We have released version 13.2.21230.1449 on August 31st, 2021. This Version is an upgrade release where the following Bugs are fixed and new features are added or changed.

Important Information

If you have previously installed a beta version 13.2, please upgrade to the official release version 13.2.20141.1435 or later for support reasons! As of version 13.2.20083.1640, a script for enhancing the address searching is included. These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

Version 13.2.21230.1449 (August 31st, 2021)

based on Fast Channel Version 13.2.21190.1540

Changes

  • 29358: Evaluate new SwissSign id-silver product name
  • 29235: Adjust CSP header for WebPortal
  • 29236: Adjsut X-XSS-Protection header
  • 29237: Disable unnecessary HTTP methods

Fixed

  • 29259: WebPortal on Server 2012 R2 – Inernal server error
  • 26082: Emails received via the POP3 receive connector are downloaded from the server but not delivered to the recipient if the receive connector temporary folder contains *.eml files
  • 29122: SMIME signature signer address validation always fails if MAIL FROM is empty
  • 29090: An unexpected error occurred and the Intranet Role is shutting down. System.ArgumentNullException: Value cannot be null

Version 13.2.21190.1540 (July 21st, 2021)

based on Fast Channel Version 13.2.21151.1540

Fixed

  • 26243: Web Portal problems
  • 28830: URL Safeguard doesn’t always work correctly if there is HTML inside of the a tag
  • 27510: Disclaimer is added at the wrong position
  • 28594: Report Viewer Control 2010 download link in installer is incorrect
  • 28698: Create config override to use onmicrosoft.de instead of onmicrosoft.com

Version 13.2.21151.1540 (June 23rd, 2021)

based on Regular Channel Version 13.2.21111.1701

Fixed

  • 28537: Quotes are added after decoding an encoded header value
  • 28539: CxO fraud detection doesn’t match if there is a quotation mark between the first and last name
  • 23630: CxOFraud does not detect attempt as long as user name contains umlaut
  • 28502: Receiving an NDR containing headers of an SMIME encrypted email causes an unexpected error during a connection: Value cannot be null. Parameter name: stream
  • 28215: Subject flags Link overlapping with text
  • 28046: An unexpected error occurred during a connection: Invalid data read from remote host
  • 28255: An unexpected error occurred during a connection: Object reference not set to an instance of an object
  • 28254: An error occurred while checking an email sent from to Support@nospamproxy.de

Version 13.2.21111.1701 (May 6th, 2021)

based on Fast Channel Version 13.2.21069.1155

Fixed

  • 28110: SSL Cache duration is too high in 13.2
  • 28086: MS removed download link for ReportViewer.exe – this breaks our setup
  • 27815: ‘Header-From’ field is an obfuscated string, but its not true
  • 27840: Excessive memory and cpu usage when using the Trie data structure
  • 26978: Obfuscated string matcher doesn’t match rewritten umlauts (i.e. ö and oe)
  • 27962: Failed to validate a DMARC on an email. Decoded string is not a valid IDN name.
  • 27964: Message tracks could not be retrieved from the Intranet Role.
  • 27969: SwissSign auto enrolment uses correct user information
  • 28087: Adjust 13.2 actions and filters
  • 27678: High CPU usage and unstable

Version 13.2.21069.1155 (March 15th, 2021)

based on Fast Channel Version 13.2.21040.1645

If you have installed version 13.2.21040.1645 from March 1st 2021, perform an update to this new version to avoid problems!

Fixed

  • 27467: Archived eml file is empty
  • 27471: D3 archive connector cannot handle subjects with special characters
  • 27508: Possible StackOverFlowException when parsing an email address
  • 27333: Activities are shown only in first
  • 27457: Not recognized category from Cyren
  • 26905: URL Safeguard removes PGP signature and email headers after rewriting URLs in PGP signed content
  • 27124: An error occurred while creating a dispatch job: Another read operation is currently in progress
  • 27229: Corporate email server check “SPF protected local address” is successful if only the SPF check for the EHLO domain was successful
  • 27135: Attachments from nested emails are not uploaded to the Web Portal

Version 13.2.21040.1645 (March 01st, 2021)

based on Fast Channel Version 13.2.20349.1331

Due to a subsequently discovered, but very rare problem, this version had to be removed from the download. A new version will be released as soon as possible, to fix all problems.
If you are already using this version, please watch out for temporarily blocked emails and contact support for clarification, if this occurs.

Fixed

  • 26340: Large files are not auto approved if there are older files to be auto approved with malware scan failures
  • 26931: Update Cyren to new binaries
  • 27013: Restricting maximum concurrent connections per domain doesn’t work reliably
  • 26872: POP3 receive connector only supports TLS 1.0
  • 26776: email is destroyed after outbound email signing
  • 26715: Logging extension for archive connector
  • 26854: Internal domain names (i.e. exchange.local) are resolved using the external DNS servers
  • 26646: Timstamp server for Outlook Add in is invalid
  • 26666: Disclaimer is added at the wrong position

Version 13.2.20349.1331 (January 13th, 2021)

based on Fast Channel Version 13.2.20296.1426

Fixed

  • 26541: Unexpected error occurred during a connection: Index was out of range.
  • 26415: Attach file failed error.
  • 26519: Illegal characters in path.
  • 25996: Auto Retry of quality signature Item should have the Message Track status Put on hold.
  • 25963: Waiting Status for qualified signature signing Status
  • 26410: Configuring the Cyren service on the Web Portal fails with error message “A potentially dangerous Request.Form value was detected from the client”
  • 26337: Header-From address in the format “Display name <address1@example.com;address2@example.com>” causes Message Tracking deserialization errors
  • 25925: URL Safeguard rewrites URLs in brackets with the closing bracket as part of the URL
  • 25846: CmsMimePart cannot be converted to PDF using auto encryption
  • 26033: Outlook Add-In mime type detection detects Office documents as unprocessable zip archives
  • 26004: Gateway Role creates replication artifacts >50MB which can’t be collected by the Intranet Role and break the replication
  • 26173: Web portal and Outlook Add-In don’t use the correct content filter if a partner user is configured to allow any attachments
  • 25608: Secondary DNS server is not queried if the primary DNS server responds with status code ServerFailure
  • 25609: License usage De-Mail count is incorrect if multiple Gateway Roles are using the same De-Mail domains
  • 26144: URL Safeguard destroys URLs in CSS by replacing them with “Protected link”-HTML
  • 25790: NDR contains empty attachment instead of original email
  • 25673: Outlook Addin: Issues on accessing files from UNC path
  • 26129: Empty header line is created if the header ends with a whitespace and the header has a certain length
  • 26507: Remove hard coded domain white list from the surbl filter
  • 26170: Use the new endpoint for the Cyren IP Reputation

Version 13.2.20296.1426 (November 09th, 2020)

based on Fast Channel Version 13.2.20258.1435

Fixed

  • 25605: A replication artifact could not be deserialized. The item will be retried at a later time. Error: The string Cards🏠🏡@tizgharan.org.uk is not a valid email address
  • 25606: Message tracks could not be retrieved from the Intranet Role: The string “”@bnv.gob.ve is not a valid email address
  • 24125: Email is signed using SMIME/PGP although it is deactivated in the rule if the sender requests automatic encryption
  • 25654: Database cleanup is slow
    NOTE: If the TempDB will not shrinked automatically, use the SQL tools to do this manually
  • 25687: Cyren malware scanner fails with error: Illegal characters in path
  • 24838: Users should not be imported from file if email contains not allowed chars outside of quotation marks (“”)
  • 24840: Error when importing user from text file with many @ in email address
  • 25133: Text file automatic user import imports email address prefixes (i.e. SMTP:)
  • 24888: Improve error message in LDAP sync when a group cannot be expanded
  • 25729: Message Track filter doesn’t work for Powershell Cmdlets to get actions, activities, attachments, filters, URLs
  • 26059: Outlook-Add-In crashes on initializing the MimeTypeDetection

Version 13.2.20258.1435 (September 28th, 2020)

based on Fast Channel Version 13.2.20199.1826

Changed

  • 24112: Create Issue “German Azure Cloud will be removed”
  • 20044: Implement automatic retries of mails waiting for qualified signatures

Fixed

  • 24831: Add hint to manual that LDAP key server does not support LDAPS
  • 24895: Replication service replicates too many artifacts to the database at once
  • 24837: Reading the Default partner settings is not retried if it fails the first time
  • 24984: EmailAddress.TryParse uses the relaxed algorithm and is used in the Envelope methods
  • 23685: NDR is sent if an email is permanently rejected by the sandbox
  • 23686: Sender IP address is not blocked if an email is rejected permanently by the sandbox
  • 24904: An unexpected error occurred during a connection: Deep clone with non-clonable stream is not supported. Stream must be of type ClonableStream
  • 24995: OpenKeys configuration is not replicated to new Gateway Roles
  • 24884: Disclaimer is added at the wrong position
  • 25016: NoSpamProxy crashes when a large SMIME email is processeds
  • 24720: URL Safeguard error when rewriting URLs in message/delivery-status attachment: Mimepart ‘NestedMessageMimePart’ is not supported
  • 24683: CDR’ed document is not attached to the EML file in case of nested attachments
  • 24825: change tyntec text message provider default hostname
  • 25154: Email is not accepted because of error: Length cannot be less than zero. Parameter name: length
  • 25045: Wrong reject reason for email
  • 25256: Emails cannot be processed by content filter
  • 25165: Downgrade to 7 bit transfer encoding for all emails breaks existing signatures if the email contains a mime part with 8 bit transfer encoding
  • 24917: Intermediate certificate is displayed as “untrusted root, revoked” when imported in NoSpamProxy
  • 25343: Email with very long header line causes 100% CPU usage on Gateway Role
  • 24753: Level of Trust bonus not granted because successful SPF validation doesn’t authenticate MAIL FROM domain
  • 23927: “Strict Open XML” office documents are detected as zip archives
  • 24768: TLS best practice settings include 3DES cipher suite
  • 25319: Attachments are differently identified when a mail was signed
  • 24873: Pdf is not disarmed, zip file detect as unprocessable
  • 25364: An attempt to scan the file in directory ZEL4TVFP for viruses. Error: Padding is invalid and cannot be removed.
  • 25443: Unexpected error occurred during a connection: Index was out of range.
  • 25446: All zip files in large files detect as unprocessable+archive
  • 25408: Cyren IP reputation filter configuration is reset after editing the rule using the MMC
  • 25440: URL Safeguard applies HTML base URL to absolute URLs
  • 25513: Message Tracking search is slow when searching for sender/recipient
  • 25537: TempDB database uses enormous amounts of space during database cleanup
  • 25538: Message Track cleanup doesn’t delete a lot of details if the detail retention time is much shorter than the summary retention time
  • 25526: A parameter was invalid.

Version 13.2.20199.1826 (July 27th, 2020)

based on Regular Channel Version 13.2.20171.1151

Fixed

  • 24608: An unexpected error occurred during a connection: Die Länge darf nicht kleiner als 0 (null) sein. Parametername: length
  • 24621: Trigram search is slow
  • 24718: DKIM signature verification fails if the email contains an attached EML file with incorrect content type
  • 24684: Emails with nested EML attachment with incorrect content type are not serialized correctly
  • 24640: Email rejected by CxO Fraud Detection action causes two NDRs in default configuration
  • 24662: “Unable to confirm artifacts replication” error if there are a lot of replication artifacts
  • 24679: Multiple reputation filter PTR record tests are failing if the sender IP address doesn’t have a PTR record
  • 24719: An email could not be decoded

We have released the Version 13.2.21111.1701 on May 6th, 2021. This Version is an upgrade release where the following Bugs are fixed and new features are added or changed.

Important Information

If you have previously installed a beta version 13.2, please upgrade to the official release version 13.2.20141.1435 or later for support reasons!

As of version 13.2.20083.1640, a script for enhancing the address searching is included. These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

Version 13.2.21111.1701 (May 6th, 2021)

includes all changes and bug fixes from Fast Channel Versions 13.2.20199.1826 to 13.2.21111.1701

Please review Release Notes of Fast Channel Version for Changes and Bug Fixes

Version 13.2.20171.1151 (June 30th, 2020)

includes changes and bug fixes from Regular Channel Version 13.2.20141.1435

Fixed

  • 24397: A replication artifact could not be deserialized
  • 24444: Message tracks could not be retrieved from the Intranet Role
  • 24514: Intranet Role database updates fails: Failed to execute an SQL command. Error: String or binary data would be truncated.
  • 23966: “Error: Invalid algorithm specified” when importing a certificate with rsaSignatureWithripemd160 signature algorithm
  • 24400: Office365 detection fails when an Office 365 accepted domain is used instead of an Guid
  • 24138: Update TLS Best Practices for Windows 2012R2
  • 24503: Sign and Encrypt action incorrectly uses SHA-512 although the certificate only supports SHA-256
  • 24468: Object reference not set to an instance of an object.
  • 24544: Stripping batv data can lead to failures to update message tracking data
  • 24496: Missing data for signature validation. SignedContent is empty and no data stream has been provided.
  • 24520: Attachments in nested EML attachments are not detected if the content type of the nested EML is not message/rfc822
  • 24530: Improve the Mail to many recipient with out- or inbound content filter configured
  • 24504: URL Safeguard details are incorrectly marked as deleted in Message Tracking which causes the cleanup to fail
  • 24547: A lot of inbound Duplicate mails, if it was a mail to 626 recipients

Version 13.2.20141.1435 (June 2nd, 2020)

includes changes and bug fixes from Fast Channel Version 13.1.20071.1529

New / Changed

  • Four new tests for the reputation filter focusing on the HEADER-FROM
  • One new test for the reputation filter that checks if the email was transmitted via a TLS-protected connection
  • DFN CA connector
  • URLs in emails can be disabled by the URL Safeguard
  • Greylisting is now a policy violation
  • BATV addresses are now included in the license count

