Für den FirstClass Server Version 9.1 wurde für die Windows Version die InternetServices SP2 veröffentlicht. Es kann von Kunden mit gültigem ServiceVertrag im Downloadbereich abgeholt werden.
Mit freundlichen Grüßen
Yvonne Ewald
kki FirstClass Deutschland eK
Erlenweg 9 • 64665 Alsbach
Tel: +49 6257 940 0 • Fax: +49 6257 940 100
FC: +49 6257 940 500 • FC via IP: fc.kki.de Port 510
Offizieller Distributor für FirstClass und Third Party Zusatzprodukte
----------------------------------
AG Darmstadt HRA 6554
Inhaber: Andreas Kölsch
Communications Solutions Group Product Bulletin |
Title: FirstClass 9.1 Internet Services SP2 Release Announcement
Bulletin Number: 212
Version: 1.0
Date: May 12, 2009
Audience
This Product Bulletin is intended for distribution to FirstClass Division's installed base Administrators, Customer Support Center team, Business Development Center team, Account Managers, and Channel Partners.
Description
This is an announcement of the general availability (GA) of FirstClass 9.1 Internet Services SP2 for Windows, OS X, and Linux platforms.
The new product versions are:
- FirstClass Internet Services 9.1 Build 9.221 for Windows
- FirstClass Internet Services 9.1 Build 9.221 for Mac OS X
- FirstClass Internet Services 9.1 Build 9.221 for Linux
Minimum system requirements are:
• FirstClass 9.0 SP1
- FirstClass Server 9.0 Build 571
- FirstClass Internet Services 9.0 Build 8.949
Availability
FirstClass Internet Services 9.1 SP2 is now available to customers who have a valid maintenance and support contract. FirstClass Update Services will automatically download this software update to your server. If your server’s Update Services schedule is turned off, you may manually initiate an Update Services request to receive the update, or you may download the update from the FirstClass online server FCOL (fc.firstclass.com).
To renew or purchase your M&S contract, please contact your regional Sales Support Center listed at the end of this bulletin.
Please ensure that you have your server specific FirstClass 9.0 license, and review the FirstClass Internet Services 9.1 SP2 Release Notes, ReadMe First! text, and instructions accompanying the installer thoroughly before proceeding with the upgrade.
New Product Features and Enhancements
Security Alert
A potentially serious security vulnerability affecting FirstClass Internet Services has been discovered. Because of the nature of this problem, we are taking the step of sending out this Security Update.
Overview
This vulnerability has the potential to affect sites running FirstClass Internet Services. As a result of this vulnerability, it may be possible for unauthenticated users to access outbound messages queued to be sent via SMTP.
Affected Components
FirstClass Internet Services 8.x and FirstClass Internet Services 9.x. Specifically, the FirstClass Web User Interface. Releases earlier than 8.0 may be affected but have not yet been tested.
Affected Platforms
This affects FirstClass Internet Services on all supported platforms.
Other Internet Services features and fixes (since 9.207) contained in this release are listed below:
- Fixed issue where the source character set gets incorrectly reset to the override character set.
- Performance improvements in Unicode character/substring searches.
- Fixed corrupt Japanese characters in the subject of SMTP messages sent from Outlook.
- Fix for UTF-8 sequences > 2 bytes long being broken by line wrap code.
- Fix to prevent non *.rez & *.fc files from interfering with version checks for files in the resource map.
- Fix to prevent corrupt resource files from superseding existing (non-corrupt) versions.
- Corrected resource loading error.
- Fixed false positive override resource error when merging multiple override resources into the active resource list.
- Resource manager is now reset between hits.
- Additional items are now cached by the web server for improved performance.
- Fix to remove corrupt override resources from the cache.
- Fixed an error where the HTTP cache verification function would not terminate properly.
- Fix for excess bullets when styles change (color, font, etc) within a list.
- Fixed gradient caching.
- Fixed alpha channels for generated gradients & color swatches.
- Fix mistranslation of attachment names that come from winmail.dat or otherwise have no identifiable character set designation.
- Fixed crash involving winmail.dat on inbound SMTP.
- Fixed an issue where messages from Lotus Notes arrived with no body.
- Fix for Groupwise extra space before start of top level message/RFC822 misencoding.
- Ignore stationery items in the IMAP server.
- Fixed wrong date on IMAP sent items.
- Handle more error codes to fix an issue with stuck IMAP sessions.
- Undo dot stuffing when rendering messages in IMAP
- NO COPY error message print fix in IMAP.
- Fixed an IMAP crash that occurred when imbedded images had resource forks.
- Fixed bad MIME structure when sending a message with formdata attachment.
- Fix for issue where multiple To: names are separated by internet headers when the message is retrieved via POP3.
- Fixed problem where outbound mail would be sent with another users alias as the From name if the named matched another user on the system.
- Fix for some outbound SMTP crashes.
- When a 4xx response to SMTP commands other than RCPT TO is received, the message is delayed without trying to contact the next mail exchanger (gray list support). The old behaviour can be restored by adding the following line to the Config section in inetsvcs.cf:
SET_SMTPOldTempFailureMode = 1
- Empty email addresses are no longer returned in LDAP queries.
- Directory entries with no or empty email addresses no longer match mail=present terms in LDAP searches.
- Fixed an issue where subsequent responses to unhandled protocol ops were not returned after the first one in LDAP.
- Better accounting of connections in some error conditions, and messages in LDAP.
- Fix to prevent new users with the same name as an existing user from overwriting the existing user's alias record.
- Fix line wrap handling bug when tag name is at end of buffer.
- Fix for trailing line breaks in table cells & body via the web client.
- Fixed missing "LENGTH" argument in "InFolder" column, cause of some display issues in enhanced mode advanced search.
- Fix for mailbox grouping and sorting issues via the web client.
- Fix ParseDuration to properly handle x-char duration periods for calendar events via the web client.
- Fixed crowmap crash.
- Changes to wait for accepted events to move from the mailbox to the calendar before sending the response (fixes 1081's on accept, due to the redirect happening before the move completes).
- Set limits on the max number of links and table cells decoded in incoming HTML, in inetsvcs.cf (default values shown):
[Config]
SET_HTMLMaxLinks = 500
SET_HTMLMaxTableCells = 250
- Fixed crashes caused when parsing invalid HTML tag parameters involving percentages.
- Altered GetSecureSiteHostRequest to be able to extract the SSL port for the secure site.
- Fixed an issue that can occur when the alias table has to be rebuilt after a Server side OrgDir rebuild.
- Fix for content-type overriding & home pages ("iCal mimetype fix".)
- Enhanced X-FC-SERVER to be able to get information about any companion SSL protected login site.
- Fixed UID SEARCH with message sequence range returning too many results, causing iPhone to hang.
- Made change to handle multi-line responses to all commands, not just the initial greeting.
- Fix for URL parameters being dropped on MS&L site redirect.
- Fix for issue in chunked transfer encoding in HTTP PUT requests.
- Fixed issue where CGI output that needs buffering would leave the buffer handle locked after the first chunk of data from the CGI, causing the rest of the output to be discarded.
- Corrected handling of eServerLimit errors on login form.
- Fix for missing auth challenge verification in login form posts.
- Fix for memory leak.
- Added support for recognizing damaged heap extent free lists, reporting the damage with a hex dump (up to 10 times by default) and traceback, and marking those extents as damaged and avoiding them as much as possible. Hex dumps limit supported by "HeapDumps" option, tracebacks controlled by "HeapTracebacks" option.
These should only be enabled on the direction of FirstClass Support.
On Windows, these are set in the [Debug] section of InetSvcs.INI, located in the $windows$ directory:
[Debug]
HeapDumps=10
HeapTracebacks=1
On OS X and Linux, these are set as environment variables before fcisd is run:
DebugHeapDumps=10
DebugHeapTracebacks=1
Enabling HeapDumps enables HeapTracebacks by default.
- Added more corrupt resource reporting:
"ActivateResource: Cached override resource <resource name> (Version <version #>) for user "<userid>" is corrupt"
(always)
"Unable to activate session resource <resource name> (Version <version #>), reason <error code>"
(at HTTP Server level 2)
- Fixed a logging message in CreateUser that was crashing.
- Further improved logging for corrupt override resources:
- differentiate between authenticated & unauthenticated users.
- log the path, so the offending container is known, for unauthenticated users, include the domain (so the correct MS&L site to look in is known).
- Fixed IS monitor update problems.
- Improved SA kernel performance.
Contact Information
kki FirstClass Deutschland eK
Erlenweg 9 • 64665 Alsbach
Tel: +49 6257 940 0 • Fax: +49 6257 940 100
FC: +49 6257 940 500 • FC via IP: fc.kki.de Port 510
Offizieller Distributor für FirstClass und Third Party Zusatzprodukte
Diese Mail / dieses Fax wurde mit einem FirstClass Server versendet.
----------------------------------
AG Darmstadt HRA 6554
Inhaber: Andreas Kölsch
FirstClass, Open Text and the associated logos used herein are trademarks of Open Text Corporation and/or its subsidiary used under license. All other trademarks are the property of their respective owners.
End of Bulletin
| 