Barracuda Networks Spam Firewall Release Notes:

Note: Before upgrading, please be sure to make a backup of your configuration and read all release notes that apply to versions more recent than the one currently running on your system.

Note: The update process typically takes only a few minutes after the update is applied. However the process can take up to 30 minutes for systems that have thousands of user accounts. If the process takes longer, please contact Technical Support to investigate.

Note: Before upgrading to the 3.3 release series please take note of the following internal changes.

• The Bayesian databases (both user and admin) will not be preserved. In order to remain effective, it is necessary to flush the databases of all old entries and start anew. We apologize for this inconvenience, but look forward to better spam detection utilizing the new system. For more information regarding the new Barracuda Bayesian system please see the following document: http://www.barracudanetworks.com/ns/downloads/Barracuda_Bayes.pdf
  
• Clustering between a 3.3 and 3.1 machine is not possible. Please make sure that all machines in a cluster are upgraded to the 3.3 firmware. If one of the machines in a cluster doesn't see the firmware as available please contact support and it will be made directly available.
  

Version 3.3.03

• Patch Release 057:
  
• Fix: Removal of additional unused files in mail storage to help keep Mail/Log Storage from exceeding limits.
  
• Fix: An occasional problem where the timezone information was not being used has been corrected. Quarantine notifications, reports, and other items which are timezone dependent will be processed at the expected time and contain the correct timezone information.
  
• Fix: The system will reboot itself if a kernel panic is detected.
  
• Fix: The static IP routes display corruption will no longer result from restoring a backup configuration.
  
• Fix: Large quarantine messages being copied to backup quarantine storage are no longer occasionally corrupted during the transfer.
  
• Fix: Improved security issues in the Web GUI related to earlier fix in 3.3.03.054.
  
• Patch Release 055:
  
• Fix: Improvements to message scoring process.
  
• Fix: Realtime Intent process expanded to include examining URL redirects.
  
• Patch Release 054:
  
• Fix: Updated "User Features'' help file to more clearly explain what the Override buttons do.
  
• Fix: Increased tolerance for slow DNS servers during verification of email addresses.
  
• Fix: An issue regarding zeroed stats and a non-updating Message Log has been resolved. If you are on a pre-3.3.03.055 firmware version and have experienced either of these symptoms, it is recommended that you upgrade to this version as soon as reasonably possible.
  
• Fix: Made the process of shutting down and/or restarting the system safer.
  
• Fix: Generating a report to the GUI should no longer time out, although it still may take a long time.
  
• Fix: Enabling of both SBL and XBL in the common block lists is no longer occasionally ignored.
  
• Fix: Various security issues in the Web GUI have been resolved. (reported by Greg Sinclair - security@nnlsoftware.com)
  
• Fix: Updated existing Lotus Notes plugin to version 657.
  
• Patch Release 053:
  
• Fix: Cleaned up release notes.
  
• Patch Release 052:
  
• Fix: Comments are now preserved in the admin whitelist when whitelisting from the message log.
  
• Fix: An incorrect interaction with the downstream mailserver generating an NDR has been resolved.
  
• Patch Release 051:
  
• Fix: Resolved issue introduced in 3.3.03.026 where the Barracuda doesn't reset the IP address properly when the reset button is held down.
  
• Fix: SPF now works.
  
• Patch Release 028:
  
• Fix: Stats_chart.cgi now allows unauthenticated access for the Administrator's Trusted IP Range.
  
• Patch Release 027:
  
• Issue: One of the GUI security issues resolved in patch release 025 restricts the use of stats_chart.cgi to authenticated users only. A future release will bring back unauthenticated access for the Administrator's Trusted IP Range. If this previously undocumented functionality is currently being used to provide graphs, authentication credentials must be supplied to retain access.
  
• Fix: Resolved issue with large Outbound or Notify queues that results in excessive disk I/O and slower processing.
  
• Fix: Automated backups now only run on Sunday when specified to run on Sunday.
  
• Fix: Resolved an issue on clustered systems that caused a slight slow down in processing and extra network traffic among clustered units.
  
• Fix: Orphaned quarantine directories are now cleaned up with the "Remove Invalid Users'' operation.
  
• Fix: Resolved an infrequent issue that would cause User Whitelists to be cleared when an entry is added using the Outlook Plugin.
  
• Fix: Outbound - IP whitelists are now examined prior to trusted relay processing.
  
• Patch Release 026:
  
• Fix: Resolved issue introduced in 025 where the mail queue page was unavailable if using https.
  
• Patch Release 025:
  
• Fix: Outbound - Resolved an issue where footers appended to outbound messages might corrupt some attachments.
  
• Fix: The "Remove Invalid Users'' operation now does a better job of removing unused quarantine databases. It also self throttles so as to not cause large email backups.
  
• Fix: Resolved an issue that would cause '@' to be put into the Whitelist or Blacklist table instead of the actual email address.
  
• Fix: Resolved an issue that would sometimes allow an email to be allowed through due to an '@' being in the Whitelist.
  
• Fix: Resolved an issue that would cause User Whitelists to be cleared out improperly in some instances.
  
• Fix: Improved speed of the message log search by subject operation.
  
• Fix: Resolved various security issues with gui.
  
• Fix: Resolved some issues with syncronization of number of messages claimed in the quarantine and the actual number of messages viewable.
  
• Fix: Resolved a rare issue that would prevent quarantine notifications from going out.
  
• Patch Release 022:
  
• Fix: Improved various issues with performance.
  
• Fix: Resolved problem with quarantine notifications having duplicate quarantine usage lines.
  
• Fix: Resolved additional problem where custom graphic not viewable in quarantine notification.
  
• Fix: Resolved issue where a new ssl certificate was automatically generated every day.
  
• Fix: Resolved issue where the daily stats report email was not viewable.
  
• Fix: Resolved issue where quarantined files where not being delivered to other clustered cudas.
  
• Fix: Resolved issue where tagged subject lines were being improperly encoded and would appear garbled.
  
• Fix: Resolved issue where adding a user with a domain name in uppercase would generate an error.
  
• Fix: Resolved issue with new systems where a service would not restart immediately after the domain name was first configured.
  
• Patch Release 021:
  
• Fix: Outbound - Resolved issue on Inbound systems where outbound relay messages would sometimes be quarantined which could result in quarantine notifications being sent to unsuspecting outbound recipients.
  
• Fix: Resolved problem with quarantine notifications going out and not being viewable by some mail clients and web browsers.
  
• Fix: Resolved issue with some services not being restarted automatically after they had failed.
  
• Fix: Improved various issues with performance on busy systems, in particular Outbound systems.
  
• Fix: Increased size and time to live for recipient verifier cache. This will result in less network traffic to the downstream domain mail servers and a little speed up to the processing of good email.
  
• Patch Release 020:
  
• Fix: Resolved issue where empty quarantine notifications were being sent out.
  
• Patch Release 019:
  
• Fix: Outbound - Resolved issue introduced in 3.3.03.016 where footers appended to outbound messages might corrupt attachments.
  
• Fix: Resolved issue with main status page where a failure to activate Energize Updates did not provide an informative message.
  
• Fix: Resolved issues where quarantine notifications would not be delivered or notifications would be constructed with an incorrect list of messages for some users.
  
• Patch Release 018:
  
• Fix: Outbound - Resolved an issue with delivering messages from the quarantine to multiple recipients.
  
• Fix: Resolved an issue where clusters stopped communicating due to a temporary network disconnect.
  
• Fix: Resolved issue with latency calculations being wrong due to year change.
  
• Fix: Resolved various issues with performance on busy systems.
  
• Fix: Resolved issue with Activation Status showing incorrect information when there is a problem connecting to Barracuda Central.
  
• Fix: Resolved an issue where configuration information is not immediately shared when joining a cluster.
  
• Fix: Resolved an issue with Bayes user account names beginning with a '-'.
  
• Fix: Resolved several issues causing messages to not get processed and therefore remain in the inbound process queue.
  
• Fix: Resolved an issue where the size of the inbound process queue shown in the status screen was lower than the actual number.
  
• Fix: Resolved an issue with message log not coming up when a cluster member was unavailable.
  
• Fix: Resolved several issues regarding SMTP SASL proxy/authentication process.
  
• Issue: Web GUI may come back prematurely during the firmware update process, wait for the system to reboot itself before accessing the web interface.
  
• Patch Release 017:
  
• Fix: Resolved issue introduced in 3.3.03.016 that prevented links within the Quarantine Summary reports from properly functioning.
  
• Fix: Added process to auto-correct problems with the message log not displaying in the web GUI. If this scenario is encountered, please reboot the Barracuda and try to access the message log again. If the problem persists, please contact support.
  
• Fix: Resolved issue causing improper matching of LDAP attributes used for alias unification (e.g. 'mailNickName' instead of just 'mail').
  
• Patch Release 016:
  
• Fix: Resolved issue that prevented per-user quarantine from properly functioning if the user's configuration data had been restored from a different machine's backup.
  
• Fix: Resolved issue that could prevent Quarantine messages from displaying the message body. Mainly affected clusters with more than 2 Barracuda systems.
  
• Fix: Added back the display of account usage in per-user quarantine areas (only shown if retention policies are enabled).
  
• Fix: Resolved issue that could cause the Barracuda to consume too many resources decoding some message formats, resulting in delayed message processing and in extreme cases a temporary system failure.
  
• Fix: Resolved issue causing multiple "Action'' columns to be placed in per-user quarantine notifications.
  
• Fix: Resolved issue that resulted in the month display for Oldest Messages in the "Account View'' being off by one.
  
• Fix: Resolved issue that could prevent senders from being properly whitelisted when using v2 of the Outlook plugin.
  
• Fix: Resolved cluster specific issue preventing per-user delete/deliver for messages not locally stored on the machine being accessed.
  
• Fix: Outbound - Resolved issue that caused clustered units to show quarantine messages multiple times.
  
• Fix: Outbound - Correctly append footer for Groupwise, Outlook XP, and Blackberry messages.
  
• Fix: Resolved issues preventing proper tagging of multi-byte messages without existing subject lines.
  
• Fix: Outbound - Resolved issue that prevented the display of "Whitelist'' links for the Quarantined messages.
  
• Fix: Outbound - Resolved further issues with quarantine whitelist functionality.
  
• Patch Release 015:
  
• Enhancement: Added warranty and licensing information to the "ADVANCED''->"Firmware Update'' screen in the web GUI.
  
• Fix: Resolved issue that could cause the login screen to display improperly in multi-byte languages.
  
• Fix: Resolved issue preventing proper decoding of multi-line QP-encoded subjects.
  
• Fix: Resolved issue causing graphs generated within reports to be illegible.
  
• Fix: Resolved issue preventing message log filters from being preserved when navigating pages.
  
• Fix: Resolved issue that prevented actions performed in the message log from returning to the proper page.
  
• Fix: Outbound - Resolved issue with quarantine whitelist functionality.
  
• Patch Release 014:
  
• Fix: Resolved issue that could cause multi-byte messages with subject's that spanned more than a single line to be partially included in the To header when displayed in a user's quarantine inbox.
  
• Patch Release 013:
  
• Fix: Resolved issues where multi-byte subject and body filters did not correctly match within messages.
  
• Patch Release 012:
  
• Enhancement: Improved message scanning for increased spam detection with Intention Analysis.
  
• Fix: Removed message log page calculation that could prevent the log from being viewed on machines with high load or large database size.
  
• Fix: Adjusted scoring curve used by Barracuda Bayes engine for a better spam detection rate.
  
• Fix: Resolved issue that prevented the Barracuda Bayes header from being applied if virus scanning was disabled.
  
• Patch Release 011:
  
• Fix: Resolved further javascript issue that could prevent the SMTP Test functionality from properly launching.
  
• Fix: Resolved issue with the width of the action list in the user's Quarantine Inbox truncating their available options.
  
• Fix: Resolved issue that could prevent Virus Updates from happening when set to Daily.
  
• Fix: Re-introduced colored Spam/Not-Spam buttons for the user's Quarantine Inbox.
  
• Fix: Resolved issue with javascript errors within the message log when using the French language for the web GUI.
  
• Fix: Resolved issue introduced in 3.3.03 that caused the oldest message time under "USERS''->"Account View'' to display an inaccurate time for accounts that contained no messages.
  
• Patch Release 010:
  
• Fix: Resolved issue introduced in 3.3.03 preventing messages from being viewed across systems in a cluster.
  
• Fix: Resolved javascript issue preventing the SMTP Test functionality from properly launching.
  
• Fix: Resolved issue introduced in 3.3.03.009 preventing subject and header whitelists from being utilized.
  
• Fix: Resolved issue causing Bayesian backups to prematurely truncate when users had quotation marks in their username.
  
• Patch Release 009:
  
• Fix: Resolved issue that could cause quarantine items for new accounts to not be immediately processed and settings to remain at system defaults for affected accounts.
  
• Fix: Security - Resolved potential cross scripting vulnerabilities in scripts used from the web GUI.
  
• Fix: Resolved issue that could cause a malformed email address to be accepted as valid from the Login screen resulting in an invalid account being created.
  
• Fix: Resolved issue preventing administrator created user accounts from honoring the welcome email setting used during account creation.
  
• Fix: Resolved issue with certificates not validating properly during the checks performed when enabling a new certificate.
  
• Fix: Outbound - Resolved issue that caused subject/body filter phrases to be used individually instead of as a phrase.
  
• Patch Release 008:
  
• Fix: Resolved issue that could cause some malformed plugin classifications to affect the global Bayesian database.
  
• Fix: Outbound - Resolved issue that prevented whitelisted Subject and Header filters from being used during the scanning process.
  
• Patch Release 007:
  
• Enhancement: It is now possible to download the current public Beta Firmware under "ADVANCED''->"Firmware Update'' in the web GUI. If any Beta Firmware is available, it can be downloaded and applied in the same manner as other Firmware releases.
  
• Patch Release 006:
  
• Enhancement: Added the ability to specify a relay/smart host for Barracuda generated reports and notifications under "BASIC''->"Administration'' in the web GUI.
  
