Zimbra Admin Alert … Potential “memcrashd” attack

Zimbra memcached may face the “memcrashd” attack on port 11211. By default, memcached listens on a server IP address that is accessible on the network and via the internet if there is no firewall.

If your Zimbra memcache servers are behind a firewall, we recommend blocking access on port 11211 from the Internet to Zimbra memcache servers. Once done, you do not need to follow further steps in this wiki.

If your zimbra memcache server is NOT behind a firewall and is accessible over the Internet, then proceed with the steps in this wiki.

Thanks for your prompt attention!

, , , ,

Comments are closed.

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures