Navigation

Tag Archives | security

What are the benefits of using Zimbra OpenSSL in FIPS mode?

By on September 20, 2023 in Product News, Security & Privacy

If you installed or upgraded to Zimbra version 9.0.0.P34, 8.8.15.P41, 10.0.2 or higher, Zimbra will use OpenSSL 3.0.x and FIPS compliance for OpenSSL will be enabled by default. To check if your Zimbra OpenSSL is using FIPS you can run the following command, that should fail with Error setting digest: /opt/zimbra/common/bin/openssl md5 /dev/null There are […]

Continue Reading 0

Review your Zimbra configuration after updating to the latest patch

By on August 9, 2023 in Product News, Product Updates, Security & Privacy

It has come to our attention that in some cases postconf settings are not retained when updating to the latest patch (9.0.0.P34, 8.8.15.P41, 10.0.2). Make sure to re-apply any customizations, including TLS cipher configurations you had previously configured using the postconf command. In addition, the latest patch also enabled OpenSSL in FIPS mode, more details […]

Continue Reading 3

When your security scanner alerts for jspawnhelper in Zimbra

By on June 7, 2023 in PowerTips – Admins, Security & Privacy

Many administrators rely on third-party security scanners such as Crowdstrike Falcon to analyze their Zimbra server for malicious activity. One process that is frequently reported is jspawnhelper. What is jspawnhelper? While this is not very well documented, jspawnhelper can be run as the result of a call to ProcessBuilder.start() or Runtime.exec() in a java application. […]

Continue Reading 0

New phishing attacks may use .zip, .mov and other new Internet domains

By on May 31, 2023 in Did You Know, PowerTips – Users, Security & Privacy

Beware of fraudulent activities using the newly launched .zip and .mov top-level domains. Phishing attacks have already targeted well-known brands like Microsoft and Okta. Apart from phishing, the new .zip and .mov TLDs have also been used for various malicious purposes like hosting zip bombs, redirecting to YouTube videos, and offering file compression services. Here […]

Continue Reading 0

Zimbra advanced mobile device management with Scalefusion MDM

By on May 8, 2023 in Product News, Product Updates, Security & Privacy

Zimbra 10 is natively supported in Scalefusion Mobile Device Management (MDM). When used together Zimbra and Scalefusion gives your IT teams visibility and control required to secure, manage and monitor any corporate-owned or employee-owned devices that access corporate data. This includes mobile devices (Android and IOS) and managed Windows devices such as laptops. In other words with […]

Continue Reading 2

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures