Search found 37 matches
- Tue Apr 23, 2024 2:14 pm
- Forum: Installation and Upgrade
- Topic: Zimbra 10.0.7 FIPS manage ciphers offered?
- Replies: 3
- Views: 162
Re: Zimbra 10.0.7 FIPS manage ciphers offered?
Status update: Ok, so using the empty string for setting zimbraSSLDHParam disables the ciphers on ports 993 (I have to retain IMAP for some business interop functions) and 443, but not on ports 25 and 587. We have stopped and started the zimbra services stack (our nightly backup process does this), ...
- Mon Apr 22, 2024 3:22 pm
- Forum: Installation and Upgrade
- Topic: Zimbra 10.0.7 FIPS manage ciphers offered?
- Replies: 3
- Views: 162
Re: Zimbra 10.0.7 FIPS manage ciphers offered?
Thanks ghen, I'll try that.
- Fri Apr 19, 2024 10:16 am
- Forum: Installation and Upgrade
- Topic: Zimbra 10.0.7 FIPS manage ciphers offered?
- Replies: 3
- Views: 162
Zimbra 10.0.7 FIPS manage ciphers offered?
Hi, Release 10.0.7.GA.3969.UBUNTU20.64 UBUNTU20_64 FOSS edition. Our security scanning service is picking up on vulnerable Diffie-Helmann ciphers being available, under TLS 1.2 which could be used for a DoS D(HE)ater attack. We previously used the info from https://blog.zimbra.com/2022/12/update-zim...
- Tue Feb 06, 2024 11:40 am
- Forum: Installation and Upgrade
- Topic: BUG in 10.0.6 FOSS build
- Replies: 9
- Views: 18326
Re: BUG in 10.0.6 FOSS build
This relates to the zm-jetty-conf repo/project, and the jetty.xml.production file most likely - at least as far as I can see. I haven't had anyone mention this for the builds that I've made, so I'm going to fire up a server with one of my builds now to find out if they are affected as well or not. ...
- Mon Feb 05, 2024 2:40 pm
- Forum: Installation and Upgrade
- Topic: BUG in 10.0.6 FOSS build
- Replies: 9
- Views: 18326
Re: BUG in 10.0.6 FOSS build
Fantastic find @liverpoolfcfan.
I was facing exactly same service failure after our 8.8.15 upgrade attempt.
Thanks for posting your findings and helping us resolve.
I was facing exactly same service failure after our 8.8.15 upgrade attempt.
Thanks for posting your findings and helping us resolve.
- Thu Jul 06, 2023 11:51 am
- Forum: Administrators
- Topic: Disable HTTP Compression
- Replies: 2
- Views: 812
Re: Disable HTTP Compression
Brilliant - thank you LiverpoolFCFan!
- Tue Jul 04, 2023 2:02 pm
- Forum: Administrators
- Topic: Disable HTTP Compression
- Replies: 2
- Views: 812
Disable HTTP Compression
Hi, Running: Release 8.8.15.GA.4179.UBUNTU20.64 UBUNTU20_64 FOSS edition, Patch 8.8.15_P40 Our security scanning indicates our Zimbra server has HTTP Compression enabled that could potentially support a BREACH attack. I found references to the zimbraHttpCompressionEnabled setting in /opt/zimbra/conf...
- Tue Jun 13, 2023 10:07 am
- Forum: Administrators
- Topic: Disable GZIP/HTTP Compression in NGINX
- Replies: 1
- Views: 1911
Re: Disable GZIP/HTTP Compression in NGINX
Did you ever find a solution? I found references to the zimbraHttpCompressionEnabled setting in /opt/zimbra/conf/attrs/zimbra-attrs.xml. (Noted in Zimbra Wiki https://files.zimbra.com/docs/config-guide/index.html and elsewhere) This apparently only requires restarting the mailboxd service... However...
- Fri Feb 17, 2023 12:00 pm
- Forum: General Questions
- Topic: How to set the folder of the archive button?
- Replies: 2
- Views: 12855
Re: How to set the folder of the archive button?
Realise this question is an old post... but it's the only thing I could find relating to the topic we have. Currently using 8.8.15 on Ubuntu 20.04 LTS - all users under the AJAX web interface. The Archive Zimlet is enabled in CoS for Preferences, but when clicked under Preferences, we don't get the ...
- Sat Nov 12, 2022 2:48 pm
- Forum: Installation and Upgrade
- Topic: Install hung on upgrade/update
- Replies: 3
- Views: 2327
Re: Install hung on upgrade/update
A quick update: I killed the "mv" process, and the setup process seemed to continue to completion: Setting up zimbra crontab...done. Moving /tmp/zmsetup.01072009-002553.log to /opt/zimbra/log Configuration complete - press return to exit I'm assuming that this means all is well. I will gi...