There has been active commentary about the “EFAIL” paper released May 14 by a German and Belgian research team that presented potential vulnerability in PGP and S/MIME encrypted emails. The Zimbra Security team has analyzed the paper and tested Zimbra for any exposure to the EFAIL attack patterns. The Results? Good news. Zimbra S/MIME solutions […]
Archive | Security & Privacy
#EFAIL: Zimbra Not Affected
There has been active commentary about the “EFAIL” paper released May 14 by a German and Belgian research team that presented potential vulnerability in PGP and S/MIME encrypted emails. The Zimbra Security team has analyzed the paper and tested Zimbra for any exposure to the EFAIL attack patterns. The Results? Good news. Zimbra S/MIME solutions […]
Zimbra Admin Alert … Potential “memcrashd” attack
By Gayle Billat on March 1, 2018 in Product News, Community, Education, PowerTips – Admins, Product Updates, Security & Privacy
Zimbra memcached may face the “memcrashd” attack on port 11211. By default, memcached listens on a server IP address that is accessible on the network and via the internet if there is no firewall. If your Zimbra memcache servers are behind a firewall, we recommend blocking access on port 11211 from the Internet to Zimbra […]
Personal Email Security — More Important than Ever!
Do you access your email via Wi-Fi? Most of us do. You probably also use WPA2 as the safety protocol for your Wi-Fi network(s) because it’s the industry standard. We all think that reading and sending email via Wi-Fi is generally safe and secure, but the recent KRACK attacks will give you something new to think […]
Email’s Open Source Renaissance – It’s Time to Expect More
Do you think that email is fading as a communication tool? Think again! Contrary to popular opinion, email is not only still relevant—it’s growing. This whitepaper describes how email providers need to step up and close a yawning innovation gap to meet these demanding consumer expectations: Enterprise-strength privacy and security Cutting-edge functionality All delivered via […]
ClamAV v0.97 included in ZCS 8.0.6 and below tags all messages as **UNCHECKED**
Hello Everyone. If you are using ZCS 8.0.6 and prior: starting 22 October 2016, anti-virus definitions will no longer update, and your ClamAV instance will stop working entirely. ClamAV EOL source: http://blog.clamav.net/2016/05/clamav-097-engine-end-of-life.html This is a real risk for all outdated ZCS versions, and as a visual symptom, all your messages are being tagged as **UNCHECKED**. […]