----------------------------
MDaemon 7.10 - May 11, 2004
----------------------------

SPECIAL CONSIDERATIONS
----------------------

o Portions of this file (or the entire file) may not yet be localized.

o AntiVirus "Urgent update" requests will only be processed by MDaemon if
they arrive from an Alt-N Technologies IP address. The first "urgent
update" received from any other source will trigger a one time email to
the postmaster concerning AV issues.

o Three new switches were added to the Pruning tab which allow MDaemon to
clear out the content of the various Content Filter quarantine folders
at midnight each night - these switches are enabled by default.

o The new Statistics log file introduced in MDaemon 7.00 is very powerful
but it does need lots of disk and CPU power to maintain. A new switch to
toggle the creation and use of this log file was added to the Logging
options. This switch is DISABLED by default. If you want to continue to
use the Statistics log file you will need to enable the new switch.

o The 'UseSafeHash' setting has been removed. MDaemon is now only capable
of creating time-safe UIDL hashes. If you have had MDaemon configured to
use unsafe UIDL hashes your POP users will have all their mail flagged as
new and their mail clients will download it again. This will only happen
once and won't happen at all for 99% of MDaemon customers.

MAJOR NEW FEATURES
------------------

* SPF (SENDER POLICY FRAMEWORK) SUPPORT *

MDaemon supports SPF queries as an anti-spoofing measure. You can read
about SPF here: http://spf.pobox.com.

A new set of controls has been added to the Relay Control dialog box which
will allow you to configure how you want your server to use SPF. Also,
new logging options for logging SPF queries and a new tab for viewing SPF
processing in real time was added.

Setting up your own SPF records is beyond the scope of this document but
you can get instructions on how to do that at the SPF web site mentioned
above.

* EASIER SPAM FILTER WHITE LISTING (MDaemon PRO only) *

A new switch was added to the Spam Filter White List (auto) tab which
enables users configured to use their personal address books as a spam
filter white list to optionally forward messages to whitelist@
and have MDaemon add the sender of those messages to their personal
address book file. The address which is white listed is taken from
the FROM header of the emails forwarded to whitelist@.

Emails sent to whitelist@ must be received via SMTP from a
session that was authenticated using SMTP AUTH. Also, MDaemon expects
the emails forwarded to the above addresses to be sent as attachments of
type message/rfc822. Any other type of message sent to whitelist@.com> will not be processed.

You can change the address MDaemon uses by editing the following key in
the CFILTER.INI file:

[SpamFilter]
WhiteListAddress=WhiteList@

Note: the last character must be '@'.

* VASTLY REDUCED SPAM FILTER FALSE POSITIVES (MDaemon PRO only) *

A new switch was added to the Spam Filter White List (auto) tab which
helps reduce Spam Filter false positives by automatically adding to a
user's private address book any non-local email address which he/she
sends an email to. When enabled, any non-local recipient of a local
users email address will be automatically added to his/her XML address
book file. When combined with the option to use the users private
address book file as his/her personal whitelist the number of Spam Filter
false positives can be drastically reduced.

This option must be enabled globally via the switch mentioned above and
enabled individually for each account via a new switch on the account
properties Options tab.

This option is disabled for accounts that use auto-responders.

* BAYESIAN LEARNING FOR POP USERS *

A new switch was added to the Spam Filter Bayesian tab which allows users
to forward emails to the spam and ham learning folders. When enabled,
MDaemon will honor the SpamLearn@ and HamLearn@
addresses. Emails sent to these addresses must be received via SMTP from
a session that was authenticated using SMTP AUTH. Also, MDaemon expects
the emails to be forwarded to the above addresses as attachments of type
message/rfc822. Any other type of message sent to these email addresses
will not be processed.

You can change the addresses MDaemon uses by editing the following key in
the CFILTER.INI file:

[SpamFilter]
SpamLearnAddress=SpamLearn@
HamLearnAddress=HamLearn@

Note: the last character of these values must be '@'.

* ADDRESS BOOK GROUPS FOR WORLDCLIENT *

It is now possible to create address book groups in WorldClient.

Currently, groups are not supported in GroupWare contacts folders, and
ComAgent does not support them in its address book sync.

