v 21.0 (21589)
2024-11-20, This is a bugfix release.
Bugfixes
- Unblock Apple DNS domains *.apple-dns.net as some iCloud services only work with this DNS server.
v 21.0 (21585)
2024-11-07, This is a security, feature and bugfix release.
Info
- This update will automatically reboot your system
Security
Enhancements
- Apple iCloud+ subscribers using the Apple Private Relay and DNS had several issues with DNS as the IACBOX DNS server was bypassed. Access to Apple Private Relay is now blocked resolving most of the problems including a not working short URL logon.now.
- Batch API: Add optional Email recipient field to "createTicket" call that sends an Email with the created ticket to that address
- Payment login: Add optional BCC (blind copy field) to send the Email with the bought ticket also to that address
- Login Page: Redirect after login works now also for confirmation links in Emails and SMS
- SPMS login with MarineXchange: Make the InstallationCode/ShipCode optional
- PMS login with Camping.Care: Add support for phone number and Email fields
Bugfixes
- DNS Service: Add a daily cleanup to avoid high memory consumption on large systems with 1000+ concurrent users online.
- WebAdmin - Ticket Overview: Translations with single quotes do not break the UI layout now
v 21.0 (21573)
2024-09-10, This is a security and bugfix release
Info
- This update will automatically reboot your system
Security
Bugfixes
- Login Page: Correct daytime/weekday based login hour restrictions which did not work correctly on Sundays
- Shipboard PMS MarineXchange: Check all bookings per cabin to match crew member logins correctly when there are multiple bookings (e.g. after a holiday)
- DNS Filter: chatgpt.com does not get filtered anymore
v 21.0 (21569)
2024-08-21, This is a feature and bugfix release
Info
- This update will automatically reboot your system
Enhancements
- SPMS Resco SMS (XML API): Implement handling for blocked accounts and allow placeholder for group matching
- SMS Login: Improve log messages for generic SMS via HTTP
Bugfixes
- Login Page Editor: Images no longer disappear after first page reload on Firefox browser
- SPMS MarineXchange: Guests arriving after "late" are now identified correctly
- Backup FTPS: Fixed an issue where the TLS connection could not be established to a specific type of FTPS Server
- WebAdmin - Online Update: Removed wrong error message if there are no new updates available
- WebAdmin - Network Tools: The IPv6 tools are available again
v 21.0 (21566)
2024-07-15, This is a security and bugfix release
Info
- This update will automatically reboot your system
Security
Enhancements
- Login Page - Online payment: Show bank transfer on PayPal shop page for users without PayPal account (seems to be effective for German customers only)
Bugfixes
- SPMS MarineXchange: Allow re-logins on departure day
- WebAdmin: Correct date pickers in collected user data and local user menu
- WebAdmin - Ticket Overview: Bring back the ticket print button to allow printing of PMS tickets (This is temporary workaround for affected customers. The valid use-case of re-using payed PMS tickets will be addressed with v24).
- WebAdmin - Login page editor: If an SPMS login is active, do not show a configuration warning
v 21.0 (21561)
2024-07-03, This is a security and bugfix release
Security
Bugfixes
- SPMS MarineXchange: Allow re-logins on departure day
- WebAdmin: Correct date pickers in collected user data and local user menu
v 21.0 (21556)
2024-06-19, This is a feature, security and bugfix release
Info
- This update will automatically reboot your system
Security
Enhancements
- Batch Access API: Add parameter to set language for created tickets
- SPMS Login: Allow spaces in cabin numbers for Resco SMS (XML API) interface
- SPMS Login: Add group filter for Resco SMS (XML API) interface
Bugfixes
- Connection tracking: Connection tracking logs are disabled correctly again
- WebAdmin: Fixed some minor display issues
v 21.0 (21552)
2024-05-15, This is a security and bugfix release
Security
- Update TLS certificate for the default domain hotspot.internet-for-guests.com
Bugfixes
- Batch Access API: Price is now set correctly when creating a new ticket
v 21.0 (21550)
2024-05-06, This is a feature and bugfix release
New
- Shipboard PMS Login: Added support for the new API of Ship Management Resco SMS (rescompany.com)
Bugfixes
- WebAdmin - Reporting: Correct created-by field in ticket statistics export
v 21.0 (21543)
2024-04-17, This is a security and bugfix release
Info
- This update will automatically reboot your system
Security
Bugfixes
- WebAdmin - Reports Statistics: Corrected ticket filter when used with newer (S)PMS systems
- SPMS Login: Further fixes for MarineXchange
- PMS Login: Updates for Camping.care PMS backend
- WebAdmin - User Overview: Wrong ticket volume (used up volume) in parent ticket
- SMS/Email Login: Corrected prioritization of allow- and deny-list entries
- Plug'n'play - Ignored devices: Correct timing issue when restaring the service
- BatchAPI - Rename header description in exported CSV of conntrack and proxy data
v 21.0 (21536)
2024-04-12, This is a security release
Security
v 21.0 (21530)
2024-03-11, This is a feature, security and bugfix release
Info
- This update will automatically reboot your system
Security
- Kernel update with security fixes
New
- PMS Login: add interface for new PMS type Camping.care
- SPMS Login: add interface for new SPMS (Shipboard PMS) type MarineXchange
- HIS Login: add interface for new HIS (Hospital Information System) type iS.hospital
Enhancements
- SMS / Email Login: better handling for overlapping entries in deny and allow lists (the more precise match is preferred).
