Zimbra Desktop 7.2.8
Posted: Mon Mar 20, 2017 8:16 pm
Hi, guys!
I am writing a feature which intercepts SMTP e-mails. It works good with Thunderbird, Mailbird and other clients except Zimbra and The Bat!.
All communications are secure, it means I parse e-mails sent either via STARTTLS or via SSL/TLS. Note, I understand that SSL 3.0 is equal to TLS 1.0
First, I cannot set my own certificate and private key in Zimbra.
Second, I cannot see or set the protocol used by Zimbra for an outgoing SMTP server. I just check the checkbox 'Use SSL...'
I use Boost.Asio and set SSL context to tlsv12 without verifying peer certificates!
The error I get is certificate unkown alert 46
I created a basic SSL server with context tlsv1 and reproduced the error.
Step by step I came to conclusion that you use TLS v.1.0 which is SSL 3.0 which is insecure.
I have created the topic at http://stackoverflow.com/questions/4291 ... rification
Q1: Where can I extract the certificate and the private key you use in Zimbra?
Q2: Is this possible to set up Zimbra to use TLS v.1.2?
Q3: What valuable changes did you introduce in Zimbra 7.3.0 which can solve my problem? TLS v.1.2?
I am writing a feature which intercepts SMTP e-mails. It works good with Thunderbird, Mailbird and other clients except Zimbra and The Bat!.
All communications are secure, it means I parse e-mails sent either via STARTTLS or via SSL/TLS. Note, I understand that SSL 3.0 is equal to TLS 1.0
First, I cannot set my own certificate and private key in Zimbra.
Second, I cannot see or set the protocol used by Zimbra for an outgoing SMTP server. I just check the checkbox 'Use SSL...'
I use Boost.Asio and set SSL context to tlsv12 without verifying peer certificates!
The error I get is certificate unkown alert 46
I created a basic SSL server with context tlsv1 and reproduced the error.
Step by step I came to conclusion that you use TLS v.1.0 which is SSL 3.0 which is insecure.
I have created the topic at http://stackoverflow.com/questions/4291 ... rification
Q1: Where can I extract the certificate and the private key you use in Zimbra?
Q2: Is this possible to set up Zimbra to use TLS v.1.2?
Q3: What valuable changes did you introduce in Zimbra 7.3.0 which can solve my problem? TLS v.1.2?