• Fix: Resolved issue preventing quarantine notifications from being sent for domains with per-user enabled unless the global setting for per-user was enabled.
  
• Fix: Resolved issue preventing links from properly displaying in the message log.
  
• Fix: Outbound - Added the Deliver link to the message detail window to remain consistent with Inbound mode.
  
• Patch Release 005:
  
• Fix: Outbound - Resolved issues that could prevent Recipient/Sender/IP Block/Accept functionality from being processed in the correct order.
  
• Fix: Outbound - Renamed "BASIC''->"Allowed Sender'' to "BASIC''->"Authorized Sender'' in the web GUI.
  
• Fix: The SMTP Auth LDAP password is now properly preserved in the web GUI.
  
• Patch Release 004:
  
• Fix: Resolved issue that would cause recipient whitelists with special characters in the addresses to fail scanning.
  
• Patch Release 003:
  
• Enhancement: Added a new field in the LDAP settings which is used to determine if LDAP is working properly and disables LDAP for that session if there is a problem. Previously the 'Test Email Address' was used which caused problems for those that saved invalid addresses. Please see the help file in the LDAP Settings screen for details regarding the new field.
  
• Patch Release 002:
  
• Fix: Resolved issue that caused the config_get API call to fail when retrieving user specific settings.
  
• Patch Release 001:
  
• Enhancement: Outbound - Added HIPPA compliance as an optional set of filters for Header/Body checks. Please see the filtering help files for details.
  
• Enhancement: Added the ability to search within the message log for the Barracuda message identifier (X-ASG-Debug-ID) found in the email headers.
  
• Enhancement: Outbound - Added the ability to customize the policy sender NDR message.
  
• Enhancement: Added the ability to change the LDAP unique attribute and primary alias attribute in the LDAP settings section for a domain.
  
• Fix: Resolved issue for clustered machines preventing navigation, with the timeline, when viewing local messages in the message log.
  
• Fix: Resolved issue preventing LDAP verification of email addresses beginning with certain special characters.
  
• Fix: Outbound - Resolved issue preventing Header filters from being immediately applied to messages during the scan process.
  
• Fix: Various fixes for the timelines displayed in the message log and user quarantine inbox.
  
• Fix: Resolved issue that could cause fractional numbers to be displayed on generated reports.
  
• Fix: Resolved issue that prevented private root certificates from being imported into IE, and similar, browsers.
  
• Fix: Resolved issue that prevented the use of special characters in the cluster shared secret.
  

Version 3.3.02

• Patch Release 012:
  
• Fix: Resolved issue that prevented IP whitelists from taking precedence over RBL and sender blocks.
  
• Fix: Outbound - Resolved issue preventing encrypted archives from being blocked.
  
• Fix: Outbound - Resolved issue preventing attachments within archives from being blocked.
  
• Patch Release 011:
  
• Fix: Resolved issue for clusters where user whitelist or blacklist entries containing special characters could cause the entire whitelist or blacklist to not be utilized for that recipient.
  
• Fix: Resolved issue that could cause queue viewing with the links on the "BASIC''->"Status'' page to timeout for systems with a severe backlog of items in the queue.
  
• Fix: Resolved issue that could cause Bayesian backup formats to not be restored or to timeout during the restore process.
  
• Fix: Outbound - Resolved issue that prevented changes to the quarantine address from taking immediate affect.
  
• Fix: Resolved issue with Blackberry attachments having the same file signature as executable files and being improperly banned.
  
• Patch Release 010:
  
• Fix: Resolved issue which caused any clusters re-indexed while on the 3.3.x firmware to not see the messages from all machines in the cluster. If your machine was re-indexed by support for any reason while on 3.3.x please contact them at your earliest convenience to index the systems again.
  
• Fix: System temperature now reflects the status based on the current temperature. The prior method, of relying on system generated alarms, results in false positives.
  
• Patch Release 009:
  
• Fix: Resolved issue which caused deleted users to not be properly removed in a cluster. Two issues existed - the first prevented accounts from being removed from the user list after being deleted and affected all 3.3 firmware releases. The second issue caused deleted accounts to be recreated and only affected the recent 3.3.02 firmware releases.
  
• Patch Release 008:
  
• Fix: Resolved issue causing retention policies to delete the incorrect files for some users when using age based policy and the message count in the user's directory was large enough to cause an internal system call to return the results in the wrong order.
  
• Fix: Resolved issue that could, in rare cases, cause Bayesian backups to interrupt mail scanning.
  
• Fix: Resolved issue preventing SASL LDAP authentication from properly initializing.
  
• Fix: Resolved issue that could cause messages to queue and affected customers using custom NDR messages in the non-default locale.
  
• Fix: Resolved issue preventing the "Link Domains'' setting from being enabled.
  
• Patch Release 007:
  
• Fix: Fixed performance issue by temporarily removing the fix from 3.3.02.001 that prevented body expressions from matching inside headers. The header removal process could extend processing time for a message by an unreasonable amount resulting in high load and latency on the system.
  
• Patch Release 006:
  
• Fix: Quarantine notifications are not sent for recipients associated with incorrect configuration information. The potential configuration problem from the 3.1.x firmware was fixed with 3.3.01.006, however user accounts may have remained with the incorrect serial number association. This problem has been addressed and all users should now be associated with the proper serial number.
  
• Fix: Addressed issue that could cause message viewing to loop to itself in some circumstances.
  
• Patch Release 005:
  
• Fix: Resolved issue that could cause a configuration backed up from a clustered system to not be valid.
  
• Patch Release 004:
  
• Fix: Resolved issue introduced in 3.3.02.003 that could cause cluster synchronization to not recognize all of the altered settings.
  
• Patch Release 003:
  
• Fix: Resolved issues that could, in some circumstances, prevent per-user quarantine notifications from successfully completing.
  
• Fix: Resolved issue that could cause systems using the Quarantine/Tag action for RBL's to stop processing mail due to internal timeouts. This could happen if there was an excessive amount of RBL's for those actions, or if DNS was responding slowly. Note: Barracuda Networks recommends all RBL's being used get set to Block - the Quarantine and Tag options should only be used for small lists of RBL's and should only be used for as long as necessary to determine their effectiveness.
  
• Fix: Resolved issue that could prevent clustered systems in different timezones from properly synchronizing in both directions.
  
• Fix: X-Barracuda-UID headers are now removed during outbound delivery to hide any BCC recipients that the sending mail client chose to include as part of the main SMTP transaction.
  
• Fix: Outbound - Resolved issue that prevented the Spam Notification flag from being properly saved.
  
• Patch Release 002:
  
• Fix: Resolved issue that could cause per-user account usage statistics to drop below zero in a cluster when files existing only on a single Barracuda were removed.
  
• Fix: Resolved issue that could prevent the user spam classification buttons from functioning.
  
• Patch Release 001:
  
• Fix: Resolved potential performance problem with the current implementation of the user whitelist and blacklist. This issue is addressed during the upgrade process, and upgrading to this release may take slightly longer than normal. Please be aware that this delay may be present.
  
• Fix: Corrected issue that resulted in the Barracuda reverting back to the old behavior of rejecting a client blacklist immediately instead of after the "RCPT TO'' command had been given. This delayed reject accommodates improperly written MTAs that do not support the reject code during the connect phase.
  
• Fix: Resolved ordering issue that could cause user specified blacklist entries to have a higher priority than user whitelist entries.
  
• Fix: Outbound - Resolved issue that prevented messages from bypassing spam scanning if that feature had been disabled.
  
• Fix: Outbound - Rate control exemptions are now properly observed.
  
• Fix: Body filters are no longer applied to the header portion of emails that do not contain parts.
  
• Fix: Multi-byte message log reasons (e.g. multi-byte subject/body filters) are now properly displayed.
  
• Fix: Resolved issue that caused the plain text SMTP Test message to be unreadable in some multi-byte encodings.
  

Version 3.3.01

• Patch Release 009:
  
• Fix: Resolved issue introduced in 3.3.01.008 that could cause mail to queue in the inbound holding area.
  
• Patch Release 008:
  
• Fix: Removed option to synchronize Bayesian databases in a cluster and replaced it with functionality to properly learn a classified message on all systems in the cluster. A message must be present on the machine for classification to succeed. Set the message log preferences to view local messages only - this will only show messages available for administrative classification.
  
• Fix: Outbound - Resolved issue that prevented administrator virus notifications from being properly sent.
  
• Fix: Resolved issue that could prevent Bayesian backups from properly completing.
  
• Fix: Resolved issue that could cause message log counts to be inaccurate, resulting in a message log that grew beyond the allowed size.
  
• Patch Release 007:
  
• Fix: Resolved issue that caused problems with the spam scanning process due to Realtime Intention Analysis getting exempted improperly. If you encounter any problems with entries exempted prior to this release, please verify that no asterisks ('*') are contained in the Intent URL Exemption List found under the "BASIC''->"Bayesian/Intent'' screen.
  
• Fix: Outbound - Resolved issue that caused footers to be placed on inbound email when running in Basic Outbound mode and using footer addition.
  
• Fix: Resolved issue that caused Bayesian analysis to be used on a message even if scoring was being bypassed.
  
• Patch Release 006:
  
• Fix: Resolved issue with Firefox 1.0.4+ under Windows XP that prevented the message log details from being displayed due to Firefox not sending all parameters specified in the Javascript function.
  
• Fix: Resolved issue that prevented Single Sign-On from properly determining the user's domain if multiple domains were set to the same realm and the user could not be authenticated by a user specific bind DN.
  
• Fix: Added a check to remove any incorrect serial numbers from the configuration database. This problem prevented the message log from being displayed.
  
• Patch Release 005:
  
• Fix: Resolved issue that prevented some password fields from being properly saved to the configuration.
  
• Fix: Outbound - Resolved issue that prevented outbound footers from being properly applied to MIME parts that lack headers.
  
• Fix: Outbound - Resolved issue that caused messages to be stored in an incorrect location when being quarantined.
  
• Fix: Outbound - Resolved issue that prevented backups from completing due to a Javascript error if no Bayesian database was present.
  
• Fix: Outbound - Resolved issue that resulted in a footer being placed on all messages regardless of the footer setting.
  
• Patch Release 004:
  
• Fix: Outbound - Resolved issue for servers that required SMTP authentication to be done over SSL/TLS.
  
• Fix: Outbound - Resolved issue where Sender Block/Accept had no default action in the web interface.
  
• Patch Release 003:
  
• Fix: Intention Analysis will now exempt its own IP address from lookups. This is possible if the system IP reflects the external IP of the Barracuda, or if the Quarantine Host value has been set with a valid entry under the "BASIC''->"Quarantine'' screen.
  
• Fix: Outbound - Resolved issue that caused the "ADVANCED''->"Backup'' screen to display empty.
  
• Patch Release 002:
  
• Fix: The custom name, logo, or URL that can be set on the "ADVANCED''->"Appearance'' screen (only certain models) is no longer synchronized between machines in a cluster.
  
• Fix: Resolved issue with tags that use a multi-byte character set not being displayed properly.
  
• Patch Release 001:
  
• Enhancement: A plugin is now available for Lotus Notes. This plugin must be installed by the system administrator on the server. Please see the "BASIC''->"Bayesian/Intent'' screen for more information.
  
• Fix: Resolved issue that caused IP Tag/Quarantine actions to bypass further Block/Accept checks.
  
• Fix: Backups initiated while logged in through HTTPS no longer fail.
  
• Fix: Outbound - Corrected issue that prevented IP Block/Accept from properly blocking listed entries.
  
• Fix: Resolved issue that caused the Tag action to be ignored for Sender Domains or Email Addresses.
  
• Fix: Resolved Javascript error that could occur on some browsers when using the "Stop'' button in the Troubleshooting tools.
  
• Fix: Resolved issue that could prevent Bayesian and user configuration backups from running when scheduled.
  
• Fix: Resolved issue that resulted in comments added to entries in the "Block/Accept'' screens becoming mis-aligned when a configuration backup file is restored.
  
• Fix: Filters for the Destination Server on the "Domains'' screen now properly check the domain specific server if it is set, and the global server if it is not.
  
• Fix: Resolved issue that prevented the Bayesian database from being properly restored when all three backup types were being restored at the same time.
  
• Fix: User preferences are now properly displayed when the Whitelist/Blacklist feature is not enabled.
  

Version 3.2.22

• Patch Release 006:
  
• Fix: Outbound - Resolved issue that could prevent certain SMTP auth configurations from being properly utilized for authentication.
  
• Fix: Outbound - Resolved issue that caused messages to bypass the Quarantine process.
  
• Fix: Outbound - Fixed issue where body filters were not properly restarting the scanning process and were therefore not immediately used when looking for matches.
  
• Patch Release 005:
  
• Fix: Resolved issue that could allow POP authentication for Single Sign-On to be bypassed.
  
• Fix: Resolved issue that could prevent some messages from being processed by the Bayesian engine.
  
• Patch Release 004:
  
• Fix: Corrected issue that prevented machines in a cluster from properly transferring quarantined files to the other machines in that cluster.
  
• Patch Release 003:
  
• Fix: Removed backup options from the "BASIC''->"Bayesian/Intent'' screen since they are now centralized under the "ADVANCED''->"Backup'' screen.
  
• Patch Release 002:
  
• Fix: Corrected issue in Outbound mode that could prevent message scanning from occurring.
  
• Fix: Resolved issue where backups scheduled for the same time would potentially conflict with each other and not complete.
  
• Patch Release 001:
  
• Fix: Resolved issues that prevented an SMB or Bayesian restore from functioning properly.
  
• Fix: Resolved issue that could prevent the user restore process from completing.
  
• Fix: Non-valid backup files no longer indicate success when an attempt is made to restore them onto the system.
  

Version 3.2.21

• Enhancement: Basic outbound mode now supports the addition of a footer to the email messages that are processed.
  
• Fix: Resolved issues that could prevent automated backups to Windows shares from being utilized.
  