Discontinuations

  • E-Post-Brief connector is supported for the last time
  • Windows 2008 Server R2 is supported for the last time
  • SQL 2008 R2 is supported for the last time
  • SQL 2016 Express Edition is supported for the last time
  • SMTP proxy mode is supported for the last time

Fixed

  • 22455: Search root in the LDAP User import should not be mandatory
  • 22889: The DKIM and DMARC implementation of NoSpamProxy does not support internationalized domains
  • 22952: Processing delivery attempty is too slow
  • 23222: Multiple attempts to scan an attachment using the Cyren sandbox failed
  • 23254: Restrict the DANE Validation to 20 sec
  • 22905: Replication breaks when the identity counter reaches 2 billion in the UrlVisits database
  • 23159: Import public certificate used for encryption instead of sign only certificate
  • 23178: Reputation filter does not cope well when the From: oder To: header is missing
  • 21654: Users are still counted and message “You exceeded your license …” is shown even if elapsed time is more than 10 days
  • 23877: Could not bind to 0.0.0.0:25. The address is already in use. Perhaps another SMTP server is running on this endpoint
  • 23953: An attempt to put an email on hold failed
  • 23911: New installation of Intranet Role with existing database on remote SQL server fails
  • 24079: Processing Message Track replication artifacts on the Intranet Role is very slow
  • 23088: URL Safeguard: The specified website ID could not be processed
  • 23255: Sometimes there is a Warning in MMC if the MMC was inatalled remote on a client
  • 24144: Logging output for cleanup of Safeguard URLs during Message Tracking cleanup is incorrect
  • 22932: Heimdall filter name is “OutbreakDetection” in MMC
  • 23591: NSP cuts off header from domain
  • 23571: Update Cyren configuration settings in setup
  • 23565: CxO filter runs after content filtering
  • 23623: Mime-Version is not always created when converting an existing mail to mulitpart
  • 23499: Existing SMIME signature is not removed if the signature is not part of a multipart mimepart
  • 19676: Compilation errors for automatic reply templates are not shown anywhere
  • 23670: [production] Content disarm for an email on hold failed
  • 23684: Plain text body with iso-2022-jp encoding is handled as attachment with mime type application/octet-stream
  • 23636: Mime type for zip archive containing PDF document is detected as unprocessable PDF
  • 23689: Charset of email body is changed to UTF-8 if content filter upload hint is added
  • 20420: URL Safeguard: Protected link text is not set
  • 23400: The mime part of type Netatwork.NoSpamProxy.Net.Smtp.MultipartMimePart is not supported
  • 19285: Long lines in mime parts extracted from TNEF emails are not wrapped
  • 23532: URLSafeguard: Deactivated links with www prefix could not be reactivated
  • 23797: DNS Server settings could not be saved: A parameter was invalid
  • 20481: Files with very long names could not be uploaded to web portal
  • 23808: URL Safeguard rewrites 4 digit version numbers
  • 23736: Large files malware scan is not displayed in MMC if the email is sent via the Web Portal
  • 23809: URL Safeguard rewrites parts of filenames if the extension is a valid TLD
  • 23918: LDAPS doesn’t work with wildcard certificicates
  • 23629: Ascending “ordered by” brokes message tracking
  • 23928: Gateway Role crashes / ARSoft DNS lookup causes stackoverflow exception
  • 23967: CDR file not send if files over size limit should be uploaded to the web portal
  • 23638: Email is put on hold with “Error: A clone of the specified mimepart was not found.” if the content filter removes a file from an attached EML file
  • 23913: Base64 decoder doesn’t ignore extra padding characters if configured to ignore extra characters
  • 24076: Inbound Large Files links are also password protected
  • 24008: Message Tracking cleanup doesn’t finish in cleanup period
  • 23640: Spam URI Realtime Blocklist filter error: Object reference not set to an instance of an object
  • 24030: Disclaimer keyword replacement is slow for larger HTML bodies
  • 23888: URL Safeguard rewrite part of email addresses in attached eml file
  • 24134: Improve notification info
  • 24204: Legacy Excel 4.0 macros are not detected
  • 24191: Spelling errors in message details
  • 24245: CorporateMailOffice365TenantTests unit tests are failing because of an expired certificate

We have released the version 13.1.20071.1529 on March 16th, 2020. This version is an upgrade release where the following bugs are fixed and new features are added or changed.

Important Information

As of update Version 12.2.18253.1152, a script for cleaning up the message tracking is included, which deletes orphaned entries in the database and from Version 13.0.19169.1943, a script for improving Table Indexes was added.
These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

If the Protection module is licensed, it is possible that the Cyren services do not work and no viruses and spam checks are performed after the update to version 13, although the NoSpamProxy license itself has been correctly validated. To correct this, in the NoSpamProxy Management Console go to Configuration/NoSpamProxy Components/Gateway Roles, select the gateway role(s) and click on Synchronize configuration.

Synchronize configuration

It is possible in combination with some Domain names, that the Reputation filter will block emails due to an obfuscated owned Domain. Only in this case we will recommend to reduce the SCL Points to maximum 2 SCL Points (Default is 4 SCL Points) for the test ‘Header-From’ is an owned Domain at the Reputation filter, to be found on the tab Filters at the applied rule, on tab ‘Header-From’ Tests. This will be improved within the next Major Version.
Example: Owned Domain = example.com, but the Reputation filter will also detect my-example.com as an obfuscated owned Domain.

Version 13.1.20071.1529 (March 16th, 2020)

based on Fast Channel Version 13.1.20048.1517

In order to prevent the error message “Unable to relay”, this version is required if emails are to be sent from Office 365 via NoSpamProxy.

Fixed

  • Cleaned up the Office 365 certificate check and changed the default behaviour to exclude the Root certificate from the revocation check
  • Remove check for self-signed UID from PGP key import
  • Charset decoding is performed incorrectly when extracting body from winmail.dat
  • Version number in PDF metadata is detected as URL and checked by the Spam URI Realtime Blocklist filter
  • Email is put on hold with “Error: A clone of the specified mime part was not found.” if the content filter removes a file from an attached EML file
  • Outlook Add-In does not handle Content Filters correctly
  • ICAP Malware scanner does not work with Symantec Endpoint Protection
  • URLSafeGuard: Links with umlaut could not be complete rewritten
  • Disclaimer is not positioned correctly when replying to Gmail emails
  • PGP encrypted attachment having Content-Type header with long media type and encoded file name can’t be serialized after decryption
  • Adobe cannot open the Attachment from PDF
  • GlobalSign certificates could not be revoked
  • Homographic attack detection does not work
  • Content filter in partner domain/user is not detect in outlook addin
  • Sending an administrative notification for CPU or HDD stress level failed. Error: Value cannot be null.
  • Resolution of the dependency failed by sending an administrative notification for CPU or HDD
  • Converted files are not approved if it is a Web Portal mail
  • Error in webportal template for redirection
  • Failed to update health statistics. Error: System.ArgumentNullException
  • Different content filters for partner users are not working correctly also in Add-In
  • Mail permanently blocked cause of modification

