Navigation

Archive | Partners

SMTP Smuggling in Zimbra Postfix a technical deepdive

By on January 31, 2024 in Product News, Open Source, Partners, Security & Privacy

E-mail providers like Microsoft Exchange Online and GMX allowed to pass <LF>.<CR><LF> sequence unfiltered from their outbound (sending mails) SMTP server to the inbound (receiving mails) SMTP server (postfix in our case). In the case of Postfix serving as an outbound/inbound (sending mails/receiving mails) server, it does not ignore the sequence ‘<LF>.<CR><LF>’; rather, it interprets […]

Continue Reading 0

CentOS 7 and CentOS8 Stream EOL dates are closing in

By on January 10, 2024 in Product News, Did You Know, Partners

Keeping your Zimbra up-to-date by installing patches is essential for maintaining the security of your Zimbra servers. However patches are only available for supported (not end-of-life) versions. Recently the 8.8 versions of Zimbra went end-of-life and the Zimbra 9 versions are going end-of-life soon as well. Make sure all your Zimbra servers are on a […]

Continue Reading 2

Zimbra and SMTP Smuggling attack on Postfix

By on December 28, 2023 in Product News, Partners, Security & Privacy

Recently an SMTP Smuggling attack on Postfix was published, as mentioned by the Postfix project: Days before a 10+ day holiday break and associated production change freeze, SEC Consult has published an email spoofing attack that involves a composition of email services with specific differences in the way they handle line endings other than <CR><LF>. […]

Continue Reading

ChatGPT knows the Zimbra API’s

By on December 27, 2023 in Product News, Artificial Intelligence, Did You Know, Partners, PowerTips – Admins

Zimbra has many API’s to make it easy for system administrators to automate tasks, such as account creation, distribution list management, quota management etc. In many cases you will be using the SOAP and REST API’s or command line tools such as zmprov and zmmailbox. While there is documentation of these API’s on the Zimbra […]

Continue Reading

Patch Release For Deprecated Files Deletion, OpenJDK Security Enhancement, Migration Support to Zimbra Daffodil (v10)

By on December 18, 2023 in Product News, Partners, Product Updates, Security & Privacy

Patch Severity: High. This release addresses critical bug fixes and essential security updates  Patch Release for the following editions Zimbra Daffodil 10.0.6 (Release Notes) Zimbra 9.0.0 Kepler Patch-38 (Release Notes) Zimbra 8.8.15 Joule Patch-45 (Release Notes)  Patch updated on 18 Dec include the following in their respective releases What’s New OpenJDK has been upgraded to […]

Continue Reading

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures