Note
You are viewing the documentation for an older release of Interworx (8.0). To see documentation for the current generally available release of Interworx, click here: 8.2.
Changelog¶
Contents
8.0.30 build 2971 (2025-02-17) - Release¶
Security¶
Resolved issue where exploiting an .htaccess file could potentially provide access to other files on the server. Details can be found here
Enhancements¶
After IW7 > IW8 in-place upgrade, IW8 will attempt to convert any branding options left over from IW7 into IW8-compatible branding packages
The InterWorx installer has been updated to ensure that the optional ‘ftp’ package is installed by default. This package allows InterWorx servers to connect to other FTP servers for tasks such as transferring scheduled SiteWorx backups. It separate from the FTP package that allows FTP clients to connect to InterWorx
MariaDB made upstream changes to backwards compatibility for MariaDB dumps. DB dumps made from MariaDB 10.5+ servers are no longer compatible with previous versions. InterWorx will now block the ability for backups from servers that are running MariDB 10.5+ to be imported to servers running versions of MariaDB before 10.5
Bug Fixes¶
Resolved issue where clicking Rescan and Retry in the new migration tool could result in a javascript 600 error
Corrected an issue where the webmail login page was missing the logo and background when accessed via domain.com/webmail
Fixed an issue in CloudLinux plugin that prevented the GUI from loading
Corrected an issue where backups transfered via FTP/SCP would fail due to an exception
The migration analyzer for the new migration tool will now return errors in a cleaner manner
Corrected an issue with the new migration tool regarding comparison of remaining disk space with the estimated size of a database while doing database dumps
Resolved issue where specific locale settings could cause perl warnings while merging logs in the daily cron
Added support for MySQL views to backup and imports
Resolved issue where selecting “pull IPV6 address from pool” on the IP Manage page resulted in a “Call to undefined method IWorx_IP::syncConfig()” error
Fixed issue where, if more than one user was subscribed to notifications from a problem detector, the alert email would not be sent
Corrected an issue where the default branding package set by a server administrator could not be loaded for Reseller users
Httpd-iworx version 2.4.62-9 (2025-02-03) - Current Version¶
Security¶
Access to non-whitelisted imaged extensions in branding folders is now forbidden
Hotfix 597 (2025-01-21)¶
Bug Fix¶
Added support for MySQL views to backup and imports
Hotfix 595 (2025-01-20)¶
Version 8.0.29 build 2956 (2024-02-03) - Base/Stable¶
Bug Fixes¶
Resolved issue where mail directory structure could be incorrect after using new migration tool
Fixed a bug that prevented the CloudLinux plugin from installing
InterWorx will now forbid the use of the name ‘default’ for Mailman mailing list, as creating a mailing list with this name will force all email for the domain to be delivered to the mailing list instead of the expected inboxes
The new migration tool will no longer throw an exception when attempting to rsync files that may not exist in specific instances
Resolved issue where the new migration tool periodically responded with “analyzer missing” error
Version 8.0.28 build 2949 (2025-01-27)¶
Enhancement¶
The new migration analyzer has been updated to avoid hanging when attempting to push data exceeding allowed limits
InterWorx will now gracefully fail if there is an issue when attempting to setup the .well-known and .htaccess files it creates to create Let’s Encrypt certificates, instead of stopping the daily cron, entirely, to smooth the process of certificate generation
Bug Fixes¶
The installer will use the proper lowercase package name for mariadb-devel when the MariaDB version flag (-m) is set to ‘system’
Fixed missing icons on the webmail login page
Fixed a bug that prevented reseller limits page from displaying within CloudLinux plugin
Version 8.0.27 build 2945 (2025-01-13)¶
Enhancements¶
Acronis plugin will now provide an error when gathering resource statuses if the number of resources found is larger than the query limit of the search. This should make diagnosing issues with ResourceNotFound errors easier
Due to upstream changes, when installing CloudLinux on an InterWorx server, interworx-plugin-cloudlinux must be installed prior to running the CloudLinux deploy script
Version 8.0.26 build 2935 (2025-01-06)¶
Enhancements¶
The InterWorx installer will now report the total memory installed on the system while checking system requirements instead of just the amount of unused memory
The System Health page will now detect and report when SMTP virus scanning is enabled but the ClamAV is not running
NodeWorx will now display a banner at the top of the Virus Filtering page in NodeWorx when SMTP virus scanning is enabled but ClamAV is not running
Removed the Cloudflare plugin, due to compatibility issues
InterWorx will no longer suppress yum errors during the process of updating itself
InterWorx now provides a setting in the iworx.ini file that can disable the sending of the ‘SpamAssassin Bayes Update’ email. This setting is system-wide and not configurable per-user
During imports, InterWorx will no longer create the default {ipv4} A record when the primary A records of the imported account are all pointed to external IPs
Removed sni_enabled setting from iworx.ini and the Settings page in NodeWorx as it’s no longer needed, since SNI is the default standard
InterWorx will now clean up expired PHPMyAdmin sessions with an hourly cron. The lifetime of these sessions is also configurable in the iworx.ini file
Bug Fixes¶
Installing a system certificate will no longer return a banner message stating ‘undefined’
The default InterWorx vhost template will no longer include instructions on where to enable custom includes, as this functionality is only allowed by the server administrator for security reasons
Resolved issue where querying SiteWorx accounts at the CLI returned and unnamed variable
Dropdown menus will no longer appear behind sidebar elements in Firefox
The Advanced Domain options page will no longer show domains that the user does not have access to. Note: This is a UI update only, the users were never able to modify domains they did not have access to
Corrected an issue where some helpful success and error messages were suppressed when not accompanying a neutral status message
Fixed a bug in the new migration tool that would prevent a successful complete overwrite
Fixed an issue in the new migration tool where the Rescan option did not pull in new information from the Source server
InterWorx will no longer display a system error page when a database is deleted outside of SiteWorx. The database will still appear on the databases page and be deletable from that page, even though it no longer exists in MariaDB/MySQL
Resolved issue where some imports from cPanel could fail if the account included mail fowarders /copy-tos
Fixed issue where “Details” button for httpd and sshd config file syntax errors could load a blank form
Fixed issue where Immunify AV and 360 showed a blank page in the GUI
Resolved issue where the import tool could respond with a false “success” message even if an import failed
Port 587 will no longer disappear from the firewall port control payload when all protocols are set to closed
Resolved issue where secondary SiteWorx users that only have access to secondary domains would see a blank page when accessing Domain Management in SiteWorx
Fixed an issue where 301/302 redirect pointer domains did not actually redirect
ClamAV version 1.4.1-1 (2025-01-06) - Current Version¶
Apache version 2.4.62-33 (2025-01-06) - Current Version¶
Bug Fix¶
Fixed issue where zipped error.log and error-ssl.log files were empty after log rotation
Hotfix 589 (2024-11-13)¶
Released for 8.0.24 and 8.0.25 on 2024-11-13
Bug Fix¶
Fixed issue where archived logs could not be downloaded
Hotfix 587 (2024-11-07)¶
Released for 8.0.24 and 8.0.25 on 2024-11-07
Bug Fix¶
Resolved issue where querying SiteWorx accounts at the CLI returned and unnamed variable
Dependency Package Update (2024-10-24)¶
Bug Fix¶
Resolved issue where messages stuck in queue did not appear on the Mail Queue page in NodeWorx
Dependency Package Update (2024-10-23)¶
Bug Fix¶
Resolved issue where messages sent to the server with attachments did not arrive in inboxes when SMTP scanning was enabled for ClamAV
Dependency Package Update (2024-10-10)¶
Bug Fix¶
Resolved issue where sending messages on EL9 servers from domains with DKIM keys failed with the error “Unable to run qmail-remote”
Httpd-iworx version 2.4.62-5 (2024-10-10)¶
Bug Fix¶
Resolved issue where navigating to domain.com/webmail redirected to 127.0.0.1/webmail
Version 8.0.25 build 2893 (2024-11-19)¶
Enhancement¶
Added support for backing up and importing routines for MySQL 8 and MariaDB
The update channel names have been changed to mimic the format of the repository names themselves, thus minimizing confusion.The old update channel names have been kept for API compatibility
Bug Fix¶
Resolved an issue with the Acronis plugin where credentials could not be retrieved
Fixed issue where imports could fail due to “copy to” setting for email boxes
Security¶
Added symlink protection for the iworx-backup directory
Hotfix 584 (2024-09-24)¶
Update¶
This hotfix added symlink protection for the iworx-backup directory
Hotfix 583 (2024-09-24)¶
Update¶
This hotfix only included an internal update communicating with the license server on EL9
Version 8.0.24 build 2887 (2024-10-23)¶
Enhancements¶
Commas are now permitted in ‘password’ and ‘confirm_password’ fields in the CLI. All other fields will allow commas when escaped with a backslash
“Add Preference For” will now show as a required field when adding Advanced SpamAssassin rules in the UI
InterWorx backups will now backup and restore user/email-level SpamAssassin rules