- Application Control PRO: show full ticket names in charts
Bugfixes
- Login page: correct wrong translation texts for details in ticket selection
- GDPR: show correct retention period text for anonymize/delete periods
- Dashboard: re-add icons for the online devices charts
- WebAdmin User / Ticket Overview: correct display of currently used bandwidth per ticket
v 21.0 (21522)
2024-02-05, This is a bugfix release
Info
- This update will automatically reboot your system
Bugfixes
- Free Login: correct another issue with fixed repeat interval (midnight) calculation
v 21.0 (21518)
2024-02-01, This is a feature, security and bugfix release
Security
- OS packages with security fixes (including CVE-2023-48795)
Enhancements
- WebAdmin User: allow to revoke tickets for users with permissions to "Allow Ticket Overwrites"
Bugfixes
- Login Page Editor: added missing translation for "Recipient"
- Login-API: fixed issue which could lead to very big log files if the Login-API was in use
- Free Login: use correct calculation for fixed repeat interval (at midnight)
- Login Page - Device Status: use correct calculation to avoid negative numbers in remaining ticket volume
- Online Payment: ticket sort order works again
- Central Services Login: fixed issue where sometimes the SSO (single sign on) via remote-login did not work
v 21.0 (21510)
2023-12-13, This is a feature and bugfix release
Info
- This update will automatically reboot your system
New
- QR-Code: add option to generate and print Wi-Fi QR-Codes
Bugfixes
- Network - Routes: show correct bandwidth settings when editing a Surf-LAN route
- Login methods - Password Only: the username input field for SMS, Email, Email Ticket Request and Online Payment is now correctly hidden for Password Only tickets
Deprecations
- Login methods: SMS provider eCall via HTTPS removed from the list of explicit implementations. Generic via HTTP should be used instead
v 21.0 (21486)
2023-11-07, This is a security and bugfix release
Security
- OS packages with security updates
Enhancements
- Batch API: Added a rate limit for identical requests to avoid unnecessary load
Bugfixes
- Ticket Printer: Tickets created via printer feed button have the correct expiration date again
v 21.0 (21480)
2023-10-12, This is a security, feature and bugfix release
Info
- This update will automatically reboot your system
Security
- Updated glibc (fixing CVE-2023-4911)
- Updated curl (fixing CVE-2023-38545 and CVE-2023-38546)
- OS packages with security updates (incl. CVE-2023-3817)
- Kernel update
New
- WebAdmin: Add new permission to WebAdmin users and groups that allows/forbids chaning ticket limits when creating a new ticket
- Login Page: Add new placeholder in redirect-after-login URL $LANGSHORT for the 2 char lang code and $PSEUDOMAC for a pseudomized MAC address as GDPR compliant identifier
Enhancements
- WebAdmin and Login Page: Renamed Twitter to "X" with updated icon
- WebAdmin: Updated translations for Italian and French
- CAPPORT API: Add all placeholders in redirect-after-login URL to the venue-url
Bugfixes
- WebAdmin: Extend the allowed length of username and passwords to 256 chars
- WebAdmin: Hide cleartext password in SNMP settings
- WebAdmin: Remove the first line (header) from new XLSX Export to be compatible with the old format
- Ticket Printer: Fix error when Unlimited time credit was used
v 21.0 (21472)
2023-08-29, This is a security and bugfix release
Info
- This update will automatically reboot your system
Security
- Kernel update
- OS packages with security updates
Enhancements
- Login page: Improved client VLAN detection
Bugfixes
- Backup: Fixed some minor Remote Backup issues
Deprecations
- Next major version: SMTP Proxy will be removed
v 21.0 (21449)
2023-08-08, This is a feature and bugfix release
Info
- This update will automatically reboot your system
Enhancements
- WebAdmin - Free to Use: Entries with port ranges like tcp://10.1.1.10:9080-9090 are now supported
Bugfixes
- WebAdmin - Users/Tickets Overview: Searching for online tickets within a specific time-frame works correctly now
- Batch Access API: Exporting ticket statistic data with included ticket_id works again
- Backup: Increased timeout for manual backup download to prevent problems on slow systems
v 21.0 (21444)
2023-07-19, This is a security, feature and bugfix release
Info
- This update will automatically reboot your system
Security
- OS packages with security updates (incl. CVE-2023-29406)
Enhancements
- SNMP Monitoring: Add support for all SHA2 (SHA-128/224/256/384/512) hashes and privacy encryption with AES (AES-128/192/256)
- Batch Access API: Allow to use ticket template UUID for ticket creation
- Replace XLS with XLSX downloads for statistics and data export via Batch Access API
- Ticket Print: Add portugese template for HTML ticket print
Bugfixes
- Dashboard: System health now shows the correct state of the network interfaces and last successful backup
- Backup: Increased too short input field length for FTPS and FTPS Legacy backends. Admins are adviced to re-enter their remote backup password
- PMS: Display the correct configuration fields for ASA Hotel XML again
v 21.0 (21430)
2023-06-07, This is a security and bugfix release.
Info
- This update will automatically reboot your system
Security
- Kernel update
- OS packages with security updates (incl. CVE-2023-2650)
Bugfixes
- Handle race condition in network interface naming during boot which lead in rare cases to invalid names
- Correct network interface naming in case multiple interfaces are used for Surf-LAN
- Connection tracking: Traffic of still open connections when the ticket got invalid is now added to the ticket
- Remote Backup: Manage backup generations setting is now honored correctly
v 21.0 (21422)
2023-05-17, This is a security release.
Info
- This update will automatically reboot your system
Security
- Renew TLS certificate for the default domain hotspot.internet-for-guests.com
v 21.0 (21418)
2023-04-19, This is a security and bugfix release
Info
- This update will automatically reboot your system
Security
- OS packages with security updates (including fixes for CVE-2023-25690)
Enhancements
- WebAdmin - Dashboard: Improved notification and system health messages for backups
- WebAdmin - Login Page Editor: Improved error handling on theme and loginpage upload
Bugfixes
- WebAdmin - Printing layout: Remove username for password-only tickets on ticket printout
- AD/LDAP login: Re-login after password change in backend works again
- Email login: The attached .htm file is now translated to the correct language
- LoginAPI: Traffic to the LoginAPI login page no longer accounts towards ticket volume
v 21.0 (21410)
2023-03-22, This is a feature release
New
- Allow to deactivate NAT (masquerading) on the Office-LAN uplink interface. Guest devices will be routed to the default gateway with their internal IP to support upstream filters/proxies/analytics.
Enhancements
- Dashboard: Add system health messages and notifications for system backups
v 21.0 (21407)
2023-03-20, This is a bugfix release
Info
- This update will automatically reboot your system
Bugfixes
- WebAdmin - Ticket/User Overview: Calculation of time limit for already revoked/invalid tickets corrected
- Login page: Show correct default login page if no location based setting matched
- Login page - Local User: Login with user specific password works again
- Login page - PMS Login: Using departure date as ticket expiration for free tickets works again
v 21.0 (21403)
2023-03-07, This is a bugfix release
Info
- This update will automatically reboot your system
New
- LoginAPI: Added option to auto-revoke free tickets upon manual user logoff (http://logoff.now)
Enhancements
- Routing Mode: Allow overlapping Surf-LAN routes, using the longest prefix match to determine the client location
Bugfixes
- WebAdmin - Ticket/User Overview: Search for various ticket details as well as IP and MAC addresses works again
- WebAdmin - Ticket/User Templates: Added a limit to the ticket template price to avoid creating invalid tickets
v 21.0 (21400)
2023-02-24, This is a bugfix release
Info
- This update will automatically reboot your system
Bugfixes
- Cumulated update of v21.0 (21396) and v21.0 (21398)
v 21.0 (21398)
2023-02-22, This is a bugfix release
Info
- This update will automatically reboot your system
Bugfixes
- CAPPORT-API: Correct a wrong config value that lead to a wrong login page FQDN (mostly Android devices could not open the login page)
- Core services: Fix an error in our ARP service causing issues with our Plug'n'Play engine
- AD/LDAP login: Make multi-device tickets work again, if force account lookup is used
v 21.0 (21396)
2023-02-17, This is a security, feature and bugfix release
Info
- This update will automatically reboot your system
Security
- Kernel update
- OS packages with security updates (including fixes for CVE-2023-0286, CVE-2022-4304, CVE-2023-0215, CVE-2022-4450)
Enhancements
- WebAdmin - Ticket/User Overview: Allow search with partial IP and MAC addresses
- WebAdmin - Network Plug&Play: Support ignored devices per target IP (needed for the integration of streaming servers)
- PMS Login: Allow authentication with Room + Name for ASA Hotel XML interface
- Loginpage: Improve input validation for values including spaces and for some iOS devices
- Loginpage Editor: New preview modes for Temporarily online: Email + SMS added
- BatchAPI: Allow 0 days (same day) as expiration date for tickets created via BatchAPI
- Manual: New manual section "Integrations" launched with first article "Triax Cast Streaming (Chromecast)"
- OS: Updated time zone information
Bugfixes
- WebAdmin - Ticket defaults: Changing ticket expiration period works again
- PMS Login: Login with HoRes PMS interface works again
- Loginpage: Correct some faulty german and chinese translations
v 21.0 (21383)
2022-12-19, This is a bugfix release
Info
- This update will automatically reboot your system
Bugfixes
- SMS/Email Login: Correct global limit of maximum allowed SMS / Emails
- SMS Login: Correct limit per user for numbers with whitespaces
- WebAdmin - Create Ticket: Revert previous change to date fields, allow to freely set any valid-from and valid-to dates again
- WebAdmin - Create Ticket: Add check to prevent invalid, negative ticket limits
- Remote Backup: Correct passwords with specific special characters like "&", "<", ">", "'" were unable to connect
- Remote Backup: Expand allowed special characters for the password field (still not allowed characters are "--", "\", """)
- Remote Backup: Extend allowed input field length for the username and password fields
- Remote Backup: Improve logging
v 21.0 (21379)
2022-12-02, This is a bugfix release.
Bugfixes
- SMS Login: Newlines in SMS message led to invalid JSON when using Generic via HTTP JSON - POST method
- WebAdmin - Ticket Create: Creating tickets with unlimited expiration date was not possible due to an error
- WebAdmin - Bulk Tickets: Ticket details have not been updated correctly when changing the used ticket template
- Remote Backup: The legacy FTP(S) backup no longer worked on some systems using FTP Servers with very specific settings
v 21.0 (21377)
2022-11-22, This is a security, feature and bugfix release.
Info
- This update will automatically reboot your system
Security
- Kernel update
- OS packages with security fixes (including CVE-2022-31629, CVE-2022-37454, CVE-2022-31630)
- Updated root CAs
Enhancements
- Login page on new iPad 2022 (10.9): Render login page in tablet view
- Login page - ExtAuth login via AD/LDAP: "Force Account Lookup" forces a relogin if the password was changed (see lastPwdChange attribute)
- Login page - ExtAuth login via Radius: Allow backslashes in username
- Login page - PMS Login: Shorten timeouts if the PMS is not responding
- Backup: Add option to select max TLS Version for FTP(S)
- Backup: Auto-Migration of legacy FTP(S) backend to the new backend if test was successful
Bugfixes
- Routing mode - Proxy: Correct connection handling of transparent proxy to avoid blocking connections in some edge cases
- Routing mode - RememberMe logins: Assign correct Route-ID in tickets after automatic re-login. This also affects the Users-per-Route monitoring chart
- Routing mode - CAPPORT API: Correct MAC address resolving in routing mode
- Login page: Add missing translations for months in PMS date picker
- Login page: Better error handling if a date was given in a wrong format
- Login page - Online Payment: Show better error message if the payment failed
- Backup: Improve application log messages for successful or failed remote backups (the backup logs contain all details)
- WebAdmin - Autologin: Correct deletion of autologin devices and show the correct last changed date and time
- WebAdmin - Login Page Editor: Correct double encoding of translated button texts
- WebAdmin - Login Page Editor: Make Page link point to the correct sub page
- WebAdmin - Login Page Editor: Correct configuration link of ticket login method
- WebAdmin - User permissions: Fix save user permissions for Business Accounts menu
- WebAdmin - Online Payment: Loosen notification check so that the ticket shop stays active even if the SMS configuration is invalid
- WebAdmin - Online Payment: Keep PayPal VAT settings when saving notification settings
- WebAdmin - Create Ticket: Allow non-sysop users to edit the Valid-to field
- WebAdmin - Bulk Tickets: Allow non-sysop users to edit the Valid-To field
- WebAdmin - Bulk Tickets: Update Valid-To field after Ticket Template was changed
- SMS Login: Fix SMS limit per user for numbers with "+" as prefix
- Postfix/SMTP: Fix postfix configuration to send mails from localhost
Deprecations
- Next major version: PMS login for static Autologin Devices will be removed
- Next major version: Transparent proxy on port 80 will be removed including the possibility to map IPv6-only webpages to IPv4
v 21.0 (21350)
2022-09-08, This is a bugfix release
Bugfixes
- WebAdmin - Backup: Increased allowed backup file size for backup restore
- WebAdmin - Backup: Allow spaces for remote path names
- WebAdmin - Backup: Fixed an error where automatic remote backup was not executed properly on some older systems
- WebAdmin - Backup: Fixed incorrect sort order of dates in listing table
- WebAdmin - Backup: Fixed incorrect view of file sizes for larger backups in listing table
v 21.0 (21345)
2022-08-31, This is bugfix release.