• Fix: Resolved issue that could prevent Explicit User functionality from properly relaying for non-listed users.
  

Version 3.2.20

• Fix: Resolved issue that prevented Javascript warnings from displaying for some actions in the web interface.
  
• Fix: The latest read version of the release notes is no longer synchronized to other machines within a cluster.
  
• Fix: Emails generated with the "Test SMTP'' button in the web interface now identify the machine that generated the message with host/IP information as well as an RFC compliant timestamp.
  

Version 3.2.19

• Enhancement: Manual global Bayesian synchronization within a cluster is now possible from the "BASIC''->"Bayesian/Intent'' screen in the web interface.
  
• Enhancement: A new version of the Outlook plugin is available that automatically whitelists a user's contact list on initial install and continues to whitelist not-spam classified senders after that point. To enable this new plugin as a download for the users, see the "BASIC''->"Bayesian/Intent'' screen in the web interface.
  
• Enhancement: Encrypted connections are now noted in the Message log display. They are denoted with a "lock'' icon. Please see the help file under "BASIC''->"Message Log'' for details.
  
• Fix: Outbound - Empty "from'' addresses are now permitted in the SMTP envelope allowing better integration for networks that send auto-reply messages.
  
• Fix: Stopping the "ping'' troubleshooting process will now preserve the results for viewing.
  
• Fix: Domains excluded from Intention Analysis are now taken into consideration immediately by the scanning engine. Prior to this fix, a reload of the process was dependent on other settings being altered as well.
  
• Fix: Resolved issue that could cause a user's Preferences page to display a blank screen as the default if the administrator had disabled the Whitelist/Blacklist screen.
  
• Fix: Generated reports are now sent in the locale that the administrator was using in the web interface when scheduling them.
  
• Fix: The X-Barracuda-Spam-Score header now shows the score after Barracuda Bayesian has been taken into consideration.
  

Version 3.2.18

• Enhancement: Backups can now be automated using FTP or SMB (Windows Shares). Please see the "Advanced''->"Configuration Backup'' page for details.
  
• Enhancement: Users now have the ability to check on the status of tasks that they have initiated through the web GUI. This applies to things such as configuration/Bayesian restoration, cluster initiation, and invalid user removal.
  
• Enhancement: Administrators that have HTTPS Only set will now have users who try to login using HTTP automatically redirected to HTTPS. The connection refusal on the HTTP port when that flag is set is no longer standard behavior but can be enabled by our support staff if desired.
  
• Fix: Resolved issue that could prevent user backups from being properly restored.
  
• Fix: Bayesian reset now properly clears out admin and user Bayesian databases.
  
• Fix: Resolved issue that caused certain errors, which might occur during login, to not display on the login form.
  

Version 3.2.17

• Enhancement: Changes have been made to the Barracuda's internal scanning systems to better detect spam messages sent in unconventional encodings. This technique is often used by spammers to disguise their message content.
  
• Enhancement: It is now possible to specify multiple hosts for LDAP fallback by space seperating the entries in the LDAP host field on the LDAP settings page for the desired domain.
  
• Enhancement: An "Outbound/Relay'' tab is now available under the "Advanced'' section to allow administrators the ability to setup basic relaying functionality with IP/domain/sender entries.
  
• Fix: Resolved issue that caused the administrator to be placed back at the start of a list after editing the settings for a domain or changing a user password.
  
• Fix: The stats.cgi script is now properly locked down by the Administrator IP range that can be configured under "Basic''->"Administration'' in the web GUI. If no values are present in this range then the script is available to all IP addresses.
  
• Fix: Resolved issue that could prevent reports and other Barracuda generated email from being sent to addresses that were not filtered domains on the Barracuda.
  

Version 3.2.16

• Enhancement: Proxy configuration support has been added to the web GUI. See "Basic''->"IP Configuration'' if proxy settings are necessary for the Barracuda to access the Internet.
  
• Fix: Connections made over HTTP are now refused if the HTTPS Only setting is enabled.
  
• Fix: Resolved clustering scenario where a changed setting may not take effect with the new value unless a manual reload/restart was performed.
  

Version 3.2.15

• Fix: Resolved issues with message log columns being improperly truncated for display.
  
• Fix: Resolved issue that could cause multiple non-unique headers to be inserted into messages that are received.
  
• Fix: The Barracuda's internal monitoring process is no longer logged in the mail syslog output.
  
• Fix: Corrected improper loading of HTTP images when accessing the web GUI using HTTPS.
  

Version 3.2.14

• Enhancement: Pass-thru POP authentication is now available as a Single Sign-On option.
  
• Enhancement: Major changes to the Bayesian filtering in use by the Barracuda Spam Firewall. Warning: All old Bayesian entries will be lost during the conversion - please see the note at the top of these Release Notes.
  
• Enhancement: Users are now able to download/restore their own Bayesian databases. Administrators can choose to download all databases, just the global database, or just the user databases.
  
• Enhancement: User quarantine accounts that are accessed through the single sign-on LDAP/RADIUS mechanisms no longer contain the password changing section in the GUI.
  

Version 3.2.13

• Enhancement: SMTP over TLS/SSL is now possible and can be configured on the "Advanced''->"SMTP/TLS'' screen. It requires certificate information from the SSL configuration screen in order to function.
  
• Enhancement: It is now possible to utilize secure LDAP connections for recipient verification. Please see the LDAP Settings page on a specific domain for details.
  
• Enhancement: Administrators can now enter a score range as a possible filter in the Message Log.
  
• Enhancement: It is now possible to Quarantine Intention Analysis matches. This setting can be found under the "Basic''->"Bayesian/Fingerprinting'' tab in the web interface.
  
• Enhancement: If the sbl.spamhaus.org blacklist and the xbl.spamhaus.org blacklist are both listed in the "Common'' blacklists with the same Action (e.g. Block, Quarantine, or Tag), the combined sbl-xbl.spamhaus.org list is used in place of the other two entries to save on network I/O.
  
• Enhancement: Retention policies have been re-introduced. They are administrator configurable and available under "Users''->"Retention Policies''. The policies are off by default, and must be explicitly enabled to be used. Please see the associated help file on that page for further details.
  
• Enhancement: Administrators can now view the number of items in a user quarantine, the size of a user quarantine, and the oldest item in the quarantine on the "Users''->"Account View'' page. Searches have been added for those fields as well to help administrators identify users who are not managing their accounts and need to be manually cleaned up, or disabled.
  
• Enhancement: The whitelisted column in the message log now indicates if a domain, or a specific email address, has been whitelisted.
  
• Enhancement: A new Bayesian system is in use on the Barracuda. This new Bayesian system is used for both user and administrator Bayesian databases.
  
• Enhancement: Users can now view their Bayesian classification counts, and reset their database, in their per-user "Preferences'' area.
  
• Enhancement: Outbound delivery status has now been integrated into the message log and syslog output.
  
• Enhancement: A new "Test Configuration'' button exists on the "Basic''->"IP Configuration'' page to help new users determine if they have any obvious configuration problems prior to enabling mail flow.
  
• Enhancement: The low priority flag, if used, is now applied to both Tagged messages and Quarantined messages that are delivered to the end user.
  
• Enhancement: Placed spam classification buttons at the bottom of the message log page.
  
• Fix: Full header scan of RBLs no longer requires specific spam score thresholds in order to function. The spam score thresholds can be left at desired levels without affecting RBL actions.
  
• Fix: Resolved issue where generated reports started at 1 instead of at 0 and incorrectly displayed partial values.
  
• Fix: The password reset functionality for the administrator will now properly redirect back to login screen.
  
• Fix: The "Quarantine Settings'' tab in the user preferences is no longer displayed if the administrator has disabled the quarantine setting ability.
  
• Fix: Properly display escaped regular expression sequences in the message log detail window.
  
• Fix: Resolved issue where Tag/Quarantine of RBLs did not work unless Full Header Scanning was enabled. Block is still recommended for RBLs however as Tag/Quarantine can have a dramatic impact on the performance of the Barracuda.
  
• Fix: Quarantine notifications for multi-byte languages have been corrected to address problems with HTML encoding.
  
• Fix: Multi-byte subject searches are now possible for machines not in a cluster (or if the machine in the cluster is set to view only the local database).
  

Version 3.1.18

• Fix: Changing the IP address at the console no longer results in an invalid cluster being created.
  
• Fix: The global Bayesian database can now be completely reset from the web GUI under the "BASIC''->"Bayesian/Fingerprinting'' screen. Prior versions could result in some classification tokens not being fully reset.
  
• Fix: Rate control exemptions no longer bypass explicit blacklist entries and recipient verification.
  
• Fix: Resolved potential security issues, in cooperation with Francois Harvey (SecuriWeb inc. <fharvey@securiweb.net>).
  
• Fix: Resolved issue that could prevent changed settings from taking immediate effect in a clustered environment.
  
• Fix: Corrected memory leak that over time could cause the recipient verification process to be unable to connect to the destination mail server.
  
• Fix: Resolved issue that could prevent global Bayesian classification from functioning for locales other than English.
  

Version 3.1.17

• Enhancement: It is now possible to delay RBL checking until after the recipient has been provided. This allows the message log entry to contain both sender and recipient information in addition to the connecting IP for RBL blocks. This option can be found under the "Block/Accept''->"External Blacklists'' screen.
  
• Enhancement: Network setups that require proxy configuration for HTTP access are now able to specify that information under the "Basic''->"IP Configuration'' screen in the web GUI.
  
• Enhancement: It is now possible to specify multiple, space-separated hosts in a domain's LDAP settings for failover purposes.
  
• Fix: Updates have been made to the Realtime Intention Analysis engine to better accommodate customers that were experiencing delays in message processing.
  
• Fix: Resolved issue that could cause reports to not be processed on highly loaded machines due to low prioritization. The result of this fix may result in reports from older dates properly being run and arriving now.
  
• Fix: Resolved issue where email messages from spam senders could potentially bypass spam scanning due to unconventional body formatting.
  
• Fix: Client IP blacklists are now performed after the recipient has been provided. This corrects problems for MTAs that do not honor a 550 reject during the connect phase and instead treat it as a retry.
  
• Fix: New messages arriving into user quarantine areas are now stored in the database based upon their arrival time. Messages that were already received will still display based upon the date header.
  
• Fix: Bounce messages to the recipient now properly utilize the MX record if the 'Use MX' option is set for that domain.
  
• Fix: Resolved issue that could cause messages to not be available for viewing in the message log even though they were accepted onto the system for processing.
  
• Fix: Multi-byte subject searches are now possible for machines not in a cluster (or if the machine in the cluster is set to view only the local database).
  
• Fix: Resolved issue that could cause the spam status flag to be improperly applied if the tag level was disabled but the score was still above quarantine or block levels.
  
• Fix: Resolved issue that could prevent daily reports from being sent for some customers.
  
• Fix: Corrected inaccurate text issues under "Block/Accept''->"Email Recipient Block/Accept''. Please note that domain recipient whitelists are not directly supported. The list is intended to be used for full email addresses. Full domains can however be whitelisted through the use of a pattern. See the help file for details.
  
• Fix: Resolved issue that prevented the "Deliver'' link in the message log from working within a cluster.
  
• Fix: Corrected issue with HELO syntax errors displaying as allowed in the message log even if the connection was terminated without processing a message.
  

Version 3.1.16

• Enhancement: Added support for real-time lookups in the Intention Analysis Engine. The result is significantly higher accuracy in detecting new forms of spam. The cost is slightly increased mail scanning time as network lookups need to be performed. Please see "Basic''->"Bayesian/Fingerprinting'' to disable/enable this feature - it is enabled by default.
  
• Enhancement: Performance enhancements for machines with heavily used web interfaces, as well as for machines utilizing large numbers of user specific white/black lists.
  
• Fix: IP whitelists no longer serve the dual purpose of allowing mail relay to unfiltered destinations. If you are using this undocumented functionality and need to keep it, please contact our support department for a workaround.
  
• Fix: Resolved issues that could cause some machines to exhaust their memory resulting in reduced performance and potential system failure if left un-addressed.
  
• Fix: Corrected problem where a cleared message log could leave around some old entries resulting in incorrect message counts.
  
• Fix: Resolved issue that could prevent per-user capabilities from being enabled if the default was set to 'global' quarantine, but domain settings were set to use 'per-user' settings.
  
• Fix: Resolved further problems with blackberry attachments utilizing known executable formats and causing incorrect matches for attachment filtering.
  
• Fix: Corrected issues that could prevent mail from being scanned in certain multi-byte encodings when not properly formed.
  

Version 3.1.13

• Fix: Identified and fixed potential security issues in cooperation with Adam Pointon from Assurance.com.au (formerly Sentinel Security): authentication of all cgi scripts, added strict input validation.
  
• Fix: Resolved issue that could cause regular expressions in the form of "\pXXX'' to be interpreted as a unicode property. If a unicode property is desired it must be in the form "\p{XXX}'' to be used.
  
• Fix: Resolved issue that prevented a '0' from being used in all but the last octet in IP entry fields.
  
• Fix: User quarantine messages can now be viewed even if the administrator has disabled message body viewing.
  
• Fix: Resolved further incorrect matches for attachments that match non-standard executable formats.
  
• Fix: Exemption links are now presented for all Intention Analysis matches (tagged or blocked entries).
  
• Fix: The user quarantine welcome message now contains the full username (represented by the email address) when not using single sign-on for authentication purposes.
  
• Fix: Resolved issue that caused Sender RSET messages to override existing errors from an SMTP transaction, resulting in incorrect message log entries. The RSET command now behaves more like an SMTP QUIT command for display purposes.
  
• Fix: Corrected issue that prevented utf-8 passwords from being used.
  

Version 3.1.12

• Enhancement: It is now possible to set the Notification Start Time for per-user Quarantine Notifications. See "Basic''->"Quarantine'' for the new setting.
  
• Fix: Resolved issue where white/black lists, for per-user accounts, were not fully utilized in a clustered environment. A change to the existing white/black lists will be necessary to correct any accounts that were experiencing this problem.
  
• Fix: Messages quarantined because of IP Address, Sender Address/Domain, or Recipient Address are now fully spam scanned. This means that these messages now have a chance of being blocked if they are spam instead of being immediately quarantined.
  
• Fix: Spam status headers from other spam scanning systems are now preserved when being sent through the Barracuda.
  
• Fix: Resolved issue where Blackberry attachments were being incorrectly treated as an executable file.
  
• Fix: Resolved issue where weekly quarantine notifications were not being delivered.
  
• Fix: Resolved issue with Single Sign-On and passwords that contained more than one non-word character not functioning properly.
  
• Fix: Message log searches for "Reason Matches'' and "Reason Contains'' now properly identify all possible reasons that match the provided text.
  
• Fix: The password preferences screen is no longer displayed when a user logs in using RADIUS authentication.
  
• Fix: A generated password is no longer sent in the per-user welcome email when the account is created, if using RADIUS authentication.
  

Version 3.1.11

• Enhancement: It is now possible to exempt URLs from Intention Analysis. This can be done manually under the "BASIC''->"Bayesian/Fingerprinting'' screen, or in the message log, when a message is blocked due to "Intent'', by opening up the message detail window and exempting the URL with the provided link. It is highly recommended that Intention Analysis be used in "Block'' mode. Anybody currently running in Intention Analysis "Tag'' mode should revisit this choice to make the most effective use of the Barracuda's features.
  
• Enhancement: Added capability in the "Message Log'' preferences to query only the local machine when browsing the message log. This feature is only applicable to machines that are part of a cluster and allows the administrator to only view the messages that they can classify/whitelist (as opposed to messages from other machines in the cluster that have no effect when being classified from the machine that didn't handle them).
  
• Enhancement: Response codes and response text given back by the mail server when performing SMTP based recipient verification are now passed through to the sending server. Prior versions mapped all responses to a generic "No Such User'' response.
  
• Fix: Messages addressed to multiple recipients are no longer whitelisted for everybody if any of the recipients are whitelisted by the administrator. This applies to explicitly specified email address entries only, not to any regular expression based recipient whitelists.
  
• Fix: Whitelisted senders no longer have the potential to use the Barracuda as a relay. Messages are rejected before acceptance instead of afterwards if destined for a domain not listed on the system.
  
• Fix: Report generation has been corrected to allow creation of reports from the prior year, as well as still send the report even if the system was unable to generate the graph.
  
• Fix: Resolved issue that could cause continuous "Configuration Successfully Updated'' messages when logging in with a per-user account.
  
• Fix: Properly recognize any browser sub locales as belonging to the main locale (example: fr_XX maps to the French language locale fr_FR).
  
• Fix: Corrected error that could result during Inbound/Outbound queue viewing if the mail item had been delivered by the time we attempted to read the status.
  
• Fix: Resolved issue where stats.cgi was unable to successfully provide stats in the 3.1.10 release.
  
• Fix: Message details containing meta information, such as html links, in fields which are usually plain text (example: the from address) are now properly displayed.
  
• Fix: Require a confirmation when performing a Bayesian database reset.
  
• Fix: Resolved issue with RADIUS authentication being unable to handle passwords of greater than 16 characters.
  
• Fix: Better indication of error messages when trying to manually add/update users or user preferences.
  
• Fix: Resolved issue for customers using text-only quarantine notifications where the indicated html attachment was not being properly displayed by the mail client.
  
• Fix: The allowed domain list now correctly applies checking to make sure domain.com and DOMAIN.com are not both added to the list.
  
• Fix: Resolved issue for domains with extremely large lists (e.g. allowed domains, whitelists, etc.) that were unable to be initially clustered.
  
• Fix: Resolved issue where adding to the whitelist from the message log would shift the comment fields for the whitelisted addresses off by the number of new entries.
  
• Fix: The hostname is now included in the reports that are generated with the daily traffic report.
  
• Fix: Old IP Addresses are now properly cleared from the system when an IP change takes place. A re-index of the user quarantine areas is still necessary, but it will now happen automatically when the user receives a new quarantine item or logs back in. Note: Depending on the size of the user base and their quarantine areas, this process may take anywhere from a few hours to a few days to complete.
  
• Fix: Resolved issue with using MX lookup for delivery and using the Explicit Users functionality that would cause mail items to not honor the MX lookup.
  
• Fix: The Per-User Welcome message is now sent in both text/plain and text/html for mail clients that have trouble displaying messages that only have the text/plain format.
  
• Fix: Corrected issue where emails with a single URL at the start of their MIME part matched an OS/2 URL object type of file and were banned.
  
• Fix: Resolved issue with incorrect warnings for the subject/body/header expressions due to blank lines or certain escaped characters in the expression list.
  

Version 3.1.10

• Enhancement: It is now possible to view the inbound/outbound queues by clicking on the queue count from the "BASIC''->"Status'' page. Please be aware that if your mail server is rejecting messages then the outbound queue will try and deliver the bounce to the sender - so you may see things in your queue destined to servers other than your own.
  
• Enhancement: Users can now set the language in which to receive their quarantine notification. This can be done while logged in to their account, under the "Preferences''->"Quarantine Settings'' page.
  
• Fix: Rate control now properly rejects with a 421 error when it is first triggered. This error code tells the sending server to try again later. Once 2 times the configured number of allowed connections have been exceeded, we will begin blocking with a 554 error - which is a permanent reject. Properly behaved SMTP servers should not continue making connections when getting rejected and thus should never reach the permanent reject status.
  
• Enhancement: Administrators are now able to cancel any pending reports that they have generated. This is useful if a report is placing an unacceptable load on the system.
  
• Fix: The "Advanced''->"Reporting'' screen no longer defaults to 2003 for the starting year.
  
• Fix: Corrected display issue in the message log detail window where messages without a body were displayed in italics.
  
• Fix: Messages and SMTP connections that are deferred are now indicated as such in the message log. Prior releases had these transactions listed as "Blocked'' although they were only temporarily rejected.
  
• Fix: Resolved issue where reports would contain a broken link if there was no data for the report.
  
• Fix: Resolved issue where reports, other than the Daily Traffic Report, were being sent without a From address.
  
• Fix: Resolved issue where automatically generated reports may utilize the entire year instead of just the last day for the report data.
  
• Fix: Resolved issue that displayed "Order'' as the error when trying to set the HTTPS Only variable to 'Yes'. This now displays the proper error message indicating the administrator must be logged in through SSL to set this value.
  
• Fix: Images uploaded for appearance purposes no longer require the extension to be in all lower case.
  
• Fix: Resolved multi-byte internationalization issue with spam tags not being properly displaying in the subject line.
  
• Fix: Encoded subjects now properly appear decoded within the NDR/Bounce message content.
  
• Fix: Resolved issue where per-user whitelisted/blacklisted messages would still be spam scanned if the user was the only recipient on the message and the pretty from address didn't match the envelope from address.
  
• Fix: Resolved multi-byte internationalization issue with Bounce/NDR messages.
  
• Fix: Resolved issue with alias linking in single sign-on where customers who had explicitly set the LDAP search base to be the default naming context attribute were no longer able to default in to the correct account if the user did not already have an account created on the system.
  
• Fix: Corrected issue some customers experienced with a correctly set timezone still resulting in quarantine and other system notifications running at the incorrect time of day.
  

Version 3.1.09

• Fix: Resolved issue where traffic reports did not display properly in Outlook due to the Incredimail fix in the 3.1.07 release.
  
• Enhancement: Reports are now sent with HTML as the default (so the image displays inline properly). The text version is sent as an attachment. Prior releases had this reversed.
  
• Enhancement: Reports are now logged in the web GUI syslog output.
  
• Fix: Resolved issue where user classified items resulted in changes to the Administrator's message log. These messages showed as classified even though the Administrator was not the one who classified them.
  
• Fix: Resolved issue where changing custom Bounce/NDR messages required a reload in order for the system to utilize the new messages.
  
• Fix: Resolved issue where regular expressions in Body/Subject/Header filtering were not displaying proper matches against common words when using an escaped pipe symbol (e.g 'p\|lls').
  

Version 3.1.08

• Fix: Resolved issue where quarantine notifications did not display properly in Outlook due to the Incredimail fix in the 3.1.07 release.
  
• Enhancement: Quarantine notifications are now logged in the web GUI syslog output.
  
• Fix: Resolved issue where extensions within archives were not being properly detected by the scanning process.
  
• Fix: The default scores for a domain are now displayed in the per-user "Spam Settings'' page instead of always displaying the default system scores.
  
• Enhancement: The delete/deliver actions in a per-user quarantine are now logged in the web GUI syslog output.
  
• Fix: Resolved internationalization issue for the LDAP test in the web interface.
  
• Fix: Resolved issue where users, running the Chinese version of Windows, were unable to take action on items in their quarantine when using IE as their browser.
  
• Enhancement: Machines allowed in the API/SNMP IP list can now call dump_config.cgi, dump_bayesian.cgi, and dump_pu_db.cgi without authentication credentials. This allows users to automate the backup of the global configuration, Bayesian database, or user settings.
  
• Fix: Removed restrictions within the per-user White/Black list pages so that users can be more aggressive, if they choose to be, at blocking/allowing email addresses. For example, "tw'' can now be entered if the user wished to block all mail from Taiwan addresses.
  
• Fix: Removed "Queue Total'' text from the SNMP returned queue counts. It now returns only a number.
  
• Fix: Resolved issue that prevented a from address in Custom Bounce/NDR Messages from being properly sent in the notification.
  
• Fix: A restart is no longer necessary after adding to the API/SNMP IP list in order for SNMP to recognize the new IP as having permission to perform SNMP queries.
  
• Fix: Resolved issue that prevented a custom logo from being uploaded on a system if a language other than English was being used.
  
• Fix: The X-Barracuda-URL header used for the plugin is now only sent in HTTP format. HTTPS support for the plugin has been temporarily removed due to certificate problems that customers were encountering.
  
• Fix: Resolved issue where the spam scoring process was bypassed if SPF matched and was set to tag.
  
• Fix: Changes have been made to the minimum/maximum outbound backoff interval to better accommodate destination servers with load shutoff mechanisms that refuse mail service and cause the outbound queue to grow continually.
  
• Fix: Resolved issue that caused quarantine messages to display as "Allowed'' if no quarantine subject tag was used.
  

Version 3.1.07

• Enhancement: Improved cluster synchronization, especially for clusters with a large number of users.
  
• Fix: Resolved issue with possible false positives for the Oversized.zip virus.
  
• Fix: Resolved issue where single sign-on would not properly place an authenticated user in the correct quarantine account when using a custom LDAP search base.
  
• Fix: Resolved issue where a forward slash in the recipient address caused the message to be delivered multiple times.
  
• Fix: Resolved issue with quarantine notification messages in Incredimail not being displayed properly due to Incredimail parsing problems.
  
• Fix: Resolved issue with the Barracuda selecting Chinese Simplified as the default language.
  
• Fix: Resolved issue that could indicate permission problems when using non-English Bounce/NDR messages.
  
• Fix: Resolved issue that prevented multi-byte Bounce/NDR messages from being properly sent.
  

Version 3.1.06

• Fix: Resolved issue that caused the "Source IP'' filter to be non-functional in 3.1.05.
  
• Fix: Resolved issue with Daily Quarantine Notifications not being sent for some users.
  
• Fix: Report graphics are now sent as JPEG attachments to accommodate mail clients that do not support the PNG format.
  
• Fix: Resolved issue that caused plain text emails to be improperly formatted in message log detail display.
  
• Fix: Resolved issue where the SMTP welcome banner was synchronized in a cluster when it should have been unique on each system.
  
• Fix: Resolved issue that prevented a custom NTP server from being uploaded in a configuration file.
  
• Fix: Resolved issue that required a restart when making any changes to the SSL settings.
  
• Fix: Resolved issue that could cause blank matches in custom subject/body/header filtering.
  
• Fix: Resolved issue that prevented Barracudas using the non-default LDAP version from properly verifying recipients.
  

Version 3.1.05

• Fix: Resolved issue with the "Valid recipients Only'' filter not being able to page in the message log.
  
• Fix: Resolved issue with version alerts not being sent for customers using a multi-byte language as their default.
  
• Fix: Resolved issues with multi-byte reasons in the message log detail display, as well as multi-byte NDR display.
  
• Fix: Resolved issue where a per-domain disable of spam scanning still blocked on Intent Analysis and administrator defined content filtering.
  
• Fix: Resolved issue where system serial numbers were backed up in the configuration causing problems for customers who use this method of synchronization for their settings.
  
• Fix: Resolved issue where Intent Analysis might not capture all of the URLs in a message, or capture more of the URL than necessary for analysis causing a performance hit on the system.
  
• Fix: Resolved issue with internationalization for the SMTP Test button in the web interface.
  
• Fix: Resolved issue where disk utilization/usage alerts failed to be sent out.
  
• Fix: Resolved issue that caused administrators to be unable to save their subject/body/header filters when using expressions with some special character combinations.
  
• Enhancement: Provided a list of possible message log reasons, and an explanation on the various filters in the Message Log help file.
  
• Fix: Resolved issue that caused manually generated reports to reflect potentially inaccurate date ranges.
  
• Fix: Resolved issue that prevented passwords beginning with a '=' character from being used for LDAP.
  
• Fix: Resolved issue that allowed an administrator to set the HTTP interface port to the same number of the HTTPS port, resulting in no web service.
  
• Fix: Resolved issue that allowed an administrator to ACL themselves out of the device.
  
• Fix: Resolved issue that caused a restart to be necessary after disabling spoof protection in order for the changed setting to be utilized.
  

Version 3.1.04

• Enhancement: Administrators who wish to use Alias Unification, but do not have a "uid'' attribute linking accounts in LDAP, can now have support change the attribute used for linking purposes. Please contact support if you need this change implemented.
  
• Fix: Resolved issue with customized NDR messages, or an altered Spam Firewall Name, causing the scan process to be unable to process messages if they contained special characters.
  
