Prosodical Thoughts

Prosody 0.9.13 released

This is a new maintenance release to our old stable 0.9 branch, with many bug fixes, including some important security improvements.

Prosody 0.10.0 released

It’s not 1st April, it’s 2nd October. Which means the rumours you heard were true. Prosody 0.10.0 is released!

This is the first release of our 0.10 branch. All of our recent releases have been from our stable 0.9 branch, which has served us well since the initial release of 0.9.0 back in 2013.

However time marches on, and we have a long list of new features and modules that we want to share with you.

Prosody 0.9.12 released

We are pleased to announce a new minor release from our stable branch.

This release fixes a few minor issues, and fixes valid certificates failing to verify correctly when Prosody 0.9.x is used with LuaSec 0.6.

A summary of changes in this release:

Prosody 0.9.11 released

We are pleased to announce a new minor release from our stable branch.

This release contains a whole bunch of bug fixes, a brief summary of them follows:

Prosody 0.9.10 released

We are pleased to announce a new minor release from our stable branch.

This release fixes another dialback security issue. We strongly encourage all Prosody servers to upgrade as soon as possible.

Prosody 0.9.9 security release

Hi folks,

This release contains important fixes for two security issues recently discovered in Prosody. It also contains various other fixes and improvements we have made since 0.9.8. We strongly recommend that you upgrade your server as soon as possible.

Another important note is that for a number of reasons we have dropped Windows support with this release. If you are affected by this, please contact us directly via email at developers@prosody.im.

A summary of changes:

Prosody 0.9.8 released

We are pleased to announce a new minor release from our stable branch. This release contains mainly bug fixes, including an important security fix. A summary of changes in this release, by importance: High: Ensure only valid UTF-8 is passed to libidn. It was found (CVE-2015-2059) that libidn can read beyond the boundaries of the provided buffer when an input string contains invalid UTF-8 sequences. Systems where Prosody is compiled with libICU are not affected by this issue.

Prosody 0.9.7 released

We are pleased to announce a new minor release from our stable branch. This release has just a couple of changes for you: Fix server-to-server interoperability issue with Isode M-Link (since 0.9.6) Fix traceback in ‘prosodyctl about’ command with LuaRocks 2.2.0+ installed Also, this is our first release with an official Docker image. More on that soon! Download As usual, download instructions for many platforms can be found on our download page

Prosody 0.9.6 released

Another minor release for you all. The most important change here is to disable SSLv3 by default, now it has been shown to be insecure when used by clients. This means that clients that support only SSLv3 will no longer be able to connect by default (which is why we had not been planning to make this change in a minor release). A summary of changes in this release:

Prosody 0.9.5 released

Quite a number of bug fixes and minor improvements have cropped up, so it’s about time for another release, don’t you think? A summary of changes in this release: C2S: Fix traceback if a client opens a stream to component, which could cause a crash in combination with some versions of LuaEvent C2S, S2S: Log received invalid stream headers S2S: Fix case where stream headers were sometimes sent twice DNS: Ensure all pending requests get notified of a timeout when looking up a record DNS: Fix duplicated cache insertions by limiting outstanding queries per name to one xmppstream: Disable LuaExpat’s buffering xmppstream: Disable CharacterData merging after stream restarts xmppstream: Pass invalid stream headers to error handling Privacy lists: Correctly sort privacy list rules by order prosody: Check dependencies later in the startup sequence Config: Delay importing LuaFileSystem until needed by an Include line Config: Normalize VirtualHost and Component names prosodyctl: Normalize JIDs for adduser/passwd/deluser POSIX: Fix error reporting from disk space allocation POSIX: Verify that ‘pidfile’ is a string, show friendly error otherwise Dependency checking: Check that prosody is running under Lua 5.