned out from HTML message portions now.

Directory

The folderIndex and adminDomainName attributes have been added to the CommuniGateDirectoryDomain objectClass in the default Schema.
The mailListSettings and groupOptions attributes have been added to the default Directory Schema.
The fileData attribute and the CommuniGateWebInterface objectClass have been added to the default Directory Schema.
The CAChain attribute has been added to the default Schema.
The mailListSettings and groupOptions attributes have been added to the Directory Schema.
Spaces around the comma signs are removed from the DN strings
The "search"-type operations now enter the subtrees stored on different Units.

Foundation

Thread priority routines are implemented.
Linux: the STTask routines have been changed to avoid leaving "zombies" of killed processes.
BSD: the STDictoryEnumerator routines have been changed to avoid directory-detection problems on NFS filesystems.
AIX: build parameters have been modified to support 6000+ threads.
Startup: Unix startup scripts have been modified to support a custom Startup.sh file in the {Base} directory.

LDAP

Start TLS (RFC2830) is supported now.
The Compare operation is implemented.
LDAP-based provisioning for regular domains is implemented (see the Directory Integration section of the manual).

SNMP

The WebAdmin Monitor interface to SNMP data is implemented.
The "total number of jobs"-type parameters now have the Counter data type.
HTTP monitoring elements have been added.
Processing of "not-found" elements have been changed to match the SNMPv2 specs.

ROUTER

The parser has been changed to allow special symbols in the left part of the alias records (records like <FAX=*> = * can be used now).
Now account alias records can be used for the Central Directory-based Routing.

RPOP

Now the Leave On Server option works with any types of UIDs remote servers present and the list of retrieved UIDs is preserved between Server restarts.
The APOP option is added to individual RPOP records.
When retrieving mail from Unified Domain-Wide Accounts without using Special Headers, the module now checks that To:/Cc: addresses can be routed to a Local account (rather than just checking that they are directly addressing the Main Domain).

Cluster

The "virtual mailbox" code has been redesigned.
Mailing List Archives can be browsed via any cluster member.
The GETLIST and UPDATELIST commands work with any Cluster member.
The Create/Rename/remove operations for Forwarders and Groups work with any Cluster member.
Accounts in Shared Directory-based Domains can be administered from any Cluster member.
The Cluster-Wide Rules are implemented.
The Cluster-Wide Router Table is implemented.
Cluster-wide Default Domain Settings, Default Account Settings, Alerts, and WebSkins are implemented.
The cluster-wide Protection settings are implemented.
The Dynamic Cluster Controller now tries to move the owner account to itself before creating a mailing list.
The IMAP and ACAP backend login responses now carry the "Relay" flag.
Slave startup procedure has been changed to avoid problems on systems with a large number of shared domains.
Header fields added with the frontend Server Rules are now stored by backends.

SMTP

The TURN command is implemented to support dial-up client sites running Microsoft Exchange servers.
Now the ATRN command is always accepted from non-client addresses (after the AUTH command).
A workaround for sending mail to buggy firewall relays is implemented.
The Wake up Now button has been added to the SMTP Settings WebAdmin page.
The "send encrypted wherever possible" option is implemented.
When message sending fails because the receiving host drops the connection, the message is re-enqueued (to avoid queue blocking for hosts that violate standards and just drop connections when they do not want to accept certain messages).
Input messages exceeding the size limit are received, but they are not stored in files.
The Advertise NTLM AUTH option is implemented.
Now when the module sends the STARTTLS command, it uses the SSLv3 (rather than SSLv2) "hello" operation.
The Force AUTH option is implemented.

Local Delivery

The X-Special-Delivery: test header field now works with the Local Delivery module, too: messages with that field are not stored in the Account mailboxes.
If a message is delayed by a Cluster backend, the entire account queue is suspended now.
The SNMP statistics elements have been implemented.

POP

The parameterless AUTH command is supported now (for MS Outlook compatibility).
Access to empty INBOX mailboxes has been optimized.
The STARTTLS/STLS option is seen in the CAPABILITY response only if the addressed Domain has the Security Certificate option enabled.

IMAP

The FETCH algoriths have been changed to avoid loading large messages into memory.
The STARTTLS/STLS option is seen in the CAPABILITY response only if the addressed Domain has the Security Certificate option enabled.
Non-standard parameters of the Content-Type and Content-Disposition fields are retrieved now.

