Navigation

Archive | Security & Privacy

Did you know? Zimbra HTTP Strict Transport Security (HSTS)

By on January 18, 2023 in Community, Did You Know, Partners, PowerTips – Admins, Security & Privacy

The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS. What does HSTS do for improving security? You have HSTS configured on Zimbra and have configured a correct TLS […]

Continue Reading

Protecting Zimbra with Sucuri web application firewall

By on January 11, 2023 in Product News, Partners, PowerTips – Admins, Security & Privacy

You can enhance the security of your Zimbra servers by using a web application firewall (WAF). By using a web application firewall you can add the following protections to Zimbra: Geo blocking, geo fencing Blocking or allow IP addresses Emergency DDoS protection Block anonymous proxies Block top three attack countries Manage HTTP Security Headers Limited […]

Continue Reading

Did you know? Zimbra Postscreen provides additional protection against mail server overload

By on December 28, 2022 in Product News, PowerTips – Admins, Security & Privacy

In Zimbra you can optionally enable Postscreen as an additional Anti-SPAM strategy. Postscreen will offer additional protection against mail server overload. One postscreen process handles multiple inbound SMTP connections and decides which clients may talk to a Post-fix SMTP server process. By keeping spambots away, postscreen leaves more SMTP server processes available for legitimate clients […]

Continue Reading

Update Zimbra TLS cipher suites to disable Diffie-Hellmann

By on December 20, 2022 in Product News, PowerTips – Admins, Security & Privacy

This blog post is outdated since Zimbra version 9.0.0.P34, 8.8.15.P41, 10.0.2 where Zimbra introduced OpenSSL FIPS. Please follow the updated steps at https://wiki.zimbra.com/wiki/Cipher_suites. In a previous blog and wiki we have shown how to configure Zimbra with a strong TLS configuration. Since encryption is always evolving we have updated the previous blog and wiki to […]

Continue Reading

Email Security Protect your email account and data

By on December 14, 2022 in Community, Partners, Security & Privacy, Whitepaper

Identity theft, fraudulent use of your credit card, ransomware… cybercrime is always evolving. There are some simple things you can do to protect your email data and accounts. How can you protect yourself from the most common and real threats like: Identity and credit card information theft Theft of proprietary data Precise phishing attacks Ransomware […]

Continue Reading

Zimbra Now Works with Thales’ SafeNet Trusted Access

By on December 7, 2022 in Product News, Community, Security & Privacy, Zimbra Web Client

Hello Zimbra Customers, Partners & Friends, We’re happy to announce that Zimbra now works with Thales’ SafeNet Trusted Access (STA) to provide single sign-on (SSO), policy configuration and multi-factor authentication (MFA). This makes it easy to meet compliance mandates such as GDPR and PCI DSS by letting you decide who has access to Zimbra and how their identity is verified. Thales’ SSO Application […]

Continue Reading

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures