V5.2.3 (tbd)

Improvements
  - Updated the DOMPurify JavaScript library to version 2.5.4 or higher to address known security vulnerabilities (CVE-2024-45801) and improve overall security compliance.
  - Removed the option to update FileCap via the web portal, as this frequently caused operational issues. Existing planned updates remain supported.

Fixes
  - Fixed an issue where SPS subportals reported usage incorrectly, resulting in incomplete data in the license portal. The system now reports a single usage record per license key, including totals across all subportals.
  - Resolved a problem where secure messages without attachments sent via Outlook Classic were not properly locked, making it possible to add files afterward. All transfers are now locked by default.
  - Fixed an issue preventing invitations to email addresses containing a dot in the local part (e.g., 1.test@test.nl) when using the OWA add-in. Invitations can now be sent correctly in these cases.
  - Improved Content Security Policy (CSP) headers by removing insecure directives such as ‘unsafe-eval’ and ‘unsafe-inline’ to enhance web portal security.
  - Fixed an issue where images in email signatures were removed when messages were encrypted (OWA and Outlook). Images are now preserved consistently, similar to FileCap version 6.

V5.2.2 (2024-11-05)

The update provides no visual feedback, you can tail the log file /var/log/update.log for more information.

FileCap will reboot up to two times. If updating from the web admin does not work, please try the update option on the CLI.

Improvements
  - Added SMS provider Bird
  - Disabled HTTP OPTIONS method

Fixes
  - License requests could fail if locale was not set to en_US.UTF-8
  - Update could fail on systems using DHCP

V5.2.1 (2024-02-20)

The update provides no visual feedback, you can tail the log file /var/log/update.log for more information.

FileCap will reboot up to two times. If updating from the web admin does not work, please try the update option on the CLI.

Improvements
 - License is now updated correctly on refresh
 - Upgraded OpenSSL to version 3.0 (LTS), ensuring continued support and addressing security concerns

Fixes
  - OWA: Resolved an issue where an error persisted even after enabling the required password or SMS verification
  - Fix problem with previous update failing

V5.1.9 (2023-09-05)

FileCap will reboot up to two times. If updating from the web admin does not work, please try the update option on the CLI.

Improvements:
- Character limit for body encryption has been increased from 3,000 to 300,000 characters.

Bugfixes:
- 502 error during large file upload on FileCap portal resolved
- Full path is now sent instead of only filename

V5.1.8 (2023-06-27)

FileCap will reboot up to two times. If updating from the web admin does not work, please try the update option on the CLI.

New features:
- Introduce new styling elements in line with the FileCap branding guidelines

Improvements:
- MSP license model updated to match the new price list

Bugfixes:
- Importing EC certificates would cause the portal to stop working
- On some installations the web admin update button did not function as expected

V5.1.7 (2022-11-01)

FileCap will reboot up to two times.

New features:
- Introduce automatic security updates (default: enabled, reboot at 02:00 system time)

Bugfixes:
- Fix system disk filling up with aborted uploads


V5.1.6 (2022-04-11)

FileCap will reboot up to two times.

Bugfixes:
- Fix Office365 plug-in not working on macOS
- Fix CVE-2022-22720

V5.1.5 (2022-03-10)

FileCap will reboot up to two times, estimated downtime ~5 to 15 minutes.

Bugfixes:
- Fix Office365 plug-in
- Fix CVE-2022-0847
- Fix CVE-2021-45960

V5.1.4 (2022-01-31)

FileCap will reboot up to two times, estimated downtime ~30 to 60 minutes.

New features:
- Increase number of portals per page for MSP portals to 200

Bugfixes:
- Fix web interface updater
- Fix Office365 plug-in
- Upgrade Log4J to 2.17.1
- Improve German translation

V5.1.3 (2021-12-20)

If you are coming from 5.0.5 or earlier, than FileCap will reboot up to two times during this upgrade, estimated downtime ~15 to 30 minutes.

Known issues:
- Updating from the webinterface does not correctly show update status (stuck at 30% and/or not refreshing, this is being worked on). Wait 2 minutes and manually refresh admin panel. If version number doesn't change, contact support.