CLI

The Cluster-wide versions of the commands dealing with Default Domain and Default Account settings are implemented.
The Alert Adminstration commands are implemented.
The LISTSUBSCRIBERS command is implemented.
The WRITELOG command is implemented.
Banned Header, Protection, and Cluster Protection commands are implemented
GETACCOUNTSUBSCRIPTION and SETACCOUNTSUBSCRIPTION commands are implemented.
GETMAILBOXALIASES and SETMAILBOXALIASES commands are implemented.
The GETCLUSTERRULES and SETCLUSTERRULES commands are implemented.
The GETCLUSTERROUTERTABLE and SETCLUSTERROUTERTABLE commands are implemented.
The GETACCOUNTEFFECTIVESETTINGS and GETDOMAINEFFECTIVESETTINGS commands are implemented.
The [GET|UPDATE|SET][ACCOUNT|DOMAIN] commands have been renamed into the [GET|UPDATE|SET][ACCOUNT|DOMAIN]SETTINGS commands. Old names continue to work, too.
The [GET|SET][CLUSTER]DIRECTORYINTEGRATION commands are implemented.
The Skin Administration commands are implemented.
The GETCLIENTIPS and GETBLACKLISTEDIPS commands are implemented.
The GETWEBUSERSESSION and KILLWEBUSERSESSION commands are implemented.
The SetAccountPassword command is implemented.

LIST

when archive mailboxes are swapped, the newly created archive mailbox gets the ACLs of the old archive mailbox
The "Hide From Address" option is implemented.
RFC2919 (LIST-ID header field) is implemented.
Additional subscriber address checks are implemented to avoid self-subscribing of the special mailing list addresses (-on, -subscribe, -off, etc.)

PIPE

Foreign Queue processing is implemented.
[STDERR], [FILE], [RCPT], and [RETPATH] tags are implemented.

Rules

Reply and React texts can start with a [charset] prefix.
The Vacation Rule priority is not set to 2, to make the server apply it before the Redirect All Rule.

Directory-Based Domains

Groups are supported now.
Custom WebUser and WebAdmin Interfaces are supported now.
Skin support is implemented.

Bug Fixes

Bug Fix: Cluster: the "addMessages" operation did not work correctly with Virtual Mailboxes.
Bug Fix: CLUSTER: WebAdmin: Personal WebSite administration did not work across Cluster members.
Bug Fix: ROUTER/DNR changes in 3.5b1 effectively disabled the SMTP RBL feature.
Bug Fix: RULES: the Reply/React operations in 3.5b1 incorrectly inserted the From:/Sender: header field.
Bug Fix: WebUser/WebAdmin: in 3.4b3 version custom file uploading could fail in regular (non-directory-based) Domains.
Bug Fix: CLUSTER: renaming a shared domain did not rename Domain Aliases on all cluster members.
Bug Fix: WebUser: non-standard MIME content types and subtypes could be returned corrupted.
Bug Fix: new (Skin-based) List Archive Browser pages did not have the correct charset specified.
Bug Fix: old (Web-User and WebAdmin) List Subscribers pages could crash the server if the list had the Require Confirmation option disabled.
Bug Fix: Skins: the default rules.wssp and rule.wssp files did not have the closing </SELECT> tag, causing problems for Netscape browsers.
Bug Fix: Skins: the webUserSiteIndex internal code routine misplaced the account name (was shown as an error code).
Bug Fix: WebUser: the Auto-wrap algorithm for "flowed" texts could cause crashes on some platforms.
Bug Fix: HTTP: the Redirect operation placed "http://" into the Location header even if the current connection was an https one.
Bug Fix: Viewing the "Queue" Monitor page could cause Queue deadlock.
Bug Fix: Rules: if the Reply/Reply All operation parameter was specified with the "+" sign and additional headers, the Cc: headers were not processed at all, and Bcc: headers caused parsing errors.
Bug Fix: Mailbox renaming for non-top level mailboxes did not work with the "rename Submailboxes" option.
Bug Fix: Directory: Remote Units: the Search operation returned "unstripped" DNs when the "Server Base" setting was non-empty.
Bug Fix: 3.3-3.5b9 a rare deadlock situation (in all prior versions) could stop ENQUEUER and DEQUEUER processors if an administrator opened the Message Monitor page.
Bug Fix: 3.2-3.5b9 message file stored in the MDIR mailboxes by Cluster backends could be improperly replaced with file links if the Reuse Temp Files option was enabled.
Bug Fix: 3.4-3.5b9: supplementary send-phase relay checking algorithms were not the same as the input-phase algorithms, causing relay refusals in some rare situations.
Bug Fix: 3.3-3.5b9: Directory: Local Unit: the delete record operation incorrectly checked if record children existed.
Bug Fix: 3.4-3.5b9: CLUSTER: the POP3 "relaying enabled" flags were not processed correctly on frontends.

