Archive | Zimbra SkillZ

Optimizing Zimbra security and TLS settings via a script (updated May 2024)

A partner has requested a script to implement the Security tips and TLS settings documented at https://wiki.zimbra.com/wiki/Cipher_suites and https://wiki.zimbra.com/wiki/Secopstips . At Zimbra we love scripts! This article shows a script that configures Zimbra with strong TLS and security settings. Prerequisites You have set up a correct hostname and DNS, to check, run the following as […]

Continue Reading

Zimbra Email Security Webinar Series: TLS and DANE (updated)

Many Zimbra administrators have setup TLS encryption to protect their users’ login credentials and email in transit.  But TLS is a complex standard, and often unknowingly misconfigured.  Deploying TLS correctly does not require a university degree in cryptography, but rather a working knowledge of some key concepts and awareness of pitfalls to avoid. And, with […]

Continue Reading

Are you using zen.spamhaus.org or dbl.spamhaus.org for fighting spam? Pay attention!

Spamhaus is making some changes in their policy enforcement, from their website: Are you currently using the Spamhaus Project’s DNS Blocklists (DNSBLs)? Do you access them via the Public Mirrors, for example, query “sbl.spamhaus.org” or “zen.spamhaus.org”? Do you use Cloudflare’s DNS? If you’ve answered “yes” to all three of those questions, you need to make […]

Continue Reading

Zimbra with Let’s Encrypt Certificates a step-by-step guide (update)

This article is a step-by-step instruction on setting up a Zimbra with Let’s Encrypt certificates. If you are running a multi server installation of Zimbra it is recommended you set-up a dedicated VM for obtaining the Let’s Encrypt certificate and follow this blog. Prerequisites This guide assumes you are using Ubuntu 20 and you have […]

Continue Reading

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures