orgbion.blogg.se - Davmail port default

#Davmail port default update

Security: Strip packaged log4j jar from JMSSink and JDBCAppender to ensure DavMail is not vulnerable to CVE-2022-23305 & CVE-2022-23302, see #250.

#Davmail port default update

Caldav: Do not try to update modified occurrences on Mozilla thunderbird dismiss event.

Doc: add a section on Fedora installation from copr.

Doc: security note on DavMail not vulnerable to CVE-2021-44228.

OSX: remove reference to Growl in documentation.

Override SPNegoScheme to take into account DavMail kerberos settings.

Refactor DavMailIdleConnectionEvictor to be less agressive on idle connection checks/purge and use scheduler instead of active polling.

DavMailIdleConnectionEvictor fix from audit.

Merge #225 remove (most) links in Maven POM.

Upgrade woodstox to 1.4.0 and jettison to 1.5.3.

Replace active wait with wait/notifyAll.

Linux: improve launch script to take into account script location.

davmail.properties file readable by user only on create

Linux: fix PosixFilePermissions for writeable only by user.

Linux: block davmail azul when davmail script is located under /usr/bin (package installed).

Update winrun4j wrappers after lib upgrades.

Windows: Add missing labelReplace active wait with wait/notifyAll in DavService.Experimental: store refreshed token when davmail.storeRefreshedToken=true.

O365: change persist token logic to store new refresh token after succesful refresh.O365: adjust logging level on O365 refresh token error.O365: retrieve number matching value during phone app MFA.O365: implement number matching logic in O365Authenticator.(even if DavMail is not impacted with standard configuration) O365 In addition, some Log4J specific patches to remove vulnerable classes from library Store new refresh token received at authentication. First release in a long time to publish pending changes, including Kerberos support fix,Įxperimental number matching support for upcoming Microsoft authenticator default configuration change,