Info
- This update will automatically reboot your system
Enhancements
- Loginpage: Improved compatibility mode to better support devices with old or no javascript (e.g. Amazon Kindle eReader)
- WebAdmin - Online Update: Improve display of online update states and download progress during update
Bugfixes
- Loginpage - External Authentication: Loosen password character restriction for LDAP and AD backends
- Loginpage - Ticket Request: Fix wrong order of recipient input fields
- WebAdmin - External Authentication + Local User: Honor expiration date for tickets with unlimited time credit
- Webadmin - Reports: Fixed faulty VAT calculation for revenue statistics
- Webadmin - Plug & Play: Fix error for invalid device list upload
- WebAdmin - Backup: Automatic remote backup was still attempted to execute even if deactivated
- WebAdmin - Backup: Use correct icon to display failed remote backups in the history logs
v 21.0 (21336)
2022-08-22, This is a security, feature and bugfix release.
Info
- This update will automatically reboot your system
Breaking changes
- Backup: Filename format of manually downloaded backups changed. The filename is now the same as for the remote backup
Security
- Kernel update
- OS packages with security fixes (including CVE-2022-2097, CVE-2022-0547)
New
- Backup: New backend/protocol SFTP - uses SSH as transport. Authentication via password or key file
- Backup: New backend/protocol S3 (Amazons SimpleStorageService) - send backups to S3 compatible storages
- Backup: Restore a backup from remote server with one click
- Backup: Show history logs of past backups
- Backup: Optionally encrypt remote backups
- Login page: Add help texts (fully translatable) per login method above the login form
- Login page: Add new Spacer element to add more padding if needed
- Ticket printout: Add custom QR-code URL per ticket template
- CAPPORT API: Use redirect-after-login URL as venue-url (Android 11 and 12 will show a notification and open the real browser if clicked)
- WebAadmin: Open manual in a popup with deep-links from features for quick help (more deep-links coming soon)
Enhancements
- Application Control: Detection engine updated with new protocols and performance improvements
- WebAdmin - Ticket/User Overview: Connection tracking information is shown per device in the ticket details popup
- Backup: New FTPS backup supports TLS 1.3 now
- Login page: Ticket selection can optionally show the template description now
- Login page: Add success/error messages of some login methods to application log
- Login page: Support PMS logins on old devices (like e-book readers) without JavaScript support
- Login page - PMS Login: Add a dummy Select option to building selection with added client side validation
- LITE version: Make the full-version feature Plug'n'Play configurations available for LITE users
- Batch-API: Return QR Code ID for created tickets
Bugfixes
- Login page - PMS Login: Correct caching hours
- Login page: Support upper-case letters in custom TLS certificates which lead to ignored requests
- Login page: Ensure PMS information is present for extensions like newsletter subscriber plugin
- Login page: Correct some truncated german translations
- Login page: Use the set text color to accordion and pile version of the login-box element
- Login page - HiMed/HIS Login: Show correct error message if the remaining credit is insufficient
- Login page - Email Login: Use correct text color in popup
- Login page - Text element: Correct single quote escaping
- WebAdmin - Login page editor: Correct clickable area of checkboxes
- WebAdmin - Login page editor: Handle exceptions during image and font uploads of unsupported formats
- WebAdmin - Login Page Editor: Correct special modes for ticket selection and filtered DNS entires
- WebAdmin - Login Page Editor: Copying a login page also copys the images now
- WebAdmin - Login Page Editor: Correct PMS configuration checks
- WebAdmin - DHCP: Make enabling a static lease from the table work again
- WebAdmin - PMS config: Allow longer inputs for the room mapping configuration
- WebAdmin - Ticket/User Overview: Correct labels and IDs of payment tickets (PayPal, Klarna). Support searching for transaction and invoice ID.
- WebAdmin - SMS/Email Login: Allow/Deny-list now ignores whitespace
- WebAdmin - Application Log: Add VLAN information to more log messages
- WebAdmin - Local users: Fix DB error while saving under certain circumstances
- WebAdmin - Ticket/User Overview: Revoking a child ticket does not revoke the parent ticket anymore
- WebAdmin - Autologin devices: Hide columns in table of unlicensed/not used modules
- System log: Remove misleading errors if a master ticket logs in the first time
- Fixed Bandwidth: Correct fixed bandwidth support for PMS tickets
- Backup: Backup contains the remote backup time now
Deprecations
- Next major version - Backup: Legacy backend for FTP and FTPS will be replaced with the new FTP/FTPS backend
- Next major version - Tunnel module: OpenVPN version will be upgraded to 2.5 and maybe needs reconfiguration on your server
- Next major version - LoginAPI: PHP will get upgraded to version 8.1
- Next major version - Transparent HTTP proxy will be removed
v 21.0 (21297)
2022-06-15, This is a security release with a HOTIFX for Oracle Opera PMS users.
Info
- This update will automatically reboot your system
Security
- Updated OS packages with security fixes (including CVE-2022-31625, CVE-2022-31626)
Bugfixes
- PMS Login - Oracle Opera: Correct order of messages in handshake with PMS which causes failed PMS logins.
v 21.0 (21293)
2022-06-08, This is a feature and bugfix release
Info
- This update will automatically reboot your system
New
- PMS Login: Support for ElektraOtel Hotel Management software
Enhancements
- WebAdmin - Custom TLS Certificate: Improve certificate chain validation to accept root CAs independent of their "purpose" field
- WebAdmin - Ticket Templates: Allow to change UUID of ticket templates (needed for Batch-API and custom extensions)
Bugfixes
- Login Page - PMS Login: Labels of date drop downs are now translated
- Login Page - PMS Login: Date fields are filled with wrong date format after the first login attempt failed
- Login Page: Correct size of the terms and privacy policy checkbox for longer texts
- WebAdmin - Online Update: Add button to allow forced update run
- WebAdmin - Online Update: Correct download of update information
- WebAdmin - Bulk Tickets: Reset all advanced settings after choosing another ticket template
- WebAdmin - Bulk Tickets: Make upload and download of CSV files more robust
- WebAdmin - Bulk Tickets: Honor order of tickets in CSV file
- WebAdmin - User/Ticket Overview: Remove logout action on parent multi-device tickets
- WebAdmin - User/Ticket Overview: Align labels of collapsed and expanded ticket version
- Webadmin - User/Ticket Overview: Anonymize child tickets too if parent ticket gets anonymized
- WebAdmin - Login Page Editor: Select correct tab after uploading an extension
- WebAdmin - Custom Login Page extensions: Fatal exceptions are detected now during extension upload
- WebAdmin - System Monitoring: Visual fixes for User per VLAN chart
- System: Lower default log-level of login page code to avoid large logs
- Online Update: Multiple fixes for AARCH64 updates (RaspberryPi4)
- Remove incorrect VLAN-restart-notice on systems in Routing Mode after upgrade to p21280
v 21.0 (21285)
2022-05-16, This is a security, feature and bugfix release.
