It appears that when changing logos they are not provided via HTTPS and are not encrypted...

I'm not getting the "secure" lock in Safari and Chrome shows....

Your connection to mail.mono-1.com is encrypted with 256-bit encryption. However, this page includes other resources which are not secure. These resources can be viewed by others while in transit, and can be modified by an attacker to change the look of the page.

The connection uses TLS 1.0.

The connection is encrypted using AES_256_CBC, with SHA1 for message authentication and DHE_RSA as the key exchange mechanism.

The connection is not compressed.
I followed the wiki guide to change the logos and host them on my mailbox servers.

Changing the Logo and Theme Colors from the Admin Console - Zimbra :: Wiki

Anyone have a work around?


I understand the auth will be encrypted, but displaying the page and ensuring my users/owners is important.