Versions Compared

Old Version 20

changes.mady.by.user Ahmad Abdullah

Saved on

compared with

New Version 21

changes.mady.by.user Ahmad Abdullah

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
  • Release Date: September 2023
  • Build Number: 20.0.105
  • Type: Hot Fix Release

...

Info

This release contains major security fixes, please upgrade your server as soon as possible. 

Upgrade Information

  • Please read this complete Release Notes and instructions before upgrading.
  • Please follow the regular upgrade documentation for Windows or Linux
  • Upgrading any previous version higher or equal to version 16.0.100
  • Cluster: Running different versions on the servers in the cluster is supported but limited to version >= 16.0.100
  • (info) Please renew the D2D certificate manually in the server preferences under "Network"

...

Multi-Factor Authentication

PowerFolder web interface provides the multi-factor authentication (MFA) to enhance the data security and access the data everywhere after identifying the genuine identity of the owner and user of the data.

Improved Speed of HTTP Connections

...

  • Release Date: August 2023
  • Build Number: 20.0.100
  • Type: Major Software Release

Changes

  • Image AddedSecurity fixes for ONLYOFFICE
  • Image AddedLogging improvements
  • Image AddedINT-672 Fixed auto-complete in invitations and improved admin account edit method
  • Image AddedINT-672 - Authorization Framework to protect against potential future broken access control (OWASP No 1 of Top 10 Web Application Security Risks)
  • Image RemovedPFS-4206 - Fix unable to update folder owner permissions 
  • Image RemovedPFS-4207 - Fix HTML support in TOS 
  • INT-674 - Hardened XSS Framework additionally implemented to prevent Cross-Site-Scripting vulnerabilities (OWASP No 3 of Top 10 Web Application Security Risks)
  • Image AddedPFS-4206 - Fix unable to update folder owner permissions 
  • Image AddedPFS-4207 - Fix HTML support in TOS 
  • PFS-4179 - Additional authorization check on /open urls 
  • PFS-4132 - Cosmetics with MFA, federated login and organization dropdown 
  • PFS-4127 - Disable username field, Reset button should return to login with username input 
  • PFS-4180 - Fixed Access Token update failure in federation after merge 
  • PFS-4185 - Prevent login pingpong: Account discovery now considers service name for DB accounts with same last activity date 
  • PFS-4181 - Account discovery in federation: Weight migration status when using LDAP 
  • PFS-4182 - Mount folders in federated server-to-server sync during service migration 
  • PFS-4195 - Automatically create and assign Accounts to Organization in LDAP 
  • PFS-4168 - Unable to update file links settings when expiry date is set by server admin 
  • PFS-4176 - Correctly handle access in federation when merged accounts have valid till set 
  • PFS-4187 - Merge account by email fixed in federation 
  • PFS-4184 - Take over folder ID from config if mismatching FolderInfo-File 
  • PFS-4192 - Performance Reduced number of threads and load caused by lot empty folders 
  • PFS-4188 - Reduce time threads are blocked due to concurrent access to config 
  • PFS-4189 - Top-Level-Folder do not show up under rare concurrent action 
  • PFS-4186 - Do not set storage path for proxy accounts 
  • PFS-4190 - Fixed Rejected federation request warning messages 
  • PFS-4191 - Disable HTTP Debugging Method TRACE 
  • PFS-4178 - Show changing account in news 

...