3.4 28-Feb-01

Platforms

OpenBSD/Intel version is released.
BeOS/Intel version is released.

Domains, Accounts, Objects

Directory-based Domains: Personal WebSite support is implemented.
Directory-based Domains: Account Removal is implemented.
Directory-based Domains: Account Renaming now renames the Account files, too - if they reside within the DirectoryDomains file directory.
Directory-based Domains: Forwarders are implemented.
Directory-based Domains: when account is auto-created on first access, the INBOX mailbox and other account details (suppl. mailboxes, mailbox aliases, subscriptions, etc.) are automatically created, too.
Statistics on received messages (per Domain) is collected now.
The global DomainAliases.tdb file is phased out. Now the DomainAliases.data file in the Settings directory of the Domain subdirectories is used to store this domain aliases. The content of DomainAliases.tdb is moved automatically to those files, and the DomainAliases.tdb file is renamed into DomainAliases.tdb.unused.
Domains: the Send To Forwarders option has been added to the Mail to All panel.
Template: Initial (default.html) page for Personal WebSites can be specified now.
Template: Initial (Greeting) message can be specified now.
Forwarders: addresses without '@' and '%' symbols are qualified using the forwarder Domain name.
Account: the Collect Account Statistics setting is implemented (the Obscure page).
Account: the new method is used to recalculate the MailStore size stored in the .info files.
Passwords: the --BatchLogon command line parameter is documented.
Passwords: now the U-crpt password encryption can be used on Windows-based servers, too.
The Consult External Authenticator Domain Settings is implemented.

Mailboxes

MDIR mailboxes are now parsed correctly even if the message internal date was set to 0.
The ACL subsystem has been redesigned.
Foreign mailboxes can be renamed and deleted now.
The mailbox view creation algorithm has been changed.
The "~username" mailbox aliases are implemented now - they provide access to all shared mailboxes in the specified account.
Now all 'outer' mailboxes are automatically created when a sub-mailbox is created.

Queue

ENQUEUER design is multi-threaded now.
The Dequeuer messages can be customized now (using the General->Strings page).
the Copy Failure Reports option is implemented.
Delivery delay warnings are implemented.

Clusters

A separate Domain Controller is implemented.
The Account Controller is completely redesigned.
The Account and Domain Controllers now automatically move to a different backend server if the current Controller backend server fails.
Error codes reported by backends are now transparently relayed via frontends to client mailers.
POP Alert messages generated on backends are now relayed via frontends to client mailers.
Backend IMAP alerts issued at the login time are now passed to the client.
Errors on inter-server SMTP connections do not turn on delays and other anti-attack mechanisms.
Personal Web Site support now works in both Static and Dynamic Clusters w/o exceptions.
Domain Aliases are now properly initiated during the frontend and "slave" backend starups, and the domain aliases are properly removed from all servers when the domain is removed.
Non-local IP Addresses can be assigned to shared domains in Static Clusters.
Domain Aliases now work for Shared Domains (Dynamic CLUSTER).
Directory-based Domains can be used for Static Clustering now.
"Virtual" Mailbox objects are implemented (allowing an account opened on one server to access mailboxes in an account opened on a different server).

Router

ROUTER: algorithms used for Local Domain Routing are redesigned.

Security

The PLAIN authentication method now uses an empty challenge string.
The Hide Unknown Account Error option is implemented and it is enabled by default. See the Security section for more details
The External Authenticator internals are redesigned, its settings are moved to the Helpers page.

Plugins

Content Filtering/Anti-Virus API is implemented (see the Rules section).
McAfee scanning plugin is implemented.

Directory

Directory: Remote Units: the Server Subtree setting is implemented.
Directory: many attributes and objectClasses have been added to the Local Unit built-in Schema.
Directory: the Import LDIF and Import LMOD functions are implemented in the WebAdmin Interface.
Directory: the Search Results Limit setting is added to the Local Unit settings.
Directory: Local: the Enforce Schema setting is implemented (it is now enabled by default).
DIRECTORY: the "cn=schema" subtree is implemented. The Local Unit schema can be retrieved and extended using the 'cn=schema' record.