Info
- This update will automatically reboot your system
Security
- Renew default TLS certificate for hotspot.internet-for-guests.com
- OS packages with security fixes (including CVE-2022-1343)
New
- New online manual available
- Manual: Reworked and extended content including latest features (Azure AD, Message after login, Login Page Extensions, ...)
- Manual: Improved search and on-page navigation
- Manual: Support for bright and dark theme
- Manual: Capable of Whitelabel versions
Enhancements
- WebAdmin - User Overview: Show download and upload volume separately in ticket details
Bugfixes
- WebAdmin - Auto login devices: Avoid error on saving new devices
- WebAdmin - Auto login devices: Optimize table for large amount of devices
- WebAdmin - Monitoring: Auto-scale Y-axis on users per VLAN chart
- WebAdmin - Online Update: Fix some minor issues and translations
- WebAdmin - Network/Tools: Correct search and table paging
- WebAdmin - Application Log: Correct links to tickets
- Webadmin - User Overview: Hide fields no longer available for anonymized tickets
- Login Page - Social Login: Do not show error message on aborted login
v 21.0 (21280)
2022-05-02, This is a security, feature and bugfix release. Hotfix included for vmware systems that use Application Control. Only systems with valid software maintenance can update to this version.
Info
- This update will automatically reboot your system
Security
- Kernel update (including fixes for CVE-2022-0847, CVE-2022-25636)
- OS packages with security fixes (CVE-2022-0778, CVE-2022-23852)
New
- New login method category: Business Accounts - with an extended Microsoft 365 Azure AD login method
- New communication feature: Send an email to WiFi users after a successful login with further information and custom links
- Login Page: Allow to upload custom extensions to add custom elements, login methods, event handlers (hooks), generic request handler etc.
- Login Page: Add Ukrainian as available language
- Ticket Printer: Support printer model Metapace T-40
- WebAdmin - Monitoring: Add new bandwidth per VLAN monitoring widget
- WebAdmin - Monitoring: Add new users per VLAN monitoring widget
Enhancements
- Microsoft 365 Azure AD login: Allow to map AD groups or VLANs to ticket templates to distinguish user groups (like lecturers from students)
- WebAdmin - Online Update: Reworked online update page (see this in action with the next update). It shows more detailed information and gives a more fine grained control of which updates should be installed automatically.
- WebAdmin - Online Update: Moved update time frame from remote backup to update configuration
- WebAdmin - Reporting/Collected user data: Add collected email addresses from Message-After-Login
- WebAdmin - Login Page Editor: Text element - link to settings of a text style for faster cross navigation
- WebAdmin - Login Page Editor: Add translation keys to the error pages (Not Found and generic error) which allows this texts to be changed
- WebAdmin - Users/Tickets Overview: Re-introduce filter for used tickets
- WebAdmin Login: Add option to disable username autocomplete
- WebAdmin: Removed warning icon from random MACs in Users/Tickets Overview as this could be misunderstood as something bad - the information is now shown on mouse hover
- Batch Access API: Add filter selection to ticket statistics
- PMS Login: Add option to let created tickets expire on departure date + 1 day
- Email SMTP Server: Add option to force a certain password hashing digest (if auto mode is not working)
- Email/SMS login: Improve usability by showing a message with instructions before the device is taken online and the captive browser disappears on Android
- Social login: Add the email address (if present) to the user profile which is shown on Users/Tickets Overview
- Login Page: Add a bold warning if javascript is disabled or not available (like with some old ebook readers), link to a compatibility page that works at least for simple login methods
- Login Page: Show a better error page if the login page was called with an unknown domain
Bugfixes
- Appliction Control: Changes to avoid stability issues on VMware with active Application Control
- WebAdmin login: Avoid misleading error messages on failed logins (by security scanning tools)
- WebAdmin: Fixed incorrect caching that led to slow WebAdmin pages on some systems
- WebAdmin - Quicklinks (Favorites): Fixed error with links to special pages not part of the main menu
- WebAdmin - Users/Tickets Overview: Fixed departure day in ticket details
- WebAdmin - Bulk tickets: Prevent errors while parsing old CSV files
- WebAdmin - Login Page Editor: Do not allow to delete index page
- WebAdmin - Login Page Editor: Image upload now also accepts JPEG images with the long file extension .jpeg
- WebAdmin - Login Page Editor: Fixed multiple smaller bugs
- WebAdmin - PMS setting: Fixed connection status of some PMS types
- WebAdmin - Login Page: Handle unexpected directory structure on theme upload
- WebAdmin - System monitoring: Show marker again (reboots, updates, ...)
- WebAdmin - NTP: NTP server check had false positives
- Login page: WiFi4EU logo was not displayed correctly on iOS devices, especially iPad
- Login page: Fixed a misplaced error message for login box in accordion mode
- Login page: Fixed multiple issues with translated text inside PageLinkElements
- Login page - Device Status Element: Fixed remaining volume after a relogin
- Login page - Data Collector Inline: Fixed custom translations of labels
- SMS Login: Allow multiple formats for mobile numbers
- SMS/Email/TKRQ login: Fixed allow- and deny-lists behaviour after deleting entries
- SMS/Email Login: Increased maximum timeout for activation from 60 to 999 minutes
- External Authentication: Expiration date works again if unlimited time credit is in use
- Guestline PMS: Fixed plugin initialization
- PMS Login: Allow PIN login for guests without first- and last name set
- Cleanup multiple weekly reboots present in config after backup/restore
- Planned redirect: Set a better log message for tickets logged off due to planned redir
- MedCom Login: Improved error handling
- And many small bugfixes
Deprecations
- Unencrypted login page - next major version will not support an unencrypted login page any more as the CAPPORT API (used by all newer mobile devices) works only with a valid TLS connection
v 21.0 (21270)
2022-05-02, This is a bugfix release.
