NetSmartApp 0.0.12 is now published on Docker Hub. This release focuses on security updates, policy enforcement, and better administration controls across web panel users, Directory users, and mailboxes.
Published Docker images
The new version is available with both a pinned version tag and the rolling latest tag:
docker pull ssiroos/netsmartapp:0.0.12
docker pull ssiroos/netsmartapp:latest
Security updates
The application Docker runtime image was updated to mcr.microsoft.com/dotnet/aspnet:10.0.7-noble, and the Docker build image was updated to mcr.microsoft.com/dotnet/sdk:10.0-noble. The image build also refreshes system packages and explicitly updates libgnutls30.
This release remediates image findings associated with:
CVE-2026-42010CVE-2026-45591CVE-2026-33845CVE-2026-3833CVE-2026-45491
Verified patched component versions include:
.NET Runtime:10.0.7Microsoft.AspNetCore.App:10.0.7libgnutls30t64:3.8.3-1.1ubuntu3.6openssl/libssl3t64:3.0.13-0ubuntu3.11
User Management improvements
User Management now includes search, manual lock and unlock actions, activate and deactivate actions, and per-user policy assignment. Administrators can assign policies that lock an account after 3 failed password attempts within 1 hour for 30 minutes, require password changes every 30 days, and require complex passwords.
Web panel login policies are now enforced, including failed-login tracking, automatic lockout, and automatic unlock. The configured default administrator is also protected from being locked, deactivated, or deleted through User Management.
Directory Service controls
Directory Users now include search, manual lock and unlock, activate and deactivate actions, and per-user password policy assignment. These policies are enforced during LDAP bind authentication, so Directory login behavior follows the assigned account rules.
The Directory user action buttons were moved to a full-width horizontal row at the bottom of each user item, making the controls easier to scan and use.
Mail policy enforcement
Mailboxes now include search, manual lock and unlock, activate and deactivate actions, and per-mailbox password policy assignment. Mailbox policies are enforced during SMTP, POP3, and IMAP authentication.
When a mailbox is linked to a Directory user, password validation and password-age enforcement now follow the linked Directory account. This keeps mailbox authentication aligned with the central Directory policy instead of creating separate password behavior.
Docker Compose update
The Docker Compose configuration was updated so the netsmart service builds the patched image locally and tags it as ssiroos/netsmartapp:0.0.12. This makes local rebuilds match the published version tag more clearly.
ssiroos/netsmartapp:0.0.12
ssiroos/netsmartapp:latest
Upgrade note
If you already run NetSmartApp, review your persistent volumes, database backup, exposed ports, and administrator account before updating. After deployment, verify login policy behavior, Directory bind authentication, and mailbox authentication in your environment.
Do not forget to change default passwords and review access policies before using NetSmartApp on any real network.