Multicraft 2.5.0 PREVIEW Release UPDATED

17. Feb 2023
Latest build number: 913147 - Updated Feb 17.

In preparation for the 2.5.0 release we are making the latest PREVIEW build of Multicraft available for public testing. This build currently has to be considered experimental.

There have been many changes to lower level systems to improve stability and performance. Among the larger new features are:
- Experimental: New web FTP client with drag and drop support (enable under Settings - Panel Configuration)
- Experimental: Ability to keep servers running through daemon restarts (Docker only)
- Experimental: FTP template repository
- New daemon parameter to run daemon commands through the command line
- The new Flat theme is now the default

Changelog for 2.5.0-pre3:
- Implemented accelerated FTP file delete and copy for web FTP client
- Implemented combined flat theme for light and dark layouts
- Implemented config file filter for servers
- Implemented line numbering for FTP file editor/viewer
- Implemented new token authentication for CloudFlare API
- Improved centered theme FTP client layout
- Added documentation for Docker registry settings
- Allow defining longer commands
- Allow embedding status banner
- Allow opening items with invisible names (schedules, commands, etc.)
- Changed default base config name to empty to avoid inheriting vanilla Minecraft config file settings
- Fixed cached password hint for new FTP client
- Fixed classic theme layout issues
- Fixed dark theme modals
- Fixed error when plugin list is empty
- Fixed installer layout with new theme
- Fixed login form layout with new theme
- Fixed singleuser mode config file reloading
- Hide some setting values in log when changing panel config
- Merged existing flat-light and flat-dark themes into new flat theme
- PHP8 fixes
- Updated underlying libraries
Changelog for 2.5.0-pre2:
- Implemented FTP template repository
- Implemented support for Docker registries
- Added missing icons
- Allow replacement commands to use arguments
- Check that stored PID is a multicraft process before preventing startup
- Fixed error handling when using SQLite
- Fixed fullbackup directory creation
- Fixed potential stacktrace on startup
- Fixed potential stacktrace on template setup
- Fixed script command logging
- Fixed server command callback
- Fixed setup script for arm64
- Fixed system encoding detection when using systemd for autostart
- Fixed timing issue with some more advanced parser usage scenarios
- Fixed typos
- Fixed update check disable setting not always applying correctly
- Fixed zip templates
- Removed incompatible spigot parameter
- Updated underlying libraries
Changelog for 2.5.0-pre1:
- Added command line parameter to show current daemon version
- Added new built-in _zip_cwd command for zipping relative to a directory (used in web FTP client)
- Added new settings related to web FTP client
- Added recommended Docker parameters
- Added setting to disable binding all interfaces when using Docker
- Added warning when FTP server is run separately and uses the same log file as the daemon
- Changed default logfile for daemon in FTP separate mode
- Changed default theme to flat-light
- Don't delete full server backups when autodelete is disabled even when total count is over the maximum
- Fail config/jar updates on HTTP errors to prevent corrupting files
- Fixed MLST FTP command
- Fixed race condition that could cause the daemon to lose the database connection
- Fixed race condition when finishing multiple server moves in parallel
- Fixed rare case of the daemon losing connection to a server console
- Fixed server move information dialog interfering with server control buttons
- Fixed stacktrace in launcher
- Forward environment variables to server process when using launcher
- Implemented ability for servers using Docker to keep running when the daemon shuts down and reattach when the daemon   starts
- Implemented ability to send daemon commands through the command line
- Implemented new web FTP client with drag and drop support
- Launcher directory no longer automatically gets chmod/chowned
- Log full command line when running scripts
- Log script errors more clearly
- Log script name in errors related to a specific script
- More clearly mark some warning messages
- Moved main server config changes to after extracting template to avoid overwriting changes
- Performance optimizations
- Show FTP server exceptions as bugs


The preview release is available here:
Linux: Multicraft 2.5.0 Preview 64bit
Windows all-in-one: Multicraft Standalone 2.5.0 Preview
Windows advanced: Multicraft Advanced 2.5.0 Preview

We appreciate all feedback, bugreports and suggestions. We will also award monetary bounties for certain security critical bugs, please contact us for details if you think you may have found an applicable bug.




Multicraft 2.4.2

8. Feb 2022
Multicraft version 2.4.2 is a maintenance release with several minor bugfixes over 2.4.1. Upgrading is recommended if any of the listed changes affect your installation.

For large installations we recommend testing the new version with a representative installation using the same system and data as your main installation to ensure that the upgrade on the main installation works as intended.

Please let us know if you have any feedback for this version or if you have feature suggestions for the next releases. We're committed to continuing our time-tested approach of improving Multicraft based mainly on customer feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty with varying cash rewards depending on the severity of the issue.


SHA256 Checksums
Linux 64bit bdc4c42e278f556499ceb5111cfce974f24e1645d0d05347ec8840b5c02f5603
Windows Installer 2add510d7c62efef98a8565df3ec4dec37b088b1de30cf79e0a7d1464506cd5a
Windows advanced 3b86302737f605289e6217af12b0cc7816bdcd7e7cc01bcb195a3a2e614463c0
Linux ARM 64bit (aarch64) 06ae2de13aa54c737c941a6024f824838b26f00dbddc20fb2ff4e3403b32331c


Multicraft 2.4.2 Changelog




Java Version

09. May 2021
Some Minecraft server versions require a new version of Java to work. We've added a new how-to entry for changing the Java version or running multiple different Java versions with Multicraft:
Different Java Versions

We've also updated the Windows standalone package to Java 16:
SHA256 Checksum
Windows Installer 136a0bf2afa0a11163503b1335518df8a5ab7a5e5c8aacb8e87bbeab45e030c5





Server Availability Issue: Post Mortem

06. June 2021
Today between around 09:00 CEST and 09:45 CEST we've been experiencing an incident on our infrastructure that affected user installations in unintended ways.

This was not caused by a compromise or a software bug with the Multicraft software itself but the result of human error during a system maintenance.

Our licensing mechanism is designed to allow for extended outages on our side without any effect on licensing. We've increased these tolerances further with version 2.4 of Multicraft to make sure such issues are never affecting user installations but any version of Multicraft can tolerate at least several hours before the first licensing warning is issued in the log. For a license to be fully affected at least 24h would have to pass. Daemons are never shut down due to automated licensing checks.
Unfortunately today there was a chain of events that negated these built-in safety precautions.

Here's a breakdown of the events to our current knowledge:
  • During the first week of June we've seen intermittent cases of our webservers coming close to capacity. We've started deploying additional resources to address this. During this process we've also started smaller tweaks to our infrastructure to improve performance and availability.
  • These changes were reviewed and tested and found to be working with both old and new installations.
  • On Saturday and Sunday we brought the first new nodes online and got them to handle requests normally.
  • On Sunday around 8:00 CEST an update was done on the licensing data to accommodate the new parameters. During this update a manipulation error occurred in the dataset containing the piracy blacklist - a special blacklist for confirmed pirated installations.
  • Systems continued to operate normally at this point.
  • On Sunday between 9:00 CEST and 9:30 CEST we started applying the final changes to new nodes to enable our optimizations.
  • The input error mentioned earlier together with the infrastructure changes caused all licenses to be matched with the blacklist in error. Blacklisted daemons will shut down after a grace period.
  • The logs started showing an increasingly large number of blacklisted checks coming through. This was not noticed initially because log entries we monitor for are usually errors and the systems we were working on were just forwarding the requests.
  • Upon noticing this irregularity we immediately started checking the blacklist and parameters to see whether this behavior could be explained by licenses somehow being falsely blacklisted but the licensing data looked fine.
  • We then went ahead and disabled the blacklist functionality entirely, this was completed around 9:45 CEST. By this time some daemons have passed the safety delay for the blacklist change and shut down (mostly version 2.3 because of the lower delay). Other daemons had reverted to the free version and would stay in this state until their next status check.
  • During our investigation we found a single malformed entry in the blacklist dataset that caused this issue. The infrastructure changes had an unexpected effect when paired with the invalid data in that list so all requests from new nodes got flagged as pirated.
  • Due to the limited timeframe and the fact that only some nodes were causing this, daemons were affected randomly depending on when their license check was due and what node their request landed on. We expect that about 25-30% of daemons have been affected in some way.