Bugfixes
- Backup: Correct execution and order of migration scripts after a backup of an older patch-level version is restored.
v 21.0 (21215)
2022-01-26, This is a security and bugfix release - it replaces the previous update p21214 from 25th Jan.
Info
- This update will automatically reboot your system
Security
- Updated OS packages with security fixes
- Kernel update (Including a patch for CVE-2022-0185)
Bugfixes
- Free Login: Relogins of free-tickets with a repeat interval set to monthly (or custom mode with months as unit) lead to failed logins
- WebAdmin - Local User: Saving users with crypted passwords no longer makes them unusable
- WebAdmin - User Overview: Invalid javascript no longer leads to a broken page on IE11
- WebAdmin - Create Ticket: An empty default bandwidth setting does not lead to errors for non sysop users anymore
v 21.0 (21199)
2021-12-16, This is a feature, security and bugfix release
Info
- This update will automatically reboot your system
Security
- PMS login: In rare cases of invalid PMS server responses guests could login with any guest name
New
- Serivce for partners: Add server-side login page provisioning for partners with custom themes
Enhancements
- WebAdmin - System Health: Lowered minimum hardware requirements of needed disk space to better match usual VM sizes
- WebAdmin - Reports/Statistics: Add filter for used tickets
- Webadmin - User Overview: Improved search for mandatory fields and always search case insensitive
- CAPPORT API: Improved client detection
Bugfixes
- Login page: Fix PMS login with names that consist of more than 2 parts
- Login page: Correct display of device status element
- Login page: Planned redirect stopped working in some rare cases due to a missing directory
- WebAdmin - Login Page Editor: Made image upload work for default login page
- WebAdmin - Login Page Editor: Update translation cache after changing the active login page
- Webadmin - User Overview: Correct last seen date/time for child tickets
- Webadmin - User Overview: Add name and description to Local User and Autologin tickets
- Webadmin - User Overview: Fix display of password-only status of Local User tickets
- Webadmin: Fix invalid start value of custom ticket prefixes
- WebAdmin: Correct handling of unicode special chars
- WebAdmin - Ticket print: Use fallback if no language was set
- Login-Api: Correct saving social data with special unicode characters
v 21.0 (21182)
2021-11-04, This is a feature and bugfix release
Info
- This update will automatically reboot your system
Security
- Security updates for OS packages
- Kernel update with security fixes
New
- New login method - 'Microsoft 365' suitable for OAuth2 authentication via Office365/Azure AD
- Login page: Add new Wifi4EU login page theme and extension
Enhancements
- SMS Authentication: Add Option to receive SMS credentials on another device
- PMS - TigerTMS iLink: Allow to book ticket prices to rooms
- Email Login - Show popup with instructions before taking the device online (as Android will close the Captive Browser immediately)
- Login page: Reload login page on browser tab re-activation
- WebAdmin - Ticket/User Overview: Display creation date for parent tickets
- WebAdmin - Ticket/User Overview: Add link to used ticket template
- WebAdmin - Ticket/User Overview: Add CSV Export for tickets
- WebAdmin - Ticket Details/History: Differentiate between automatic remember-me and manual relogin
- WebAdmin - Ticket Details/History: Added VLAN information
- WebAdmin - Application Log: Added VLAN information
- WebAdmin - Reporting - Collected user data: Add Excel xslx download
- WebAdmin - SystemHealth: Show warning for RememberMe by Cookie setting (as Captive Browser don't store Cookies)
- WebAdmin - PMS: Renamed PMS 'Micros Fidelio' to 'Oracle Opera'
- Editions: Update Classroom and SilverSurfer edition to new v21 login page themes
- Updated root CAs
- Updated timezones
Bugfixes
- Login: Child Tickets honor VLAN restrictions of their parent tickets now
- PMS ASAj (XML version): Show separate fields for first and last name
- WebAdmin - Bulk Tickets: Fix errors on page for ticket templates that do not expire
- Webadmin - Ticket/User Overview: Correct displaying special chars in Datacollector texts
- Webadmin - Ticket/User Overview: Resetting the filter also resets the sub authentication methods now
- WebAdmin - System Monitoring: Correct timespan selection of 'Network Surf-LAN Now' chart
- WebAdmin - Reporting - Collected user data: Data export contains now all records not only the shown
- Routing Mode: Correct 'Prefer routing match' feature at multiple places
- Client2Client protection: Fix inconsistent state when upgrading from v19
- Email Ticket Request: Datacollector data is now assigned correctly in the sent email
- Application Control Insights: Allow to select only 14 days in the past
v 21.0 (21165)
2021-10-01, This is a bugfix release
Bugfixes
- Email backend: Send Emails to the configured SMTP Server instead of using direct connections
- Migration of very old (but still valid) tickets so they can log in again
- WebAdmin - Login page editor: Fix wrong warning of payment login method
- WebAdmin - Bulk ticket: Correct page break on printout
- WebAdmin - Reports statistics: Correct ticket filter for payment tickets
- WebAdmin - Ticket create filters templates by user group
- Login via Email Ticket-Request: Extend expiration time of requests to one week
v 21.0 (21150)
2021-09-20, This is a feature and bugfix release
Info
- This update will automatically reboot your system
Security
- Security updates for OS packages
Enhancements
- WebAdmin - Social Login config: Add selection for redirect URL (which needs to match the platform APP setting)
- WebAdmin - Payment: Remove reboot notification on changes - new version is working without a reboot
- WebAdmin - System monitoring: Show a message if the session has expired
- Login page: Sort available languages in selection
- Free-to-use: Add new URL needed for Microsoft login
Bugfixes
- WebAdmin - User Overview: Payment tickets are found by transaction ID again
- Webadmin - User Overview: Show used time and volume for unlimited tickets
- WebAdmin - User Overview: Correct dispaly of Microsoft Login tickets
- WebAdmin - Login Page Editor: Relax link validation to allow links without sub-domains
- WebAdmin - Login Page Editor: Ticket templates are not displayed due to vlan/route restriction
- WebAdmin - Ticket History: Correct sort order by date/time
- WebAdmin: Show device infos again on systems with many users
- Login page: Prevent display of invalid translation key in a text element
- Login page: Show text after a link in text elements
- Login page: Fix double encoding of HTML chars following a translated text
- Login page: Support text elements with only whitespace used as padding
- Login page - LinkedIn: Corrected scope in OAuth request
- Login page - Social Login: Use custom translations of button text if present
v 21.0 (21140)
2021-09-10, This is a hotfix release for password-only users
Enhancements
- Lowered the resolving interval to 30 seconds of free-to-use service (walled garden)
Bugfixes
- RememberMe tokens are created again for password-only tickets. NOTE: users will need to login once again to finally get automatically online next time
- PayPal: Whitelisted many free-to-use (walled garden) links needed for PayPal. As PayPal is forcing security checks now randomly (with multiple different third party Captcha providers!) it's currently not possible to guarantee a seamless user-experience. We're monitoring the situation
- Loginpage: Restore old behaviour of http://logoff.now to immediately log out the device as some customers are using this as an API. This comes with the downside that browsers showing previews of visited pages on new/empty tabs will trigger logoff.now and logout your device just by showing the preview page - so be warned when testing. A future update will make this configurable to revert this disadvantage for other users.
- Loginpage - Datacollector: Tickets created on v19 with an active Datacollector can login again on v21
- WebAdmin Reports/Ticket statistics: Payment and social tickets are filtered and grouped correctly now
v 21.0 (21114)
2021-09-01, This is a bugfix release with a HOTFIX for vmware users.
Info
- This update will automatically reboot your system
Security
- OS package update with security fixes
Enhancements
- Login page: Add filter for unwanted requests
Bugfixes
- OS/Linux: Applied patch to fix an invalid detection of CPU feature (FMA,FMA4) which lead to DB corruption (mostly seen on vmware)
- Login page: HiMed login uses the correct field for room number again
- Login page: Correct RememberMe Token for temporary-online-tickets
- Login page: Allow to deactivate languages the browser sends
- Login page on iOS: Input fields do not overflow the form now
- Login page - Payment: Sofort/Klarna is now supported
- Login page: PayPal logins with encrypted passwords work again
- Login page: Fix RememberMe for SMS and Email login
- Login page - SMS/Email/Ticket-Request Login: Correct multiple problems with multi-device tickets
- Login page: PMS login checks for ticket template even if none is needed
- WebAdmin - User Overview: Fix error in search filter
- WebAdmin - Payment: Allow longer input for password and signature fields
- WebAdmin - Email Ticket Request: VLAN ID is assigned correctly now
- WebAdmin - System Health: Check for equal passwords is performed on every login now
- WebAdmin: Ticket mandatory field does not allow space
- WebAdmin: Create Ticket Print: stuck in loop with ticket printer
- WebAdmin - Ticketprinter: Allow to save printer settings only if a port is set
- WebAdmin: Allow shorter activation time slot for SMS and Email login
- VLAN/Route: Ticket templates with restricted VLAN/Route access work again
- DHCP: Additive DHCP ranges are correctly added now
- Backup/restore: Use correct setting for Login-API
- WebAdmin - Ticket details: Email and SMS tickets show the email address or phone number now
v 21.0 (21095)
2021-07-15, This is a bugfix release
Info
- This update will automatically reboot your system
Enhancements
- WebAdmin - User Overview: Custom descriptions for tickets created via Batch Access API are displayed again
- PMS login: Added PMS deny-list to new login page
Bugfixes
- WebAdmin: Remote backup via FTPS (TLS) no longer aborts file transmission on the last few MB
- WebAdmin - Privacy Toolkit: The health check for WebAdmin user names is working correctly now
- WebAdmin: Login to WebAdmin with user from External-Authentication is working correctly again
- WebAdmin: Fix typo in loginpage text and use correct german version for E-Mail now
- WebAdmin: Removed cleartext passwords from error stacktraces in the system log
v 21.0 (21084)
2021-06-30, This is a bugfix release
Bugfixes
- WebAdmin & Login page: Special characters in Data Collector templates and data no longer lead to errors
- WebAdmin - User Overview: Text search for tickets works again
- SMS Login: The correct sender address is now used for Generic via Email
v 21.0 (21079)
2021-06-17, This is a feature and bugfix release
Info
- This update will automatically reboot your system
Security
- Kernel update with security fixes
New
- PMS Login: Add interface to new PMS type TigerTMS iLink
- Login page: Planned redirect available for the default login page
Enhancements
- Full Data Collector rework for better integration into the new loginpage and editor
- WebAdmin - User Overview: Improved display of many small details in the Ticket Overview and Ticket Details
- WebAdmin - Login Page Overview: Highlight active login pages for better visibility
- WebAdmin - Login Page Overview: Added option to reset the default login page
- Login Page Editor: Add cross links to important WebAdmin settings for easier configuration
- Login Page Editor: Add option to show/hide border of the iframe element
- Login Page Editor: Allow to add additional information to the iframe link by using placeholders
- Login Page Editor: Added option to mask/show passwords on login
- Login Page Editor: Added new category "Text 3" for design changes
- Login Page Editor: Added new category "Input labels" for design changes
- Login Page Editor: Allow use of placeholders in the text element
- Login page: Improve ticket selection behavior to be more user friendly
- Login page: Overall better performance due to improved caching
- Login page: Speed up online status update after successful login
- Login page: More minor design changes and improvements
- PMS Login: New option to add custom room caption to the login
- Planned redirect: Better visual representation of the relogin state to be more user friendly
- Update translations for WebAdmin and login page
- Online update: Restructured update log for better readability
- Online update: Increase retry interval in case of failed update to prevent "update loops"
Bugfixes
- WebAdmin: Adding new DHCP ranges working again
- WebAdmin: Display the name of the WebAdmin user instead of the user group he is assigned to
- WebAdmin: Invalid maintenance popup no longer leads to unstyled menu pages
- WebAdmin - User Overview: Anonymize ticket button working again
- WebAdmin - User Overview: The current bandwidth usage per ticket is displayed correctly now
- WebAdmin - Monitoring: The SurfLAN monitoring chart is displayed correctly again
- Login Page Editor: Custom translations for Data Collector labels are saved correctly now
- Login Page Editor: Login page title can now be changed on first edit
- Login Page Editor: More small improvements and bugfixes
- Login page: Terms of Use and Data Privacy links can be fully disabled again
- Login page: Added redirect before login again
- Login page: Support Free Login via URL GET parameter again
- Payment login: Login with wrong credentials now shows the correct error
- PMS login: Ticket template selection based on VIP groups working again
- PMS login: Using ony last name for authentication working correctly now
- PMS login: The building selection at the login working correctly now
- Email / SMS login: Black and whitelist entries work again
- Free to Use: Using quotes in the description of a Free to Use entry no longer deletes all entries
- Bulk Tickets: The password length check during the upload of bulk tickets working correctly now
- Ticket printer: Creating password only tickets via printer working again
- VAT settings: The VAT value is now added correctly to NET ticket prices
Deprecations
- Marked unsecure login (disable HTTPS for login page) as deprecated
v 21.0 (21050)
2021-04-27, This is a bugfix release
Bugfixes
