Tags

[Metrics] preview release, cpcmd scope:set cp.config telemetry enabled 1
[API] misc:command-info()/misc:i() dumps introspection on a command, similar in usage to misc:list-commands()
[Nexus] multi-selection on domains, scope support to periodically purge suspended domains via opcenter.account-cleanup
[DNS] add_record_conditionally()- honor RFC 1912 § 2.4 CNAME rules
[Web Apps] search function
[Artisan] new make:scope command
[Databases] properly remap definers on views/triggers/events/procedures through "best-effort" target user or account admin
[Web Apps] Release Fortification mode now always available

[Bootstrapper] improvements to unsafe text handling in Ansible 2.9
[Core] DEBUG=1 environment variable enables debugging for the life of the request
[Postfix] disable deep protocol inspection tests, reduce bad SASL cache duration to 30 minutes
[Migrations] read "documentroot" metadata to determine addon/subdomain locations. Follow historic "shell" paths for user mail in cPanel backups.
[apnscpd] disable realpath cache
[rspamd] package dependency relocation
[wordpress] report database credentials in the presence of custom error handlers
[config] support vanity nameserver configuration in [dns] => vanity_ns
[dns] import_from_domain() clones DNS records from hosted domain
[dns] export()/import() visibility opened to admin

[Bootstrapper] Ansible 2.9 compatibility changes. IPv4, IPv6 detection checks routable interface for accessibility. Use Mitogen where available. MySQL password recovery now attempted as needed.
[upcp] switching from edge to major/minor resumes from last known branch deviation
[php] migrate_directives()- move PHP directives between ISAPI/FPM environments
[cgroups] resolve higher order devices (> 255 such as NVMe) generate exception

[Bootstrapper] Mitogen, Ansible 2.9 compatibility changes
[Bootstrapper] add abbreviated playbook for prebuilt images
[AJAX] disallow user function invocation outside webapp path
[DNS Manager] Toolbox feature now works with admin
[cpcmd] -l/--list-commands feature to display all commands for role
[Migrations] ensure html/ has public accessibility

[Bootstrapper] prefer EDGE builds on install to improve responsiveness in resolving installer issues. Switch back to preferred update policy after install
[Security] always ensure FST/etc/sudoers is broken from system version
[Bootstrapper] fix urllib3 warning

[MySQL] MDEV-20987 mitigation

[Helpers] DeleteDomain --since=timespec, --dry-run. "--since" removes suspended domains older than spec. "--dry-run" explains removal without processing.
[Build] clean.sh cleanup release for imaging (see https://hq.apnscp.com/accelerating-apnscp-install/)
[DNS] zones now use Blade template
[Layout] further subdivide master layout into partial themes. Allow overriding of layout per theme (see Customizing.md)
[Nexus] disabled services remain disabled on failure
[Summary] SSL state incorrectly reported as disabled
[DNS Manager] validate email service enabled prior to applying MX reset
[PowerDNS] update module
[Opcenter] domains may duplicate database prefix
[Logging] [core] => bug_report always appends From: header

[apnscpd] MySQL deadlock periodically sticks on "resuming syscall"
[Bootstrapper] PowerDNS selection as default DNS provider fails initial install

[Bootstrapper] propagate HOME= environment variable on resume
[Migrations] provision DNS on alias domains at account creation time
[Users] permit usernames that begin with a number followed by character

[Opcenter] catastrophic backtracking error during versioning with enormous commits
[upcp] always run migration unless explicitly declined
[misc] list-commands() accepts optional shell-style wildcard filter

[REL] 3.1 release. See https://hq.apnscp.com/apnscp-3-1-released/ or docs/RELEASE-3.1.md

[Bootstrapper] update panel code prior to restart in situations that BS may loop indefinitely because of unanticipated third-party changes
[apnscp] 3.1 prep work

[apnscpd] improve resumption durability
[Bootstrapper] update php/composer role for Composer changes

[Bootstrapper] autodetect proxied/NAT IP4/IP6
[Rampart] prioritize whitelist
[DNS Manager] fix AJAX edits
[Postfix] smarthost support, prefer opportunistic TLS over explicit unless port is 465
[Error] fix silenced operations may continue to emit log macros

[PostgreSQL] experimental v12 support
[cPanel] follow mailbox aliases in non-standard shell imports
[Backups] process backups on unlimited quota accounts

[Migrations] migrate suspended cPanel sites
[tmpfiles.d] e flag correctly applied in CentOS 7.7. var glob incorrectly referenced as "var" instead of "var/tmp"
[apnscp] PID corruption on abrupt shutdown
[mysql] permit dash in database prefix

[Scopes] apache.evasive-wordpress-filter sets strict xmlrpc/wp-login POST limits
[Opcenter] plans now support partial overrides
[Rampart] fail2ban v0.10 compatibility
[Scopes] Static file + WordPress filters customizable templates (see docs/admin/Evasive.md)
[Bootstrapper] quota build applied incorrectly on / mount instead of /home
[Opcenter] improve failed account resiliency. Unhandled exceptions reported on failed creation
[Bandwidth] updating bandwidth,threshold properly updates database record
[Wordpress] Fortification applies mutual read-write permissions to upgrade/

[PHP] update internationalization build deps
[CLI] suspend resumption effectively resolving unpredictable "Session corruption" error
[cPanel] handle case where SHELL is without quotes. Soft fail is dnszones/ is missing from backup
[fail2ban] decrease database retention duration from 90 days to recidive duration + 5 days
[Modules] .pgpass missing provisioning on account creation
[Modules] admin:collect() accepts second parameter, filter param e.g. cpcmd admin:collect null "[ssh.enabled:1]"

[SECURITY] xss in gecos in Manage Users, file:reset-path() operates on referent instead of link
[Bootstrapper] system/sysctl improperly handles empty values in Ansible 2.8.4
[Quota] disabling disk quota no longer disables inode quota
[DNS] changing the primary domain fails ownership check
[DNS] email:get-records() renamed to provisioning-records() for consistency with dns:provisioning-records()
[apnscpd] backend lockups recover faster

[Laravel] fix "min" Fortification application
[Migration] add --delete flag, removes backup on successful import
[scripts] expand change_dns.php usage to support arbitrary TTL/prior IP
[AJAX] remove "s" session ID setter
[helpers] fix condition in which collapsed arrays reported "name.subname.index" in key