For now we have reverted any change that had a role in this incident and the blacklist has been disabled completely.

We are extremely sorry this has happened and would like to apologize to anyone affected by this incident. We have disappointed both our users and ourselves today and we will take steps to ensure that this issue does not happen again. We see the following failures that need to be addressed:
  • Incomplete tests: While we have tested the process before deployment we have not had the most up to date data for the tests. The invalid entry should have been part of our test set before deployment.
    We intend to address this by enforcing a delay between infrastructure changes to allow for more rigorous testing.
  • Missing validity checks: There was no way for the system to create the offending entry automatically, all data is checked beforehand and inserts only happen with valid data. However, once manually introduced, the validity checks for data returned by the database were insufficient and enabled this behavior.
    We intend to address this by re-implementing the blacklist functionality entirely with today's situation in mind and with every line of code being absolutely sure of the data it is handling.
  • Piracy handling: As we know it most famously from games, piracy is a real issue and it's been an issue for us as well with a large number of pirated installations in the wild a while ago. We've taken a lot of steps to deal with this, always careful to not affect legitimate users in a negative way. Up until today this has worked very well, we've been able to reduce the number of pirated installations without adversely affecting other users. However, just as how anti piracy measures in games that prevent legitimate users from playing are unacceptable, it's unacceptable for our own measures to affect our legitimate users.
    We intend to address this in two ways:
    1. Allow for more time for affected installations. While it's usually clear what's a pirated installation and what's not, there's always room for doubt so we intend to greatly increase any time delays related to licensing. For example the time delay between a piracy warning and the actual daemon shutdown will be increased.
    2. Clear communication: Right now when an installation is identified as pirated, there is not enough warning for users. Some of that is intentional as crackers will use such messages as starting point for creating patches. Nevertheless, we're going to add clearer log messages as well as admin messages within the panel itself so users always stay informed.

Customers who have been affected by this issue can contact us at info@multicraft.org.





Server Availability Issue

06. June 2021
We are aware of an issue affecting several customer installations. A fix has been deployed at approximately 09:45 CEST.

Daemons will usually recover automatically within less than 60 minutes but you can speed this up by restarting affected daemons. Daemons prior to 2.4 may also have shut down so they would have to be restarted.

We will investigate the cause and post a full report here as soon as we have all the necessary information. Customers who have been affected by this issue can contact us at info@multicraft.org





Multicraft 2.4.1

17. May 2021
Multicraft version 2.4.1 is a maintenance release with several minor bugfixes over 2.4.0. Upgrading is recommended if any of the listed changes affect your installation.

For large installations we recommend testing the new version with a representative installation using the same system and data as your main installation to ensure that the upgrade on the main installation works as intended.

Please let us know if you have any feedback for this version or if you have feature suggestions for the next releases. We're committed to continuing our time-tested approach of improving Multicraft based mainly on customer feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty with varying cash rewards depending on the severity of the issue.


SHA256 Checksums
Linux 64bit 9b3d62ea79a39dd0f7f973143828f21de8585220037e4abb883a3ca11af623c0
Windows Installer e30a5d622ce5159737edd64e95c72118ee722a5e4d84f66c7d2be3519d5fdb4a
Windows advanced 4cd54b1c3554be1fae42424388e2e92d64a6768acc263b76ba4e138f1e12711b


Multicraft 2.4.1 Changelog




Multicraft 2.4.0

25. February 2021
Multicraft version 2.4.0 is now available after an extended period of testing as a preview release. A lot has changed under the hood to ensure compatibility with new systems and to futher improve performance and stability. We've also implemented a new modern flat theme (light and dark) as an alternative to the centered theme.

For large installations we recommend testing the new version with a representative installation using the same system and data as your main installation to ensure that the upgrade on the main installation works as intended.

Please let us know if you have any feedback for this version or if you have feature suggestions for the next releases. We're committed to continuing our time-tested approach of improving Multicraft based mainly on customer feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty with varying cash rewards depending on the severity of the issue.