New features:
- Integrated security updates into "update FileCap" button

Bugfixes:
- Upgrade Log4J 2.16.0 to 2.17.0 (CVE-2021-45105, not vulnerable)

V5.1.2 (2021-12-15)

If you are coming from 5.0.5 or earlier, than FileCap will reboot up to two times during this upgrade, estimated downtime ~15 to 30 minutes.

Bugfixes:
- Upgrade Log4J 2.15.0 to 2.16.0 (CVE-2021-45046, not vulnerable)

V5.1.1 (2021-12-10)

Bugfixes:
- Fix custom SSL certificate import
- Fix UI keyboard navigation
- Add PFX password length requirement in UI
- Fix issue with portal creation in MSP installs
- Fixed Log4j security issue CVE-2021-44228
- Fixed Let's Encrypt renewal for existing portals

V5.1.0 (2021-11-09)

FileCap will reboot up to two times during this upgrade, estimated downtime ~15 to 30 minutes

New features:
- Base OS upgraded from Debian 9 to 11
- Secure boot support
- UEFI support
- Hyper-V Gen2 VM support
- Revamped console menu
- HTTP/2 support
- TLSv1.3 support

V5.0.5 (2021-10-29)
This security update adds a workaround for CVE-2021-40438 and will reboot your FileCap server.

The final patch for CVE-2021-40438 will be included in FileCap Version 5.1.0 which will be available in the first half of November.

Bugfixes:
- Added workaround for CVE-2021-40438
- Disable error reporting to webpage for Tomcat

V5.0.4

Bugfixes:
- Added missing translations for the Outlook mail text
- Improved ClamAV reliability
- Removed double Let's Encrypt renewal timers

V5.0.3

FileCap will reboot twice during this upgrade, estimated downtime ~15 minutes.

Bugfixes:
- Fix CVE-2021-3156 (sudo)
- Fix possible old/incorrect repositories
- Fix deprecated certbot installations

V5.0.2

New Features:
- Added option to disable replies for quick transfers (disabled by default)
- Added option to disable secure sending for invites (disabled by default)

V5.0.1

Bugfixes:
- Setup wizard portal images are correctly taken along when saving
- Upload time limit on portal increased
- Upload links work again
- Office 365 plugin: download options are now visible

V5.0.0

New Features:
FileCap has been completely redesigned and uses more available space in your browser to help you communicate and send files easier and faster than ever before.
The new design has a greatly improved web interface that makes sending and receiving secure email as easy as it should be and allows you to have a secure
conversation with others from within the browser. Next to these additions we also added an option to invite others from the web application allowing you to
work with FileCap even without having access to plugins in outlook, office365 or a mobile APP.

- New and redesigned outlook plugin
- Added an reply button to transfers
- Switching languages is now dynamic and does not require a reload of the page
- SMS messages can now be customised
- FileCap now has a 6th sense and has become self aware
- Greatly increased encryption cipher and hash strengths
- Added logging of admin and user actions to logging
- New and redesigned MAC OS APP
- FileCap now offers an Android APP
- Added NTA7516 features to be fully compatible

Additional remarks:
- Encryption is now always enabled as it is an integral part of the product
- Office365 users should replace the manifest file within Office365

Resources:
- the manual has been updated with all the V5.0.0 features:
https://docs.filecap.com

- the latest outlook plugin can be downloaded from the following location:
https://update.filecap.net/downloads/FileCap-Plugin/FileCap_Outlook_Plugin_latest.zip

- the FileCap MACOS APP can be downloaded form the following location:
https://update.filecap.net/downloads/FileCap-MACOS/FileCap.app

V4.4.1

New Features:
- Added Esendex SMS provider

Bugfixes:
- Default outlook text not visible
- Office365 plugin: unable to add recipient with SMS authentication enabled

V4.3.3

Bugfixes:
- Office 365 plugin not loading after change of office URL (outlook.office365.com -> outlook.office.com)

V4.3.2

Bugfixes:
- Downloading files with spaces in the filename dit not work correctly in Firefox
- Passwords for transfers did not work correctly in all cases