- Login Page Editor: Changing text styles and colors works now on all text templates
- Login Page Editor: Warn message is now readable if no login methods are active
v 21.0 (21047)
2021-04-21, This is a bugfix and security release
Info
- This update will automatically reboot your system
Security
- Update openssl library
- Kernel update with security fixes
New
- WebAdmin: Added WiFi configuration page for onboard WiFi (like RaspberryPi4)
Enhancements
- Login page: Custom translations are stored now per login page
- Login page: Export and import also include custom translations
- Login page: Add cancel button to password change form
- SMS login: Set client temporarily online to prevent disconnect from WiFi
- SMS login: Add confirmation link to default SMS text
- Ticket Email Request: Show entered Data Collector values on approval page
- Privacy policy: Updated cookie section
- Online manual: Updated more parts of the documentation
Bugfixes
- Facebook login: Missing free to use domains are added
- Social login: Correct callback URL is send
- Email login: Confirmation link working again
- Login page: Avoid horizontal scrolling when showing messages
- Login page: Avoid caching of static files like CSS and JS
- Login page: Many small visual changes
- Login page: Opening popups does not cause JS errors
- Login page: Disable Free Login if PMS based free login is used
- Login page: Refresh cache on ticket template changes
- Add missing translations in WebAdmin and the new login page
- Login Page Editor: Changed translations are now updated correctly in the translation popup
- Login Page Editor: french output works now
- Login Page Editor: And many other small fixes
- Login Page Editor: Copy custom translations when copying a login page
- Login Page Editor: activated extension does not refresh editor metadata
- Login Page Editor: Sub-pages work now also without a trailing number in the title
- Login Page Editor: Built-in logos are now filtered from background images
- SMS and Email login: Email address and phonenumber are saved and shown under Reporting again
- WebAdmin: Collected user data does not show uneeded columns
- WebAdmin: Collected user data shows confirmation via SMS
- WebAdmin: Show ticket details popup when using the link in Reporting
- WebAdmin: Do not show password hashes in ticket overview
- WebAdmin: Remove buttons from printed ticket
- WebAdmin: Cancel button on the ticket create page now really cancels the ticket creation
- Calendar on login page and Login-API shows now also next year as option (needed for check out dates)
- ARM: Many small changes
v 21.0
2021-03-31, This is a new major release. Online update is available since 18th August 2021. ATTENTION: This upgrade will take 20-60min depending on your download speed. It will also reboot multiple times - PLEASE WAIT AND DO NOT POWER OFF THE SYSTEM.
Info
- This update will automatically reboot your system
Breaking changes
- This version has a completely new login page module and the old one is removed. Login pages using the old CSS editor will be migrated to the new default page preserving background image and logo, but without other CSS changes. Fully customized login pages via "Custom FTP" cannot be migrated. Automatic update will stop in this case.
- Old WebAdmin version was removed.
- Browser Support: Internet Explorer 11 is not supported anymore for complex settings like the new login page editor.
- Initial login page/redirect: Remove user-URL as this is not present in typical connection check calls.
- HTTP content filter and "simple webfilter" have been removed as outdated for unencrypted HTTP connections not being in use anymore.
- Removed proxy features: Upstream proxy, proxy auto-detection and browser whitelist
- Auto login based on user agent was removed.
- "Periodic redirect" for unencrypted HTTP connections was removed as outdated.
- Payment provider wirecard was removed.
- Session limit was removed as there is no need for it nowadays. Tickets keep their usual ticket limit.
- Login-API: PHP 7.4 is used now and custom code needs to run on this version.
Security
- New kernel 5.10 and system components with many security fixes.
- Support for the newest and most secure TLS version 1.3
- Separate TLS versions on Office- and Surf-LAN can be set.
- Webserver supports TLS OCSP stapling now.
- TLS certificate request (CSR) generator adds SAN attribute.
New
- Fully renewed Linux base system Frozentux v10.
- ARM platform support (Beta) - as a start we have Raspberry-Pi image, more will follow including support for real ARM servers.
- Support for onboard WiFi network cards (Beta) - supported on Raspberry-Pi right now.
- New login page: Fully renewed login page module with different themes.
- New login page: Supports different login pages per location (per VLAN or Route).
- New login page: New set of background images.
- New login page: DataCollector element for stand-alone usage, DataCollector Inline as extension to login forms.
- New login page: Client side error validation.
- New login page supports extension points for custom extensions.
- New login page: Support for custom fonts.
- Login page editor: Easy edititing of your login pages allows to add/remove elements.
- Login page editor: Allows to change existing texts in any language and add new translations.
- Login page editor: Login pages and themes can be downloaded and uploaded.
- User and ticket overview renewed: Improved overview with powerful filters and new ticket detail view.
Enhancements
- All PMS types are now available on the new login page.
- All social login methods are now available on the new login page (Twitter, Google, Microsoft, Facebook, LinkedIn).
- Whitelabel themes are now fully provisioned from our central servers.
- New login page: Only one session cookie is used
- WebAdmin: Improved usability on "create ticket" and "bulk ticket" pages.
- WebAdmin: Show additional warnings on inconsistent settings.
- WebAdmin: Added config page for "forgot password" option.
- WebAdmin: Placement order of login methods is now part of the login page editor.
- WebAdmin: Add predefined ticket templates for social, messaging, and online payment login method.
- Migrate special operation modes "Free mode" and "Autologin mode" to settings available in standard mode.
Bugfixes
- WebAdmin: Handle UTF8 BOM prefixes on file uploads.
- Network card detection improved on some VMs.
- Setup: Remove long timeout when changing administrator password.
- WebAdmin: Changing the password of another webadmin user in user management works now correctly.
- Domain name extraction from certificates corrected.
- And many other small fixes.
Deprecations
- HTTP proxy will be removed with v22