SpamTitan Release Notes
SpamTitan is continually evolving, with each release offering new features and enhancements that provide you with even better spam filtering. Updates are managed automatically, providing you with the very latest updates and fixes.
The release notes below outline the upgrades and improvements in our recent releases.
Skellig (9.07)
Released December 2024
With SpamTitan Skellig 9.07 we've added enhancements to make security stronger and the configuration process more efficient. Email Security features, such as anti-spoofing, have been made easier to configure with the ability for admins to enable anti-spoofing at the customer level. This means that admins don't have to drill down into each domain-level setting.
In addition, Display Name anti-spoofing is no longer tied to user policies. Instead, admins can upload a custom list of Display Name/email pairs for any inbox that needs to be protected. The Quarantine Report process has been upgraded to ensure reports are always delivered on time. Additional security updates and fixes have also been included, which are explained below.
What's New?
New anti-spoof features have been added with the addition of Display Name anti-spoofing. Admins can now easily upload users' names and email addresses to protect them from display name spoofing. Another new feature is the ability for admins to enable anti-spoofing at the customer level. Moving between domains is easy, with admins being able to use a slideout panel to manage their domains and display name anti-spoofing.
Admins will notice that anti-spoof settings are no longer located under the Domain overview page.
FreeBSD 13 packages have been updated.
OS users can be enumerated using RCPT.
What Has Been Improved?
QR process improved so that quarantine reports are generated faster and more efficiently.
Fix added so that confirmation is required for quarantine report actions.
What Has Been Fixed?
Fix added so that domains are imported correctly.
Console password is now updating on multi-node cluster.
Vulnerability and security issues detected by GitLab's security scanners have been fixed.
Solution implemented to improve Amavis performance.
Internal metrics module disabled to improve st_milter performance.
Bug fixed to enable correct results in Skellig History.
Virus Infection field data now populates correctly.
Skellig (9.06)
Skellig 9.06 consisted of performance enhancements with the upgrade of PHP to 8.3.
Skellig (9.05)
Released July 2024
SpamTitan Skellig 9.05 focuses primarily on performance, with improvements implemented at every level, including database requests, API requests, and UI requests. In the UI, admins will notice more efficient navigation in the History and Quarantine pages. With the addition of a slideout panel, admins no longer have to jump between pages to view email details.
What's New?
The new slideout panel on the History and Quarantine pages help admins to navigate emails more efficiently.
Admins can move between emails in the list, and as each one is selected, the details are repopulated with the new data. This means that admins stay on the list and don't have to move between pages.
Quarantine reports are no longer generated for domains that do not have their MX records pointing to this Skellig cluster.
PostgreSQL settings have been tuned so that more frequent auto-vacuuming and auto-analysis is performed.
Marketing mails are blocked by default.
Admin is now prompted for confirmation when deleting a customer/domain/policy.
History and Quarantine tables show the From header address rather than the Envelope address.
Apache has been upgraded to 2.4.61.
Apache opcache is now enabled to improve performance.
Bulgarian language added.
What Has Been Fixed?
Resolved issue where SPF policy wasn't triggering when the 'From' header was missing.
Potential performance issues displaying Allow/Block lists were resolved.
Resolved issue where race condition could cause the nightly bulk update to fail, leaving postfix stopped.
Issue viewing source of DMARC quarantined mail in History was resolved.
Resolved issue where license usage report didn't count clean messages with content type 'M'.
Resolved issue where linklock scheduled reports would not get delivered when token was expired.
Issue has been fixed where Linklock exemptions at the customer level were not loading.
Refactored History/Quarantine queries to improve performance.
Issue resolved so that when editing antispoof settings at the domain level, users are not logged out.
Resolved issue where allowed IP and DMARC Quarantined emails show as duplicated 'Processing' mails in History.
Issue resolved so that Blocked IP emails are available in History.
Resolved issue for quarantine report types 'AX'.
Filtering by Quarantine on History page now shows correct results.
Issue regarding the Date/Range selector on History/Quarantine page now resolved.
Resolved issue where 'All MSPs' and 'All Customers' dropdown field only reflected data in the overview table.
Resolved issue where user could be logged out when viewing certain messages.
Correct SMTP response now being correctly displayed on the message details page.
Password validation error message now indicates that a number is required.
Resolved issue where message type pills on History/Quarantine pages contained variable names.
Sender (From) details now visible on message details page.
Skellig (9.04)
Released March 2024
New additions in Skellig 9.04 include the ability to multi-select emails that can be allowed or released from quarantine simultaneously, making this task faster and more efficient. There is also a new option for classifying marketing emails as spam when editing either a Domain or User policy.
Enhancements in this release include improved search capabilities in the History and Quarantine pages with search results being remembered across user sessions. Sort results in tables are also remembered, meaning you can leave a page or log out, and when you return, the results are still visible.
What's New?
On the Quarantine page, with the addition of multi-action functionality, admins can release or allow multiple emails at the same time.
When editing domain or user policies, admins can choose to have marketing emails classified as spam. Depending on the values entered in the Spam Filtering section, the marketing emails will then be quarantined, passed, or rejected.
What Has Been Improved?
The Search functionality in the History and Quarantine pages has been enhanced so that searches and the criteria used are preserved, even if you leave the page or log out.
You can now sort and filter data in tables and the results are remembered across MSP, Customer, Domain and User levels.
What Has Been Fixed?
An issue has been resolved so that when a Domain admin allows a message, the sender is added to the recipient's allow list.
Issue fixed for pattern filters so that they are editable without Apply to Headers selected.
When a pattern filter is created and a header is specified, the header is displayed in the edit screen view.
UI updated to show inclusion in spam score of two decimal places.
Packages updated for security vulnerabilities, including openssl.
On-demand report error fixed for user attempting to add an on-demand report.
Issued fixed for LinkLock where special characters caused some links to be written incorrectly.
Issue fixed so that Searching From Address correctly searches the From Email address.
Domain reports issue resolved so that they are now being generated.
Requesting a new report via the Link in Existing quarantine report now works.
Intermittent issue fixed where enabling LinkLock was failing for some customer accounts.
Clean emails no longer appear in quarantine.
Allow and Block List tables sort correctly.
Spam threshold value is now displayed correctly.
Up to 100 emails can be displayed per page on the History and Quarantine pages.
The number of users that can be displayed in the License Usage Report has increased from 10 to 1,000.
Clam AV upgraded to version 1.2.2.
Skellig (9.03)
Released December 2023
With Skellig 9.03 we've significantly enhanced our anti-spam processing, resulting in an expected increase in the spam catch rate for customers and providing event better security and protection.
What's New?
A dark, light and system mode option has been added to the Profile menu to give a logged in user options for their interface appearance. See Selecting Dark or Light Mode.
What Has Been Improved?
Some of the new elements that we expect to improve our spam catch rate include:
A poison detection mechanism to ignore irrelevant text in a mail.
Character visual normalization. For example, including a "0" instead of an "o" won't fool SpamTitan.
Enhanced IP, domain and URL reputation checks.
Enhanced attachment filtering.
Image filtering with Optical Character Recognition (OCR), logo and facial analysis technologies.
Phone number filtering.
Cryptocurrency wallet filtering.
The Processed Messages chart legend on the Dashboard has been reversed for clarity.
What Has Been Fixed?
Default field values are now displaying correctly when quarantine report is enabled in a new user policy.
The edit option on archived reports was available but not actionable, so has been removed.
Pagination numbers on the Scheduled Reports page are now displaying correctly.
Future dates are now greying out as expected on the advanced search filter in History and Quarantine.
An issue has been resolved so that the first input field is now the focus across all modals.
Emails are now deleting as expected from Quarantine when using the checkbox and Delete button.
Skellig (9.02)
Released November 2023
SpamTitan Skellig 9.02 sees the addition of IP allow and block list functionality to the MSP level as well as improvements to the navigation and interface.
What's New?
An MSP Admin can now add allowed or blocked IPs to their Allow & Block List. See Global Allow & Block List.
The MSP and Customer Overview pages have been enhanced to include quick actions and a graph detailing mail processing over time.
View and edit icons have been introduced to tables in a new Actions column across SpamTitan.
In the All Customers and All Domains tables, select the view icon to drill down to the customer or domain level.
In all other tables, select the view icon to see more about a selected item or the edit icon to make changes to an item.
Changes have been made to how anti-spoofing is implemented in SpamTitan, with the notable changes summarized below. For more information, see Anti-Spoofing.
An additional test has been introduced for additional spoofing detection, ANTISPOOF_EMAIL_ADDRESS.
Anti-spoofing tests now check only local domains to help determine if someone is spoofing your own domain(s).
All five anti-spoofing tests may trigger on a single email.
Spam scores accumulate for each test that triggers on a single email.
The ANTISPOOF_DOMAIN_FUZZY test has been renamed to ANTISPOOF_FUZZY_DOMAIN and ANTISPOOF_NAME_FUZZY has been renamed to ANTISPOOF_FUZZY_NAME.
What Has Been Improved?
A suite of updates has been made across SpamTitan to improve navigation and the availability of information. Some highlights include:
Improvements to padding and spacing on all pages, making pages and tables more information dense.
Navigation between levels using the view icon in the All Customers and All Domains tables.
Column selections made to tables in History and Quarantine using the columns icon are now saved when you leave and return to a page.
You can now filter by customer (MSP level) or domain (Customer level) on the Quarantine page using a new collapsible Advanced Search component, which replaces the previous search form. This option is also available at on the History page at the MSP level.
This component increases usability in both History and Quarantine, as more table space is visible and more information is presented to you.
What Has Been Fixed?
A number of Link Lock issues have been resolved in this release:
An issue causing rewritten links in S/MIME signed emails to break has been fixed.
A Link Lock issue that was leading to broken images in HTML emails has been resolved.
Rewritten links contained in emails from Gmail addresses are no longer breaking.
First and last name entries are now saving correctly when edited in the user policy page.
Unusually long email addresses are now shortened on the Quarantine and History pages so column widths page layout are not distorted.
Account recovery codes are no longer visible in Security Settings after 2FA has been enabled, strengthening the login security.
Clean emails are no longer visible in Quarantine when Archive report is on.
We have fixed issues that have improved User policy management, providing a better user experience.
Skellig (9.01)
Released July 2023
We're delighted to announce the release of SpamTitan Skellig 9.01. This release adds functionality into the MSP level that focuses on minimizing effort to action and keeping the administrator's focus in a single location. The release also provides a wide variety of fixes and enhancements that bring stability and usability benefits.
What's New?
Both History and Quarantine functionality is now available at the MSP level, removing unnecessary navigation and allowing an MSP admin to view and act on all their customer mail without switching levels. See History and Quarantine.
Pattern Filtering is now available the MSP level, simplifying administration for an MSP admin by allowing them to ensure their customers are secure from one location. See Pattern Filtering.
Link Lock inheritance behavior has changed with this release. Customers, domains and users now inherit Link Lock settings from their MSP level. This simplifies administration for an MSP admin, as it is no longer necessary to drill down to individual customers and domains to make Link Lock setting changes.
The One-Off report has been renamed to the On Demand report.
An option to hide message headers in the Quarantine mail view tab is now available.
An Other Products page is now available at the MSP level bringing awareness to MSP administrators of the suite of products TitanHQ provide.
Performance improvements have been made on table loading times, pagination and filtering across the product.
An Apply Filter button has been added to all Attachment Filtering tabs to apply any new and updated filters to mail.
Quarantine reports can now be requested through an API call by an administrator on behalf of a user.
What Has Been Fixed?
General
The Bitdefender software developer kit (SDK) has been upgraded to version 3.2.2.
A permissions bug with the Link Lock settings page that caused an issue when editing settings has been fixed.
An issue with all data not being included when a user is created has been fixed.
Issues with errors in MSP and Customer name entry have been resolved.
EncryptTitan allowed URLs that were missing from SpamTitan 9.00 have been re-added.
A rate control settings issue causing incorrectly formed “From” addresses in outbound mail has been fixed.
Emails with PNG attachments are no longer assumed to be a virus.
A permissions bug has been fixed so user level access is now limited to those with appropriate permissions.
Field labeling and example text has been improved throughout the UI.
SpamTitan passwords now adhere to Open Worldwide Application Security Project (OWASP) rules. New passwords must be a minimum of 12-characters (max. 64) and include one letter, one lower case character, one upper case character, a number and a symbol.
History & Quarantine
Quarantine reports can now be requested through API by an admin on behalf of a user.
An issue where RBL rejections were no longer appearing in History after removing DQS key is now fixed.
A bug causing mail released from quarantine to not display has been fixed.
Quarantine report settings page has default values in page drop down menus.
History and Quarantine views providing correct information when mail details not present.
In Skellig, when a mail is released from Quarantine it no longer remains there. This is now only visible in History.
Data is now appearing in the correct location on the History page.
Content Classification in email view is now showing the correct detail.
A problem when searching using parameter content-filter in Message Type attribute has been fixed.
An issue with deleted mail remaining visible in quarantine has been resolved.
An issue with some released mail not showing the UI has been fixed.
A cache issue where results were being returned when viewing quarantined mails has been solved.
Filtering
PPA attachment filter behavior is now consistent across account application levels.
An issue causing email containing an attachment that should be blocked with the selected setting, but were not, has been fixed.
Policies
The user policy updating process is now saving correctly.
First and last name entries are now saving correctly when edited in the user policy page.
The display name is now editable in a user policy.
A Digest column is available on the User Policies page to show if the quarantine report setting is on or off for a user policy.
A number of issues with policy page permissions have been resolved.
Issues causing some user policies to not display have been resolved.
Reporting
An issue with appropriate download types being visible has been resolved.
A number of UI issues have been fixed meaning that the correct reports are now visible at the appropriate level and the report format is saving correctly at the customer and domain levels.
The License Usage Report now correctly has a frequency of only Daily available.
Domain Level
Issue resolved allowing members of a domain to log in as domain administrator.
The left navigation dropdown menu has been updated to more easily navigate from the customer to domain level.
Username is no longer visible in left hand navigation dropdown when a user is selected on the domain overview page.
An issue preventing the editing of entries in the IP & Hostnames table on the Anti-Spoofing tab when configuring a domain has been resolved.
Skellig (9.00) Enhancements
Released March 2023
Following on from the launch of the new SpamTitan interface with our initial Skellig (9.0) release, this update brings a number of significant enhancements, including the introduction of pattern filters and the ability to test connectivity to a domain after it has been added.
What's New?
Pattern Filtering is now available at the Customer and Domain levels. You can create single or multi pattern filters, allowing you to block or allow emails based on filter rules. For more information, see Pattern Filtering.
You now have the ability to test connectivity to a domain you have added by sending a test email. This ensures your mail server is accepting email from SpamTitan before continuing with the remaining configuration. See Test Connectivity to your Mail Server.
You can now use the Message View tab in Quarantine or History to view an email as it looks in a user's inbox.
Skellig (9.00)
Released December 2022
Skellig sees the launch of a newly designed, modern user interface for SpamTitan.