Search found 899 matches
- Sat Apr 27, 2019 2:44 pm
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 631550
Re: CVE-2019-9670 being actively exploited
I am working on a few tools to help with some proactive detection based on log analysis and came across greynoise today which can provide some information about the reputation of connecting ip's. If anyone has any logs from the origin of these attacks, could you plug those ip's into greynoise and re...
- Fri Apr 26, 2019 4:31 pm
- Forum: Administrators
- Topic: Zimbra incoming message size limit
- Replies: 13
- Views: 10360
Re: Zimbra incoming message size limit
Have you looked at the receiving server to determine its max size? It will tell you if you issue an ehlo verb via its SIZE response. telnet gmail-smtp-in.l.google.com 25 Trying 74.125.142.26... Connected to 74.125.142.26. Escape character is '^]'. 220 mx.google.com ESMTP r12si25627258pfn.135 - gsmtp...
- Sun Apr 21, 2019 5:19 pm
- Forum: Administrators
- Topic: proxy - unknown directive "zmauth_zx"
- Replies: 8
- Views: 5964
Re: proxy - unknown directive "zmauth_zx"
If you change zmauth_zx to zmauth does it work any better. I believe this is an enhancement from Zextras. Root cause for you I am guessing is that nginx apparently was replaced with an incorrect version somewhere or the template files are wrong. I run 8.7.11P11 so I can't speak from any authority he...
- Wed Apr 17, 2019 2:27 pm
- Forum: Administrators
- Topic: Another Letsencrypt method
- Replies: 154
- Views: 531340
Re: Another Letsencrypt method
Thanks for the feedback Bill. I updated the wiki with this link: https://github.com/JimDunphy/acme.sh/blob/master/deploy/zimbra.sh which may help with the cut/paste. I am becoming more confident to having this added to acme.sh mainline but wanted to make sure we had enough testing with it. It has be...
- Tue Apr 16, 2019 4:17 pm
- Forum: Administrators
- Topic: DKIM fails when email signature is activated
- Replies: 12
- Views: 8311
Re: DKIM fails when email signature is activated
I don't seem to have this problem but it is interesting because it works sometimes and not other times if I understand your initial comment. I am investigating this from the perspective of Zimbra's postfix having to rewrite this to 7bit when 8BITMIME isn't supported. The test site listed does suppor...
- Mon Apr 15, 2019 3:50 pm
- Forum: Administrators
- Topic: Spam check for images?
- Replies: 5
- Views: 4963
Re: Spam check for images?
They can be difficult for sure. I wrote an image.pm module but it works by observing tracking and structure and not the image itself. By default, SA has had quite a few attempts at this problem that could be used for some targeted meta rules for your spam mix with better success. There is certainly ...
- Sun Apr 14, 2019 11:32 pm
- Forum: Administrators
- Topic: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
- Replies: 9
- Views: 6812
Re: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
Note: if you run spamassasin from the command line with the -D option with any email (ie. copy from show original and create a text file to use as input)... Look for received-header to see how trusted_networks is being used by SA and it will tell you exactly what is happening and why the choices it ...
- Sun Apr 14, 2019 9:56 pm
- Forum: Administrators
- Topic: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
- Replies: 9
- Views: 6812
Re: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
I am starting to think the following happened... but you haven't confirmed amavisd.conf yet... So here is a guess in the absence of that. - 8.7 introduced https://wiki.zimbra.com/wiki/Zimbra_Collaboration_Postscreen - You probably had zimbraMtaMyNetworks configured with your MX... meaning that you c...
- Sat Apr 13, 2019 8:41 pm
- Forum: Administrators
- Topic: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
- Replies: 9
- Views: 6812
Re: Custom SpamAssassin Rules doesn't affect after upgrade to 8.8.12
My environment is similar to yours. Double check @mynetworks in amavisd.conf that you don't have your MX listed there ... Sounds like policy_bank{'ORIGINATING'} is matching your MX. You can add your MX's in SA for trusted_networks in your salocal.cf ... While you are in there take a look at bypass_s...
- Sat Apr 13, 2019 1:57 pm
- Forum: Administrators
- Topic: Limit the networks some users can connect from to the server
- Replies: 5
- Views: 3908
Re: Limit the networks some users can connect from to the server
But the thing is, I want to let user A check his email from anywhere, but user B just from the entreprise LAN. Maybe expressed that way is simpler to understand. (Sorry, English is my second language). Thats why I was investigating a "Zimbra solution" if it exists any. I completely misund...