Version 13.1.20048.1517 (February 26th, 2020)

based on Regular Channel Version 13.1.19330.1217

New / Changed

  • Proactively kill external mime detection process if memory exceeds 256 MB

Fixed

  • SMTP error message contains only LF instead of CRLF if multiple Reputation Filter tests fail
  • Disclaimer images are sometimes displayed as attached files
  • Word filter with content “mom” triggers on “ror” when obfuscation is enabled
  • Missing MIME-Version header causes display problems in Outlook after signing an email
  • Duplicate certificate import
  • Remove archive metadata settings not possible
  • Message statistics are not cleaned up
  • When the Web Portal returns HTML instead of JSON, the user of the Outlook AddIn gets a useless error message.
  • Web Portal synchronization is very slow on Windows Server 2019 clients
  • DNSSEC is not enabled after Gateway Role restart
  • PDF mime type detection hangs and uses a lot of CPU/RAM with a certain document
  • “Receiver rewriter” and “Reroute email” actions are not executed if MAIL FROM is empty
  • SMTP receive connector “maxInvalidRecipients” setting is reset after configuring the connector using the MMC
  • Active Directory import: Log detailled information why a TLS connection failed
  • Web Portal: An attempt to enumerate the files failed
  • SMTP AUTH command doesn’t accept username/password directly
  • Word filter in simple finds matches in words
  • After saving changes in receive connector: Perhaps another SMTP server is running on this endpoint.
  • Cannot upload some files to Web Portal
  • Email temporary blocked. An error occurred while checking an email: OperationCanceledException
  • Heimdall: Failed to contact the server. Value cannot be null
  • URL Safeguard Exception: An item with the same key has already been added.
  • “Error: Access is denied” when decrypting a PGP encrypted email
  • Obfuscated domain is not detected as external
  • The DELETE statement conflicted with the REFERENCE constraint “FK_Url_MessageTrackEntry”
  • Content filter “File name” does not detect files in hierarchy within zip
  • Colour theme is not replicated if a new Gateway Role/Web Portal is added
  • No results by PowerShell-Command: get-nspuser and set-nspuser
  • Gateway Role hangs with 100% processor usage when a deeply nested mail is processed
  • Heimdall: Object reference not set to an instance of an object.
  • Improved wording for the case when a password for PDF encryption could not be obtained or generated.
  • URL Safeguard rewrites the links incorrect if used <base href=…>-tag
  • The “digiSeal server: Sign attachments on outbound emails” action only signs attachments that are part of a multipart mimepart
  • Base64 decoder doesn’t ignore extra characters if invalidBase64LengthHandling=”IgnoreExtraCharacters” is configured
  • Base64 decoder doesn’t remove invalid characters correctly if the encoded content has multiple lines
  • URL Safeguard doesn’t rewrite links with whitespaces in a-href-tag correctly
  • URL Safeguard takes very long to rewrite URLs

We have released the Version 13.1.19330.1217 on December 04th, 2019. This Version is an upgrade release where the following Bugs are fixed and new features are added or changed.

Important Information

As of update Version 12.2.18253.1152, a script for cleaning up the message tracking is included, which deletes orphaned entries in the database and from Version 13.0.19169.1943, a script for improving Table Indexes was added.
These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

If the Protection module is licensed, it is possible that the Cyren services do not work and no viruses and spam checks are performed after the update to version 13, although the NoSpamProxy license itself has been correctly validated. To correct this, in the NoSpamProxy Management Console go to Configuration/NoSpamProxy Components/Gateway Roles, select the gateway role(s) and click on Synchronize configuration.

Synchronize configuration

It is possible in combination with some Domain names, that the Reputation filter will block emails due to an obfuscated owned Domain. Only in this case we will recommend to reduce the SCL Points to maximum 2 SCL Points (Default is 4 SCL Points) for the test ‘Header-From’ is an owned Domain at the Reputation filter, to be found on the tab Filters at the applied rule, on tab ‘Header-From’ Tests. This will be improved within the next Major Version.
Example: Owned Domain = example.com, but the Reputation filter will also detect my-example.com as an obfuscated owned Domain.

Version 13.1.19330.1217 (December 04th, 2019)

includes changes and bug fixes from Regular Channel Version 13.1.19274.1138, listed below

New / Changed

  • An issue should be shown if DNS is blocked by Spam URI Realtime Blocklists
    (For description see Knowledge Base Articles in German or English)

Fixed

  • DER encoding rule for SETs used in Signed Attributes is wrong
  • Wrong results from email address filter
  • SPF PTR resolution doesn’t match subdomains
  • Secondary DNS server is not used to resolve hostnames if the primary DNS server doesn’t respond
  • ZIP archive accepted if a single file inside is allowed
  • Header-From address without domain causes NullReferenceException in Reputation filter
  • All headers are removed if the email body only consists of a winmail.dat
  • URL in PDF is not extracted correctly
  • Values of DKIM-Signature header are not sanitized before validating the signature
  • Installer doesn’t set permissions for Cyren URL classification service on ProgramData\Cyren folder
  • CryptographicOperationInfos is not thread-safe
  • Outlook Addin is uploading everything to the Web Portal
  • Wrong position of disclaimer if plain text email body contains dashes
  • Base64 decoding error if the encoded content is wrapped in a certain way
  • Content disarm for an email on hold failed: Length cannot be less than zero
  • All email servers are allowed to send emails with owned domains if “Password authenticated” corporate email server is configured
  • Email with obfuscated domain is blocked by HeaderFromExternalObfuscatedSubstringValidation
  • Gateway Role crashes when O365 Tenant is wrong
  • User password settings are not visible if LargeFiles is licensed without encryption
  • An unhandled error occurred during the malware scan
  • Link for the ReportViewer has changed on the Microsoft Website
  • No validation of input data in DNS routing restriction dialog
  • Intranet Role crashes when completing certificate enrolment requests: System.AccessViolationException
  • digiSeal: Object reference not set to an instance of an object
  • Behaviour of saving the settings for reputation filter is not consistent
  • “n/a” in SMIME action validation
  • Heimdall not always shown in validation tab
  • Could not load rule configuration from Gateway Role
  • Info in message track url safeguard if url detection is disabled
  • Not clear description of search filter in message tracking

 

Version 13.1.19274.1138 (October 11th, 2019)

includes changes and bug fixes from Fast Channel Version 13.0.19241.1237, listed below

New / Changed

  • Minimum requirement for Outlook Add-In is now Office 2010
  • SMTP Auth support in Corporate E-Mail-Server
  • New Sender reputation checks
  • Add „Received-content-MIC“-Header to AS/2 recipient
  • Add TLS Organizational Domain as Greylisting key if available
  • An issue is displayed, if an UNC path is used for Large Files storage
  • Content filter handling for password protected ZIP archives
  • Notify admin and not save logs if disk out of space
  • New supported file types
  • Apply content filter rules in EML attachments
  • Add “Received Header” in Queue mode
  • Level of Trust improvements
  • Limit emails to 100 recipients
  • Extend Spam URI Realtime Blocklists Filter to check links in pdf documents
  • Remove Protected Sky RBL immediately
  • Display URL in MessageTracking Details when it was classified as malware by CYREN URL Reputation

Fixed

  • The migration of your old message tracking data failed. Error: Must declare the table variable “@Urls”
  • Gatewayrole crashes
  • Header with multiple encoded words next to each other is not parsed correctly
  • Download of a large file via the MMC is aborted after 30 seconds
  • If multiple HTML body mime parts are converted to attachments and renamed as part of the email mitigation the filename has the wrong extension *.txt
  • Wrong translation in Partner settings
  • Enhance Obfuscated email check in Reputation Filter

We have released the Version 13.0.19241.1237 on September 4th, 2019. This Version is an update release where the following Bugs are fixed and new features are added or changed.