Directory Integration

The "UID Subtree" setting is implemented.
The mail attribute processing can be fine-tuned now. See the LDAP Module chapter for the details.
The 'Store Passwords for Regular Accounts' option is implemented.
The hostServer attribute can be renamed now.
Forwarder records are now included into the Domain directory subtree.

POP

The message size has been added to the RETR command response (to make Netscape mailer show its progress bar correctly).
The login response line contains the total size of all messages in the mailbox (to make the Netscape e-mail client happy).

ACAP

The PREFIX, SUBSTRING, and SUFFIX filters are implemented.

HTTP

The Personal Web Site prefix is now detected after URL decoding.

IMAP

The Content-Description field is processed now.
The MULTIAPPEND extension is implemented.
RFC2971 (the "ID" extension) is implemented.

LIST

The HELP command is implemented.
The Content-Transfer-encoding header field is removed from distributed 'feed' messages only if its value is '7bit' (previous versions removed the header with the value of '8-bit', too).
LIST: delivery to Lists now works without exceptions in both Dynamic and Static Clusters.
LIST: the "Special" posting mode processing has been changed to make it possible to subscribe lists to other lists.

RPOP

Processing is re-scheduled when an RPOP record changes its poll period value.

PIPE

The Queue (Wait) page is added to the WebAdmin Monitors.

SMTP

Relay To Client settings can be set to "no".
Relaying settings have been modified.
The Send Warnings setting is implemented.
If LDAP connections to the Central Directory fail, the SMTP module now returns a non-fatal error code for unroutable addresses.
The Local IP Address for outgoing SMTP connections can be specified now.
The server now reports the "DNS Loop" situation only if a remote host name resolves into an IP Address the SMTP Listener is enabled for.
The domain name used in the ATRN command must be included into the Hold Mail for Domains list.
The Advertise 8BITMIME option is implemented.

Local Delivery

The Send Warnings setting is implemented.
Delivery to "all" now works without exceptions in both Dynamic and Static Clusters.

Rules

Rules: the [RCPT] Execute operation prefix is implemented.
Rules: The Redirect All simplified Rule now has the "Preserve To/Cc fields" option.

SNMP

The CGatePro-MIB.txt file now includes the absolute OIDs.

WebUser Interface

The Session Time Limit setting is implemented.
If the Save a Copy option is selected on the Compose page and the mailbox with the specified name does not exist, a new mailbox is automatically created.
The Thai charsets support is implemented.
The Reply operation now uses a smarter algorithm to find plain text message portions.
The Strings.data file now contains the "Translator" dictionary that can be used to translate pop-up menus like those used in the Rule composer.
The "Print-friendly" message link is implemented, the Strings.data "MessageHeaderEnd" string has been modified.
The X-UUEncode MIME encoding is supported now.
The UUencoded files embedded into plain text messages are displayed now.
The keywords INBOX and Trash can be "translated" in the Strings.data file now, so these "fixed-name" mailboxes can be "renamed on screen".
The HeaderNames dictionary is added to the Strings.data file. It can be used to change the names of the RFC822 header fields used on the Mailbox and Message pages.
Japanese (ISO-2022-JP) characters are now correctly processed in the message header fields on the Compose page.
The UTF8 mode for the Chinese (Big5 and GB2312) encodings is supported now.
The UTF8 mode for the Japanese (ISO-2022-JP) encodings is supported now.

CLI

The StatReset keys were added to the Domain and Account Statistics data.
The CREATEWEBUSERSESSION command is implemented.
The GETWEBFILE, LISTWEBFILES, GETWEBFILESINFO, PUTWEBFILE, DELETEWEBFILE, and RENAMEWEBFILE commands are implemented.
The GETACCOUNTSTAT, RESETACCOUNTSTAT, GETDOMAINSTAT, and RESETDOMAINSTAT commands are implemented.
The GETACCOUNTLISTS and GETDOMAINLISTS return value types are changed to dictionary.
The GETDOMAINLISTS is now the preferred name for the LISTLISTS command. This command now works
The MAINDOMAINNAME command is implemented.
The DELETEMAILBOX, RENAMEMAILBOX commands are implemented.
The RefreshOSData, GetRouterTable, and SetRouterTable commands are implemented.
The LISTMAILBOXES, CREATEMAILBOX, GETMAILBOXINFO, GETMAILBOXACL, SETMAILBOXACL, and GETMAILBOXRIGHTS commands are implemented.

