The deaddrop 4.9.0 release
Features
- Crawler access settings in ddadm. New settings to control search-engine crawler access (robots.txt) directly from ddadm. (closes #314)
- New SMS provider genericmobile. (closes #317)
- Re-styled ddadm. The administrative user interface for deaddrop, ddadm, has been entirely restyled. CSS for deaddrop and ddadm now compiled from SCSS at build-time. Moves toward a single main.css. Prerequisite for the upcoming branding editor.
- Removed copyright notice and hardcoded URL from outgoing emails. Link is now configurable via “commercial_url” in mail_language.json. The “more_info” key in mail_language.json is now no longer used. (closes #316)
Bug fixes
- Datetime format would not update upon switch of language.
- “Incorrect credentials” would sometimes not be shown on the login-page when entering wrong username or password.
Security Hardening
- Closed a path-traversal flaw. This flaw was not exploitable due to strict sandboxing.
Additional Information
Operating system packages
All system components have been updated to their latest respective version.
Update Instructions
If you have default update configuration, Deaddrop releases will be automatically installed as part of the regular update process. No manual steps are required from administrators or users. The system will apply the update seamlessly in the background, ensuring that the latest fixes are in place without any interruption to normal operations.
Documentation
Further details and configuration guidance are available in the official documentation:
https://sysctl.se/deaddrop/documentation/
SBOM
Each ISO and VHD release has a software bill of materials (SBOM), to make introspection of the release easy to integrate with a number of security tools.
Links
Sysctl portal
Sysctl rss/atom