Important Information (Common)

As of update version 12.2.18253.1152, a script for cleaning up the message tracking is included. This script deletes orphaned entries in the database. TFrom Version 13.0.19169.1943, a script for improving Table Indexes was added.
These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

If the Protection module is licensed, it is possible that the Cyren services do not work and no viruses and spam checks are performed after the upgrade to version 13, although the NoSpamProxy license itself has been correctly validated. To correct this, in the NoSpamProxy Management Console go to Configuration/NoSpamProxy Components/Gateway Roles, select the gateway role(s) and click on Synchronize configuration.

Synchronize configuration

It is possible in combination with some Domain names, that the Reputation filter will block emails due to an obfuscated owned Domain. Only in this case we will recommend to reduce the SCL Points to maximum 2 SCL Points (Default is 4 SCL Points) for the test ‘Header-From’ is an owned Domain at the Reputation filter, to be found on the tab Filters at the applied rule, on tab ‘Header-From’ Tests. This will be improved within the next Major Version.
Example: Owned Domain = example.com, but the Reputation filter will also detect my-example.com as an obfuscated owned Domain.

Version 13.0.19241.1237 (September 4th, 2019)

based on Regular and Fast Channel Version 13.0.19204.1650

Fixed

  • Greylisting action is executed before the filters
  • Mail-From and Header From are different in Encrypted email notification
  • Wizard does not save inbound send connectors
  • Exception in second execution of configuration wizard
  • ZIP bomb handling – NSP stucks with high ressource usage
  • Images from disclaimer templates are attached multiple times if multiple disclaimer templates are applied to the email
  • Search filter in Event Log returns unfiltered results for remote roles
  • File synchronization between Web Portals hangs if a BITS job fails with a transient error
  • An unexpected error occurred while signing or encrypting a message.SBPGPExceptions.EElPGPEncryptionStreamException
  • Copy of a web portal email is sent unencrypted if the rule is configured to reject the email
  • Service crashes when owned domain is added with a whitespace character
  • Exception if CDR of encrypted file failed
  • Attachment is always unknown to the sandbox if URL Safeguard has rewritten an URL in the attachment
  • Check if the Cyren service restarts after the permissions are set for remote web portal
  • A replication artifact could not be deserialized. No message track
  • Web Portal Copy has to be always encrypted
  • Wrong domain is used in DKIM signature header if owned domain and DKIM key domain are different
  • Status mailware scan failed warning has to be updated after the problem is fixed
  • Check if the Cyren service restarts after the permissions are set for remote web portal
  • Reply Link to Web portal does not work
  • Password-protected files are ignored by the converter and the Web Portal
  • An unhandled error occurred during the malware scan
  • Web portal upload for an email on hold failed: Object reference not set to an instance of an object

Version 13.0.19204.1650 (August 6th, 2019)

based on Fast Channel Version 13.0.19197.1833

Fixed

  • Could not assess the current license usage. Object reference not set to an instance of an object
  • Rescan of quarantined Web Portal files fails: Final output block size must be at least 56
  • Reputation filter blocks De-Mail notifications if substring match tests are enabled
  • URL Safeguard does not rewrite some links calendar invitation
  • URL Safeguard: Wrong detection of URLs in outlook calendar invitation
  • URL Safeguard: /n is included in link

Version 13.0.19197.1833 (July 25th, 2019)

based on Regular and Fast Channel Version 13.0.19169.1943

New / Changed

  • URL Safeguard: configuration info for host and URLs in attachments rewriting

Fixed

  • Cyren IP reputation filter error: Der Wert darf nicht NULL sein. Parametername: input
  • Load data in message track takes too much time and url safeguard shows wrong information
  • Missing provider name if eventlog with id 3583 is created
  • Cyren URL Classification filter does not detect malware links in encrypted emails
  • Calendar request inside of a winmail.dat is not detected and the email is signed
  • A PDF attachment with an attachment that has an undefined content length cannot be processed correctly.
  • Quoted printable encoded PDF is not disarmed correctly.
  • Wrong padding is shown for encryption/decryption in message track
  • Validation policies could not be saved in SMIME and PGP validation action
  • An unexpected error occurred, and the Intranet Role is shutting down
  • Could not assess the current license usage. Object reference not set to an instance of an object

Version 13.0.19169.1943 (July 09th, 2019)

based on Fast Channel Version 13.0.19149.1743

Fixed

  • Outlook Add-In is sending text message even if the user has disabled this function
  • Wrong error message when importing PGP secret key
  • PDF Mail tab in partner user settings missleads a user
  • URL Safeguard timeout if the HTML body contains a large amount of URLs (4000+)
  • Header-FROM/TO contains an @ sign outside of an email address
  • Emails are accepted if an error occurs that is not a timeout and the validation timeout handling is set to “Accept”
  • Cyren Antispam/Antivirus service is not responding until the Gateway Role is restarted
  • Exception in error message of executed URL Safeguard action: “An item with the same key has already been added”
  • Spam Uri Realtime Blocklist filter checks URLs without protocol against blacklists
  • AES-128-GCM and AES-256-GCM encryption algorithms are missing from the inspection report
  • Level of Trust fixed domain bonus for freemailer domain is not granted
  • Outlook calendar invitation contains lines longer than 75 characters after URL Safeguard has rewritten URLs
  • URL Safeguard and Spam Uri Realtime Blocklist filter detect URLs in calendar invites if the lines in the invite have been folded
  • Message Track displays “No bonuses where granted because the email was not authenticated” if Level of Trust is configured to require authentication only for the domain bonus
  • Powershell CmdLet Get-NspEmailOnHold doesn’t include emails waiting for content filter processing

Version 13.0.19149.1743 (June 24th, 2019)

based on Fast Channel Version 13.0.19147.917

Fixed

  • Spam URI Realtime Blocklists filter also detects email addresses as URLs
  • Level of Trust subject bonus is granted for free mailer addresses
  • Alert to the Administrator about license validation failed
  • Content filter treats folders inside of zip archives as empty files with mime type “application/octet-stream” and without file name
  • PDF document is corrupted after content disarm
  • Attachments without filename can’t be uploaded to the Web Portal: Value cannot be null, parameter name: filename