• Fix: Resolved issue with daily reports not being sent for some customers with multiple addresses listed.
  
• Fix: Resolved issue with multi-byte subject lines displaying improperly in the user quarantine area.
  
• Fix: Resolved issue with alias linked accounts not being created properly from the web interface.
  
• Fix: Resolved issue that caused the display language to revert back to English upon login for certain users.
  
• Fix: If including the bounced message in a customized NDR the Barracuda headers are no longer in the message.
  

Version 3.1.03

• Fix: Resolved issue with the "Reason'' not being displayed when viewing a message log entry.
  
• Fix: Administrators will now be placed in the message source view, instead of the rendered view, when viewing a message log entry.
  
• Fix: Resolved issue that could prevent the HTTPS service from restarting when the SSL port was changed.
  
• Fix: Resolved issue that prevented LDAP based single-sign on from working for some customers in the 3.1.02 release.
  
• Fix: Resolved issue where utf-8 encoded messages were displaying incorrectly in the message log detail.
  
• Fix: Resolved issue where administrators who chose to edit a user's account from the "USERS'' tab in the web interface were not allowed to whitelist/delete/deliver a message until first navigating to the user preferences.
  
• Fix: Resolved issue where reports were being generated with non-specific subject lines.
  
• Fix: Resolved issue that prevented the Queues from being displayed in SNMP output.
  
• Fix: Resolved issue with case in-sensitive expressions causing mail to queue instead of get scanned in a timely manner.
  
• Fix: Built some fall-back escaping of special characters into subject/header/body expressions in case the administrator has forgotten to escape a special character, which may prevent mail from getting scanned.
  
• Fix: Resolved issue where attachments in archives were not being properly blocked/quarantined in some circumstances.
  
• Fix: Resolved issue where the currently selected display language was not preserved when navigating between help files.
  
• Fix: Resolved issue with multi-byte character display in the message log fields, as well as incorrect truncation on those fields.
  

Version 3.1.02

• Fix: Resolved issue where case in-sensitivity was not being properly applied to body/subject/header/attachment filters.
  
• Fix: Proper support for LDAP servers which do not support anonymous connection for Base DN expansion. We will now re-bind with the specified credentials if th e Base DN was un-attainable using the anonymous bind.
  
• Fix: Included missing help file for the "Advanced''->"Reports'' screen.
  
• Fix: Improved speed at which reports are generated. For machines that are close to being overloaded already, report generation may still cause extra delay in message processing - this delay would be introduced starting a little after midnight. Please keep this performance hit in mind when enabling any reports other than the Daily Traffic Report.
  
• Fix: Resolved issue that could cause internal queueing due to timeouts when performing Bayesian analysis.
  

Version 3.1.01

• Fix: Resolved issue that could prevent users from receiving email status reports for the new report types.
  
• Fix: Resolved issue that could prevent deletion of certain values when using the Barracuda API.
  
• Fix: Resolved issue that could prevent quarantine notifications in a clustered environment from being sent consistently.
  
• Fix: Resolved issue in "Advanced''->"Bounce/NDR Messages'' that could lead to confusion about which messages were customizable. Since customizations can only be made if using the "Custom'' setting, all others have been made non-editable fields.
  
• Fix: Resolved issue that could prevent LDAP queries from being performed successfully.
  
• Fix: Resolved issue that could log an admin out of the GUI if re-delivering a message from the message log after a filter had been performed if using Internet Explorer as the web browser.
  
• Fix: Resolved issue that prevented the buttons in a user quarantine from functioning correctly when in a language other than English.
  
• Fix: Resolved incorrect title for Rate Controlled reports.
  
• Fix: Resolved issue on clustered systems that resulted in per-user account deletion still showing messages in a deleted account's quarantine inbox if the account was re-created (even though the messages were actually removed). This fix also applies to non-clustered delete's when using the Barracuda API.
  
• Fix: Resolved issue that resulted in duplicate subject headers being placed into a message if the message initially contained a blank subject.
  
• Fix: Resolved issue that caused the X-ASG-Orig-Subject to contain incorrect information if an empty subject header was given.
  

Version 3.0.46

• Fix: Resolved issue that resulted in blank images being placed into the reports that were generated for mailing.
  
• Fix: Resolved an issue that prevented configurations from being completely loaded on initial upgrade for users with multiple IP addresses.
  

Version 3.0.45

• Enhancement: The reporting capabilities of the Barracuda have been extended to allow reports on demand, as well as the ability to have multiple types of reports run daily. Please see "Advanced''->"Reports'' for more details.
  
• Enhancement: For users running in a mostly foreign language environment, the Barracuda now supports the ability to disable/enable certain rulesets which may cause false positives due to language specific characteristics. See "Advanced''->"Spam Rule Management'' for details.
  
• Fix: Resolved issue that resulted in per-user whitelists being improperly cached at times when a message was sent to multiple recipients.
  
• Fix: Resolved an issue that could cause a per-user password, notification interval, or the quarantine state to be reset after upgrading from a 2.3 firmware version when the account is first accessed.
  

Version 3.0.44

• Enhancement: Administrators can now configure their message log to display only desired columns, change the column order, and alter the column size using the "Preferences'' button on the "BASIC''->"Message Log'' page.
  
• Enhancement: The user backup mechanism has been enhanced to allow immediate backups (of a current snapshot), or the starting of a new backup, from the "USERS''->"User Backup/Restore'' screen.
  
• Enhancement: The classify as spam and not-spam buttons in the user quarantine area now delete and deliver the messages from quarantine after learning is performed.
  
• Enhancement: The Domain and LDAP "edit'' screens under the "DOMAINS'' tab have now become a popup window where all domain settings (scores, ldap, etc.) can be altered.
  
• Enhancement: The web GUI syslog output has been enhanced with notice of admin delivery of any message from the message log.
  
• Fix: Resolved issue that could prevent backups from containing all of the ldap settings.
  
• Fix: Resolved an issue with Intent Analysis not being utilized on all messages.
  
• Fix: Resolved an issue that caused welcome messages to be sent with double http:// text inside of the links if the admin performed a quarantine account override.
  
• Fix: Resolved an issue that prevented domains beginning with a digit from displaying recipient addresses properly in the message log.
  
• Fix: Resolved an issue with certain domains being rejected as not present on the system.
  

Version 3.0.43

• Enhancement: Web GUI syslog output is now possible under the "Advanced''->"Syslog'' screen (models 300 and higher). This output will allow an administrator to track configuration changes, login attempts, and password requests made in the web interface. This output is sent on the local1 facility. Please see the help file on that page for further details.
  
• Fix: Resolved an issue with cluster synchronization caused by differing timezones on the clustered Barracudas.
  
• Fix: Resolved a potential issue that could cause LDAP connections to remain open.
  
• Fix: Resolved an issue with the message log display that could result in invalid recipient blocks not showing their reason accurately and instead displaying the generic "Spam'' reason.
  
• Fix: The LDAP test utility now utilizes the search base if it has been customized by the administrator.
  
• Fix: If the Barracuda administrator has disabled quarantine account creation by default, and is manually creating accounts, it is no longer possible to create accounts at the login screen.
  

Version 3.0.42

• Enhancement: Viewing a message log entry now supports the display of both the message source and the message display view in the case of HTML messages.
  
• Enhancement: Added the ability to specify the destination server for a domain as an MX lookup in the edit domain settings screen.
  
• Enhancement: Rate control is now used only if more than 5 unique IP addresses have been seen by the Barracuda.
  
• Enhancement: Added current mail queue counts under "BASIC''->"Status'' in the web GUI.
  
• Enhancement: Added current system load percentage under "BASIC''->"Status'' in the web GUI.
  
• Fix: Resolved an issue that could prevent users from being able to navigate in their quarantine area when using LDAP with Single Sign-On for authentication.
  
• Fix: Resolved an issue that prevented special characters from being used in the cluster shared secret.
  
• Fix: Resolved an issue that could cause SPF checks to fail if the headers contained a masked IP address.
  
• Fix: Further resolved issues with quarantine notifications not being properly sent due to international multi-byte characters.
  

Version 3.0.41

• Enhancement: The popup windows for the help buttons are now resizable.
  
• Fix: Resolved an issue that could cause an email to be deleted from the message log store before it had expired out of the 250,000 entries. This resulted in blank message log details for those messages.
  
• Fix: Resolved issue that could cause non-english characters to display incorrectly in web interface screens as well as prevent quarantine notification email messages from being sent.
  

Version 3.0.40

• Fix: Resolved an issue with LDAP recipient verification that could cause the system to be unable to accept new messages if the destination LDAP server was unreachable.
  
• Fix: Resolved an issue that kept a user account from obtaining a backup server for their quarantine when another machine was added to the cluster.
  
• Fix: Resolved an issue that could prevent delivery of messages quarantined prior to the 3.0 upgrade.
  
• Fix: Resolved an issue that prevented multi-byte character subjects from being properly displayed and potentially truncated in the message log.
  
• Fix: Resolved an issue that caused message log details to be unavailable if one or more machines in a cluster were down.
  
• Fix: Resolved an issue that prevented the reason column from being properly displayed when viewing details in the message log.
  

Version 3.0.39

• Fix: Resolved an issue that caused per-user quarantine account contents to be hidden from view after upgrade from version 2.3 of the firmware.
  
• Fix: Resolved an issue that could prevent the config_add API from successfully adding an entry for some variables.
  
• Fix: Resolved an issue where removing invalid accounts failed if the user's database did not exist on the system.
  
• Fix: Resolved an issue that could prevent messages from being sent when a user tried to get their password mailed.
  

Version 3.0.38

• Fix: Resolved issue that could cause message processing to be delayed if MIME message parts were actually in a different character set than reported in the message headers.
  

Version 3.0.37

• Enhancement: Further enhanced the virus protection on the Barracuda. Specifically more variants of password protected archives are now caught.
  
• Enhancement: Spam that matches either intent analysis or SPF/Caller ID may now be tagged instead of blocked. While this is not recommended, it is often useful for testing purposes.
  
• Enhancement: Intent analysis now scans attachments and MIME encoded messages.
  
• Fix: Resolved an issue that prevented LDAP queries with an '&' in the filter from testing properly in the web GUI.
  
• Fix: Resolved an issue that prevented custom LDAP filters created for prior releases from being utilized.
  
• Fix: Resolved an issue that could cause some messages to not be displayed in a user's quarantine area.
  
• Fix: The default timeout for LDAP recipient verification queries has been increased to lessen the amount of retry error codes sent back to the sending servers.
  
• Fix: Resolved issue with the spam classification field not being updated for newly classified messages.
  

Version 3.0.36

• Enhancement: It is now possible to search the message log ("BASIC''->"Message Log'') by action or reason.
  
• Enhancement: Administrators may now enable and disable features for individual users from the "USERS''->"User Features'' configuration screen. For example a model 400 administrator can give select users the ability to override the default scores.
  
• Enhancement: It is now possible to monitor syslog from the web interface (model 300 and higher) from the "ADVANCED''->"Syslog'' configuration screen.
  
• Layout: The user account creation interface (model 300 and higher) has been moved into the "USERS''->"User Add/Update'' configuration screen.
  
• Enhancement: Users can now specify the email address to which quarantine notifications should be sent. This allows someone to act as the moderator for a mailing list's quarantine inbox, rather than sending quarantine updates to the entire list.
  
• Enhancement: When creating accounts in the account creation interface (model 300 and higher), it is now possible to disable the welcome message by setting "Email New User(s):'' to "No''.
  
• Enhancement: Added traceroute to the troubleshooting tools under "Advanced''->"Troubleshooting''.
  
• Enhancement: The config_get.cgi API script now allows a user to obtain a list of variables or a list of user accounts currently on the system. Please see the API documentation at http://www.barracudanetworks.com/files/BarracudaAPI-v3.pdf (You can always find the latest documentation under the Support->Downloads section on our website).
  
• Enhancement: Administrators may now configure the second and third network interface on the Barracuda Spam Firewall (model 600 only) though the "ADVANCED''->"Advanced IP Configuration'' configuration screen.
  

Version 3.0.35

• Enhancement: Checks for the per-user white or black list now utilize both the envelope "from'' address, as well as the "from'' header if it is present on the message.
  
• Fix: Resolved issue with the "Remove All Invalid Accounts'' button being unable to process the user list.
  
• Fix: Resolved issue where messages rejected due to "Fake Sender Domain'' would periodically display incorrectly in the message log with a Reason of "Sender'' rather than "Fake Sender Domain''.
  
• Fix: Mouseover of date field in message log and user quarantine inbox now causes correct display in status bar.
  
• Fix: Setting "HTTPS/SSL Access Only'' to "Yes'' now forces "Use HTTPS links in emails'' to be "Yes'' as well.
  

Version 3.0.34

• Fix: Resolved issue with the 'Deliver' link for the message log not referencing the proper port in the URL.
  
• Fix: Resolved issue with the HTML tags on the "BASIC''->Status page.
  
• Fix: Resolved issue with per-user deletion not completely clearing accounts in a clustered environment.
  
• Fix: Resolved issue with per-user information not being properly initialized in a clustered environment when users were added from the API.
  

Version 3.0.33

• Enhancement: Brought back the "From Contains'' and "To Contains'' searches in the admin message log to give administrators the ability to find messages that were sent to multiple recipients easier.
  
• Layout: Moved "ADVANCED'' tab to end of the tab list.
  
• Fix: Resolved issue with changing the IP address at the console not preserving the IP address.
  
• Fix: Resolved issue where clustered quarantine inboxes would occasionally get blank entries.
  
• Fix: Resolved issue where changing the IP address resulted in the old IP being listed as part of the cluster. Current behaviour will remove the machine from the cluster when the IP address is changed.
  
• Fix: Resolved issue with message log not displaying if one unit in a cluster was offline.
  
• Fix: Resolved issue with "From Contains'' search in the per-user message log not functioning.
  
