Search found 901 matches
- Fri May 31, 2019 4:34 pm
- Forum: General Zimbra Feedback
- Topic: Becoming Better
- Replies: 8
- Views: 55061
Re: Becoming Better
Hi John, Well stated and thank you for initially setting these up. They have been terrific but what we need more than answers sometimes is public leadership. Your jumping in the other night when things were getting out of hand with this remote exploit is a clear example of that and was a calming inf...
- Wed May 29, 2019 9:40 pm
- Forum: Administrators
- Topic: Zimbra AJAX Webmail not loading
- Replies: 127
- Views: 120534
Re: Zimbra AJAX Webmail not loading
Same here, all solutions that I found in this post and links working the only temporary. NE 8.7.11_GA_3800 I am not familar with Zimbra numbers but hopefully you mean you are at 8.7.11 + patch 11. # su - zimbra % zmcontrol -v Release 8.7.11_GA_1854.RHEL6_64_20170531151956 RHEL6_64 NETWORK edition, ...
- Wed May 29, 2019 7:16 pm
- Forum: Administrators
- Topic: Handshake SSL problem
- Replies: 5
- Views: 4492
Re: Handshake SSL problem
When i make request with broken browser she's never sent by the reverse proxy to mailboxd (nginx.access.log stay empty). That is good news but unfortunate timing for this problem to occur given the current exploits. Since you see no requests in nginx.access.log, that is a pretty big clue I think. T...
- Wed May 29, 2019 3:09 pm
- Forum: Administrators
- Topic: Handshake SSL problem
- Replies: 5
- Views: 4492
Re: Handshake SSL problem
What I mean by "does not work": Access to the server passes normally and Zimbra (nginx in reality) asks for my client certificate, once the client certificate filled: Blank page until the network timeout and the browser responds "ERR_TIMEOUT". I think the above scenario would al...
- Mon May 27, 2019 4:01 pm
- Forum: Administrators
- Topic: Cannot upload some files regardless of size or extension
- Replies: 19
- Views: 10012
Re: Cannot upload some files regardless of size or extension
I cannot find where this porocess starts You are playing whack-a-mole with the attacker. They have a remote command exploit (RCE) and a SSRF (server side request forgery)... Think of it like your zimbra server acting like a proxy to execute commands for that attacker. Check crontab, investigate you...
- Mon May 13, 2019 3:39 pm
- Forum: Administrators
- Topic: (Solved) Bug: MTA may not start with zmcontrol
- Replies: 15
- Views: 17069
Re: Potential Bug: MTA may not start with zmcontrol
Update I received confirmation that today they closed the pull request so we are getting closer... Thank you to Robert Scheck who had one fix and pull request since Aug 2018 and pushed this through with pure determination. He wouldn't let it sit. I had given up myself and was happy to go it alone w...
- Mon May 13, 2019 4:41 am
- Forum: Administrators
- Topic: Encrypted PDFs
- Replies: 4
- Views: 13869
Re: Encrypted PDFs
I think what you want is this virus_name_to_spam_score_maps ... This would allow you to score this in SA and provide that flexibility. https://lists.amavis.org/pipermail/amavis-users/2011-October/000934.html Anything matching would be sent on to SA where you could look at X-Amavis-AV-Status to see i...
- Fri May 10, 2019 5:19 pm
- Forum: Administrators
- Topic: Running an isolated offline ZCS - seeing IPTABLES outbound to cloudflare
- Replies: 1
- Views: 1312
Re: Running an isolated offline ZCS - seeing IPTABLES outbound to cloudflare
This is freshclam. % grep 104.16.218.84 /opt/zimbra/log/freshclam.log Database updated (6823072 signatures) from db.us.clamav.net (IP: 104.16.218.84) Database updated (6825610 signatures) from db.us.clamav.net (IP: 104.16.218.84) .. If you don't need virus definitions updated, this would temporarily...
- Wed May 08, 2019 8:25 pm
- Forum: Administrators
- Topic: [Resolved]DNS cache seems corrupt
- Replies: 10
- Views: 8839
Re: DNS cache seems corrupt
Hey David, You might want to play with dnsping,dnseval and dnstraceroute. Will definitely show oddities like transparent proxying (ISP/NSP interception), throttling, FW, slowness, etc. Something like this for udp and then tcp might shine a light. # dnsping -t TXT Mar2018._domainkey.aetna.com # dnspi...
- Wed May 08, 2019 6:14 pm
- Forum: Administrators
- Topic: [Resolved]DNS cache seems corrupt
- Replies: 10
- Views: 8839
Re: DNS cache seems corrupt
I thought this was a caching DNS resolver... nope. From the documentation - "dnscache adds into the MTA servers a local DNS cache server that can keep all the external DNS request". Anyway, here is the root cause. "configured forward servers failed -- returning SERVFAIL" So you a...