Version 13.0.19147.917 (June 11th, 2019)

based on Regular Channel Version 13.0.19120.1521

New / Changed

  • Enable Cyren URL classification service by default in SURBL Filter

Fixed

  • Change supported Outlook Version from 2007 to 2010 Service Pack 2
  • Incorrect charset detected after decrypting a PGP encrypted text attachment
  • PGP signature validation fails if the signature contains a non-standard issuer-fpr subpacket
  • Self-signed pgp key created in kleopatra could not be imported
  • Self-signed pgp public keys could not be imported
  • If a public key lookup service is not responsive, mailflow may be interrupted
  • UI incorrectly states that the 13.0 already scans links for PDF documents
  • Email without signer infos is displayed as signed and unmodified in Message Track
  • License on Gateway Role and Web Portal becomes invalid after 30 days even if the license server successfully confirmed the license
  • Retrieving Level of Trust domain bonus causes error: Object reference not set to an instance of an object
  • URL Safeguard: Exception when reporting misclassification
  • Dialog with error by configuration of AD enrolment
  • Target host missing from Message Track delivery attempt if email is temporarily rejected
  • ResettableCancellationToken not properly disposed
  • Message Track displays “No bonuses where granted because the email was not authenticated” if Level of Trust is configured to require authentication only for the domain bonus
  • Outlook Add-In does not create HTML file
  • Get-NspMessageTrack missing TLS information
  • Email is supposed to be rejected due to a validation timeout but is delivered to the recipient if the email is put on hold by the Content Filter
  • Failed to create an address rewriting entry
  • Outbound automatic reply is not sent if the email is signed, encryption is required, and PDF Mail is used as fallback encryption
  • PGP encrypted email could not be decrypted: Invalid header line
  • Calendar invites from O365 are not detected properly and signed, even if signing of calendar invites is disabled
  • An unexpected error occurred while signing or encrypting a message
  • URL Safeguard creates visited URL replication artifacts with empty recipient that can’t be processed by the Intranet Role

We have released the Version 13.0.19204.1650 on August 06th, 2019. This Version is an upgrade release where the following Bugs are fixed and new features are added or changed.

Important Information

As of update Version 12.2.18253.1152, a script for cleaning up the message tracking is included, which deletes orphaned entries in the database and from Version 13.0.19169.1943, a script for improving Table Indexes was added.
These may cause the setup not to respond for a some time during database update. The setup must not be aborted and must run until completed. Please schedule a longer upgrade period for this.

If the Protection module is licensed, it is possible that the Cyren services do not work and no viruses and spam checks are performed after the update to version 13, although the NoSpamProxy license itself has been correctly validated. To correct this, in the NoSpamProxy Management Console go to Configuration/NoSpamProxy Components/Gateway Roles, select the gateway role(s) and click on Synchronize configuration.

Synchronize configuration

It is possible in combination with some Domain names, that the Reputation filter will block emails due to an obfuscated owned Domain. Only in this case we will recommend to reduce the SCL Points to maximum 2 SCL Points (Default is 4 SCL Points) for the test ‘Header-From’ is an owned Domain at the Reputation filter, to be found on the tab Filters at the applied rule, on tab ‘Header-From’ Tests. This will be improved within the next Major Version.
Example: Owned Domain = example.com, but the Reputation filter will also detect my-example.com as an obfuscated owned Domain.

 

Version 13.0.19204.1650 (August 06th, 2019)

includes changes and bug fixes from Fast Channel Version 13.0.19197.1833, listed below

New / Changed

From 13.0.19197.1833

  • URL Safeguard: configuration info for host and URLs in attachments rewriting

Fixed

  • Could not assess the current license usage. Object reference not set to an instance of an object
  • Rescan of quarantined Web Portal files fails: Final output block size must be at least 56
  • Reputation filter blocks De-Mail notifications if substring match tests are enabled
  • URL Safeguard does not rewrite some links calendar invitation
  • URL Safeguard: Wrong detection of URLs in outlook calendar invitation
  • URL Safeguard: /n is included in link

From 13.0.19197.1833

  • Cyren IP reputation filter error: Der Wert darf nicht NULL sein. Parametername: input
  • Load data in message track takes too much time and url safeguard shows wrong information
  • Missing provider name if eventlog with id 3583 is created
  • Cyren URL Classification filter does not detect malware links in encrypted emails
  • Calendar request inside of a winmail.dat is not detected and the email is signed
  • A PDF attachment with an attachment that has an undefined content length cannot be processed correctly.
  • Quoted printable encoded PDF is not disarmed correctly.
  • Wrong padding is shown for encryption/decryption in message track
  • Validation policies could not be saved in SMIME and PGP validation action
  • An unexpected error occurred, and the Intranet Role is shutting down
  • Could not assess the current license usage. Object reference not set to an instance of an object

 

Version 13.0.19169.1943 (July 09th, 2019)

includes changes and bug fixes from Fast Channel Versions 13.0.19149.1743 and 13.0.19147.917, listed below

New / Changed

From 13.0.19147.917:

  • Enable Cyren URL classification service by default in SURBL Filter

Fixed

  • Outlook Add-In is sending text message even if the user has disabled this function
  • Wrong error message when importing PGP secret key
  • PDF Mail tab in partner user settings missleads a user
  • URL Safeguard timeout if the HTML body contains a large amount of URLs (4000+)
  • Header-FROM/TO contains an @ sign outside of an email address
  • Emails are accepted if an error occurs that is not a timeout and the validation timeout handling is set to “Accept”
  • Cyren Antispam/Antivirus service is not responding until the Gateway Role is restarted
  • Exception in error message of executed URL Safeguard action: “An item with the same key has already been added”
  • Spam Uri Realtime Blocklist filter checks URLs without protocol against blacklists
  • AES-128-GCM and AES-256-GCM encryption algorithms are missing from the inspection report
  • Level of Trust fixed domain bonus for freemailer domain is not granted
  • Outlook calendar invitation contains lines longer than 75 characters after URL Safeguard has rewritten URLs
  • URL Safeguard and Spam Uri Realtime Blocklist filter detect URLs in calendar invites if the lines in the invite have been folded
  • Message Track displays “No bonuses where granted because the email was not authenticated” if Level of Trust is configured to require authentication only for the domain bonus
  • Powershell CmdLet Get-NspEmailOnHold doesn’t include emails waiting for content filter processing

From 13.0.19149.1943:

  • Spam URI Realtime Blocklists filter also detects email addresses as URLs
  • Level of Trust subject bonus is granted for free mailer addresses
  • Alert to the Administrator about license validation failed
  • Content filter treats folders inside of zip archives as empty files with mime type “application/octet-stream” and without file name
  • PDF document is corrupted after content disarm
  • Attachments without filename can’t be uploaded to the Web Portal: Value cannot be null, parameter name: filename

From 13.0.19147.917:

  • Change supported Outlook Version from 2007 to 2010 Service Pack 2
  • Incorrect charset detected after decrypting a PGP encrypted text attachment
  • PGP signature validation fails if the signature contains a non-standard issuer-fpr subpacket
  • Self-signed pgp key created in kleopatra could not be imported
  • Self-signed pgp public keys could not be imported
  • If a public key lookup service is not responsive, mailflow may be interrupted
  • UI incorrectly states that the 13.0 already scans links for PDF documents
  • Email without signer infos is displayed as signed and unmodified in Message Track
  • License on Gateway Role and Web Portal becomes invalid after 30 days even if the license server successfully confirmed the license
  • Retrieving Level of Trust domain bonus causes error: Object reference not set to an instance of an object
  • URL Safeguard: Exception when reporting misclassification
  • Dialog with error by configuration of AD enrolment
  • Target host missing from Message Track delivery attempt if email is temporarily rejected
  • ResettableCancellationToken not properly disposed
  • Message Track displays “No bonuses where granted because the email was not authenticated” if Level of Trust is configured to require authentication only for the domain bonus
  • Outlook Add-In does not create HTML file
  • Get-NspMessageTrack missing TLS information
  • Email is supposed to be rejected due to a validation timeout but is delivered to the recipient if the email is put on hold by the Content Filter
  • Failed to create an address rewriting entry
  • Outbound automatic reply is not sent if the email is signed, encryption is required, and PDF Mail is used as fallback encryption
  • PGP encrypted email could not be decrypted: Invalid header line
  • Calendar invites from O365 are not detected properly and signed, even if signing of calendar invites is disabled
  • An unexpected error occurred while signing or encrypting a message
  • URL Safeguard creates visited URL replication artifacts with empty recipient that can’t be processed by the Intranet Role

Version 13.0.19120.1521 (May 6th, 2019)

New / Changed

  • Extend Surblfilter to check links in pdf documents
  • Make Greylisting Action independant from Cyren IP Reputation
  • DKIM generator: split RSA and ed25519 into seperate textboxes
  • PDF URL detection and content filter handling
  • Change DNS resolution for the OData endpoint

Fixed Issues

  • Impossible to use “Cyren URL classification service” alone
  • Web Portal file store permissions hint doesn’t include required “Modify” permission for NT Service\NetatworkMailGatewayFileSynchronizationService user
  • Base64 encoded mime parts are not encoded correctly after being processed by URL Safeguard
  • Web Portal settings can’t be saved if neither PDF Mail nor Large Files is available
  • Owned domains could not be associated with new created Office 365 tenant
  • Self-signed pgp public keys could not be imported
  • Multipart/Mimepart encoded with UUEncode cannot be parsed.
  • SMIME signature validation is not successful and mail is marked as “probably modified”
  • Default values for PSS certificate are not used
  • Emails with different case sensitivity could be added in filters of email flow
  • Web Portal File Replication Service: Object reference not set to an instance of an object.
  • Base64 decoding fails if the base64 content ends with a line of tab stops
  • MessageTracking is not cleaned up properly and fast enough (StackOverflowException)
  • Mime type detection for XML files sometimes takes 100 seconds per file
  • Email with JavaScript in PDF could not be processed
  • Email could not be signed if root imported after user certificate
  • Outlook calendar invites are modified, and the calendar part is not displayed in Outlook after being processed
  • Wrong info in message track if URL tracking is disabled
  • Intranet role cannot communicate with WebPortal with TLS 1.2 only
  • PDF document with UTF-8 with BOM encoding is detected as text/plain
  • Emails are accepted if an error occurs that is not a timeout and the validation timeout handling is set to “Accept”
  • URL Safeguard swaps domains in enQsig links without checking if it contains own domain
  • Fraud action: Checkbox for “Ignore emails on trusted partner” does nothing
  • Web Portal File Replication Service: Object reference not set to an instance of an object.
  • IssuedTo is not set or shows type name by user certificates
  • Reputation Filter “‘Header-From’ is an owned domain” test tries to validate email addresses in the display name
  • Documentation on reputation filters not sufficient

Version 13.0.19084.2011 (March 28th, 2019)

New / Changed

  • Add content filter mime type encrypted PDF
  • Add content filter mime type unprocessable pdf files

Fixed Issues

  • NDR or out-of-office messages are not detected as being sent from a corporate email server if “SPF protected local address” is used
  • De-mails are not routed if there is no De-Mail connector
  • GET-NSPCERTIFICATE cmdlet displays only SubjectCN instead of SubjectDN
  • Word Filter: behavior if none of the words are found
  • PDF restrictions are swapped
  • Padding is invalid and cannot be removed
  • URL Detection in PDFs causes external process to appear with high cpu load

Version 13.0.19076.2212 (March 20th, 2019)

Fixed Issues

  • Double issue if number of De-Mail domains permitted in license is exceeded
  • DKIM keys are not re-encrypted if the sensitive data protection password is changed
  • All features are disabled in license on Gateway Role after update to 13.0
  • Encrypt pdf with password in subject flag does not work
  • Failed to announce a new replication partner. Error: Only parameter-less constructors and initializers are supported in LINQ to Entities
  • Status of the CYREN integration service could not be determined

Version 13.0.19071.1240 (March 14th, 2019)

Fixed Issues

  • [URL Safeguard] Domains are not rewritten if they contain international characters
  • WebPortal setup could not be downloaded over the link in mmc
  • Different error status from DNS with enabled/disabled TLS cert validation
  • Email is not signed with pgp key if key for partner not active/exist but smime is active
  • Sandbox usage is counted incorrectly
  • No DKIM keys can be created for domains shorter than 8 characters
  • Attachments having a filename without extension can’t be scanned by Cyren when uploaded to the Web Portal
  • DKIM: CNAME reference for ECDSA key is wrong
  • Configuration error in WebPortal.config after updating to 13.0
  • Password selection “Use the password supplied by the sender” for the “Protect attachments with a password” action always generates a new password if no password is supplied
  • Large files file name is truncated to 64 characters

Version 13.0.19059.1641 (March 1st, 2019)

Fixed Issues

  • Check for an updated license doesn’t work after it failed once because no Gateway Role could be reached
  • Better wording in tooltip for outbound Large File links (content filter action)
  • Punctuation mistake and inconsistence in ‘License update failed’-dialog
  • Exception occurs during the validation of SMIME messages
  • Online license could not be validated after update to 13.0

Version 13.0.19057.1802 (February 28th, 2019)

