The “Referer” header is a HTTP header that is added by the web browser whenever a request is made. A Zimbra user who receives an email with links or images in the Zimbra web interface may unknowingly share information of the Zimbra server when clicking the link or viewing inline-images. For example when an email […]
Tag Archives | did you know
Did you know? Zimbra HTTP Strict Transport Security (HSTS)
By Barry de Graaff on January 18, 2023 in Community, Did You Know, Partners, PowerTips – Admins, Security & Privacy
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS. What does HSTS do for improving security? You have HSTS configured on Zimbra and have configured a correct TLS […]
How to write to log files from a Zimbra Extension
In MyTest.java you can find some examples of how to write to the Zimbra log files. The most common ones are: ZimbraLog.extensions.info(“this is an info message that will show up in /opt/zimbra/log/mailbox.log”); ZimbraLog.extensions.error(“this is an error message that will show up in /opt/zimbra/log/mailbox.log”); To see the logging in action run a tail on the log […]
Did you know? Zimbra Postscreen provides additional protection against mail server overload
In Zimbra you can optionally enable Postscreen as an additional Anti-SPAM strategy. Postscreen will offer additional protection against mail server overload. One postscreen process handles multiple inbound SMTP connections and decides which clients may talk to a Post-fix SMTP server process. By keeping spambots away, postscreen leaves more SMTP server processes available for legitimate clients […]
Did you know? SELinux is not a Zimbra feature
This blog is about something that is not a Zimbra feature, yes you read it correctly, usually on the blog we highlight new or existing features. But this blog is a little different. Every now and then people write in the Zimbra forums or comment on blog posts saying they run Zimbra with SELinux in […]
Did you know? How to use Zimbra Nextcloud integration with 2FA
In a previous blog we introduced the Zimbra integration in the Nextcloud Dashboard. A recent update in the integration added support for 2-factor authentication, so in case you enabled 2FA on your Zimbra account, you will also be asked to enter your 2FA (TOTP) token. In case you use 2FA on your Zimbra account you […]