Bug Fixes¶
Resolved issue adding DNS listeners
Fixed issue where it was only possible to edit SiteWorx-level SpamAssassin settings for the master domain
Resolved issue where, after import, local delivery was re-enabled on domains where it was previously disabled
Fixed bug where sending a test message from the Mail Queue page resulted in a “call to undefined method” error
Fixed issue where the Swap Usage health check claimed 100% swap usage, when the server was using 0% swap
Resolved issue where the legacy Mass Import tool reported that there are no SSLs on domains, even when they do have an SSL
Version 8.0.23 build 2874 (2024-09-23)¶
Enhancement¶
Added the ability to retry the activation script if there is a failure without having to modify values in the iworx.ini file
Bug Fix¶
The interactive CLI will now longer show html text on password fields
Roundcube Version 1.6.8 (2024-09-23) - Current Version¶
ClamAV Version 1.4.0-1 (2024-09-23)¶
Version 8.0.22 build 2870 (2024-08-20)¶
Security¶
Added symlink protection for the iworx-backup directory
Reolved issue where where a malicious user could overwrite files via a specially crafted symlink during SSL certification generation
Enhancements¶
SSHFS is now available in the SiteWorx Backup Cron on EL8 servers
The SIM (System Integrity Monitor) configuration for services will be updated with the appropriate port number when the service’s port is set through InterWorx
When deleting a secondary domain, SiteWorx will check if any other domains have their document root within that domain’s directory structure. If so, SiteWorx will not delete the site data. An option has also been provided to force delete this data, if desired
Bug Fixes¶
Corrected issue where the SpamAssassin preference form in SiteWorx was always showing the SpamAssassin global defaults, even when the domain had set other preferences
Resolved issue where enabling some permissions for SiteWorx users could result in “no short_name” error
Resolved issue where imports failed on accounts that had both a bayes dbs and roundcube contacts
Apache Version 2.4.62 (2024-09-23)¶
Hotfix 580 (2024-08-08)¶
Resolved issue where where a malicious user could overwrite files via a specially crafted symlink during SSL certification generation
Version 8.0.21 build 2849 (2024-08-20)¶
Improvement¶
The InterWorx activation script can now run more than once, if anything fails during activation
Bug Fixes¶
Resolved issue where custom template symlinks did not update correctly after using the domain promoter
Fixed issue where importing an account with multiple A records did not correctly import all of the A records
Version 8.0.20 build 2833 (2024-08-13)¶
Enhancement¶
Added ability for System administrators to easily disable all problem detector/notice emails at the NodeWorx, Reseller, and SiteWorx levels
qmail-1.03-591 (2024-08-05) - Current Version¶
Version 8.0.19 build 2826 (2024-08-05)¶
Security¶
Removed the custom httpd includes locations from SiteWorx Domain Advanced options due to security concerns
Enhancements¶
Attempting to generate Let’s Encrypt certs will no longer fail when the docroot of the domain is restricted via htpasswd
Backups which have failed will now be marked as failures instead of simply showing as “In Progress” until deleted
The form for creating a SiteWorx account on servers with a single domain license will now only accept values in line with the limitations of a single domain license
Servers using a single domain license will now be restricted to a single domain. All other domain types (secondary, pointer, subdomain, etc) will be set to 0 allowed
Bug Fixes¶
Resolved issue where editing httpd, FTP, and SSH conf files in the GUI gave a failure message, even if the configuration was correct
Prevented an API response error when attempting to add additional accounts beyond what is allowed by the license
Resolved issue where the NodeWorx logo did not show on the login page with dark mode enabled
Resolved issue where selecting “View All” on the SiteWorx account list only showed results by reseller, instead of listing all of the accounts on the server
Resolved issue where the NodeWorx overview page displayed a second sidebar menu when a NodeWorx account was set to use the legacy “big” menu style
Resolved issue where the dovecot submission ports were not added to the APF firewall configuration on some servers
Version 8.0.18 build 2805 (2024-06-18)¶
Improvement¶
The InterWorx activation script will now output a message asking for patience while it completes some inital setup of the activation process
Bug Fix¶
SiteWorx log viewer no longer shows Let’s Encrypt as an option if there are not any Let’s Encrypt logs to show. This prevents an immediate form-failure error when no logs exist
Security¶
Resolved issue where a non privileged shell account could setup a symlink that, when triggered via a race condition, could cause the user to have access to view files they shouldn’t have access to