• Fix: Resolved issue with Message Contains search not functioning in the admin message log. Please note: on clustered systems this search will only find files that are present on the machine being searched at this time.
  
• Fix: Resolved issue where the per-user backup file was preserving white/black lists across users that didn't have any entries in their own. The result was users with no white/black lists getting the same values as the prior user in the backup file. These incorrect backup files can now be restored safely.
  
• Fix: Resolved issue where accounts created manually with the Barracuda API were not giving an error message back when they were invalid.
  

Version 3.0.32

• Fix: Increased maximum number of domains supported in 3.x firmware.
  
• Fix: Resolved issue where a delete of a quarantined message could occasionally result in creation of an invalid quarantine account.
  

Version 3.0.31

• Fix: Resolved issue that could cause quarantine delete and deliver to fail on a non-clustered system running 3.0 firmware
  
• Fix: Account create API now correctly generates unique passwords.
  

Version 3.0.30

• Enhancement: The "ADVANCED''->"Clustering'' screen now loads prior to checking the status of other cluster systems. Status information is updated for each system as it becomes available rather than causing the whole screen to hang.
  
• Fix: Resolved issue that could cause firmware storage area to become full introduced in 3.0.27
  
• Fix: Various clustering improvements have been applied that should improve both performance and reliability.
  

Version 3.0.29

• Fix: Resolved issue where quarantine notification would fail to complete in larger installations.
  

Version 3.0.28

• Enhancement: It is now possible to specify a custom LDAP filter for your domains in the web GUI, as well as specify the search base if you don't wish to use the 'defaultNamingContext' top-level attribute. Customers who have had Barracuda support create a custom filter will see that custom filter as their "default'' instead of the standard filter.
  
• Fix: Resolved issue where default values for the Domain and LDAP Settings, under the new DOMAINS tab in the web GUI, were not being populated.
  
• Fix: Resolved issue where spaces in the system alerts and reports field were causing reports to not be sent.
  
• Fix: Resolved issue that might make adding new machines to a cluster fail with the reason of "Timeout'' in the web GUI.
  

Version 3.0.27

• Enhancement: The "USERS''->"Account View'' screen now has the capability to run a process that will remove any existing accounts which the mail server (or LDAP if it is being utilized) consider to be invalid.
  
• Enhancement: The troubleshooting tools under "ADVANCED''->"Troubleshooting'' have been enhanced with a stop button to help users better understand how to end their troubleshooting session.
  
• Fix: Only display the deliver from message log link if the message was accepted onto the system and something is there for us to deliver to the recipient.
  
• Fix: Only display the current message log count if available and only when in the administrator message log (not when in a per-user message area).
  

Version 3.0.26

• Fix: Resolved issue where whitelisted senders were bypassing quarantined file attachments.
  
• Fix: Resolved issue with delete/deliver/whitelist functionality in the new redundant quarantine.
  
• Fix: Resolved issue with the status bar text displayed in the message log when hovering over subject lines that contain special characters.
  

Version 3.0.25

• Enhancement: All quarantined messages are now stored redundantly. Each account has a primary and backup server in the cluster if there is more than one system in the cluster.
  
• Fix: Resolved issue where subject and header filters were not properly tagged/quarantined.
  
• Fix: Resolved issue that could prevent mail from being properly scanned if SPF was enabled and no "from'' address was given.
  
• Fix: The Quarantine Host value is no longer synchronized been clustered Barracudas. This allows each machine in the cluster to remain uniquely identified (this is necessary for the Outlook plugin to function).
  
• Fix: Resolved issue that could cause the quarantine enabled state to not be properly synchronized to other Barracudas in a cluster.
  

Version 3.0.24

• Enhancement: Domain management that used to occur under "ADVANCED''->"Advanced Domain Setup'' and "ADVANCED''->"MS Exchange Accelerator'' is now handled under a new "DOMAINS'' tab. All domains the Barracuda accepts mail for are now listed in a format similar to the message log. Click on one of the actions to edit the domain or ldap settings.
  
• Enhancement: Pages under the "BLOCK/ACCEPT'' tab in the web GUI (such as the IP, sender, and recipient pages) now allow the addition of a comment next to each entry.
  
• Fix: Resolved bug where machines in a cluster were not properly implementing the quarantine default setting.
  
• Fix: SSL settings are no longer propogated to other machines in a cluster. Having these settings propogate to other machines can result in a machine's web interface becoming unavailable.
  
• Fix: Resolved download of backups and SSL certificates under Internet Explorer.
  
• Fix: Messages blocked due to user specific blacklists are now properly displayed in the message log.
  
• Fix: System timezone is no longer synchronized to other machines in a cluster.
  
• Fix: The recipient verification process now gives the system hostname and default domain as the HELO in its connection to the mail server.
  
• Fix: Resolved issue where HTTPS connections were unable to properly perform system backups.
  

Version 3.0.23

• Feature: Account unification is now available in the Barracuda Spam Firewall model 300 and higher. This feature uses LDAP to link aliases for a single user account so that all messages to any of a user's accounts will use the same preferences and the same quarantine inbox. To use this feature, one must have an LDAP server configured under the "ADVANCED''->"MS Exchange Accelerator'' configuration screen. To activate, select "Unify Email Addresses'' for the appropriate domains under the "MS Exchange Accelerator'' configuration screen.
  
• Feature: Cluster synchronization (model 400 and higher) may now be used to automatically synchronize configuration settings (both administrative and per-user) as well as message logs and quarantine inboxes. Clustering can be configured under the "ADVANCED''->"Clustering'' configuration screen.
  
• Feature: Single Sign-On (model 400 and higher) allows user accounts to be authorized using an LDAP or Active Directory server. Authentication realms may be created under "ADVANCED''->"Single Sign-On'', and may then be associated with the appropriated domains in the "Advanced Domain Configuration'' screen.
  
• Feature: SSL support is now available for the web interface (see "ADVANCED''->"SSL''). This feature is only necessary when utilizing the Single Sign-On functionality. If you are not using Single Sign-On, then passwords are still passed securely and SSL is not necessary.
  
• Feature: The Barracuda web GUI is now Internationalized. Support for other languages (including multi-byte character sets) is now fully integrated for both admin and per-user areas of the interface.
  
• Feature: NDR messages sent to senders and recipients are now customizable. Please see "ADVANCED''->"NDR Customize'' if you desire to alter your spam/virus/banned file notifications.
  
• Feature: SPF/Caller-ID is now supported. If you wish to enable this functionality please see "ADVANCED''->"Email Protocol''.
  
• Feature: Delivery of messages from the admin's message log is now supported. To (re)deliver a message, open a message entry in the "BASIC''->"Message Log'' page and click the Deliver link next to the "Action'' status text. Note: it is only possible to deliver messages that were accepted onto the system. Delivery of messages that only have status information is not possible (for example, RBL blocks).
  
• Feature: SNMP support is now available (models 400 and higher). It is available to the same IP range as the API. It uses the "public'' community string and requires no authentication. Any IP addresses not listed in the SNMP/API range will not be allowed access to the SNMP information on the Barracuda.
  
• Enhancement: Added a page to perform troubleshooting tasks on the device, such as establishing a connection to Barracuda Central for support (if port 22 can not be opened), as well as basic network connectivity commands (ping, telnet, dig/nslookup, tcpdump). See "ADVANCED''->"Troubleshooting'' for details.
  
• Enhancement: The Barracuda will now verify an account exists when they are created manually through the web GUI.
  
• Enhancement: The subject and header filters on the barracuda now support full regular expression syntax. See "BLOCK/ACCEPT''->"Header Filtering'' or "BLOCK/ACCEPT''->"Subject Filtering'' if you wish to configure subject or header filters.
  
• Enhancement: The message log now utilizes a timeline instead of page numbers for navigation through the message log.
  
• Enhancement: The "Add'' button for many configuration options has now been placed at the top of the list in order to reduce scrolling when adding several items to long lists.
  
• Enhancement: The SMTP Connection test buttons on the "BASIC''->"IP Configuration'' and "ADVANCED''->"Advanced Domain Setup'' pages now send a helo using the hostname and default domain configured on the Barracuda. The message is also sent with a "from'' address of "smtptest@barracudanetworks.com'' as opposed to a blank from address.
  
• Enhancement: The Barracuda now contains a script located at http://your_ip:port/cgi-bin/stats.cgi that will return the current information from the "BASIC''->"Status'' page. It is locked down to whatever Administrative IP Range is configured under "BASIC''->"Administration''.
  
• Enhancement: Enhanced the Barracuda API with a script to retrieve a row index given a variable and value. You can donwload the latest documentation for the API from http://www.barracudanetworks.com/files/BarracudaAPI-v3.pdf (You can always find the latest documentation under the Support->Downloads section on our website).
  
• Enhancement: Enhanced the Barracuda API scripts to be able to add and remove users if desired. Please see the latest Barracuda API documentation for further details on using the new features.
  
• Enhancement: Added a new Barracuda API script to explicitly perform a reload (named config_reload.cgi). The other scripts no longer issue a reload of the system. This allows multiple changes to be made before having to restart the processes. This script must be called to make active any changes made with the other API scripts.
  
• Fix: The Barracuda API now properly removes domains with the config_delete.cgi script. Prior versions may have experienced issues removing the first domain in the list.
  
• Fix: South American timezones are now included in the timezone list under "BASIC''->"Administration''.
  
• Fix: Resolved some potential display issues caused by invalid html on the "BASIC''->"Status'' page.
  
• Fix: Resolved display issue from 2.3.11 and 2.3.12 that could cause statistics to display 0 "Allowed'' messages.
  

Version 2.3.12

• Fix: Addressed a potential bug that could result in mail being refused from whitelisted IP Addresses.
  
• Fix: Resolved issue where the Barracuda name was left in the received from headers on a message.
  

Version 2.3.11

• Enhancement: Spoof protection is now available to prevent outside individuals from sending mail using your domain as the from address. It results in the blockage of any mail addressed from a domain for which the Barracuda receives mail. It can be turned on/off under Advanced->Advanced Domain Setup on a domain basis (model 400 or higher), or globally under Advanced->Email Protocol.
  
• Fix: Addressed a bug in Mozilla based browsers that resulted in two rows being deleted when a trash icon was clicked instead of a single row.
  
• Fix: Resolved issue that kept Quarantine or Tag actions in Block/Accept->IP Block/Accept from functioning properly.
  
• Fix: Resolved issues with the new regular expression common words checker that resulted in the checks being performed for attachment filtering, and in the checker not properly handling phrases or escaped characters.
  
• Fix: Resolved issue that could cause an empty Intent reason to be shown in the message log.
  

Version 2.3.10

• Enhancement: Virus detection engine on the Barracuda has been updated with the ability to catch most of the password protected virus variants that are currently in the wild. New variants will be handled automatically through the Virus Definition updates. The automatic block/quarantine of password protected archives under Block/Accept->Attachment Filtering can turned off, or you can keep the setting in place.
  
• Enhancement: The subject/body/header filters now display a list of any common words that are matched with your regular expression. This mechanism will help prevent unintended matches resulting in false positives.
  
• Fix: Corrected a display issue on the model 400 and 600 that could cause the BASIC->Status screen to improperly display that the Barracuda was running on a single drive.
  
• Fix: Resolved issue where admins, when trying to manage a per-user account, were placed into quarantine on the same page number as the page number of the account view screen where they browse the list of accounts.
  
• Fix: Corrected a bug where the Apply and Cancel buttons for firmware upgrades was not functional in Mozilla based browsers. This only applies to version 2.3.8 and 2.3.9 of the firmware.
  
• Fix: Altered the spam NDR to come from an empty "from'' address (aka Mailer-Daemon), and changed the text on the NDR to correct some end-user confusion. Changed the Virus and Banned File NDR to use the more generic "Spam Firewall'' instead of referincing Barracuda.
  
• Fix: Corrected a bug where users who had set a per-user score to a value of 10 were not being properly utilized.
  

Version 2.3.9

• Enhancement: Accidentally left out of the release notes for 2.3.8 is the Barracuda Intent Analysis Engine. This new feature blocks verified spam through the use of a URL fingerprinter. Messages will show in the message log as "Intent (domain.com)'' when they are blocked due to this new feature.
  
• Fix: Resolved issue that caused items quarantined because of a body filter to no longer display the filter that was matched.
  
• Fix: Resolved issue where blocked messages were sometimes displayed as allowed in the message log.
  
• Fix: Resolved issue that caused some users to be unable to view their Block/Accept->Attachment Filtering page if their attachment filter lists were empty.
  
• Fix: Resolved issue that caused admins to have trouble uploading a new quarantine notification image.
  
• Fix: Resolved issue where regular expressions used under the Block/Accept->Email Recipient page were sometimes rejected.
  

Version 2.3.8

• Enhancement: An MS Outlook plugin is now available (models 300 and higher). This plugin allows users to train the Bayesian database on the Barracuda for better spam detection by placing buttons in Outlook to classify messages as "Spam'' or "Not Spam''. Please see the BASIC->BayesainFingerprinting page if you wish to enable this for your users.
  
• Enhancement: Added support for remote management using the Barracuda API (available on models 400 and higher). IP Addresses allowed to access the API can be configured in BASIC->Administration.
  
• Enhancement: The Block/Accept->Email Recipient page now supports the use of regular expressions. To use the expression functionality, write the expression to be used and place it inside of '/' characters (e.g. /expression/).
  
• Enhancement: Added the ability to configure the number of allowed messages per session.
  
• Enhancement: Messages marked as spam in the message log are now submitted to Barracuda central for analysis by the spam definition team.
  
• Enhancement: Added an X-Barracuda-Score header to supplement the Spam-Status and Spam-Report headers.
  
• Enhancement: Added the capability to turn off Spam bounce notifications in BASIC->Spam Scoring.
  
• Fix: Resolved issue where an admin specified per-user quarantine box was not honored if the quarantine enable/disable feature was turned off.
  
• Fix: Resolved display issue where "No Valid Recipients'' was shown in the message log instead of the real error for the session.
  
