A one-click security vulnerability in all versions of Zimbra Collaboration Suite has been discovered that could allow an unauthenticated attacker to gain access to a Zimbra account. To fix this vulnerability install the latest Zimbra patch (by using apt or yum), the vulnerability is fixed in: Daffodil 10.0.3 9.0.0 Kepler Patch 35 8.8.15 Joule Patch […]
Author Archive | Barry de Graaff
Introducing new Nextcloud Zimlet for Classic UI
We have backported the Modern UI Nextcloud Zimlet that uses OAuth to the Classic UI. A number of partners have requested this Classic UI Zimlet since there are still many users the like to work with the Classic UI. With the Nextcloud Zimlet you will be able to save emails and attachments from Zimbra to […]
Review your Zimbra configuration after updating to the latest patch
It has come to our attention that in some cases postconf settings are not retained when updating to the latest patch (9.0.0.P34, 8.8.15.P41, 10.0.2). Make sure to re-apply any customizations, including TLS cipher configurations you had previously configured using the postconf command. In addition, the latest patch also enabled OpenSSL in FIPS mode, more details […]
Did you know? How to change the Zimbra logo in Modern UI ?
Did you know that you can change the Zimbra logo in the Modern UI? For example you can configure it with your company logo. If your Zimbra set-up uses a virtual hostname you will need to follow procedure A (using virtual hostname is recommended)/ If you do not use virtual hostname you can use procedure […]
Get an email notification when Zimbra TLS certificates are about to expire
In many cases IT staff will have automated TLS certificates so they are renewed and deployed automatically. However sometimes the automation fails or deployments use an additional reverse proxy or web application firewall in front of Zimbra. In the latter case, sometimes the renewal of the Zimbra self-signed certificate is overlooked. Zimbra (LDAP) requires a […]
Introducing Zimbra authentication module for SimpleSAMLphp
While a generic LDAP authentication module for SimpleSAMLphp exists, it is hard to set-up, it requires the use and storing of an admin bind credential and is in continous development making it impossible to install a working version of this module on a released version of SimpleSAMLphp. The Zimbra authentication module for SimpleSAMLphp makes it […]