The deaddrop 4.7.0 release
The 4.7.0 release is a release long in the making that is finally released with many larger and smaller changes to deaddrop.
Many of the changes in this release are not directly visible to the ordinary end user in the deaddrop interface. However, many will still experience the effect of it, like quicker response, better performance, better handling of large files, etc. There are many other changes like security enhancements, stability changes, maintainability changes, etc, that make deaddrop a much better product, from a quality perspective.
This is a release that is the stepping stone for many future changes, since it implement many elements and changes that is needed for those coming features.
deaddrop changes
- move pdf watermark generation into a dedicated service. Instead of executing it from the dispatch process, call a separate low privilege sandboxed service.
- move mail processing into a dedicated service. Instead of executing it from the the dispatch process, call a separate low privileged sandbox service.
- Calls to user_notification_script are now made from a single low privileged sandbox service. Its Selinux policy can be broadened via the new SElinux Boolean deaddrop_user_script_unconfined. The input parameters have been changed and are now documented.
- DDMCSD: Bump max MCS labels from 500k to 172M.
- Replace ddauto and jobhandler with dispatchd. Instead of polling dispatches, create them instantly.
- Users that receive dispatches and later becomes a permanent user now gets a proper inbox. (#275)
- Revoked dispatches no longer display a revoke dispatch button. Users having received a dispatch that is recalled can now see that in their inbox (#261)
- Use Reflinks instead of copy if the filesystem supports it, resulting in significant performance improvements under certain workloads. This also results in dispatch disk utilization being significantly reduced. Typical dispatches goes from ((dispatch_size * 2) * receivers) to dispatch_size * 2.
- Use clamd instead of clamscan for better AV control
- Change user facing cgi programs to avoid init of resolver, creating unnecessary selinux AVCs.
- Change loglevels from debug to trace in getUserDirectoryRoot.
- Change loglevels from debug to trace when getting next history in createdeaddrop.cgi
- Properly format malware notification emails
- Metadataservice: make it fork to perform jobs in parallell (#297)
- Removeuser: call maild instead of execing mailprogram
- Remdel: call maild instead of execing mailprogam
ddadm (deaddrop administrator interface) changes
- Call maild instead of execing mail process
- Add ability to search logs
- Make firewall configurable in the UI
- Make freshclam configurable in the UI
- Remove start/stop button of ddauto.service from UI (service no longer exist)
- Added new services Dispatchd, Maild and Watermarkd in UI
Information
Operating system packages
General packages updates
Documentation
SBOM
Each ISO and VHD release has a software bill of materials (SBOM), to make introspection of the release easy to integrate with a number of security tools.
Update Instructions
Deaddrop releases will be automatically installed as part of the regular update process. No manual steps are required from administrators or users. The system will apply the update seamlessly in the background, ensuring that the latest fixes are in place without any interruption to normal operations.
Links
Sysctl portal
Sysctl rss/atom