* DOMAIN FUNCTIONS ADDED TO API *

Some basic domain level functions were added to the API. You can now use
API functions to retrieve domain settings, change some settings, and
save back to disk. You can also create new domains and delete existing
domains. See the MD-API.HTML file for more information.

CHANGES AND ADDITIONAL NEW FEATURES
-----------------------------------

o Support for Classless Inter Domain Routing (CIDR) was added. IP's can
now be specified using this notation.

o It is sometimes useful to force all MultiPOP users to delete old mail
from their servers. If you want MDaemon to always delete old mail for
all accounts you can enable a new switch in Misc. Options MultiPOP tab.
Be aware that this switch is global and overrides the "Leave a copy of
message on POP server" setting for all MultiPOP entries for all
accounts.

o When an account has a quota restriction and someone tries to send them
a message the message could be refused at the RCPT stage or after the
DATA command has completed and the message has been received. However,
refusing the message at the DATA stage results in the entire message
being refused for all RCPT recipients. If you would rather have MDaemon
reject over quota messages at the RCPT stage only you can change the
following option in MDaemon.ini using notepad:

[Special]
TestQuotaAfterDATA=No (default Yes)

o A new switch called "Create secure Received headers" was added to the
Misc. Options Headers tab. When this switch is set MDaemon will mask out
IP address, PTR lookup results, and local machine names from its Received
header stamps when the IP is local or when the message comes in on an
AUTH'ed session (this will protect your remote users). This switch is
enabled by default.

o By default, MDaemon's automatically generated system messages will go
through the content filter, spam filter, and anti-virus processing (this
is a change from MD 7.0x which did not put these message through this
process). If you would like to change this you can set the following
key in the MDaemon.ini file using Notepad:

[Special]
SystemMsgsUseCF=No (default Yes)

Note: some automatically generated system messages MUST go through the
CF/AV/AF engine because they could potentially contain messages with
viruses.

o MDaemon's domain format checker was modified to recognize domains which
have no '.' character and also domains with the '..' character sequence.
In both cases the domain format is invalid. If you would like to omit
this format check set the following switch in the MDaemon.ini with
Notepad:

[Special]
OmitPrimaryDomainFormatCheck=Yes (default No)

o In the past MDaemon always toggled the CF/AV/AS engine (CFEngine.exe) on
and off at midnight. This could be causing some problems so we have
disabled this behavior by default. To re-enabled it edit the following
key in the CFilter.ini file using Notepad:

[ContentFilter]
ToggleAtMidnight=Yes (default No)

o If you would like to have the automatic extraction algorithm to extract
7bit or 8bit attachments you can set the following keys:

[Special]
Extract7bit=Yes (default No)
Extract8bit=Yes (default No)

o List messages which are processed by the content filter prior to "crack-
ing" can not go through the SYSTEM level rules of the content filter.
This creates dozens of potential bugs. This means that the new 7.0x
archival features DO NOT work on list messages when the "Apply content
and spam filters to list mail before cracking individual copies" option
is enabled in Misc. Options. When this switch is enabled mailing list
messages ARE NOT ARCHIVED. You will need to devise your own content
filter rules to archive list mail at the present time.

o The "freeze queue" toolbar buttons were removed from the toolbar when in
easy (simple) mode and they were moved to the right to separate them from
the "process queue" buttons in advanced mode.

o CFILTER.INI was added to the WebAdmin FileList-xx.dat control files.

o In the IMAP folder permissions (ACL) editor, the "Set Sub" button will
apply the current permissions to all subfolders of the folder being
edited.

o Some slight internal changes were made to logging and GUI updating to
speed things up slightly.

o MDConfig was discontinued in 7.00 and it was documented but somehow the
documentation about this was deleted. We are focusing our remote
administration resources into WebAdmin, Remote Desktop, and Terminal
Services support.

o The Content Filter, AntiVirus, and AntiSpam GUI and logs will no longer
be updated when the features are disabled. Also, the AntiSpam logs will
no longer be updated when processing is skipped for any reason (for
example, when messages are from local users). This was wasting CPU and
disk space.

o Messages larger than 200k will not be processed by the Spam Filter during
the SMTP transaction. We previously had a 2 meg size limitation here but
we've discovered that our code in combination with SpamAssassin causes
slow performance and even lockups when processing large messages during
the SMTP session. Full Spam Filter processing of all messages up to 2
megs will take place as normal during queue processing.

