CSSCurrent en:Version 7.4.0

Release Date: TBD

Important Update Notes

Language Packages

Due to structural changes in the language packages, all supported server language packages will be updated automatically, customized language packages will be removed during the update process (a backup is done before). If more language packages are needed, it is required to download and install them again.

In case your language packages have been modified, the attached delta-file Datei:Delta english lp 7.3.0 to 7.4.0.txt can help you to locate the changes in this update and re-apply the modifications. The structure of this file is explained in Language Pack Changes.

New features

Improved password security by checking against "commonly used passwords"

When defining password security, it is now possible to prohibit the use of passwords that are among the 10,000 most commonly used passwords on the Internet. For configuration instructions, see the article on Password Policy.

Die bisherige Funktion "Gewöhnliche Wörter sind als Passwort nicht gestattet" wurde umbenannt in "Passwörter dürfen keine häufig verwendeten Wörter enthalten (Definiert in words.lst)", um die Funktionsweise genauer zu beschreiben.

Improvements

The transfer options screen was re-structured to allow users to focus on the most important transfer options. The other options are now hidden by default and can be opened by the users themselves.
Obsolete log files and service definitions will be removed with this update, that were only relevant to earlier versions of Cryptshare and are no longer required.
The installed OWA package version displays the build number.
If the notification of all recipients fails during a transfer, the Cryptshare Server skips the notification of the sender about a ‘successful notification of the recipients’. Starting with this version, the sender's notification is now also saved as failed. This affects the display in the transfer log and responses from the SOAP and REST API. This is to avoid the false impression that the sender has been informed about the transfer.
The Java runtime environment has been updated to version 21.0.8.

Content Security Policy changes

The default Content Security Policy (CSP) configuration of the Cryptshare Web App (end user interface) and Cryptshare Admin Interface has been tightened and no longer allows unsafe-inline or unsafe-eval directives.

The CSP configuration has also been tightened in case additional resources from other sources are used by removing the previously mentioned directives. If you only integrate images from other sources, no further adjustment is required.

However, if you want to integrate scripts (e.g. cookie banners) from other sources, an extended configuration with a new parameter is required. Further information can be found here.

REST-API

Enhanced Transfer Polling: Sender Details now available

The sender’s name and phone number are now saved in the database and can be retrieved via the Sender/Recipient Transfer polling API.

Server Status Endpoint (REST API Version)

The Cryptshare REST API now offers a endpoint to query which REST API version is available on this Cryptshare Server. In case you are working with multiple Cryptshare servers, you can now use multiple feature sets based on the respective REST APIs.

Extended Cryptshare Support Package

The built-in Cryptshare support feature was extended. Besides the log files, the support package that is sent to Pointsharp will now additionally contain the policy configuration, the configured file type filters, the cryptshare.properties and launcher.ini files. This allows our support team to check the policy and file type filter configuration in case of requests regarding the configuration of the Cryptshare Server.

In order to check which data is sent to Pointsharp, you can download this support package yourself in the administration interface.

Bug Fixes

Fixed an issue causing application logs to appear in host system syslogs (`/var/log/messages` or `/var/log/syslog`).
Fixed an issue where boolean properties in the Transfer-Polling API response defaulted to false when not included. They now return null unless specified via the Fields parameter.
Fixed an issue where the Transfers in the "Processing" state that exceeded their expiration_date were incorrectly returned as active in the API response before the cleanup task ran. They are now correctly returned with the state DELETED_BY_EXPIRATION
Fixed an issue where under specific circumstances the "Save changes" button in the policy administration was not responsible.
Fixed an issue that prevented transfers created by QUICK from being polled via the Rest Api.
Fixed an issue of log export showing subject and messages even when logging is deactivated.