Navigation

Archive | Community

Zimbra S/MIME encryption whitepaper

By on September 28, 2022 in Community, Partners, Security & Privacy, Whitepaper

Email messages and attachments can be intercepted as they are sent over the Internet. Many email providers support secure connections for incoming and outgoing email. However, the email protocol has a flaw: it falls-back to unsecure connections if an error happens. Zimbra supports S/MIME a standard for encryption and signing email. By using S/MIME encryption […]

Continue Reading

Zimbra Security and PCI DSS

By on September 21, 2022 in Community, Partners, Security & Privacy, Whitepaper

Emails are accessible to most people anywhere and anytime. However, when it comes to handling sensitive data like credit card information, you need to rethink your messaging options. The Payment Card Industry Data Security Standard (PCI DSS) is an information security framework intended to help merchants and service providers protect credit and debit card transactions […]

Continue Reading

Zimbra Email Security Webinar Series: TLS and DANE (updated)

By on August 31, 2022 in Product News, Community, Webinars, Zimbra SkillZ

Many Zimbra administrators have setup TLS encryption to protect their users’ login credentials and email in transit.  But TLS is a complex standard, and often unknowingly misconfigured.  Deploying TLS correctly does not require a university degree in cryptography, but rather a working knowledge of some key concepts and awareness of pitfalls to avoid. And, with […]

Continue Reading

Are you using zen.spamhaus.org or dbl.spamhaus.org for fighting spam? Pay attention!

By on August 25, 2022 in Community, Partners, PowerTips – Admins, Zimbra SkillZ

Spamhaus is making some changes in their policy enforcement, from their website: Are you currently using the Spamhaus Project’s DNS Blocklists (DNSBLs)? Do you access them via the Public Mirrors, for example, query “sbl.spamhaus.org” or “zen.spamhaus.org”? Do you use Cloudflare’s DNS? If you’ve answered “yes” to all three of those questions, you need to make […]

Continue Reading

Configuring Fail2Ban on Zimbra

By on August 24, 2022 in Product News, Community, Open Source, Security & Privacy

This article is a how-to guide on installing Fail2Ban to block attacking hosts using a null route or blackhole routes. This can help mitigate brute force attacks on Zimbra. Especially brute force attacks on SMTP are very common. Prerequisite: Fail2ban has been tested in combination with netfilter-persistent and iptables. If you use ufw or firewalld […]

Continue Reading

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures