Zimbra not affected by log4j (CVE-2021-44228)
After intensive review and testing, Zimbra Development determined that the 0-day exploit vulnerability for log4j (CVE-2021-44228) does not affect the current Supported Zimbra versions (9.0.0 & 8.8.15). Zimbra Collaboration Server currently uses log4j1 version 1.2.16 which doesn't contain the lookup expression feature that is found within versions 2.0 to 2.17, which is the cause of the vulnerability. Also, Redhat (CVE-2021-4104) vulnerability does not affect the Zimbra Collaboration Server version (8.8.15 & 9.0.0). For this vulnerability to affect the server, it needs JMSAppender, which the ZCS Server does not use, and the ability to append configuration files.

backup the zimbra folder

Forum to discuss, report issues, or provide feedback about Zimbra Admin Plus
kyiu
Posts: 20
Joined: Fri Mar 08, 2019 4:06 pm

backup the zimbra folder

Postby kyiu » Thu Nov 04, 2021 6:31 pm

I'm developing a script to do monthly backup of the zimbra directory (/opt/zimbr).
# sudo -u zimbra /opt/zimbra/bin/zmcontrol stop
# tar -zcvf /var/zimbra/archive/zimbra_bk_$(date +%F).tar.gz /opt/zimbra
# sudo -u zimbra /opt/zimbra/bin/zmcontrol start
Then I run into error on the service start up...
Host mail.yius.ca
Starting ldap...Done.
Starting zmconfigd...Done.
Starting dnscache...Done.
Starting logger...Failed.
Starting logswatch...failed.

Starting mailbox...Done.
Starting memcached...Done.
Starting proxy...Done.
Starting amavis...Done.
Starting antispam...Done.
Starting antivirus...Done.
Starting opendkim...Done.
Starting snmp...Done.
Starting spell...Done.
Starting mta...Done.
Starting stats...Done.
Starting service webapp...Done.
Starting zimbra webapp...Done.
Starting zimbraAdmin webapp...Done.
Starting zimlet webapp...Done.
Starting imapd...Done.

After some manual intervention, I've managed to get all the services restarted normally.
This is a plain!! That's means I can't automate the script in a cron job.
Question:
Why won't the services fail to restart after tar'ing the zimbra directory?
Is some happens in the tar process can corrupted the zimbra system?


Return to “Zimbra Backup Plus”

Who is online

Users browsing this forum: No registered users and 1 guest