output: sender <user@domain.com> recipients: <abc@domain.com>,<abc1@domain.com>....<abc50@domanin.com> sender <user@domain.com> recipients: <xxxx@domain.com>,<yyyy@domain.com>....<ttttt@domanin.com> sender <userX@domain.com> recipients: <xxxx@domain.com>,<yyyy@domain.com> sender <userX@domain.com> ...

Commands above into small perl script that sorts by the sender and how many email's they sent by counting recipients. By default it will use all your zimbra.log* files so switch that out if you only want todays. Tested on 8.7.11 when you digitally sign your email and have clamav enabled. On our serv...

hello everyone, when I examined the zimbra.log file, I noticed that a user sent 75,000 emails. "cat /var/log/zimbra.log | grep -i" sasl_username "| awk '{print $ 9}' | sort | uniq -c | sort -n "I don't see this user when I use it. I see it in the zimbra.log file See if this gets...

king0770 wrote:Cert should be updated now.

Thanks Rick.

Confirmed

Start with nginx... that is where the listen on the appropriate ports will happen. I would begin with this which I believe you have. netstat -nl Verify that the ip's and ports are what is expected. If not, I would move to nginx config files to see what it has listed. An example: cd /opt/zimbra/conf/...

Probably quickest way is to do this:

https://forums.zimbra.org/viewtopic.php?f=15&t=67177&p=294044#p294047

Ref: https://wiki.zimbra.com/wiki/Enabling_Zimbra_Proxy_and_memcached

Hi Jim, Thanks for sharing your thoughts on this. I wasn't clear on this statement? Given you probably digitally sign your domains, it would be harder to spoof and an additional clause could strengthen against FN/FP's? Hi David, That was in reference to some pseudo-code you had written to strengthe...

Hi David, I am thinking about this but nothing yet pops out... A few idea and questions. I am leaning toward amavisd/SA to do this. A few ideas. 1) Given you probably digitally sign your domains, it would be harder to spoof and an additional clause could strengthen against FN/FP's? 2) It would be po...

You might try this: % grep -R tigressssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssr7.com /opt/zimbra/data/amavisd/tmp/ If you get a hit, take a look at the email.txt file in the appropriate directory for patterns. You should have a few of them if you ar...