SHA256 Checksums
Linux 64bit 0095c6263382fef99a7786ca8007aecdaade86b79e387f9420f6754945d7db28
Windows Installer da0ffeb7ff253bbed021fd406a1823026933fec0db3aa4fbc659de435d31eaa0
Windows advanced f55a71b7b8b8acc302d00eb0a3e1cdeb4e4126de72f4bbab57d0ae865fc35c43


Multicraft 2.4.0 Changelog




Multicraft 2.4.0 PREVIEW Release

11. Dec 2020
Latest build number: 913020 - Updated Dec 11.

In preparation for the 2.4.0 release we are making the latest PREVIEW build of Multicraft available for public testing. This build currently has to be considered experimental.

After the previous round of preview releases we've had to react to several changes in external plugin lists and released multiple hotfixes for 2.3 to address them. We've used the delays this caused in the 2.4 release schedule to finalize the new theme and prepare it for inclusion with 2.4 already. We've also taken this additional time to update several large underlying libraries to future proof the daemon and the panel as well as to address a few compatibility issues with newer systems.
Changelog for 2.4.0-pre12:
- Added filter to only show users with roles in server user list
- Allow MySQL SSL connections without client certificate
- Compilation optimization to improve performance
- Don't scroll JAR dropdown search box
- Fixed sidebar flashing when reloading page in collapsed state
- Minor fixes for new themes
- Recursively send signals to child processes (fixes Kill button not working when using launcher)
- Updated Yii framework
Changelog for 2.4.0-pre11:
- Fixed quota update and display not always working correctly
- Fixed server command callback not overriding all variables
- Added CONF_FILE variable
- Improved backup delay display when a previous backup completed successfully
- Make sure the WORKING_DIR variable is set even before the server is started
- Several minor fixes for both centered and flat themes
- Show file size on full backup restore page
- Updated DE translation
- Flat theme: Fixed main menu display on small screens
- Flat theme: Fixed plugin page display
- Flat theme: Fixed sidebar flashing when reloading page with the sidebar collapsed
Changelog for 2.4.0-pre10:
- Added default command for full backup on server creation
- Added separate limit for number of full backups
- Added setting to disable automatic deletion of full backups after reaching the limit
Changelog for 2.4.0-pre9:
- Added additional parameters to server stop and get usage callbacks
- Added daemon_id parameter to all callbacks
- Fixed stacktrace in get usage callback
- Fixed stacktrace in command handling
Changelog for 2.4.0-pre8:
- Added TTL value when creating CloudFlare subdomain
- Added ability to run scripts as daemon
- Added callback for modifying reported server resource usage
- Added callback for overriding daemon server commands
- Added drop shadow to resource display for better visibility
- Added fullBackupCommand setting
- Added getMoveStatus API call
- Added new parameter to findServers API call to return all server details
- Added runScript/getScript API calls
- Added setting for forced templates per conf file allowing for fully automated mod installation
- Added support for using font icons instead of images
- Added theme configuration file to allow for more flexible theming of the panel
- Allow headers to be overridden in the main config file
- Allow server to start with nonexistent template
- Always allow superusers to edit a user theme
- Enabled online plugin list by default
- Expand variables in select server conf settings
- Fixed MySQL DB password update for some MySQL versions
- Fixed TERM signal not always being sent on Windows
- Fixed a rare issue where a scheduled task would never run depending on the scheduled time
- Fixed an error when creating a player without a server
- Fixed an issue where an invalid theme can prevent user profile display
- Fixed an issue where server console could become stuck
- Fixed backup buttons when using delayed daemon queries
- Fixed conf file daemon ID filter not always working correctly
- Fixed configuration reloading not working under certain conditions
- Fixed current page not being marked on lists with multiple pages
- Fixed daemon filter in getStatistics API call
- Fixed encoding issue with command cache under Windows
- Fixed local plugin list losing sort/filter settings when running a plugin action
- Fixed navbar overlapping with datepicker
- Fixed plugin downloads
- Fixed resource display on initial page load
- Fixed timezone in web FTP client
- Implemented CPU limit support for Docker containers
- Implemented IPv6 support for daemon connections
- Implemented SSL support for MySQL connections
- Implemented UDP support for Docker containers
- Implemented ability to get script output
- Implemented delayed daemon query setting to speed up page loads
- Implemented new JAR dropdown list with support for icons and lookup
- Implemented new full backup method with support for external directories
- Implemented new theme
- Implemented support for conditional scheduled tasks
- Implemented support for grouping parameters for the Startup Parameters feature
- Implemented support for stopping servers using signals instead of console commands
- Improved JAR/conf download compatibility
- Improved daemon list performance in server view
- Improved log output for failed scripts
- Improved plugin downloads to be faster for some sources
- PHP compatibility fixes
- Return memory usage of all daemons in getConnectionMemory API call when daemon ID is 0
- Updated libraries used to generate themes
- Use POST requests in sample API implementation if CURL isn't available


