Jan
09
2024
By dev on

Please download the new version at https://mendelson-e-c.com/opensource

What is new

*Added the ability to automatically detect the mail server settings based on the specified notification mail address
*Added a new dialog to automatically determine the mail server configuration if you only know the recipient mail address for setting up the notification mail
*Client improvements: Added a notification badge for configuration issues in the status bar, set up UI scaling of the list of configuration issues
*Revision of the import/export functions of the certificate manager
*Certificate Manager: It is no longer possible to expand parts of the trust path tree by double-clicking
*New icons in the certificate manager
*When changes are made to incoming port listeners, the bound TLS key alias is now always displayed in the log
*The server settings are now cached in the server processing, which significantly reduces the number of database accesses
The information about the sender of a send request (manual, dirpoll, ..) has been added to the log.
*Certificate management: Display of the signing algorithm and the name of the EC curve in the overview
*Key generation: Add support for SHA-2 512, SHA2 512 PSSRSA, SHA3 512 and SHA-3 512 PSSRSA signed keys
*Addition of the option to generate a Subject Key Identifier (ski) extension in the certificate manager's key generator
*The previously file-based key/certificate management has been moved to the database. This results in less file IO and more stable operation. R/O and access problems to keystore files are no longer an issue during operation.
*Added the ability to export a full keystore file from the certificate manager.
*Added the ability to import a full keystore file into the system at server startup
*Removed several file system based configuration checks for keystore files
*Removed several keystore file related server settings and configuration interfaces
*Revision of the interface for setting up the port listener
*Added a notification option for system problems

Solved problems

*The problem 'Comparison method violates its general contract', which occurred very rarely with internal certificate access, has been fixed
*The inbound port listeners did not recognize a change of the TLS private key
*There was a problem in the TLS certificate manager that it was not possible to delete all expired certificates at once
*Fixed an issue where port listeners were removed if they were not properly displayed on system startup
*Fixed an issue where port listeners were not started for a running server if there was no TLS key and then a new one was set

Updated/new software packages

*Update to Bouncycastle v176 (Crypto API)
*Update to Lucene 9.8.0 (indexing of system events)
*Update to MINA 2.2.3 (client-server interface)
*Update to HSQLDB 2.72