• Fix: Resolved bug where deletion of certain quarantine accounts resulted in some configuration loss.
  
• Fix: Resolved bug where message ID's were not getting incremented after a RSET command from the sender. This resulted in an occasional message log inaccuracy.
  
• Fix: Resolved issue, that could occur with some mail MUA's, where the display of Barracuda headers was incorrect due to space indented continuations instead of tab indented.
  
• Fix: Resolved issue where body filters were only matching complete words.
  
• Fix: Resolved bug where a per-user blacklisted domain was overriding a per-user whitelisted email address from the same domain. In order for this fix to be applied your users will need to remove and re-add the blacklisted domain.
  
• Fix: Resolved issue where an extra backslash was displayed in the message log "Reason'' field for Subject and Body Filters.
  

Version 2.3.7

• Enhancement: Added timezone support for Africa and Iceland.
  
• Enhancement: Placed some limitations on password length so users are unable to set empty passwords.
  
• Fix: Corrected a misspelling of 'mailbox' in the quarantine notification.
  
• Fix: Resolved issue that could, on some systems, create per-user accounts as disabled instead of simply bypassing the account creation process. This situation occurred if the administrator had the quarantine default set to disabled and had removed the per-user feature of quarantine enable/disable.
  
• Fix: Resolved time issue that was caused by displaying only one timezone for each zone in the US and Canada. It turns out there are numerous Eastern Standard timezones, and not having the right one selected caused some systems to not update to Daylight Savings properly. The administrator can now select from an entire list of available timezones instead of the shortened version.
  
• Fix: Resolved issue that was causing passwords with a semi-colon to be truncated for the administrator.
  
• Fix: Resolved per-user login issue that occurred when an administrator had the option to Link Domains specified under BASIC->Quarantine and the default domain was not all lower case.
  
• Fix: Resolved display issue where virii that were blocked, and also had a quarantined attachment type, were being displayed as allowed in the message log.
  
• Fix: Resolved issue where Barracuda headers were being stripped inside of the message body in addition to inside of the headers section.
  
• Fix: Resolved display issue where per-user whitelist headers were also being utilized for per-user blacklists.
  

Version 2.3.6

• Fix: Resolved issue that could cause the "Clear Message Log'' button to only remove the message entries while leaving the actual data in the Mail Store.
  
• Fix: Resolved issue that would cause valid recipients to be rejected if more than one LDAP entry existed for an email address.
  
• Fix: Usernames and passwords with special characters will now work with the LDAP test button (special characters were always supported in the actual LDAP/MS Exchange connector).
  
• Fix: An issue was resolved that could, in rare circumstances, cause a user's password to become corrupt in the password database.
  

Version 2.3.5

• Fix: Resolved issue introduced in 2.3.0 that could cause the message log to continue to grow without periodic purging.
  
• Fix: Resolved serveral issues regarding proper counting of messages classified as Spam versus Not-Spam.
  

Version 2.3.4

• Fix: Resolved issue that could prevent the whitelist/un-whitelist buttons in the message log from properly whitelisting/un-whitelisting senders.
  
• Fix: Resolved issue that could cause difficulty restoring a backed-up Bayesian database.
  
• Fix: Resolved issue that could occasionally cause the message log to report a message as "Allowed'' when it was, in fact, blocked due to its score.
  

Version 2.3.3

• Interface: The "System Environmental Conditions'' section of the main status screen now appears to the right of the "Email Statistics'' section and is labeled "Performance Statistics''. It has been redesigned to increase the ease at which performance issues can be identified.
  

Version 2.3.2

• Fix: Resolved issue that would cause messages blocked/quarantined due to body filters to not properly log the pattern matched in the message log.
  
• Fix: Resolved issue introduced in 2.3.1 that could cause a single message to be quarantined multiple times, resulting in incorrect stats.
  
• Fix: Messages that should be tagged due to external blacklists are now properly modified.
  

Version 2.3.1

• Feature: A new "USERS'' tab has been integrated into the user interface (models 300 and higher). Please read the help files on the respective configuration screens for additional information not contained in these release notes.
  
• Feature: Administrators can now search and view user accounts with an interface similar to the message log from the "USERS->Account View'' configuration screen. This includes the ability to edit accounts as well as delete accounts.
  
• Feature: The "Switch into user account'' functionality is now integrated into the account view screen.
  
• Feature: It is now possible to change the default options for all per-user settings as well as to remove any of these options from the per-user interface from the "USERS->User Features'' configuration screen.
  
• Feature: User settings may be backed up and restored under the "USERS->User Backup/Restore'' configuration screen.
  
• Feature: Added ability to remove Barracuda headers from delivered messages in the "ADVANCED->Email Protocol'' configuration screen.
  
• Fix: Quarantine notification process has been optimized to reduce impact to system performance and message latency.
  
• Fix: Attachment blocking notification is now managed with the "Notify Virus Sender'' and "Notify Intended Virus Recipient'' settings under the "BASIC->Virus Checking'' configuration screen.
  
• Security: A potential cross-scripting vulnerability has been corrected.
  
• Enhancement: The user interface has been reorganized. Then contents of the "ADVANCED->Privacy'' tab have been moved under the "BASIC->Administration'' screen. The contents of the "Expert Settings'' tab have been moved to "ADVANCED->Mail Protocol'' screen. Contents of the "BASIC->Notification'' tab have moved to the "BASIC->Administration'' screen.
  
• Enhancement: A new configuration screen, "BASIC->Bayesian/Fingerprinting'', has been created and contains all Bayesian and Fingerprinting-related status and configuration options. This includes the ability to backup and restore the Bayesian database.
  
• Fix: Validation of email address for quarantine account creation is now case-insensitive.
  
• Enhancement: New search options are available in the message log ("BASIC->Message Log'').
  
• Fix: Web interface titles now reflect appropriate branding.
  
• Fix: Resolved issue where release notes show as unread even after being read in some circumstances.
  
• Fix: Resolved issue that caused some systems to send out daily status/quarantine notifications at incorrect times.
  
• Fix: The SMTP test button now works correctly against MS Exchange 2000 servers.
  

Version 2.3.0

• Feature: Per-user spam score controls are now available on the Barracuda Spam Firewall Model 400 and higher with per-user quarantine enabled.
  
• Feature: Domain linking is now available on Barracuda Spam Firewall models 300 and higher from the "BASIC->Quarantine'' configuration screen. Domain linking is the ability to share the same per-user preferences and quarantine inbox for all email addresses with the same name, but different domains. For example, with domain linking enabled, someuser@yourdomain.com, someuser@yourdomain.net, and someuser@corp.yourdomain.com will all share the same preferences and quarantine inbox. Note: it is not currently possible to activate domain linking for only certain domains or certain users, nor does this apply to different email addresses where the username portion of the email are different (i.e. someuser@yourdomain.com cannot be linked to s.user@yourdomain.com).
  
• Fix: Systems with redundant drives (RAID) are now configured to prioritize system performance over array rebuild in order to minimize mail delays when restarting after an improper shutdown (system not shutdown from the "BASIC->Administration'' control screen).
  
• Fix: Bayesian (spam classification) performance is now significantly improved due to the fact that databases are now kept in memory, instead of on disk. Please note, however, that these databases are periodically saved to persistent storage and that improper shutdown may result in the loss of the most recent classifications.
  

Version 2.2.9

• Feature: Blocking/Quarantining password protected zip files is now a configuration option under the "BLOCK/ACCEPT->Attachment Filtering'' configuration screen
  
• Enhancement: Version 2.2.9 contains important Spam and Virus scanning performance enhancements. It is advised that all customers upgrade at their earliest possible convenience.
  
• Enhancement: It is now possible to check messages for presence in various DNS blacklists even if the Barracuda Spam Firewall is not directly connected to the Internet. Please note that the use of this feature may cause a significant decrease in throughput due to the fact that every server in a message's history must be checked rather than just the last hop. This feature may be enabled from the "BLOCK/ACCEPT->External Blacklists'' configuration screen.
  

Version 2.2.8

• Feature: Per-domain settings are now available on Barracuda Spam Firewall model 400 and higher. It is now possible to specify individual tag/quarantine/block scores, per-user/global quarantine, as well as spam and virus scanning on a per-domain basis under the "ADVANCED->Advanced Domain Setup'' configuration screen.
  
• Feature: Remote logging service via "syslog'' is now available on Barracuda Spam Firewall model 300 and higher under the "ADVANCED->Syslog'' configuration screen. Syslog is a standard UNIX/Linux tool for sending remote system logs and is available on all UNIX/Linux systems. Syslog servers are also for MS Windows platforms from a number of free and premium vendors.
  
• Enhancement: Per user block/allow based on email sender will now check the email display name in addition to the actual email address.
  
• Fix: Added Pacific/Asian timezones.
  

Version 2.2.7

• Fix: Messages classified as either Spam or Not Spam in the per-user quarantine (models 300 and higher) are now reflected in the count of total classified messages in the "BASIC->Message Log'' screen.
  
• Fix: Resolved issue that could prevent reset of the Bayesian database (under "BASIC->Spam Scoring'').
  
• Fix: Corrected potential RFC822 non-compliance issue in bounce messages
  

Version 2.2.6

• Feature: Body block/accept/quarantine/tag patterns (regular expressions) are now validated before being applied. Testing is now performed to attempt to detect an erroneous pattern that could block all email.
  
• Feature: A new external blacklist, xbl.spamhaus.org, has been added to the "BLOCK/ACCEPT->External Blacklists configuration screen. Use of this list is highly recommended and there have no reports of false-positives when using this service. NOTE: THIS BLACKLIST WILL BE AUTOMATICALLY ACTIVATED IF YOU WERE ALREADY USING sbl.spamhaus.org. For more information, please visit http://www.spamhaus.org/xbl/index.lasso.
  
• Feature: Message log search by score is now available. One may search by a specific score (enter "1'' to view messages scored between 1.0 and 1.9). It is also possible to perform a greater-than or less-than search (i.e. all messages with a score over 9 or all messages with a score under 3). This is very useful when searching for messages to classify as spam or non-spam when attempting to train the Barracuda spam learning algorithm.
  
• Feature: The number of messages that have been classified as "Spam'' or "Not Spam'' are now displayed in the message log view. IMPORTANT NOTES: 1) Spam classification will not have any effect until at least 200 of each, "Spam'' and "Not Spam'', messages have been classified. 2) Spam classification is most effective if there are at least as many messages classified as "Not Spam'' as there are classified as "Spam''. 3) The reported number of classified messages may take several minutes to update when new messages have been classified. 4) The initial number of classified messages reported after updating firmware may be inaccurate - one should still attempt to bring both of those numbers over 200.
  
• Feature: Administrator IP Ranges are now more flexible and work even when an administrator uses a host IP rather than a subnet address in conjunction with a non 255.255.255.255 subnet mask.
  
• Feature: Increased the message log retention policy to 250,000 messages instead of 100,000.
  
• Feature: Daily email traffic reports have been added - these reports will be emailed nightly to the email address(es) set in the BASIC->Notification configuration screen.
  
• Feature: Virus statistics are now reported in the main summary on the BASIC->Status screen.
  
• Fix: Messages block due to attachment type are no longer classified as viruses in the message log.
  
• Fix: An error was resolved that could have blocked an attachment in an archive (zip, etc.) even though archive scanning was disabled in the user interface.
  
• Fix: An "Apply Filter'' button has been added the the message log view to allow searching from browsers (especially those on Macintosh) that do not automatically submit the search when enter is pressed.
  
• Fix: The dollar sign ("$'') is now allowed in passwords.
  
• Fix: When one message in an SMTP connection is whitelisted/quarantined/tagged, subsequent messages in the same SMTP session from the same SMTP client are no longer whitelisted/quarantined/tagged as well.
  
• Fix: Domain an email address tests are no longer case-sensitive.
  
• Fix: Partially downloaded Energize Updates and their associated lock files are now removed on system reboot - this eliminates the situation in which new Energize Updates could not be downloaded because the system believed they were already in progress.
  
• Fix: The Barracuda Spam Firewall no longer incorrectly reports a duplicate IP when using the console to change the system IP address after a firmware upgrade.
  

Version 2.2.4

• Feature: Disk utilization information is now included in status screen and alerts. This allows the administrator to see how much disk space is used on the Barracuda Spam Firewall. Additionally, system alerts will be automatically emailed whenever disk utilization approaches 90% on any partition.
  
• Feature: MS Exchange Accelerator (models 300 and higher) can now be tested before activation. In the "ADVANCED''->"MS Exchange Accelerator'' configuration screen, users may enter a valid email address that will be used to verify that LDAP lookups are working correctly.
  
• Fix: Incomplete "To:'' fields will no longer be rewritten by the Barracuda Spam Firewall - they will be passed on the the destination mail server unmodified. The destination mail server is now responsible for rewriting any "To:'' fields per the appropriate RFC.
  
• Fix: The "reason'' field in the message log now more accurately displays the pattern that was matched when a message is blocked because of a body filter.
  
• Fix: All Barracuda-specific headers are now stripped from inbound messages in order to prevent mail senders from attempting to fake whitelisting.
  

Version 2.2.3

• Fix: Whitelisting from per-user quarantine now works even when the message has expired in the message log (issue #812).
  
• Added support for Australian time zones.
  
• Fix: Resolved issue that would occasionally cause duplicate welcome messages for per-user quarantine.
  
• Messages with invalid dates will now show the arrival time as the message date.
  

Version 2.2.2

• Fix: Increased the maximum size of the "From:'' field from 64 to 128 characters to accomodate longer display names.
  

Version 2.2.1

• Fix: Temporary storage for the spam scanning process has been increased dramatically to avoid space issues.
  

Version 2.2.0

• Fix: New database architecture - the underlying database for the per-user preferences and message log has been replaced to provide higher reliability and increased performance. Please note that message log data will not be preserved from prior versions of the firmware. However, quarantine and Bayesian databases will remain intact.
  

Version 2.1.7

• Fix: Virus sender notification now works for users on the Barracuda Spam Firewall's local domains as well.
  