The preview release is available here:
Linux: Multicraft 2.4.0 Preview 64bit




Multicraft 2.3.5 UPDATED

03. Mar 2020
We are releasing Multicraft 2.3.5 to address plugin download issues some installations are seeing and to facilitate future updates related to download issues. To that end we have implemented an external downloader binary that will be used by the daemon to download plugins.
Future updates that exclusively address plugin download issues can be installed by simply replacing the downloader without the need for a daemon update or restart.

To upgrade from 2.3.2 and later it's sufficient to replace the "bin/multicraft" file of your daemon and copy the "downloader" directory from the archive to your daemon directory. Please make sure that none of these files are writable by "others" and that the "downloader/downloader" binary is executable.

Update - 05 Mar 2020
The downloader has been updated to address download issues with the Bukkit plugin list.

Update - 10 Mar 2020
The downloader has been updated to address download issues with the Spigot plugin list.
The release packages have been updated with a new downloader binary so if you are experiencing these issues and you are already running version 2.3.5 you can simply replace the "downloader" directory of your daemon. The SHA256 checksums have been updated for the new packages.

SHA256 Checksums
Linux 64bit 8fbad9586b26d824f030fc76e0937ad71c7e3963301355b534810fbf18a799ea
Windows Installer 858793adb8fe1f5902de91ff706006fb9485ba76cf10c88e7a13731515191a38
Windows advanced e9e3555ee2829c1f5dad3bb3cafe44f94f6d1886187ad9821d383cf1083a857b




Multicraft 2.3.4

12. Dec 2019
We are releasing Multicraft 2.3.4 to address plugin download issues some installations are seeing. These issues are caused by the lists hosting the plugins and/or the CDN they use to serve the downloads. To upgrade from 2.3.2 and later it's sufficient to replace the "bin/multicraft" file of your daemon.




Multicraft 2.3.3 UPDATED

24. Sep 2019
Multicraft release 2.3.3 is a maintenance release that addresses an issue with plugin downloads due to changes in the way these plugins are hosted.

We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty of up to 750$ per issue depending on severity.


UPDATE: In the mean time download restrictions have changed again, causing downloads to fail for some users. We have updated Multicraft again to version 2.3.3. Note that this upgrade is not required if you're not seeing issues with file downloads in 2.3.2.

If you are already on 2.3.2 and you're seeing download issues, please add the following two lines to the [multicraft] section of your multicraft.conf file:
downloadHeadersPlugins = {"Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "Accept-Language": "en-US,en;q=0.5", "Accept-Encoding":"gzip, deflate", "User-Agent": "Mozilla/5.0 (Multicraft Plugin Manager) like FireFox/45.0", "DNT": "1", "Connection": "keep-alive"}
downloadHeaders = {"Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "Accept-Language": "en-US,en;q=0.5", "Accept-Encoding": "deflate", "User-Agent": ""}






We appreciate all feedback, bugreports and suggestions. We will also award monetary bounties for certain security critical bugs, please contact us for details if you think you may have found an applicable bug.




Multicraft 2.3.1

16. May 2019
Multicraft release 2.3.1 is a maintenance release that addresses several minor issues and updates some of the libraries used by Multicraft. A recent issue with certain downloads failing when using the plugin downloader has also been addressed.

Changelog:
  • Fixed downloader for certain plugin lists
  • Fixed json encode on installations with broken iconv libraries
  • Fixed user creation under certain conditions
  • Fixes for legacy PHP versions as well as PHP 7.2
  • Set correct quota when initializing a server
  • Updated Yii to latest version
  • Updated default server.properties options

We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty of up to 750$ per issue depending on severity.