Admin

WebAdmin: Administrator Preferences are implemented (see the SysAdmin->HTTP section of the manual for more details).
WebAdmin: the Preferences settings are implemented for POP,IMAP,ACAP,LIST,SMTP,LOCAL,PIPE, and RPOP Monitors.
WebAdmin: the Preferences settings are implemented for the Domain Account List page.
WebAdmin: all numeric settings can now be set to some "other" (unlisted) value.
WebAdmin: now Account Rules can be specified in the Account Import file.
The "Drop Server Root privilege" options are implemented (Unix only). See the SysAdmin section for the details.

TLS/SSL

TLS 3.1 is implemented.
The Generate Key option is added to the Domain Security page.
Support for 2048-bit keys and long Certificates is added.
The Certificate Authority Chain option is implemented.
The nested TLS negotiations are supported now. They are used to implement strong (128-bit) SSL encryption with weak (40-bit), "export-legal" products.

Misc

Migration: the MoveIMAPMail and MovePOPMail utilities now support the --noTimeOut flag.
The old DataBase Managers (handling the .tdb and .ldb files) are phased out.
Notifier: the Log Level and Queue size can now be specified using the Obscure page.

Foundation

Foundation: the STSkipList data structure is implemented.
Foundation: the OS Password checking routines now check for the OS Account and Password expiration dates.

Bug Fixes

MAILBOX: the 'mailbox list' routine incorrectly capitalized names of 'xxxx/inbox' sub-mailboxes.
Log recording stopped if the total size of all logs generated since the last server restart exceeded 4GB.
Domains could not be removed if the domain Default WebUser Preference set has been used at least once.
WebUser: the default reply text routine could incorrectly insert quotation marks. In some rare cases it could cause a system crash.
WebUser: not all special symbols in mailbox names were properly URL-encoded.
WebUser: if a custom WebUser Interace file was empty, the server could crash.
TLS sessions interrupted in the negotiation phase could crash the server.
Domains: when the Main Domain was renamed, the Domain Directory Subtree was not renamed.
WebAdmin: the size-type parameters could not be set to 'Default (XXX)' values.
ENQUEUER: Messages with several 'Subject:' headers were processed incorrectly.
LIST: the 'banned' mode could not be set for lists with disabled archiving.
ACAP/IMAP: if the AUTHENTICATE command was interrupted, the NO response was returned instead of the BAD response.
ACAP: data strings with special symbols are returned as literals now.
POP, IMAP: SASL AUTH methods incorrectly supported the "short-form" syntax.
Directory: Local Units incorrectly processed some update requests ("add" attribute sets were processed as "replace" sets).
OS Passwords did not work on the AS/400 platform.
the default Directory Schema did not contain the "cn" attribute for the "organization" objectClass.
Directory: Multi-Level searches in Local Units could return incomplete DNs. This could also cause the LDAP module to stop on-the-fly creation of the "mail" attributes.
Incorrect parallel initialization could cause the PIPE module to crash on startup.
The RPOP module could accept To: and Cc: addresses as "trusted" when working without the "Special-header" option (this could result in unwanted relays).
Personal WebSite: URLs for site files did not contain URL escape symbols, some of the access utilities did not remove the URL escape symbols.
CLUSTER: POP logins could fail on backends.

3.3 16-Jul-00

Update Note: the 3.3 version uses a completely new Directory Manager. If some of your Domains had the Directory Integration setting set to Keep In Sync, open those Domain Settings in the newly installed 3.3 version, and click the "Insert All" button in the Directory Integration Panel.

Platforms

OS/400 version is released.
Linux/Sparc version is released.
Linux/StrongARM version is released.

Domains, Accounts, Objects

Groups are implemented. GROUP-related CLI commands are implemented.
Forwarders are implemented. FORWARDER-related CLI commands are implemented.
The Directory-based Domains are implemented.
The "Mobile" setting is enforced now: domains and account w/o that Access Mode cannot be accessed from non-client IP addresses.
The 2-Letter 2-Level Domain Hashing now provides a workaround for accounts with 1-letter names and for accounts that have the dot symbol as the second symbol of their names.
The Generate Index option is implemented. It can be used to decrease the restart time for domains with 100,000+ accounts.
OS Names can be explicitly set for individual Accounts.
Automatic "account is over quota" alerts are implemented. See the SysAdmin->Alerts section of the manual.

