Important: Zimbra security preference

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
1415bhwong
Outstanding Member
Outstanding Member
Posts: 498
Joined: Sat Sep 13, 2014 12:03 am

Important: Zimbra security preference

Postby 1415bhwong » Sun Aug 31, 2014 11:36 pm

Recently, we have received some external emails that attempt to impersonate some of our colleagues for fraud.
For example, when you receive an email from "Boss ",

Zimbra will show Boss by default and you have no idea you will be replying to scam@gmail.com.
In order to ensure that the full email address is also shown, please do the following:

Go to Preferences > General: Under Others, untick Email Addresses option
This will also be useful when you have senders that happen to share a common name.


1415bhwong
Outstanding Member
Outstanding Member
Posts: 498
Joined: Sat Sep 13, 2014 12:03 am

Important: Zimbra security preference

Postby 1415bhwong » Mon Sep 01, 2014 9:28 pm

Since this is found to be a major security risk, I have asked Zimbra Support if it's possible to untick this for everyone by default under CoS or disabled it in CLI without expecting every user to untick it themselves manually. Fortunately the answer is yes!
$ zmprov mc default zimbraPrefShortEmailAddress FALSE
*note- here cos name is default, you can also replace the cos name as per your requirement.

Return to “Administrators”

Who is online

Users browsing this forum: support@qbus.it and 16 guests