Multicraft 2.3.0

07. January 2019
Multicraft release 2.3.0 is now available after an extended period of testing as a preview release. There have been a number of minor fixes and improvements over the course of this preview release period. If you're using any of the features mentioned in the changelog we do recommend upgrading to the final release.

We're always looking for user feedback so if you'd like to see anything implemented or changed in Multicraft please do let us know, we continuously extend and improve Multicraft based on such feedback.

If you find a security relevant issue with Multicraft we also offer a bug bounty of up to 750$ per issue depending on severity.

The full changelog can be found further down in this post, heres an short list of a few highlights:
  • Implemented additional ports feature allowing users to assign a random port to their server
  • Implemented default server settings override page
  • Implemented global FTP access feature
  • Implemented partial console updates for improved performance and less bandwidth usage
  • Created new installer for Windows
  • Added header based clickjacking protection
  • Plus additional small and large features, improvements and fixes!

See the Full Multicraft 2.3.0 Changelog

We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




New Windows Installer

18. December 2018
The Windows installer for Multicraft has been updated to be more user friendly and more flexible. All services related to Multicraft (webserver, database server and Multicraft daemon) are installed as Windows services so you can start/stop them directly in the Windows service manager.
The installer is designed to support multiple installations in different locations. When re-installing to the same location it will keep existing user/server data. We still highly recommend backing up your user and server data prior to doing any changes to your installation.

Please let us know how the installer worked for you and if you have any suggestions for further improving it or additional feature requests.




New Privacy Policy

24. May 2018
We are commited to protecting your personal information and your right to privacy. We have always handled all personal data of our customers with great care and to comply with GDPR we have now also published our new privacy policy for you to review on our website:
Pricacy Policy

Please to let us know if you have any questions, concerns or general feedback regarding our privacy policy. You can always reach us using our contact form or by sending an email to info@multicraft.org.




Multicraft 2.2.1

10. May 2018
We are announcing the availability of a new maintenance release for Multicraft. Version 2.2.1 fixes an issue related to plugin downloads using the online plugin list, an incompatibility with the Docker port range feature as well as several other minor issues.

Changelog:
  • Fixed Docker port range feature
  • Fixed bruteforce protection when using SQLite
  • Fixed plugin downloads sometimes not working
  • Improved parsing for certain console output formats
  • Updated http library

As always, we highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




Multicraft 2.2.0

30. November 2017
We are very pleased to announce the release of version 2.2.0 of Multicraft! After several months of preview releases and after that several weeks of release candidate testing by us and customers who wanted to get early access to the new package we are marking the current build the final release of version 2.2.0.

There have once again been some minor fixes thanks to our Bug Bounty Program where we offer up to 750$ for relevant security issues.

The full changelog can be found further down in this post, heres an short list of a few highlights:
  • Implemented automatic JAR update feature on startup
  • Implemented support for JAR categories and categorized listing
  • Implemented getOwnApiKey function to better support apps using the API
  • Added support for FTPS
  • Fixes for PHP 7.1
  • Improved clickjacking protection
  • Added additional ports setting for servers, map additional ports to Docker containers
  • Improved brute-force protection
  • Increased time between ingame messages for free version
  • Many, many more small and large features, improvements and fixes!

See the Full Multicraft 2.2.0 Changelog

We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




Multicraft 2.1.1

09. December 2016
Multicraft 2.1.1 has been released as a first maintenance release of the latest Multicraft version. This release contains mostly minor cosmetic changes and fixes as well as improvements to Docker support so upgrading is optional and only required if you are encountering any of the issues listed in the changelog.

On the daemon it is sufficient to replace the "bin/multicraft" binary. On the panel you can replace the panel files without running the install.php since there have been no database changes.

Changelog:
  • Show warning when Docker is enabled multiuser mode isn't
  • Implemented IP lookup for DOCKER_IP variable since Docker doesn't support hostnames
  • Fixed misplaced condition on login screen
  • Fixed default settings for new versions of Docker
  • Fixed several net2ftp translation encodings
  • Fixed resource usage reporting for servers running in Docker

As always, we highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




BukGet Shutdown

07. December 2016
We are sorry to see the BukGet project being shut down and we would like to extend a warm thank you to the people who have maintained this project in the past.

