Release Notes Version 3.3.x
Version 3.3.19 (released 2019-12-24)
- Security: Ensure that files viewed only works through the interface and not directly accessed (potential cross site scripting attack).
- Security: Use a stricter session cookie policy to prevent cross site scripting.
- System images from 3.3.19 and onwards will have a simplified disk layout that enables automatic disk expansion.
- Added check to ensure root disks created with the previous disk layout does not expand beyond 2TB — you can create a new system with 2TB+ root disk, or create/expand a 2TB+ data disk just fine with the previous disk layout, you just cannot create a sub 2TB root disk and expand it beyond 2TB. Systems created with the updated disk layout in images from v3.3.19 and onwards can expand just fine beyond 2TB.
- Systemlog optimizations for improved disk usage.
Version 3.3.18 (released 2019-12-10)
- In some cases, HTTP/2 could cause HTTP Errors during uploads and has been removed.
Version 3.3.17 (released 2019-11-11)
- Fixed a problem where uploading Folders in Shares where the folder structure wasn't saved properly.
- Fixed a problem where the system internal failure notice was not displayed on internal failures.
Version 3.3.16 (released 2019-10-08)
- Fixed the FileLink table filter.
- Fixed a problem where users sometimes would not be set as email verified for new accounts.
- Fixed a race condition when uploading attachments.
- Fixed a nightly maintenance issue where FileLinks sometimes couldn't be deleted.
- Fixed a website configuration problem with multi-domain server-server migrations.
- Updated validation for 405 method not allowed errors.
Version 3.3.15 (released 2019-08-22)
- Added Outgoing proxy configuration to the F2 Setup menu.
- Fixed an issue where the FileLink max expiration could be exceeded using the API.
- Set the FileLink expiration to the default limit if the expiration date is in the past.
- Fixed a problem downloading files from shares using the API.
- Fixed a problem where the daily system status email could be send to the wrong address if the system hostname was not a FQDN.
- Increased the ClamAV system watchdog start grace period.
- Fixed Certificate Wildcard CSR generation.
- Fixed a problem where User Filedrops wouldn't work with a different URL than the configured Public URL.
- Fixed FTPdrops with dots "." in the name.
- Fixed a problem with very long filenames in Shares.
- Fixed a problem where FileLink Expiration wasn't displayed properly on tablet screens and smaller.
- Fixed a problem where Download Receipts was sometimes not sent for Filedrops.
- Fixed a problem where the Share folder view was sometimes cached with incorrect data.
Version 3.3.14 (released 2019-07-23)
- Simplified the Getting Started procedure.
- Fixed a problem where the local hostname sometimes wasn't saved properly.
- Fixed a problem with the Let's Encrypt validation logging.
- Fixed a problem where the System Log and Activity Log sometimes wasn't accessible.
Version 3.3.13 (released 2019-07-19)
- Fixed an issue that in some instance could issues for sysadmins to login (issue since v3.3.12).
- Updated the crc32 calculation engine.
Version 3.3.12 (released 2019-07-18)
- Fixed licensed user calculation in the dashboard (External Users with Share write access wasn't calculated).
- Add detection for nvme disks.
- Re-scan the list of drives when going to Admin → System → Data Disk or running the `ft change_data_disk` command, making reboots less necessary.
- Fixed an issue with Reverse Proxies that send both the Client-IP and X-Forwarded-For http header (the X-Forwarded-For header will be used).
- Show a warning in the web interface if the connection is being detected through a Reverse Proxy but a trusted proxy hasn't been configured.
- Enable Resend validation after admin create user with no password.
- Ensure Share Notifications for a user are deleted when a user is deleted.
- Updated license validation check to return error messages using the API for API requests with invalid license.
- Automatically disable Clam AV scanning on systems with less than 2GB Ram.
- Updated web application worker processes to available CPU cores, updated web application worker threads — this will use less memory on smaller systems and scale better for bigger systems.
Version 3.3.11 (released 2019-06-26)
- Updated Emaildrop to permit UTF-8 characters.
- Updated restrictions in SMTP recipient limit from 2KB to 1MB.
- Fixed a problem with Let's Encrypt that sometimes wouldn't renew properly.
- Fixed a problem where sometimes CSV logs couldn't be downloaded.
- Security: Kernel update for CVE-2019-11477
- Fixed Filedrop uploads for user Filedrops when there was a mismatch between Public Protocol configuration and connecting protocol.
- Don't sent download receipts to the message owner when they download files themselves.
- Added notification for Zipped downloads if not all files can be downloaded.
- Fixed downloading notification to only register downloadable files as downloaded for Zips if not all files can be downloaded.
- Updated AV scanning notification for shares to log in Shares Log if a file has been deleted because of an AV infection.
- Fixed a problem migrating from older LiquidFiles instances to v3.3.
- Local Users Receive Only have access to Filedrops.
Version 3.3.10 (released 2019-06-04)
- Fixed an issue where Let's Encrypt Certificates sometimes didn't renew automatically.
- Send License Notification emails to Sysadmins and DomainAdmins from the LiquidFiles system when it's getting close to renewal.
- Send Notifications to Sysadmins when the system has been automatically updated.
- Fixed a problem where it wasn't possible to view groups using the API.
- Updated the ft hostconfig command line command to be able to configure https and http requirements.
- Updated the Force Public Hostname setting to redirect instantly if a browser connects with the wrong URL.
- Set the Secure Cookie flag for the test_cookie if conneting using https.
- Updated Emaildrop with better support for different charsets (i.e. umlauts).
- Allow Emaildrops with no message body.
- Fixed an issue with chunked uploads to shares using the API.
- Added pagination to the FileLinks view.
- Fixed an issue where Email addresses where required to be unique systemwide instead of domainwide.
- Fixed an issue uploading to Filedrops with different domains using the same Filedrop name.
- User interface fixes.
- Added setting to set File Request expiration.
- Added emaildrop private message option.
- Added use download Content-Type setting.
- Added setting to disable IPv6.
- Added FTPdir overwrite protection setting.
- Fixed a problem where Filedrops was sometimes not sending download receipts.
- Fixed a problem where Shares Read-Only permissions was sometimes not enforced.
- Fixed SAML authentication when the default LDAP group is set to not login.
- Fixed a problem with LDAP authorization using shortname as user id.
- Cleaned up search and ordering for Message, Attachment and Download pages.
- Updated Content-Type client side detection.
- Use full text indexing of Messages.
- Show a not found page instead of redirect for invalid Filedrops.
- System Filedrops are now case insensitive.
- FTPdrop logins are now case insensitive
- Fixed a problem where User Filedrops wasn't working unless a Filedrop max file size was configured.
- Updated message authorization log.
- Updated weekly and daily maintenance with better logging of attachment id's.
- Fixed a problem where sometimes files added before v3.3.x would sometimes show up as unavailable.
- Fixed a problem where Maps wasn't being displayed properly.
- Fixed wrong download URL for API.
- Message size and message filename is not sortable (Admin → Data → Messages)
- Fixed a problem uploading files for secondary domains.
- Fixed a CSRF problem for reverse proxies going from HTTPs to HTTP.
- Update to the latest stable version of Rails.
- Added FileLink password function
- Added Download API.
- Fixed Filedrop max size check.
- Various fixes relating to mixed case email addresses.
- Use case insensitive matching for Filedrops.
- Fixed a problem with case-sensitive emails when retrieving API keys.
- Fixed a problem using chunked uploads to attachments.
- Added CSV export to the Admin → Activity Log.
- Don't allow admins to access messages from Admin → Data → Attachments if amdin access to data has been disabled.
- Fixed a problem with custom Favicons.
- Fixed a problem in Microsoft Edge that would update the Access Permission when disabled.
- Fixed an issue using non-standard ports.
- Fixed a problem with the message expiration.
- Fixed an issue with the expiration introduced in v3.3.2.
- Fixed expiration expires after calculation.
- Fixed the authorization checkboxes when default authentication is set to not require authentication.
- Redirect on the home screen if not using the correct public hostname.
- Added port numbers to public hostname.
- Return better API error messages for disabled features.
- Load the autocomplete dropdown above the html editor header toolbar.
- Fixed viewing the inbox with mixed case email addresses.
- Fixed a problem upload 0 byte files.
- Permit content-types with comma and spaces.
- Security: Updated Ruby on Rails to fix CVE-2019-5418.
- Version 3.3.0, please see the major change list below to see what's changed since v3.2.x.
- Database change MySQL/MariaDB → PostgreSQL. The database change itself should be transparent but should give stability improvements and will provide other intermal improvements.
- Removal of the search engine. The search engine that's been present between LiquidFiles v2.3 and v3.2 has been removed. We've been struggling with the search index getting corrupted, the search engine causing upload failures and similar issues. Searching will now be powered by internal functions in PostgreSQL and while database searching is not as fast and as flexible as when using a dedicated search engine, we believe it's fast and flexible enough for LiquidFiles.
- Added ActionScripts — Scriptable functions to automatically execute scripts when a file has been delivered to a user, when a file has been uploaded to a share or when sending a message, and for password validation.
- Added SMS Two-Factor Authentication.
- Added Delete Expires After to leave expired attachments on the system for a period of time, defaults to 7 days.
- Added a function to limit FTP Masquerading to non-local IP addresses.
- Added Settings in Admin → Groups to Enable or Disable Admins ability to access users messages and download attachments.
- Added Settings in Admin → Groups to Enable or Disable logging when Admins download a users attachments.
- Added Email Bcc all function.
- Updated the File Request view to be able view and delete File Requests.
- Reworked the Public URL settings to make it clearer between the local hostname and the Public URL. We now force setting a Public URL for the LiquidFiles system which should remove some confusion of what the URL is set in email sent and so on. The Public URL will be set from the Email Base URL if configured, and the system hostname if the Email Base URL is not set.
- Enabled HTTP/2 — HTTP/2 is supported in all modern browsers and will give performance improvements, both over longer distances and in local environments.
- Added binary uploads — when sending files with the web interface and our clients, files are uploaded in binary format rather than html form-based uploads. This should give perfomance improvements.
- Lots of added user interface caching that will make the LiquidFiles user interface a lot faster for users and admins.
- Added support for TLS v1.3 and made TLS v1.3 & TLS v1.2 only the default network protocol requirement.
- Updated versions of Ruby on Rails and lots of internal libraries updates and changes.
Version 3.3.9 (released 2019-05-06)
Version 3.3.8 (released 2019-05-01)
Version 3.3.7 (released 2019-04-23)
Version 3.3.6 (released 2019-04-11)
Version 3.3.5 (released 2019-04-09)
Version 3.3.4 (released 2019-04-03)
Version 3.3.3 (released 2019-03-26)
Version 3.3.2 (released 2019-03-26)
Version 3.3.1 (released 2019-03-25)
Version 3.3.0 (released 2019-03-19)
Major changes from version 3.2 to version 3.3
Deprecations between v3.2 and v3.3
HTML4 uploads — IE9 and below
Due to underlying changes, it was no longer possible to support HTML4 uploads, which pretty much means that Internet Explorer 9 and below can no longer upload files. After installing LiquidFiles v3.2.51 and later, you will be required to use a HTML5 compliant browser, Internet Explorer 10 and later, Chrome, Firefox, Safari or others.