Patch Security Severity: Low Deployment Risk: Medium This release focuses on improving user experience, enhancing group communication and essential security for the following editions Zimbra Daffodil 10.0.7 (Release Notes) Zimbra 9.0.0 Kepler Patch-39 (Release Notes) Patch updated on 28 Feb include the following in their respective releases What’s New Improved Language Support (Zimbra Daffodil) OnlyOffice […]
Archive | Product News
Mobileconfig in Settings menu Zimlet
This Zimlet adds a menu option in the Settings menu to download mobileconfig file to configure your Zimbra account on Apple devices. The same is included in Modern UI by default under Settings->Accounts then expand your account and scroll down. This Zimlet exposes the feature more prominently and makes it easier to find. You can […]
Manage Global S3 Configurations using zms3config CLI
In a previous blog we introduced Zimbra’s new Storage Management, in this article we introduce you to zms3config a command line application that allows you to manage Zimbra’s S3 configuration. The zms3config is the CLI utility to manage the Global S3 buckets which can be shared across mailstore nodes. Bucket configurations can be created from any node […]
SMTP Smuggling in Zimbra Postfix a technical deepdive
E-mail providers like Microsoft Exchange Online and GMX allowed to pass <LF>.<CR><LF> sequence unfiltered from their outbound (sending mails) SMTP server to the inbound (receiving mails) SMTP server (postfix in our case). In the case of Postfix serving as an outbound/inbound (sending mails/receiving mails) server, it does not ignore the sequence ‘<LF>.<CR><LF>’; rather, it interprets […]
SPF, DKIM and DMARC for bulk mailers to Gmail and Yahoo
In recent posts by Google and Yahoo new bulk mailer requirements are announced. These requirements go into effect in February and require bulk mailers to implement SPF, DKIM and DMARC if they want their email to be delivered to gmail and yahoo email addresses going forward. Many Zimbra partners have already implemented DMARC and as […]
CentOS 7 and CentOS8 Stream EOL dates are closing in
Keeping your Zimbra up-to-date by installing patches is essential for maintaining the security of your Zimbra servers. However patches are only available for supported (not end-of-life) versions. Recently the 8.8 versions of Zimbra went end-of-life and the Zimbra 9 versions are going end-of-life soon as well. Make sure all your Zimbra servers are on a […]