If you are using Multicraft version 2.1 the plugin browser should continue working as expected.

In older versions of Multicraft the plugin browser will no longer work so we recommend updating to the latest version to address this. If that's not (yet) possible for you the issue can be worked around temporarily by replacing line 14 (the API URL) of the "protected/models/BgPlugin.php" file with the following:
    static $apiUrl = 'https://plugins.multicraft.org/bg_compat/bukkit';



Multicraft 2.1.0

25. November 2016
We are proud to announce the release of version 2.1.0 of Multicraft! As with previous releases we have begun offering preview releases for this version over an extended period of time, mainly to be able to quickly implement and adapt new features suggested by users without affecting users who wish to remain on a stable version. This release is again a result of a lot of user suggestions and we encourage any kind of feedback and feature requests for the next release. If you're running a preview release we strongly recommend upgrading to the final 2.1.0 version.

We have been able to address some minor security related issue thanks to our Bug Bounty Program and we have raised the maximum reward to 750$ to encourage even more submissions.

The full changelog is once more too long to fit into the news entry so here's a short list of the most important changes with the full list available below:
  • Support for running servers in Docker containers
  • Two-factor authentication using Google Authenticator
  • Subdomain and SRV record creation using CloudFlare (allows connecting to servers without specifying a port)
  • Spigot and Pocketmine support for plugin browser
  • User role customization
  • IP filter for staff users
  • Security improvements
  • Many, many more small and large features, improvements and fixes!

See the Full Multicraft 2.1.0 Changelog

We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




Multicraft Apps

14. Nov 2016
The steady growth of Multicraft has motivated the creation of several apps for different platforms. While Multicraft comes with a mobile theme that works on most devices out of the box we wanted to highlight some community created apps that can help control your servers. Most apps support basic controls and server access and even multi-server management. All of these highlighted apps are completely free and they have been created independently, we are not affiliated with them in any way.

To use these apps a recent version of the control panel is required (2.0+), also the hosting provider needs to supply an API key for you to enter to use the app.

(in order of last update)
  • Remote for Multicraft (Android)
    The Remote for Multicraft App is for Minecraft server admins that use Multicraft control panel. Connect to your Multicraft control panel to check your server status and players from your phone. Features:
    • server stats: RAM, CPU, player count
    • power controls: start/stop/kick/ban/pardon
    • player list and info: level, online/offline, last seen time
    • status check of Minecraft's and Mojang's services
  • MobileCraft (iOS)
    MobileCraft is the portable version for the famous hosting platform "Multicraft". It fits anyone from server hosts to casual server owners. All you need to have to control your server, just one click away. You can view your console, kick players, start and stop your server anytime of the day with just a click in MobileCraft.
    • Server management (start, stop, restart, delete, suspend, resume)
    • Console (view console, and send console commands)
    • Online players (kick and ban players directly from the app with a button)
    • User management (change password, delete users, list servers)
    • MYSQL database (create, change password)
    • And many more!
  • PocketPanel for Minecraft (Android)
    Server Administration shouldn't be hard - now, it's easy:
    • Control your server with actions like start, stop, restart and more.
    • Check your console and run commands.
    • For panel administrators, create servers, delete them and control servers globally.



    Billing System Modules

    25. February 2016
    All Multicraft billing system modules are being updated for Multicraft 2.0. The Blesta module has already supported features that the other modules lacked but it's also being updated for the latest changes in Multicraft. The WHMCS module is currently in beta at a lowered price and it's expected to be released soon. The BoxBilling module has already been released and its documentation updated.

    Blesta
    The module supports most functions already, some new server fields will be added with the next release. The module is developed and maintained by Blesta so it's included for free with the billing system.

    WHMCS
    The module has been overhauled to allow all settings to be configured with added support for configurable options and custom fields for any server/module setting. Changes and documentation can be found here. Once it's released the new module can be requested through a support ticket from an address that has previously purchased the module.

    BoxBilling
    The module has been updated for the latest version of BoxBilling and additional server/module settings have been added. The updated documentation can be found here. The new module can be requested through a support ticket from an address that has previously purchased the module.




