v0.11.0

[0.11.0] - 2025-01-06

This version includes breaking changes to the configuration file, please read UPGRADING.md for details.
To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Spam filter rewritten in Rust for a significant performance improvement.
• Multiple spam filter improvements (#947) such as training spam/ham when moving between inbox and spam folders (#819).
• Improved distributed locking and handling of large distributed SMTP queues.
• ASN and GeoIP lookups.
• Bulk operations REST endpoints (#925).
• Faster S3-FIFO caching.
• Support adding the Delivered-To header (#916).
• Semver compatibility checks when upgrading (#844).
• Sharded In-Memory Store.

Changed

• Removed authentication rate limit (no longer necessary since there is fail2ban).
• Pipes have been deprecated in favor of MTA hooks.

Fixed

• OpenPGP EOF error (#1024).
• Convert emails obtained from external directories to lowercase (#1004).
• LDAP: Support both name and email fields to be mapped to the same attribute.
• Admin role can't be assigned if an acccount with the same name exists.
• Fix macro detection in DNS record generation (#978).
• Use host FQDN in install script (#1003).

v0.10.7

[0.10.7] - 2024-12-04

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Delivery and DMARC Troubleshooting (#420).
• Support for external email addresses on mailing lists (#152).
• Azure blob storage support.

Changed

Fixed

• Some mails can't be moved out of the junk folder (#670).
• Out of bound index error on Sieve script (#941).
• Missing User-Agent header for ACME (#937).
• UTF8 support in IMAP4rev1 (#948).
• Account alias owner leak on autodiscover.
• Include all events in OTEL traces + Include spanId in webhooks.
• Implement todo!() causing panic on concurrency and rate limits.
• Mark SQL store as active if used as a telemetry store.
• Discard empty form submissions.

v0.10.6

[0.10.6] - 2024-11-07

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Enterprise license automatic renewals before expiration (disabled by default).
• Allow to LDAP search using bind dn instead of auth bind connection when bind auth is enabled (#873)

Changed

Fixed

• Include preferred_username and email in OIDC id_token.
• Verify roles and permissions when creating or modifying accounts (#874)

v0.10.5

[0.10.5] - 2024-10-15

To upgrade replace the stalwart-mail binary.

Added

• Data store CLI.

Changed

Fixed

• Tokenizer performance issue (#863)
• Incorrect AI model endpoint setting.

v0.10.4

[0.10.4] - 2024-10-08

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Detect and ban port scanners as well as other forms of abuse (#820).
• ACME External Account Binding support (#379).

Changed

• The settings server.fail2ban.* have been moved to server.auto-ban.*.
• The event security.brute-force-ban is now security.abuse-ban.

Fixed

• Do not send SPF failures reports to local domains.
• Allow nonce in OAuth code requests.
• Warn when there are errors migrating domains rather than aborting migration.

v0.10.3

[0.10.3] - 2024-10-07

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin. Enterprise users wishing to use the new LLM-powered spam filter should also upgrade the spam filter rules.

Added

• AI-powered Spam filtering and Sieve scripting (Enterprise feature).

Changed

• The untrusted Sieve interpreter now has the vnd.stalwart.expressions extension enabled by default. This allows Sieve users to use the eval function to evaluate expressions in their scripts. If you would like to disable this extension, you can do so by adding vnd.stalwart.expressions to sieve.untrusted.disabled-capabilities.

Fixed

• S3-compatible backends: Retry on 5xx errors.
• OIDC: Include nonce parameter in id_token response.

v0.10.2

[0.10.2] - 2024-10-02

To upgrade first upgrade the webadmin and then replace the stalwart-mail binary. If you read these instructions too late, you can upgrade to the latest web-admin using curl -k -u admin:yourpass https://yourserver/api/update/webadmin.

Added

• OpenID Connect server (#298).
• OpenID Connect backend support (Enterprise feature).
• OpenID Connect Dynamic Client Registration (#4)
• OAuth 2.0 Dynamic Client Registration Protocol (RFC7591) (#136)
• OAuth 2.0 Token Introspection (RFC7662).
• Contact form submission handling.
• webadmin.path setting to override unpack directory (#792).

Changed

Fixed

• Missing LIST-STATUS from RFC5819 in IMAP capability responses (#816).
• Do not allow tenant domains to be deleted if they have members (#812).
• Tenant principal limits (#810).

v0.10.1

[0.10.1] - 2024-09-26

To upgrade replace the stalwart-mail binary.

Added

• OAUTHBEARER SASL support in all services (#627).

Changed

Fixed

• Fixed migrate_directory range scan (#784).

v0.10.0

[0.10.0] - 2024-09-21

This version includes breaking changes to how accounts are stored. Please read UPGRADING.md for details.

Added

• Multi-tenancy (Enterprise feature).
• Branding (Enterprise feature).
• Roles and permissions.
• Full-text search re-indexing.
• Partial database backups (#497).

Changed

Fixed

• IMAP IDLE support for command pipelining, aka the Apple Mail iOS 18 bug (#765).
• Case insensitive INBOX fileinto (#763).
• Properly decode undelete account name (#761).

v0.9.4

[0.9.4] - 2024-09-09

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Support for global Sieve scripts that can be used by users to filter their incoming mail.
• Allow localhost to override HTTP access controls to prevent lockouts.

Changed

• Sieve runtime error default log level is now debug.

Fixed

• Ignore INBOX case on Sieve's fileinto (#725)
• Local keys parsing and retrieval issues.
• Lookup reload does not include database settings.
• Account count is incorrect.