v1.0.283

Minor Release Released June 15, 2026

Antispam hardening suite, backend fixes, and fresh-install i18n seed sync for Advanced Protection toggles.

SpamAssassin Bayes auto-learning: corrected permissions on the Bayes database so the learning daemon can write, and added a nightly cron job that feeds Junk/Sent folders to sa-learn.
Local DNSBL resolver: bundled BIND is now configured as a localhost-only recursive resolver with DNSSEC validate-except for Spamhaus, URIBL, and SURBL — eliminating rate-limits on public resolvers.
OpenDMARC inbound DMARC verification milter (header-only mode): incoming mail now gets an Authentication-Results header for DMARC pass/fail without rejecting messages.
Postscreen + conservative Spamhaus RBL (opt-in): postscreen deep protocol tests and an optional Spamhaus RBL check can be enabled per-server from the panel.
Outbound DANE (opt-in): DNSSEC TLSA verification for outgoing SMTP connections can be enabled to harden mail delivery to DANE-capable recipients.
MTA-STS policy builder core: foundation for MTA-STS policy hosting added (policy/DNS/ID builders).

Embedded i18n seeds for the new email Advanced Protection toggle keys (9 keys across 31 languages) — keeps fresh-install i18n baseline in sync with the panel-i18n runtime bundle.

WordPress install email validation: installation wizard now rejects invalid email formats before attempting provisioning.
OS-adaptive bundled PHP and Postfix outbound CA trust: certificate verify failures on Debian/Ubuntu caused by missing CA bundles are now resolved automatically.
Mailbox ownership boot self-heal: on startup, mailboxes with incorrect ownership are corrected automatically.
Migration user guaranteed-password and async delete: migration pipeline now ensures newly created users always have a valid password, and user deletion during migration runs asynchronously to avoid timeouts.
File manager "New File" action: fixed an issue where creating a new file from the file manager returned an error.

All Releases