V4.3.1

Bugfix:
- Fixed minor license issue

V4.3.0

<b>This update will take about 15 minutes to complete and will reboot the FileCap server.
</b>
New features:
- It is now possible to change the text of mail messages from the admin portal. (please update the outlook plugin to version 4.3.0 or higher to use placeholders like [LINK] etc..)
- Microsoft Azure image available half July
- Multiple admins can now be created in the admin portal
- Added a button to update window to only install critical security patches
- Added Norwegian translation
- It is now possible to configure the location of restored items for the outlook plugin (please update the outlook plugin to version 4.3.0 or higher)
<strike>- Microsoft office 365 (web) integration: FileCap now offers integration with Office 365 webmail</strike> *

* Due to an update of Office 365 later this month this feature is temporarily unavailable

Bugfixes:
- This update fixes a bug in the kernel to mitigate CVE-2019-11477. A remote attacker could exploit this to crash the system resulting in a Denial of Service
- Cyrillic characters in file names now work
- SMS authentication now properly handles nonstandard country formats
- Error pages now give the answer to the ultimate question
- One-time passwords are more readable
- Excel exports from reporting now correctly support a date range

The FileCap documentation can be found on the following location:
https://docs.filecap.com

Documentation about the Office 365 plugin can be found here:
https://docs.filecap.com/filecap-office365-web-plugin/

The latest FileCap Outlook plugin can be downloaded using this link:
http://update.filecap.net/downloads/FileCap-Plugin/FileCap_Outlook_Plugin_latest.zip

V4.2.2
Bugfix:
- This update disables tcp_sack in the kernel to mitigate CVE-2019-11477. A remote attacker could exploit this to crash the system resulting in a Denial of Service.

FileCap V4.3.0 will permanently fix the kernel (Scheduled for end of June/ begin of July)

V4.2.1
New features:
- MSP: It is now possible to set a disk quota per MSP portal
- MSP: It is now possible to set a maximum transfer size per MSP portal
- MSP: The system now can warn the MSP admin when a portal exceeds the set quota
- Mail encryption reply messages are now sent from the original senders email address
- Encrypted messages now display the "TO:" and "CC:" fields
- Encrypted mail messages now display the attachment list in the encrypted message
- Downloading the ZIP file now includes the encrypted message for easy archiving
- FileCap links: it is now possible to create a link in the admin panel that can be used on your website to easily upload fields
- The email address field now accepts a list of CSV separated email addresses
- It is now possible to plan/schedule automatic FileCap updates
- The portal now displays a hint to which phone number the SMS has been sent (+316*****256)

Bugfixes:
- Improved message while updating
- Portal Domain NaMeS are now only allowed in lowercase
- It was not possible to save the messagebird accessKey
- HAL 9000 now opens the podbay doors
- Various small admin panel reporting table fixes
- Minor security fixes in Reverse proxy configuration

V4.2.0
New features:
- Mail Encryption has arrived! FileCap now supports full body and subject encryption for the Plugins and the Portal
- FileCap is now available in the following languages: English, Dutch, German, Swedish, Spanish, Italian, French and Finnish
- It is now possible to send all attachments using FileCap
- It is now possible to force SMS authentication
- Reporting now shows if a password or SMS token is used for a transfer
- FileCap is now available for Azure
- Added CM Telecom SMS provider
- The admin panel now has help links per page that link straight to the correct page in the manual
- It is now possible to set some specific transfer settings per user in the Windows Registry.

Bugfixes:
- PNG images uploaded as JPG are not displayed in IE11
- HTTP to HTTPS redirect not working in some situations
- SMS token does not work on invites
- Translate core now parses Klingon characters correctly
- Improved portal error messages
- Date selection in reporting not correct

V4.1.1
New features:
- None this is a Bugfix release.

