Recently, we have received some external emails that attempt to impersonate some of our colleagues for fraud.
For example, when you receive an email from "Boss ",
Zimbra will show Boss by default and you have no idea you will be replying to scam@gmail.com.
In order to ensure that the full email address is also shown, please do the following:
Go to Preferences > General: Under Others, untick Email Addresses option
This will also be useful when you have senders that happen to share a common name.
Important: Zimbra security preference
-
1415bhwong
- Outstanding Member
- Posts: 498
- Joined: Sat Sep 13, 2014 12:03 am
-
1415bhwong
- Outstanding Member
- Posts: 498
- Joined: Sat Sep 13, 2014 12:03 am
Important: Zimbra security preference
Since this is found to be a major security risk, I have asked Zimbra Support if it's possible to untick this for everyone by default under CoS or disabled it in CLI without expecting every user to untick it themselves manually. Fortunately the answer is yes!
$ zmprov mc default zimbraPrefShortEmailAddress FALSE
*note- here cos name is default, you can also replace the cos name as per your requirement.
$ zmprov mc default zimbraPrefShortEmailAddress FALSE
*note- here cos name is default, you can also replace the cos name as per your requirement.