New / Changed

  • Option to archive files modified by the content filter
  • Replace keywords in an email with a disclaimer
  • Cyren sandbox
  • Better support for a large number files in the Web Portal
  • Better user experience with partially deleted messagetracks
  • Automatic license management
  • Message tracks now contain the SHA-256 hashes of attachments (not visible in Messagetracking)
  • Improved display of the Level of Trust details in the Message Tracking
  • Removed INPS Blacklist
  • Edi@Energy: Use SHA-256 MFG with RSA-OAEP
  • URL Safeguard
  • Report False Positive mails to Cyren from the Message Tracking
  • Report False Positive and Negative Urls in a Message Track
  • Discontinued Proxy Mode for inbound mails
  • CxO Fraud action
  • Administrative alert when the database is nearly full
  • More types in file type detection
  • Protect large files with a password
  • Consolidated all malware scanners into a single action with better failure handling and administrative alerts
  • Remove LAB Status from ICAP supports
  • Remove LAB status from PDF Content Disarm
  • Partial S/MIME support (AES-GCM)
  • Sign with DKIM EdDSA keys
  • Revamped UI for the Content Filter Action
  • Improved performance in message tracking searches
  • Extension of Reputation filter (Header-From and Header-To)
  • Project Heimdall (action in rule)
  • Extension of E-Mail Notifications

Fixed Issues

  • Email with virus is not blocked if host to ICAP could not be resolved
  • Error “Value cannot be null. Parameter name: input” when email is processed by “S/MIME and PGP validation and decryption” action
  • De-Mail permissions are not replicated to Gateway Role
  • Fixed issue with legacy license settings in config file
  • Signature of the email is invalid if another email with text/plain body  attached
  • Duplicate entries in Gateway Role DNS cache
  • DKIM signature is invalidated if subject flags are used
  • Fixed incorrect display of level of trust information (If the sender IP was trusted, the sender was still not displayed as authenticated)
  • A potentially dangerous Request.Form value was detected from the client
  • Error message “An item with the same key has already been added” during AD Synchronization
  • EdDSA signature has been removed from email
  • Missed ValidationTimeoutHandling parameter by Set-NspSmtpProtocolSettings
  • DNS cache invalidation not working properly with multiple entries that have a different TTL
  • Greylisting doesn’t work correctly if the email has been put on hold for content filtering
  • User certificate is not imported if root/intermediate not exists or in quarantine
  • Get-NspLargeFiles does not output the field ContentType
  • Certificate is valid despite of quarantined root and intermediate certificates
  • Greylisting action will be executed even if email is trusted
  • Object reference not set to an instance of an object
  • Email attachment is not protected if auto-encryption and mail to PDF in rule
  • E-Mail cannot be decrypted due to Null reference exception
  • ERROR while “Discover DNS settings”
  • User field could not be added: Internal server error
  • TNEF: Decrypted attachment has a unexpected name and file format
  • Cache for trust points for sender domain is not updated
  • NullReferenceException when updating default partner settings
  • CYREN IP Reputation Service could not be started
  • Greylisting action executed in webportal emails
  • No activity for “Applied disclaimer” in message track
  • PGP key is not imported if PGP signature shouldn’t be removed
  • Possible word filter false positive if word contains an “m” or “v” and obfuscated words should be found
  • Word filter does not block obfuscated words
  • Attachment information are removed from MessageTrack JSON after content filtering
  • Word filter message contains word with bracket in message track
  • Level of Trust address pairing bonus points is incorrect
  • No error message in Message Track if Cyren service is not responding
  • No line break for content filter upload hints in HTML mails
  • Email could not be signed if root imported after user certificate
  • Connection to SwissSign CA cannot be established
  • Attachment name is not correct after Web Portal Upload
  • Cannot add a new gateway role altough limit of additional servers has not been reached
  • Partner with user settings and without domain settings is not shown in partners view
  • Synchronization process with other Web Portals failed
  • License is marked invalid although everything is okay
  • Excel document with OLE object is not detected correctly
  • Wrong number of users displayed in partners
  • CYREN IP Reputation Service could not be started
  • Synchronization process with other Web Portals failed unexpectedly
  • Zip file entry with invalid filename causes Content Filter failure
  • DNSSec validation should not be performed for inbound connections
  • Exception by extreme long name in user fields
  • Email addresses with display name are not parsed correctly if the display name contains a different email address
  • Special characters in 8bit encoded mime part are replaced with ? after signing
  • An error ocurred while checking a mail: Der Wert darf nicht NULL sein. Parametername: pattern
  • Corporate user search doesn’t search description field
  • Content filter message size limit is applied to announced message size if content filtering is disabled in rule
  • Activities for SMIME decryption/encryption do not display padding mode
  • Encryption algorithm mode is not displayed in case of CBC
  • Email is not blocked if message limit is used
  • Target Info is missing on General tab in message track
  • If content filters are defined for partner and corporate user, CDR and sandbox settings are not considered when comparing actions
  • Content filter and action are not sorted
  • Attachments in winmail.dat are not removed
  • After merging pdf files final PDF is not disarmed.
  • Encryption padding in Message Track is incorrect for inbound emails if OAEP padding is used
  • Encryption padding in Message Track is incorrect for outbound emails if EDI@Energy compliance is used to ensure valid encryption algorithms

Version 10.1.282 was released on 25.5.2016. It is a maintenance release which fixes the following bugs:

New / changed
=============

  • Optimizations in the Level of Trust
  • Optimization of the filter and action sequence
  • An optional reverse DNS check that checks for the presence of the pointer record in the DNS and whether it contains the IP address, which is a characteristic of dynamic IP addresses.

Fixed issues
============

  • A problem when synchronising files between two Web Portals
  • Incorrect detection of duplicate emails under certain circumstances
  • D-Trust operator certificate was sometimes not displayed in the selection dialog
  • The email queue was not displayed for domains that begin with “Q-” in the name
  • “Scan is being performed” is displayed for an infinite period of time in Outlook with Outlook Addin installed
  • Emails sent from Office 365 were occasionally rejected with “Unable to relay
  • The web portal cannot be installed in Microsoft Azure
  • Emails detected as trustworthy by Level of Trust were not processed correctly by the content filter
  • The Outlook Addin cannot access a file in the temp directory during uploading.
  • emails can be sent before the complete upload of all attachments by the Outlook Addin.

The installation of this update is strongly recommended. The version can simply be installed over the existing version. However, always follow the general update instructions if you have configured a proxy server or are using a customised template file for the Web Portal or the email notifications.

Version 11.0.366 was released on 15.7.2016. It is a maintenance release, which fixes the following bugs:

Fixed issues
============

  • Error synchronizing with Active Directory
  • If only NoSpamProxy Encryption is licensed, the “Theme” section below the Presettings node will not appear.
  • Error “Failed to save Domaintrust entries to the database” after update to NoSpamProxy 11.0.304, if SQL 2005 exists
  • Error message when attaching a verification report for encrypted and signed emails
  • The default encryption is now set to AES128.
  • Problem with notifications for shared email attachments
  • Error “The stress level of the system currently is critical” after update to NoSpamProxy 11.0.304
  • The Inspection Report is not displayed in the Outlook Add In.
  • Content filtering does not work when replying via Web Portal
  • Error “A stored mail which was put on hold could not be read from the disk”
  • Presentation problem in the PDF document when a custom logo is used in the theme.
  • Attachments that are sent via the Web Portal cannot be downloaded.
  • The version can simply be installed over the existing version. However, always follow the general update instructions if you have configured a proxy server.