Bugfixes:
- Automatic SSL/TLS enable message now shows correct text
- Automatic SSL/TLS does not correctly reload certificates on renewal, restarting web services or FileCap fixes this without this update
- User Management of some MSP systems displays AJAX error in some cases
- Fixed robots.txt
- Some longer domains did not work (.company)
- IOS APP invite URL is now correct for standard systems

V4.1.0
<b>
NOTE: please update the outlook or windows plugin to version 4.1 for full compatibility with FileCap 4.1
</b>
New features:
- Users can now block their own transfers using a link in the "upload notification" email.
- Option to force the password strength
- Mailserver test button and added an option to send a test email
- Added country prefix numbers for token authentication by SMS
- Added support for more languages (Finnish and Swedish added for now) and more to follow!
- Updated English translation
- Knäckebröd support added (UTF8 Support for all texts)
- Completely reworked the MSP dashboard
- Changed the license model for MSP customers
- MSP Admins can now create new portals that automatically start with a 30 day trial
- MSP Admins are now able to purchase licenses straight from the admin portals
- Added a new license variant (SSP) for larger company's that would like to have multiple portals
- Upgraded TLS strength

Bugfixes:
- Multiple MSP portal fixes
- Date picker in reporting not placed correctly
- Graph in dashboard displays incorrect data
- Improved the security of invites that are forwarded to others
- Disabled autocomplete on password field
- Bug removed between keyboard and chair
- Download page breaks in some cases
- FQDN field accepted "https://"


V4.0.10
Bugfix:
- Resolved 2-Factor authentication issue, Token not correctly validated in all situations

V4.0.9
Bugfix:
- Download links broken in Internet Explorer

V4.0.8
New features:
- Added link to online manual in admin interface
- All download notifications now display more information about the initial transfer
- Added option: "Always use FileCap system email address for notifications"

Bugfixes:
- Antivirus not functional in rare cases
- Dateformat in reporting is not correct
- download not possbile when filecap asks for email address and user ignores email field
- Analytics graph on dashboard extends beyond limit
- Reporting breaks when end date selection is changed
- MSP: Creating a new portal with a space in the company name breaks the automatically added admin account
- switching the 2 factor authentication on and off now looks like it should ;-)
- 404 errors now show a nice and tidy page
- Adding the same filename twice breaks the zip file download option
- Change password missing in MSP admin
- Flux capacitor no longer generates noise in primary time circuits
- Sender receives incorrect email after recipient downloads a file
- Error message missing when a invite is expired
- FileCap portal 2FA authentication screen missing fields with more recepients
- FileCap portal 2FA authentication field not working after receiving invite
- Portal shows error message after long inactivity

V4.0.7
New features:
- End user messages for blocked transfers "This transfer is blocked"
- IP restrictions in admin panel now support 0.0.0.0/0.0.0.0 to allow ANY

Bugfixes:
- fixed command line menu hostname change
- SMTP port setting ignored when using TLS
- SMTP password field is empty in admin (now shows "******")
- Various textual changes and error message improvements
- NTP server field did not accept hostnames starting with a "0"
- Date filter in reporting not working
- Language in user portal displays "DU" -> "NL"
- Turned of some debug logging (a clean log file is a happy logfile)
- 2F auth not working in portal in some cases
- Aligned settings fields in admin panel
- improved messaging automatic SSL page
- cleanup of expired files not working in some cases
- removed tomcat6 startup error messages of upgraded installations

V4.0.6
- bugfix changing the logo and wallpaper was not possible on upgraded installations.

V4.0.5
 - Bugfix for web portal token functionality (In some cases it was possible to send token transfers without adding a mobile number. The files could not be downloaded in this case).

V4.0.4
 - Support for invites that do not expire

V4.0.3
 - Final version for token release

V4.0.2
 - Various bugfixes for the token functionality

V4.0.1
 - Final release of the V4 release including multiple bugfixes and including beta functionality support tokens

V4.0.0 (beta)
Major update for FileCap admin portal and backend including:
 - New admin panel
 - Dashboard with download and upload information
 - New license system
 - Automatic certificate installation using let's encrypt
 - Installation wizard for new installation
 - Support for a multi portal environment
 - Support for MSP providers
 - New reporting system
 - Upgrade of all backend software (Linux debian, kernel, Tomcat, Apache and mysql)