Zimbra makes it easy to delegate administrative tasks. In a previous blog we described a way to create roles that allow you to manage delegated admin accounts via the command line. New in Zimbra 10 is that you can create delegated administrators from the Admin Console web-UI. Zimbra contains 2 built-in roles that you can […]
Archive | Zimbra SkillZ
Optimizing Zimbra security and TLS settings via a script (updated May 2024)
By Barry de Graaff on February 8, 2023 in Product News, Community, Open Source, Partners, Security & Privacy, Zimbra SkillZ
A partner has requested a script to implement the Security tips and TLS settings documented at https://wiki.zimbra.com/wiki/Cipher_suites and https://wiki.zimbra.com/wiki/Secopstips . At Zimbra we love scripts! This article shows a script that configures Zimbra with strong TLS and security settings. Prerequisites You have set up a correct hostname and DNS, to check, run the following as […]
How to use DOMPurify in your Zimlet for XSS sanitizing
Cross-Site Scripting (XSS) attacks are a type of injection attack, in which malicious scripts are injected into otherwise benign and trusted websites. In case you are developing a Zimlet you should not trust any form of user input. If you integrate 3rd party services via your Zimlet, you probably also want to sanitize any data […]
Zimbra Email Security Webinar Series: TLS and DANE (updated)
Many Zimbra administrators have setup TLS encryption to protect their users’ login credentials and email in transit. But TLS is a complex standard, and often unknowingly misconfigured. Deploying TLS correctly does not require a university degree in cryptography, but rather a working knowledge of some key concepts and awareness of pitfalls to avoid. And, with […]
Are you using zen.spamhaus.org or dbl.spamhaus.org for fighting spam? Pay attention!
Spamhaus is making some changes in their policy enforcement, from their website: Are you currently using the Spamhaus Project’s DNS Blocklists (DNSBLs)? Do you access them via the Public Mirrors, for example, query “sbl.spamhaus.org” or “zen.spamhaus.org”? Do you use Cloudflare’s DNS? If you’ve answered “yes” to all three of those questions, you need to make […]
Zimbra with Let’s Encrypt Certificates a step-by-step guide (update)
By Barry de Graaff on August 10, 2022 in Community, Security & Privacy, Zimbra Server, Zimbra SkillZ
This article is a step-by-step instruction on setting up a Zimbra with Let’s Encrypt certificates. If you are running a multi server installation of Zimbra it is recommended you set-up a dedicated VM for obtaining the Let’s Encrypt certificate and follow this blog. Prerequisites This guide assumes you are using Ubuntu 20 and you have […]