Mailboxes

Mailbox Aliases are implemented (see the Objects->Mailboxes section of the manual). Mailbox aliases can be used to provide access to foreign mailboxes for IMAP clients (such as MS Outlook / OE) that cannot process foreign mailbox names in the Mailbox Subscription lists.
Mailbox aliases are transparent now (included into mailbox hierarchy views).
The BSD Mailbox Manager now checks the size of text lines in new messages.
The .mdir (MailDir) format is redesigned to store the number of message text lines in message file names. This should help some mailers (such as Netscape) correctly process messages with attachments retrieved from Unix servers.

Queue

The DEQUEUER engine is redesigned and converted into a multi-threaded one.
Messages with extremely long header fields (>100K) are now rejected with the SMTP, RPOP, PIPE, or POP (XTND XMIT) modules.

Router

The Add Name to Non-Qualified Domain Names option is implemented.

Directory

The Directory Manager is implemented.
The File-based Directories are implemented.
The LDAP-based Directories are implemented (with caching)
The .tdb and .ldb DataBase Managers are being phased out.
Multiple Sub-tree storage units are implemented.
Schema editor is implemented.
Remove and Relocate Storage Unit operations are implemented.
Access Rights (ACLs) are implemented.
Browser and Access Right WebAdmin pages are implemented.
File(Local Units): the updates merging daemon is implemented.
Storage Unit deletion is implemented.

Directory Integration

The Directory Integration Settings are implemented (Domains section)
The special-case dc RDN attribute is supported now.
The Delete All operation now removes only the records for accounts created on this Server.
Mailing lists and Groups are now automatically added/updated in the Directory if the Domain Integration setting is set to Keep In Sync.

LDAP

Implementation is based on the Directory Manager now.
RFC2254 is implemented.
The 'mail' attribute is now composed on-the-fly for records of the CommuniGateAccount objectClass.
The authentication methods are improved and documented.
Case-insensitive dictionaries are now used in modify-type operations.

ACAP

The output buffering method has been changed.
Datasets entry names are case-insensitive now.

HTTP

WebUser port handling has been changed to support domain-style Personal Web Sites (i.e. http://user.domain.com can be processed as http://domain.com/~user/ now).
CGI environment variables HTTP_AUTHORIZATION and HTTP_REFERER are added.
CGI program name in a URL can now be followed by '/' and some URL string.
CGI programs now inherit the environment variables of the Server (under Windows, this is needed to open TCP/IP sockets in CGIs).

IMAP

The output buffering method has been changed.
The APPEND command now checks if the message text lacks the trailing EOL and fixes it. This is a workaround for the Netscape Messenger bug.

LIST

The Special posting mode is implemented to allow subscribing of a mailing list to some other list.
The First Digest At setting processing has been changed (see the LIST module manual).
The Digest generator has been modified to fit the RFC1153 requirements.
Feed headers and trailers are correctly inserted into base64-encoded messages.

RPOP

Added support for remote POP servers that do not return the number of messages in the initial UIDL response.

SMTP

The SIZE EHLO response does not include the '=' sign now.
The AUTH=address Mail From parameter is now supported.
Batch-splitting for messages with multiple recipients in one domain is implemented.
Log reporting of relayed messages is improved.
The Send Encrypted option is implemented to support server<->server encrypted message transfer.
RFC2645 (ATRN) is implemented in both server and client modes to support mail delivery to hosts with dynamic IP addresses.
Secure connections with forwarding servers are supported now.

Local Delivery

All-domain aliases are case-insensitive now.
The new Alert Text option allows you to specify the "over the quota" alert message text.
The Account Detail addressing Routing options are implemented.

Rules

The Current Date and Time of Day Rule conditions are implemented.
The Write To Log action is implemented.
Comparison operations now ignore the surrounding angle brackets in the envelope (Recipient, Return-Path) addresses.
The Current Day conditions are implemented.
The "[FILE]" and "[STDERR]" Execute command tags are implemented.

SNMP

SNMP agent is implemented.
StalkerMIB ObjectID has been changed to 5678 - the IANA-registered Stalker ObjectID.
WebUser monitoring agents are implemented.
SMTP monitoring agents are implemented.
IMAP monitoring agents are implemented.
TLS monitoring agents are implemented.
POP module totaling-type reporting is implemented.
64-bit Counters are implemented, some MIB elements have been switched to the COUNTER format.

