|
| 1 | +## stable-4384 |
| 2 | + |
| 3 | +Based on stable release 4384. |
| 4 | + |
| 5 | +* 1ffd472 security: add script to generate strong passwords |
| 6 | +* a015710 security: don't provide default passwords |
| 7 | +* aaec22d jigasi: fix typo in config |
| 8 | +* ebfa142 docs: fix grammar and typos |
| 9 | +* bab77e0 doc: update env.example |
| 10 | +* 7652807 examples: traefik v2 |
| 11 | +* 10983b4 prosody: prevent item-not-found error in certain cases |
| 12 | +* 3524a52 base: fail to start the container if the init script fails |
| 13 | +* 7c0c795 jicofo: only configure Jigasi brewery if Jigasi is configured |
| 14 | +* 40c2920 build: add prepare command |
| 15 | +* 93ba770 prosody: fix installing prosody from the right repository |
| 16 | +* 3c07d76 doc: improve wording of README |
| 17 | +* ed410d9 doc: fix typo |
| 18 | +* fabfb2a doc: fix typo |
| 19 | +* 5e6face web: use PUBLIC_URL for etherpaad base and BOSH URLs |
| 20 | +* 264df04 jvb: switch to using Jitsi's STUN server by default |
| 21 | +* 655cf6b web,prosody,jvb: prepare for new stable release |
| 22 | +* ebb4536 doc: update CHANGELOG |
| 23 | +* 06c3a83 doc: fix references to running behind NAT in the README |
| 24 | + |
| 25 | +**Important security note: ** Previous releases included default passwords for |
| 26 | +system accounts, and users who didn't change them are at risk of getting |
| 27 | +the authentication system circumvented by an attacker using a system account |
| 28 | +with the default password. Please update and use the provided script |
| 29 | +(instructions on the README) to generate a strong password for each system |
| 30 | +account. |
| 31 | + |
| 32 | +Thanks joernchen for the security report. |
| 33 | + |
1 | 34 | ## stable-4101-2 |
2 | 35 |
|
3 | 36 | Based on stable release 4101. |
|
0 commit comments