o MDaemon was checking for a spam filter update control file once every
few seconds. This creates unneeded disk I/O. The check was moved to
once per minute.

o The option to honor the APOP/CRAM-MD5 authentication methods (on the
Servers page of Misc Options) now also applies to the SMTP server.

o An option to include [%d:%d] unique ID strings to session logs was
added to the log settings GUI.

o Mailing lists are no longer allowed to directly send mail to the MDaemon
system account. Attempting to do so will result in a 55x SMTP error.

o At midnight MDaemon creates and runs Cleanup.bat. If you would like to
run your own midnight batch file you can create a file called MyCleanup.
bat and put it in the APP folder. MDaemon will run this instead of
Cleanup.bat. Make sure that your MyCleanup.bat file contains calls to
AccountPrune.exe (look at Cleanup.bat).

o The Standard theme 'Normal' style sheets were updated.

o MDStats will prompt if you want to open a log file in Notepad if it
doesn't find any POP, IMAP, or SMTP sessions in it.

o We changed the write method that the SMTP server uses to store the .CTL
files and reduced the number of times SMTP sessions update the CPS rate.
This should improve performance slightly.

o The active session log window will not be updated unless it is the view
currently active. This saves CPU and makes MDaemon faster. When switching
to the session window from other windows the initial data on the screen
will be out of date or N/A. If you would prefer to keep this tab current
even when it is not in view you can set the following switch in the
MDaemon.ini file using notepad:

[Special]
AlwaysUpdateSessionWnd=Yes (default No)

o MDaemon's INI caching system now doesn't access disk every time a value
not in the INI is requested.

o The Composite log file will now rotate just as other log files do.

o Public folders will be enabled when using the archive to public folders
feature.

o An option to reset the system tray icon was added to the Windows menu just
in case the tray icon is missing for some reason.

o If you are using MYLEARN.BAT you should check it and remove all the lines
which reference RESETBAYES.SEM. A bug could have placed multiple copies
of that line in your file. Also, the "Apply Bayesian knowledge to
heuristic message scoring" switch MUST be enabled for learning to take
place. This is handled automatically with LEARN.BAT but, if you want to
use MYLEARN.BAT and still leave this switch disabled you will need to place
one line like this at the bottom of your MYLEARN.BAT file:

dir > C:\MDaemon\App\ResetBayes.sem

o A new switch was added to the Mail Scheduler GUI which allows you to have
Gateway messages delivered immediately when other remote mail and the
Gateway itself is configured to do so.

o When MDaemon is configured to reject messages during the SMTP session if
they are likely to be spam, the score received by the message will be
included in the SMTPI record of the statistics log file.

o The account pruner will ignore non-mail GroupWare folders when deleting
old mail.

o The X-Spam-Processed header will no longer be added when using MDaemon
Standard.

o When messages are refused by the Spam Blocker the spam refused counter
will be incremented.

o Gateway LDAP verification lookups will check 'SMTP:' also. This
allows LDAP queries to Active Directory/Exchange installations.

o The user is notified on WorldClient's login page when a draft message is
saved because they tried to send a message after their session had timed
out.

o The "All Contacts" option in WorldClient's address book now also lists
contacts from all GroupWare contacts folders

o A WorldClient option has been added to have message list auto-refreshes
reset the session's inactivity timer. If you do not want your users
timed-out while they leave their browsers open to the message list page,
edit \MDaemon\WorldClient\Domains.ini and set:

[Default:Settings]
HonorNoKeepAlive=No (default is Yes)

o Default font and font size for HTML compose added to Compose options.

o Added 'Forward as Attachment' capability to WorldClient.

o By default, ComAgent's icon blinks when an IM buddy comes online. If
you would like to change this you can set the following key in the
ComAgent.ini(client-side) file using Notepad:

[Events]
BlinkOnIMBuddyOnline=No (default Yes)

o A new switch was added to the Pruning tab which allows MDaemon to delete
all messages more than XX days old from all public folders during the
midnight cleanup event.

o If a mail folder has the following switch in its HIWATER.MRK file the
folder and all sub-folders will be exempt from the old mail pruning
process:

[Settings]
SkipAutoPrune=Yes (default No)

FIXES
-----

o fix to crash when ODBC not available and ODMR connection made
o fix to POP server causing freeze when receiving very long responses
o fix to SF whitelist (auto) tab enabled in MD Standard
o fix to Spam Blocker whitelist GUI tab unusable in MD Standard
o fix to AutoResponder exceptions GUI tab unusable in MD Standard
o fix to WorldClient's Address book not generating valid XML. Once files
are altered they will become valid and all new address books that are
created will be valid.
o fix to calendar option showing up in WorldClient LookOut when calendars
are not available
o fix to timer related bug with dialup users using 'maximize use' setting
o fix to SMTP server refusing messages when the Spam Filter fails immediately
o fix to NoTarpit.dat file not being honored
o fix to installer always asking if Lookout should be default theme
o fix to potential slow and unresponsive handling of POP TOP command
o fix to archival GUI problem in MD Standard
o fix to AUTH status not being passed to turned ATRN session windows
o fix to some auto-gen'ed emails to postmaster not getting AV scanned
o fix to WorldClient Calendar public meeting attendees not being able to
see the meeting on other attendee's calendars
o fix to CFEngine.exe lockup causing queues to not get processed
o fix to CF corrupting digitally signed messages
o fix to EHLO being accepted when ESMTP support turned off in Misc Options
o fix to WC not lowering the session timeout after leaving Compose
o fix to WC not displaying the Company for GroupWare contacts
o fix to WC GroupWare TNEF parser not supporting all MAPI data types
o fix to dialog box sequence bug when activation period expires
o fix to some Spam Filter related options being enabled in MD Standard
o fix to possible call to Spam Filter in MD Standard under some conditions
o fix to Ghost description .lnk in German version start menu
o fix to many bugs related to the 7.0x archival options and list messages
o fix to WorldClient calendar memos appearing on GroupWare calendars
o fix to Home Address being replaced by Home City when saving GroupWare
contact from WorldClient
o fix to problems moving from a newer beta to an older production release
o fix to upgrade/expiration reminder emails sometimes not being sent out
o fix to installer referencing an old Visnetic AV crossgrade program
o fix to Routing log not logging mail delivery to gateway directories
o fix to pruning GUI not enabling apply button when changed
o fix to installer at times installing ZIP and spell check libs wrong
o fix to simple theme calendar day view editing deletes event.
o fix to lock up problem caused by an error message pop up with ODBC lists
o fix to route slips sometimes causing MD to ignore MAIL error when sending
o fix to threading problem with ODBC lists which causes queue lock up
o fix to over quota SMTP message on MAIL command being incorrect
o fix to ComAgent not preserving the "File As" field setting after synch
o fix to localq msgs to non-local recipients not being moved to bad queue
o fix to "authenticated does not match account" when using ATRN
o fix to WorldClient displaying times on a GroupWare calendar one hour late
or ahead (depending on daylight saving time settings)
o fix to multiple RESETBAYES.SEM references in mylearn.bat
o fix to "Log multi-line protocol responses" setting not applying to IMAP
LIST, LSUB, and EXPUNGE responses
o fix to 32KB IMAP folder subscriptions list limitation
o fix to SMTP Spam Blocker 'Received' header check only checking 1 header
o fix to SMTP Spam Blocker 'Received' header check not refusing mail
o fix to IMAP and POP servers staying active after trial/act expires
o fix to two welcome emails generated when account added via ghost
o fix to MDaemon sometimes starting up only on the task bar
o fix to CFEngine.exe lockup with extremely large messages
o fix to $FILTERRULENAME$ not getting expanded in the content filter
o fix to sub auth emails being sent to suppressed list members
o fix to uncontrolled msg growth when invalid postmaster specified
o fix to no autohscroll style in list editor real name field
o fix to stat log data not being escaped
o fix to WorldClient Delete All command not working when the user's delete
option is set to move deleted messages to the Trash folde
o fix to SpamFilter checks during the SMTP session not skipping domains that
have this option disabled
o fix to Spam Filter address book check operating when disabled by default
o fix to ComAgent minimize button not working on the buddies/folders window
o fix to auto-extraction failure when filename contains + char
o fix to AV engine not being able to initialize on NT4 Terminal Server
o fix to MDaemon not generating welcome messages for accounts created from
WorldClient when WorldClient is running in IIS