• Fix: Messages whitelisted based on an individual user's settings will no longer be automatically whitelisted for all recipients.
  
• Fix: Setting per-user quarantine (model 300 and higher) to disabled by default no longer still creates system accounts for every user by default.
  

Version 2.1.6

• Fix: Per-user quarantine messages now contain the stylesheet in the body of the messages instead of the header. This prevents stripping by web-based email programes, including Outlook Web Access.
  
• Fix: Link and image URLs are no longer stripped from message bodies before keyword matching.
  
• Fix: Improved the performance of message log queries on busy systems - login performance on such systems should be greatly improved.
  

Version 2.1.5

• Feature: Added support for most Asian time zones.
  
• Feature: Body filters are now applied against messages after hidden html comments have been stripped. This means that a body filter searching for the word "Keyword'' would now match "Key</comment>word''.
  
• Fix: Resolved several issues that could cause "Sender Abort'' or "Nested Mail'' entries in the message log - usually due to a sender sending multiple messages in the same connection and attempting to separate them with an SMTP "RSET'' command.
  
• Fix: Resolved problem that caused users to be sent incorrect links in their quarantine notification messages when the "quarantine hostname'' had been specified.
  
• Fix: Resolved an issue where certain users where unable to whitelist senders from by pressing the "Whitelist'' button in their quarantine inbox.
  
• Fix: The subject line in the message log once again reflects the modified subject line for tagged messages.
  
• Fix: Resolved several issues that could cause Spam Firewalls to hang on boot under specific circumstances, including a disconnected network cable and/or a duplicate IP address.
  
• Fix: Resolved issue that would cause an email to be quarantined for all recipients rather than only those with quarantine enabled.
  
• Fix: Pressing the "Add'' button in the "Advanced Domain Config'' screen no longer works with an empty domain name.
  

Version 2.1.4

• Feature: Messages can now be Blocked/Tagged/Whitelisted/Quarantined based on any part of the email headers. This can be managed from the "BLOCK/ACCEPT''->"Header Filtering''.
  
• Fix: Messages blocked because of external blacklists are reflected in statistics as blocked/spam.
  
• Fix: Resolved issue that was causing some legitimate senders to receive "Nested MAIL FROM:'' errors when sending multiple messages in the same session separated by the "RSET'' command.
  

Version 2.1.3

• An issue has been resolved that could cause configuration corruption in the event that the system configuration was being updated simultaneously from two different systems.
  

Version 2.1.1

• New feature: It is now possible to clear system statistics by pressing the "Clear Statistics'' button on the "BASIC''->"Status'' configuration screen.
  
• New feature: It is now possible to clear the message log by pressing the "Clear Log'' button on the "BASIC''->"Message Log'' configuration screen.
  
• The message log "Reason'' column now indicates which subject or body filter was matched when messages are blocked, quarantined, tagged, or whitelisted by a subject or body filter.
  
• An issue has been resolved that could have caused message log corruption on Barracuda Spam Firewalls under moderate load.
  

Version 2.0.2

• New feature: With per-user quarantine enabled, the administrator is now able to specify whether quarantine is on or off by default for every user. This makes it possible to have quarantine off by default and enable users one at a time (or vise-versa) through per-user quarantine account override.
  
• One can now specify the host name/IP for access to the Barracuda from internal networks. This name/IP will be used in all quarantine/account status messages so that all links in such messages will be accessible from users within the local network.
  
• New feature: It is now possible to "switch users'' in order to assist and end user in account management. This option is available in the "BASIC''->"Quarantine'' configuration screen.
  
• New configuration screen: "BASIC''->"Notification'' allows you to set notification email addresses for system alerts and status reports. System alerts include potential system failures as well as notification of new firmware/virus/spam definition updates that may require your attention.
  
• Experimental: It is now possible to filter all email through the Barracuda Spam Firewall, regardless of domain. By placing an asterisk ("*'') in the "Allowed Email Recipient Domain(s)'' section on the "BASIC''->"IP Configuration'' screen. This eliminates the need to potentially enter hundreds or even thousands of individual domains for larger service providers.
  
• Limited branding/appearance support is now available (model 600 and higher). It is now possible to configure the logos and some of the text that are visible in the per-user interface and quarantine summary messages. Please see the "ADVANCED''->"Appearance'' screen for details.
  

Version 2.0.1

• Several major performance enhancements have been made to the firmware as of version 2.0 that should result in improved throughput and decreased latency, especially for very busy Barracuda Spam Firewalls.
  
• Searching the message log for text containing an ampersand (&) is now supported.
  
• New configuration option: Attachment types within archives may now be blocked or quarantined. This option is available through the "BLOCK/ACCEPT''->"Attachment Filtering'' configuration screen.
  
• New configuration option (models 300 and higher): The hostname/IP to be used in links contained in the quarantine summary messages can now be specified in the "BASIC''->"Quarantine'' configuration screen. This option is useful when the Barracuda Spam Firewall is not reachable by users via the IP address it is configured with.
  
• Messages that are blocked, quarantined, tagged, or whitelisted because of a "Body Filter'' are now displayed in the message log with the filter that they matched.
  

Version 1.9.7

• Added capability to set tagged messages to "Low Priority'' from the "BASIC''->"Spam Scoring'' configuration screen.
  
• Resolved issue where users occasionally received quarantine summary reports when no messages were in their quarantine.
  
• Resolved issue where users occasionally received quarantine summary reports when their quarantine had been deactivated.
  

Version 1.9.6

• Resolved issue where quarantine statistics were not being properly incremented when per-user quarantine was enabled.
  
• Resolved issue that caused statistics graphs to periodically shift by one hour/day on system restart.
  
• Resolved issue where certain users were unable to delete messages from quarantine on busy systems.
  

Version 1.9.5

• Resolved issue where message log would show "Sender Abort'' or "Sender Quit'' instead of the proper reason for message termination.
  
• The time as well as the date that a message was received is again available in the message log view.
  
• Resolved periodic login timeout issue on Barracuda Spam Firewalls in periods of above-average load.
  
• Fixed "Channel closed'' error that could cause senders to be incorrectly notified that a message was not delivered when the message was actually quarantined.
  

Version 1.9.4

• Resolved issue where a user managing their quarantine inbox would occasionally see a white screen or "page cannot be displayed error''.
  
• Resolved issue that would periodically send the daily quarantine summary to the incorrect email address.
  
• The Barracuda Spam Firewall now properly displays ISO-8859-1 subject lines in the quarantine display and summary email.
  

Version 1.9.3

• Message log now displays blocked attachment name(s).
  
• MS Exchange Accelerator (models 300 and 400 only) now allows administrator to specify a different LDAP server than the email destination server. Please see the "Advanced''->"MS Exchange Accelerator'' configuration screen.
  
• Resolved bug that prevented manual update of spam and virus definitions under certain circumstances (issue #796)/
  
• Resolved bug that was preventing bounce message due to blocked attachments in the 1.9.x versions of the firmware (issue #795).
  

Version 1.9.2

• Administrators may now set the default quarantine notification policy (daily, weekly, or never) from the Quarantine configuration screen. Users may override this setting in their individual preferences.
  
• Administrators may enable or disable quarantine for entire groups of users through the "BASIC''->"Quarantine'' configuration screen. Please see the notes on this screen for more details.
  
• Numeric keypad may now be used to enter IP addresses.
  
• Shutdown button is now available from "BASIC''->"Administration'' configuration screen.
  
• Resolved bug where two different domains resolved to the same Exchange server and only one used the MS Exchange Accelerator.
  

Version 1.9.1

• Individual users can now choose to receive daily or weekly notification regarding the contents of their quarantine inbox. The notification consists of a listing of all quarantined messages with quick links to delete or deliver those messages.
  
• It is now possible to view the current system IP address from the console (monitor and keyboard directly attached to the Barracuda)
  

Version 1.9.0

• Version 1.9 is a major release that incorporates support for per-user quarantine and preferences into the Barracuda Spam Firewall models 300 and 400. To enable per-user quarantine, go to the "BASIC''->"Quarantine'' tab and select "Per User'' quarantine instead of the default "Global'' setting. It is important to note that the per-user quarantine features may impact system performance. Please consult with Barracuda Networks support before enabling this feature. Once per-user support is enabled, users will be notified via email of their quarantine password when the first message arrives in their quarantine inbox. They will be able to use the web interface to delete and deliver messages from their quarantine inbox as well as to whitelist and blacklist senders for their account.
  
• For a more detailed explanation of per-user quarantine, please review the per-user quarantine introduction PDF at: http://www.barracudanetworks.com/BarracudaPer-UserQuarantine.PDF.
  

Version 1.8.5

Note: As of version 1.8.5, the message log format has changed. Upgrading to this firmware will clear prior entries in the message log, but will not impact any spam classification/Bayesian learning that has occurred.

• Added "Average Message Latency'' measurement to main status screen under "System Environmental Conditions''
  
• Added "Last Message Delivered'' display to main status screen under "System Environmental Conditions''
  
• Altered message log display to enhance usability. Administrators may now select all messages in log to classify them as spam or non-spam. They may also whitelist or un-whitelist in bulk.
  
• Improved message log diagnostics. "Sender Aborted'' messages have been replaced with two more useful messages: "Sender Quit'' when the SMTP client actually sent a QUIT command, and "Sender Abort'' when the SMTP client actually disconnected without notice.
  
• Changed administrative login screen to improve security and usability. Passwords are now sent fully encrypted over the network using a challenge-response algorithm.
  
• Added "Log Off'' button to all screens.
  
• Resolved issues that could potentially cause the internal hard drive(s) in the Barracuda to become full.
  
• Fixed issue that caused email addresses containing ampersand ('&') characters to be blocked.
  

Version 1.8.3

• Message log is now searchable by sender, recipient, subject, and entire message.
  
• Whitelisted text in messages now overrides blocked text.
  
• Message detail window (opened by clicking on a message in the message log) is now resizable.
  
• Resolved issue where web interface showed the wrong Barracuda model number under certain circumstances.
  
• Lists of subject/body filters as well as attachment types are now alphabetized for easier navigation (issue #738).
  
• Resolved issue where whitelisting of senders was still not superceding subject/body filters.
  

Version 1.8.2

• Navigation menus have been reorganized into three categories in order to increase ease of use:
  
• "BASIC'' contains essential controls to manage spam, as well as status monitoring tools.
  
• "BLOCK/ACCEPT'' contains all blacklisting/whitelisting/filtering rules.
  
• "ADVANCED'' contains tools for advanced protocol configuration as well as Energize/firmware updates.
  

Version 1.8.1 (internal)

• A help subsystem has been added to your Barracuda Spam Firewall. By clicking on the question mark (?) on the upper, right-hand corner of any configuration section, one is now able to read documentation specific to that section.
  

Version 1.8.0 (internal)

• The Barracuda Spam Firewall now supports "Bayesian'' learning, the most advanced method available to teach the Spam Firewall what you consider to be spam and what you don't. To use this feature, simply go to the "BASIC''->"Message Log'' screen and use the buttons on the left-hand side to classify as many messages as possible. Note that it is just as important to properly classify non-spam messages as it is to classify spam. Once you have categorized as many messages as possible in a message log screen, press the "Submit'' button where it says "Spam Classification'. The Bayesian database on your Barracuda Spam Firewall may take some time to become ''trained", but the results are extraordinary once it is!
  
• As of version 1.8.0, firmware update will now be a two step process. The user may begin the download, which is the longer part of the process, without rendering the administrative interface unavailable. Download progress is reported in the firmware update screen, and may be canceled at any time. Once the download is complete, the user may apply the firmware at any time. The application only causes one to two minutes of interruption while the Barracuda resets.
  
• Messages headers and body can now be reviewed from the message log to assist in spam classification for Bayesian learning.
  
• New configuration screen available: "ADVANCED''->"Privacy''. From this screen, one can enable or disable the ability to view the entire message body in the message log detail window.
  
• Resolved but that caused firmware/Energize updates to time out behind certain firewalls (most notably SonicWall).
  
• Resolved bug that would cause subject/body filters to block whitelisted messages (issue #700).
  
• Resolved bug that caused the message log to display "Blocked'' status when the message had, in fact, been delivered with nonfatal protocol errors.
  

Version 1.7.5

• Spam score is now displayed in a separate column of the message log.
  
• New virus definitions, as well as the complete virus list are now listed in the release notes of the "Definition Updates'' screen.
  
• Viruses in .zip files are now detected
  
• Configuration option was added to "Virus Checking'' screen to enable/disable virus sender notification.
  
• A bug was fixed that may have prevented proper notification of intended virus recipients.
  

Version 1.7.4

• The timestamp for latest firmware / spam definition / virus definition is now available through "Update'' web interface.
  
• Release notes for latest firmware are now available through "Update'' web interface.
  
• "Domain Block/Accept'' tab is now "Sender Domain Block/Accept'', and interface functions as expected. This feature was misleading because it attempted to block or accept on a domain name based on the reverse DNS lookup. The new version correctly looks at the sender's "From'' address to determine if message should be allowed or blocked.
  
• "Header Filtering'' changed to "Subject Filtering'' and only works accordingly.
  
• Whitelisting of message can now be performed via keyword in message subject or body.
  
• Support for the premium feature, "MS Exchange Accelerator'', was added to improve MS Exchange server performance by not accepting messages to unknown recipients. Denial of service and dictionary attacks were frequently crippling MS Exchange servers because the MS Exchange server is designed to accept all messages, even to invalid users, and generate a subsequent bounce (or NDR - non-delivery receipt).
  
• Provided better documentation of regular expression syntax for keyword matching in message subject/body.
  
• Prevented tagging of messages a second time when a Barracuda Spam Firewall receives an already tagged message.
  
• Resolved bug that caused the block/tag/quarantine selection of a blacklist item to change when an item above it was deleted (issue #678).
  
• Resolved bug that caused statistics to display incorrectly during the periodic flush to disk (issue #675)
  
• Paging is now available in the message log display