Release Date: June 20, 2013
End of Support: TBA

For complete documentation on the MOS 4.4.3 release, see the MOS 4.4 Product Guides.
For detailed upgrade information for this release, see the Upgrade Instructions.

Major New Features in MOS 4.4:

For more information on these or any other features, see the Release Notes on the page for the specific release.

• Support for 8-series hardware platform
• WebMail/WebCal Corporate Edition - completely new user interface, with new features including:
  • Tagging
  • Real-Time Mail
• XML API Version 3
• Faster internal database server

MOS 4.4.3a-GA fixes several critical issues, including difficulties with upgrade, and mail delivery when LDAP is misconfigured.

Download Information:

Recommended Patches, Late-Breaking Issues:

	Problem Description	Fix Information
!!	Addresses glibc 'GHOST' security issues (CVE-2015-0235).	Install D4_glibc_security to fix this potential problem.
!!	Addresses NTP security issues (CVE-2014-9293, CVE-2014-9294, CVE-2014-9295).	Install D4_ntp_security to fix this problem.
!!	Addresses bash 'shellshock' bug.	Install D4_bash_security_2 to fix this problem.
!!	Addresses a number of SSL security issues, including the recently published POODLE vulnerability.	Install D4_4_sslv3_option to fix this problem.
!!	Fix to prevent excessive database connection build-up	Install D4_4_2_connection_leak to fix this problem.
!!	Allows successful selective restore from image backup.	Install D4_4_3_restore_5 to fix this problem.
!!	Corrects a number of database corruption issues when accessing user folders.	Install D4_4_3_DB_SP to fix this problem.
!!	TLSv1.1 and TLSv1.2 are available.	Install E4_4_TLSv12_3 to fix this problem.
!!	Corrects an internal db problem on Junkmail Manager installations.	Install D4_4_3_jmm to fix this problem.
R	Updates Corporate Edition Webmail to support the latest versions of the Chrome browser.	Install D4_4_3_webmail_compose_2 to fix this problem.
R	Updates Corporate Edition Webmail to support the latest versions of the Chrome browser for Chinese locales.	Install D4_4_3_webmail_compose_zs_CN_2 to fix this problem.
R	Corrects a problem where the POP mailbox for a user would be locked unintentionally.	Install D4_4_4_pop_userlock to fix this problem.
R	Corrects blackhole duration settings (MIRA-55000).	Install D4_blackhole_timeout to fix this problem.

Note: Mirapoint's policy is to always integrate patches created to address known problems into the next patch release.

!!	Strongly recommended
R	Recommended
O	Optional
I	Contact support for information

 

Fixed Issues: 4.4.3

Administration

• When "admin get security" does not list 'cleartext' as an option and the administrator connects to the administration GUI using HTTPS an 'internal error' is no longer reported and a successful connection is formed. (52110)
• Reduced logging so that only relevant information is stored, this saves disk space under the STORE.SYSSTORE area. (57157)

Branding

• Branding uploads are now successful under MOS v4.4.x (57192)

Clustering

• On clustered systems, licenses will not be removed automatically when deleting the cluster. Previously, licenses were automatically removed from former standby head units even if it is running production services when the administrator deleted the cluster; this resulted in services failing. (57079)

Documentation

• Some edits were made to the online help files to clarify search term usage. (54951)

Filtering

• Correct the problem where a redirect filter would also deliver a copy of the message to the original recipient, thus behaving like a wiretap filter. Now redirect filters only deliver the message to the redirect address. (57023)
• MOS now correctly translates utf-8 characters in disclaimers when converting to an alternative character set. (57099)

Hardware Support

• On 7 and 8 series hardware, an occasional alert would appear "CPU module 1 is missing or failed", the underlying issue for falsely reporting this condition has been corrected. (56533)
• Querying the storage layer via either the web interface or CLI commands is now faster. (56792)
• The command "model get chassis" now reports different values for the M8000 and M8800 models. (57038)
• MOS now correctly reports RAID controller information (cache state and battery charge levels) from 8-series systems. (57138)

MTA

• If a non-local domain has a good MX record, A records will not be used in routing decisions. (56248)
• MOS will ignore any IPv6 records for MX hosts. Previously MX hosts containing IPv6 addresses exclusively would cause mail to bounce. (57143)

Monitoring

• The SEL log is now cleared when it approaches being full. The SEL log is still monitored for events that administrators should be made aware of. (56583)
• The Remote Access Controller (RAC) firmware is updated in this release to enable CPU temperature monitoring on 8-series hardware. On the first boot of this MOS version we expect an additional delay of approximately 7 minutes while the firmware is updated. Subsequent boots will return to the normal execution time. (56780)
• RG180 hardware no longer logs a 'power supply failure' on the next boot after the power supply is disconnected from the system. (56900)
• Monitoring of external services now honours a setting of '0' for NTP services. ie. SYSTEM.NTP*RESP 0 (56951)
• MOS now monitors the health of both power supplies on the S800 and RG280 models. (57078)

Operating System

• The SSL service no longer consumes excessive resources during high connection rate periods. (56610)
• Static network routing rules will survive changes to bonded NIC's. (57046)
• Increased the number of resources available to service database transactions. (57206)
• During a boot, if internal databases require automated recovery actions, these actions are allowed to fully complete and service is restored. Previously these actions would abort resulting in the appliance failing to resume operations and requiring intervention by Support engineers. (57228)

Security

• After importing a configuration file (with 'conf import'), the system will now update the mtaverify settings afterwards correctly. (54521)

Webmail

• In Corporate Edition Webmail personal folders are now displayed even if the IMAP subscription is not set on a personal folder. (50713)
• Mirapoint Webmail now has 98% character coverage for the ISO-2022-JP-2 character encoding. Full coverage will be available in a future MOS release. (56837)
• Integrated contents of patch E4_3_5_webmail_iso2022jp into core MOS code. (57108)
• Corporate Edition v2 no longer allows attackers to capture a users session ID by inserting remote images or a 'href' tag (that users click on) into a HTML formatted message if the administrator of the Mirapoint appliance does not use the setting "http set cookies strict" (57191)

Patches included:

• D4_3_6_filter (57132)
• D4_4_2_raidadmmon (57150)
• D4_3_5_smtp_ipv6_ignore_1 (57155)
• D4_3_5_sslrelay and D4_4_2_sslrelay (57174)
• D4_4_2_webmail (57175)
• D4_3_5_webmail (57185)
• D4_4_2_branding (57200)
• D4_3_5_webmail_1 (57217)
• D4_3_5_nic_failover (57222)
• D4_sel_log_clear and full fix included. (56761)
• D4_migrate_series8 (57152)
• D4_admingui (57254)

 

---

Fixed in Previous Releases

4.4.2-FCS: http://ftp.mirapoint.com/pub/docs/articles/mos44/relNotes-4_4_2_FCS.pdf

Known Issues: 4.4.3

Administration

• The "Return-Path" header is not treated consistently during message filtering, sometimes it is removed and other times it is not. (48010)
• The "MON Clear" command doesn't clear the alerts returned by "MON Status". (57087)
• Cannot import exceptions to single users. (57034)
• Selective restores from image based backups, including local disk backups, will fail on 4.3.6 and 4.4.x. (57204)
• MOS does not honour the setting of '0' against the "mon setthresh system.service*resp" command. The system should not monitor the service, however MOS continues to monitor and produce alerts in the case of failure. (57064)
• If the total number of JMM users exceeds the regular "user limit" license, you are unable to add regular users to a system - this is not the intended design. (36043)

Branding

• "ERROR file too large" while publishing the brand containing chinese locale. (56933)

Calendar

• All day event cannot be changed to event less than All day. (57088)
• The "Repeat until" date is changed after saving the event. This can lead to a repeated event's last instance not appearing in a user's calendar if they are in a different timezone. (56799)
• "No conflict" alert is shown when creating an all day event, although there exist a regular event on the same day. (56954)
• In calendar when Time Mode = 24 hrs and Day spans from 0 to 24 hrs, new event created at 0:00-1:00 appears twice in "Horizontal Week View". Once on previous day after 23:00 hr cell and another at correct place at 0:00 cell. (56813)
• Event update by person with whom the calendar is shared with write access doesn't work as expected. (56814)
• Repeated event can't be viewed by person with whom the calendar is shared if the user is given read/write permission. (56816)
• Unable to open/download attachment from any event instance belonging to repeating events in CE. (56981)
• Calender CE uses local machine time to decide age of an event. (56990)
• When owner deletes the event from calendar, the notification is not sent to attendees and also event from attendees's calendar is not deleted. (56851)

Hardware Support

• "stat get system.voltage" command does not work. (56891)

MTA

• When recipient domain is not resolvable, the mail is delivered to user on local machine. (57040)
• If a user with auto reply enabled receives an e-mail which has the "Reply-to" header split over more than one line then the user can receive a non-delivery report relating to the auto reply. (57051)
• Users are unable to set both a forward and an auto reply at the same time. (11909)

Webmail

• In certain circumstances the display name is not displayed correctly when a reply is sent from WebMail to Mac OSX. (57084)
• Error after double-clicking checkbox in sharing controls. Once user double clicks any of the check box under Options" -> "SharingControls", subsequent single/double click on those check boxes will result in checkbox getting converted to text box. (56809)
• Signature is displayed incorrectly above compose window in IE8. (57003)
• If the user is logged into a portal page, logging out redirects to the respective login page of webmail edition and not to the portal page login. (56944)
• Users are not displayed in the Sharing Control section of the UI when they have been enabled with read or write permissions. This occurs with IE9 only. (56379)
• Deleted contact appears in "Edit Group" dialog box. "Invalid contact index" displays when you click "Ok". This issue no longer appears after logout/ login. (56793)
• The WebMail address book can crash if patch E4_3_CE42_US_3 is installed and named brands are present for delegated domains. (57042)
• When 'ldapautoreply' is enabled, users with a dot in their username (eg. fred.bloggs) are unable to set an auto reply message correctly. (55304)
• LDAP address book queries will not display the common name attrbiute (cn) in Corporate Edition Webmail. (56370)