Authentication Bypass in MailboxImportServlet vulnerability (reminder)
https://blog.zimbra.com/2022/08/authentication-bypass-in-mailboximportservlet-vulnerability/

Search found 743 matches

by JDunphy
Mon Nov 28, 2022 7:39 pm
Forum: Installation and Upgrade
Topic: Help to compile Zimbra 9
Replies: 1
Views: 608

Re: Help to compile Zimbra 9

Ian has solved this fairly well with his scripts.

https://github.com/ianw1974/zimbra-build-scripts

Ref: viewtopic.php?f=15&t=68097
by JDunphy
Sat Nov 26, 2022 8:04 pm
Forum: Migration
Topic: Error during Migration Centos 6 to Rocky 8 Zimbra v9.0.0
Replies: 2
Views: 562

Re: Error during Migration Centos 6 to Rocky 8 Zimbra v9.0.0

Run ./install.sh -s one more time... Those instructions are misleading because you did this. 1) installed Rocky 8 zimbra and binaries 2) removed /opt/zimbra - meaning the previous Rocky 8 zimbra stuff is now gone 3) copied RHEL 6 zimbra binaries into /opt/zimbra The easy fix... Run ./install.sh -s t...
by JDunphy
Sat Nov 26, 2022 12:11 am
Forum: Administrators
Topic: Logger and SNMP suddenly has stops running
Replies: 2
Views: 1058

Re: Logger and SNMP suddenly has stops running

Different results here for RHEL8 and P35 then you are reporting. # su - zimbra % zmcontrol -v Release 8.8.15_GA_3953.RHEL8_64_20200629025823 RHEL8_64 FOSS edition, Patch 8.8.15_P35. Should be something like this. Syslog (rsyslogd) writes to /var/log/zimbra-stats.log and swatch (perl program) reads t...
by JDunphy
Wed Nov 23, 2022 12:36 am
Forum: Administrators
Topic: Certificate/Certbot - best way?
Replies: 43
Views: 17792

Re: Certificate/Certbot - best way?

Hi Dali, It's not going to be a problem with the cert if you do an in place update (I have not done this in over a year with 8.8.15). You can also copy the /opt/zimbra/.acme.sh directory to another machine like this if your current certificate covers those domains or you want to add a few additional...
by JDunphy
Tue Nov 22, 2022 10:18 pm
Forum: Installation and Upgrade
Topic: Zimbra 8.8.15 Patch-35 - share experience
Replies: 13
Views: 5231

Re: Zimbra 8.8.15 Patch-35 - share experience

Applied P35 to a snapshot of the production server. Everything seems fine. [zimbra@mail ~]$ zmcontrol -v Release 8.8.15_GA_3953.RHEL8_64_20200629025823 RHEL8_64 NETWORK edition, Patch 8.8.15_P35. Tested printing, admin interface, backups NG, and spell checking. I'll leave it for a few days and proba...
by JDunphy
Tue Oct 25, 2022 4:54 pm
Forum: Administrators
Topic: Using nginx before Zimbra
Replies: 18
Views: 2884

Re: Using nginx before Zimbra

We will be applying geobased blocking by our firewall soonish and are looking into moving a part of our e-maildomains to o365 or gmail. Zimbra hasn't been kind to us this last year (a long time user, over 10 years) with all the security issues. It has been bad everywhere this year. The last few wee...
by JDunphy
Fri Oct 21, 2022 2:50 pm
Forum: Installation and Upgrade
Topic: Zimbra 8.8.15 Patch-34 - share experience
Replies: 46
Views: 18479

Re: Zimbra 8.8.15 Patch-34 - share experience

So Zimbra SHOULD NOT REMOVE IT. EVER. In fact, if you try removing it by yourself (yum remove cpio), it will fail, because even systemd depends on it. Under which repository on Github does this falls on, so i can create an issue there? Different result here with RHEL8 % zmcontrol -v Release 8.8.15_...
by JDunphy
Sat Oct 15, 2022 5:00 pm
Forum: Installation and Upgrade
Topic: Zimbra 8.8.15 Patch-34 - share experience
Replies: 46
Views: 18479

Re: Zimbra 8.8.15 Patch-34 - share experience

I had a few newsletters that showed the [if !mso] before. I took the default which is: $ zmlocalconfig zimbra_strict_unclosed_comment_tag zimbra_strict_unclosed_comment_tag = true Those look good now. I tested on firefox, safari, and chrome on linux and mac. I went through a few 100 messages just no...
by JDunphy
Fri Oct 14, 2022 8:56 pm
Forum: Installation and Upgrade
Topic: Zimbra 8.8.15 Patch-34 - share experience
Replies: 46
Views: 18479

Re: Zimbra 8.8.15 Patch-34 - share experience

No issues here on a test machine which is an exact snapshot of the production machine. Logged in and went through 50-60 messages including previous one that didn't display correctly and it all worked. Also briefly tested 2FA and the admin interface with no problems. % zmcontrol -v Release 8.8.15_GA_...
by JDunphy
Tue Sep 27, 2022 3:31 pm
Forum: Administrators
Topic: Manage distributed bruteforce ?
Replies: 3
Views: 2043

Re: Manage distributed bruteforce ?

Hi, Does anyone have a proper solution to deal with distributed bruteforce ? I've got an attack with thousands of ips where ip are used only twice, which make it hard to ban in f2b due to the risk of false positive. Regards I moved to a zero trust model on one of our installs. It works by blocking ...

Go to advanced search