WebUser Interface

Korean, Chinese, and UTF-8 encodings are supported now.
The Mailbox page now remembers the filter and search strings and the position in the selected message set.
The Empty Trash button is now implemented on the Mailboxes Page.
UTF8 Mode Setting is implemented. The Settings.html and Compose.html pages have been modified.
The Settings.html, RPOP.html pages have been changed (^m has beed added).
Compose: now the From, To, Cc, and Reply-To original letter headers are MIME-decoded first.
The Use MIME for Headers option is implemented. When this option is selected, the Subejct, To, Cc, and Bcc header fields containing non-ASCII symbols are MIME-encoded.
Alerts, Bye, Hello, List, ListArchive, Public, Rules, Rule, RPOP, Subscribers, Subscription pages now include the '=' (charset) macro symbols.
the '^$' macro (domain name) now works in all Account pages.
All ISO-8859-x and windows-125x charsets are now supported in the UTF-8 mode.
Longer, alpha-numeric "session passwords" are used now.
The DirectoryFields arrays are added to the Strings.data file.
The Files realm is implemented to provide access to arbitrary files in the WebUser directory.
Attachment file names and HTML text portions are MIME-decoded and (optionally) converted to UTF-8 now.
Texts using the japanese ISO-2022-jp charsets should be displayed correctly now.
The Directory Search page can now use the "internal CGatePro" names instead of the standard attribute names (i.e. RealName instead of cn).
Security: the Security Certificate (RFC2585) link is added to the Login page. See the Security section of the manual.
Non-ASCII mailbox names are supported now.
format=flowed processing (RFC2646) is implemented.
Korean (ISO-2022-KR) and Chinese (Big5) letters are correctly converted into HTML code.
The Certificate link is displayed only if the domain has a Custom Certificate.
The Mailing Lists link is displayed only if the domain has some mailing lists.
The Sent and Draft mailbox names are properly "defaulted" now. The WebUser Settings.html page has been changed.
The simplified Chinese (GB2312) charset is supported now.

Admin

The WebSite, BasicAccountSettings, and WebUserSettings Domain Access Rights are implemented.
The --noLockFile command line option is implemented.
Clicking the Refresh button on the General Settings page tells the Server to re-read the DNS addresses from the OS.
The Account Template page now includes the Initial Mailbox Aliases panel.
The Obscure WebAdmin Page: the Central Directory settings are phased out.
The GetAccountLocation, GetServerRules, and SetServerRules CLI commands are implemented.

TLS/SSL

client-side secure connections are implemented.
the SSL 3.0/3.1 interaction is improved (interoperability with both Microsoft products and open source utlitities).
TLS session recycler is implemented.

Foundation

DNS addresses are now correctly retrieved from the Windows 2000 Registry.
A faster version of 'write to file' method is implemented (now used to store aliases, forwarders, groups, and account info).

Manual

The WebMail section is created to contain all user-level information about the WebUser Interface.
The HTTP and HowTo sections are updated to provide the information about username.domain.dom Personal Web Site URLs.
The Directory, Directory Integration and Clusters pages are updated.

Bug Fixes

CLUSTER: slave nodes refused to connect to the controller if one of the shared domains had the WebCache option disabled.
SMTP, RPOP: if a remote server was misconfigured, garbage left in the response buffers could cause problems when connecting to other servers serving that remote domain.
the Header-field Rule condition did not process wildcard symbols correctly.
WebUser: the "New" counters on the Mailboxes page were not updated properly.
SMTP: the "relayHost" field was not always filled correctly resulting in garbage on the SMTP Monitoring pages.
CLI: GetAccountAliases command could crash the server is the specified domain did not exist.
ACAP: multi-level searches in Dictionary DataSets could cause synchronisation deadlocks.
ACAP: MODTIME responses for the SEARCH command were returned untagged.
ACAP: the optional metadata list in the RETURN clause of the SEARCH command was not properly parsed.
under IRIX, AIX, HP/UX daylight saving times for the local time zones was not detected correctly.
Rules: Rule Editor could crash the server if some of the condition or action fields were missing in the (customized) form.
POP: the CAPA command was not processed in the TRANSACTION state.
Binary zeros in message headers could crash the server.