    Multicraft 2.0.1

    02. February 2016
    Multicraft 2.0.1 has been released as a first maintenance release of the latest Multicraft version. This release contains mostly minor cosmetic changes and fixes so upgrading is optional and only required if you are encountering any of the issues listed in the changelog.

    On the daemon it is sufficient to replace the "bin/multicraft" binary. On the panel you can replace the panel files without running the install.php since there have been no database changes.

    • Fixed missing server suspend icon in classic theme
    • Fixed some potentially unhandled exceptions on the daemon
    • Fixed password length not being enforced on password reset
    • Fixed PHP7 error in net2ftp
    • Improved FTP login error message for clarity
    • Updated Yii to latest version
    • Updated copyright notices for 2016
    • Updated library links on about page
    • Installation: Hide typed value on password in put in setup.sh and fixed escaping of certain characters
    • Installation: Remove other access rights to setup.config for safety
    • Installation: Work around Chrome autocomplete in install.php
    • MulticraftAPI.php: Added missing parameter for createPlayer
    • MulticraftAPI.php: Fixed potential warning
    • MulticraftAPI.php: Improved error reporting


    As always, we highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




    Multicraft 2.0.0

    12. December 2015
    We are proud to announce the release of version 2.0.0 of Multicraft! A lot of effort has gone into making sure that we can implement as many user suggestions as possible with this new version of Multicraft to make it even more powerful and easy to use. The release has been postponed a number of times because of feature requests that we consider to be very useful to the vast majority of Multicraft users. Due to this we have begun offering preview releases for download longer before the final release than usual. If you're running a preview release we strongly recommend upgrading to the final 2.0.0 version.

    In addition to implementing countless new features and improvements we have also been able to make Multicraft even more secure thanks to the researchers who have contributed to our Bug Bounty Program we have running with Bugcrowd.

    As part of this release we are replacing the Windows all-in-one package with the Multicraft Bitnami Stack for Windows for personal use. There is also a Multicraft Bitnami Stack for Linux that we recommend for personal use if you cannot install all requirements for Multicraft. For hosting providers we still recommend using our Linux packages for maximum security and flexibility.

    In good Multicraft tradition the length of the changelog is record breaking. There have been so many new features and changes that even a summarized list of the most important changes would be too long for this news entry so here's just a small selection:
    • New theme using Bootstrap
    • Improved server crash and console handling, including the option to use .conf files for arbitrary JAR names
    • New Staff role for full access to all servers without giving access to panel settings
    • Server template system
    • Improved Bukkit plugin list
    • Optional startup parameters
    • API improvements and additions
    • Security improvements
    • Linux filesystem quota support
    • Configuration reloading
    • Improved performance, particularly for very large installations (1000+ servers)
    • Removed single instance restriction so you can run multiple daemons with different Owned license keys on the same system
    • Reduced the number of times the banner is shown in the free version
    • Many, many more small and large features, improvements and fixes!

    See the Full Multicraft 2.0.0 Changelog

    We highly appreciate all feedback, bugreports and suggestions and we will continue improving Multicraft based on your feedback.




    Multicraft Bug Bounty Program

    22. May 2015
    As a last step before the finalization of the new release we have ordered a security review for Multicraft and we have launched a Bug Bounty program with the good folks over at Bugcrowd.
    The program has initially been launched as private so if you're interested in participating and earning monetary rewards for reporting security critical bugs please head over to bugcrowd.com to register for a researcher account. Once you have done so please let us know so we can add you as a researcher to our program.

    The bug bounty program will be made public in the future once we have left the initial selection of researchers enough time to review the code.




    Blesta Multicraft Module - Updated

    29. September 2014
    We are happy to announce that the good folks over at Blesta have developed a module to fully support Multicraft with their billing software platform. A video of the module in action can be seen in their blog entry regarding this development:
    Blesta Blog: New Multicraft Module

    The module is part of the official v3.3 release of Blesta so you do not have to install any addons to use this module. If you are using an older version of Blesta you can download the module separately from this forum post.

    The documentation for this new module can be found here:
    Blesta Multicraft Module Documentation

    You can try the new module without obligation by installing the free trial of Blesta and connecting it to your existing Multicraft installation.

    We will also be sending out 15% discount coupons for Blesta owned licenses with every new purchase of any Multicraft license.