Search found 275 matches

by JDunphy
Thu Sep 20, 2018 5:30 pm
Forum: Administrators
Topic: My DNS queries were seem refused
Replies: 7
Views: 183

Re: My DNS queries were seem refused

A few things. 1) Isn't that whitelist lookup failure because it isn't listed... probably normal. 2) dig failing... Now that is strange... here is what I was expecting. mail:~:49> dig +short +trace TXT gmail.com NS j.root-servers.net. from server 127.0.0.1 in 0 ms. NS a.root-servers.net. from server ...
by JDunphy
Thu Sep 20, 2018 5:13 pm
Forum: Administrators
Topic: Simple program to report successful/fail ip logins and sorted by count
Replies: 5
Views: 993

Re: Simple program to report successful/fail ip logins and sorted by count

imap ssl should be displayed... The program is just doing this. grep ImapServer /opt/zimbra/log/audit.log This appears to be what I am currently using. #!/usr/bin/perl use Data::Dumper qw(Dumper); %ip_list = (); #ip list %fip_list = (); #failed ip list $audit_log = 0; #todays logging chdir "/op...
by JDunphy
Thu Sep 20, 2018 2:09 pm
Forum: Administrators
Topic: My DNS queries were seem refused
Replies: 7
Views: 183

Re: My DNS queries were seem refused

Investigate that port 53 TCP is also open for dns queries for larger 512 byte transfers. Note: Given how resolve.conf is queried, you can also list 127.0.0.1 twice. The thought process is that should it time-out, the next query could be immediate if the delay was network related. If you are getting ...
by JDunphy
Thu Sep 13, 2018 8:05 pm
Forum: Installation and Upgrade
Topic: 8.7.9 to 8.7.11 on Ubuntu 16.04 /etc/hosts error
Replies: 4
Views: 371

Re: 8.7.9 to 8.7.11 on Ubuntu 16.04 /etc/hosts error

Hi there, I want to upgrade my ZCS 8.7.9 to the latest version, but since I red somewhere that it is safer to upgrade to the latest 8.7 release first, I'll take this route and update to 8.8. in another step. However, the installer exits with an error that my /etc/hosts file contains a line like: 12...
by JDunphy
Tue Sep 11, 2018 6:18 pm
Forum: Administrators
Topic: Alternate SMTP port for my zimbra email server
Replies: 20
Views: 1176

Re: Alternate SMTP port for my zimbra email server

I wanted the submission port to be the way as it is, but wanted to allow plain text authentication only for port 8025. Do i still need to modify the "submission" block? I was not recommending you change the submission block but to look at it for possible items to include with your custom ...
by JDunphy
Tue Sep 11, 2018 12:20 pm
Forum: Administrators
Topic: Alternate SMTP port for my zimbra email server
Replies: 20
Views: 1176

Re: Alternate SMTP port for my zimbra email server

Take a look at how port 587 works ... ie. submission entry in your master file. Pay special attention to smtpd_client_restrictions and smtpd_sasl_auth_enable ... If you trust the ip space, you could do it that way also. No open relays please. :-)
by JDunphy
Fri Sep 07, 2018 1:17 pm
Forum: Administrators
Topic: Alternate SMTP port for my zimbra email server
Replies: 20
Views: 1176

Re: Alternate SMTP port for my zimbra email server

# # Postfix master process configuration file. For details on the format # of the file, see the Postfix master(5) manual page. # # ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never...
by JDunphy
Thu Sep 06, 2018 10:11 pm
Forum: Administrators
Topic: Another Letsencrypt method
Replies: 89
Views: 43142

Re: Another Letsencrypt method

I have added your method to the wiki and updated the script to match wiki's examples. Here is the updated code: #!/bin/bash # Zimbra Assumptions: # 1) acme.sh is installed as Zimbra # 2) see: https://wiki.zimbra.com/wiki/index.php?curid=2441 ######## Public functions ##################### #domain ke...
by JDunphy
Thu Sep 06, 2018 8:20 pm
Forum: Administrators
Topic: Another Letsencrypt method
Replies: 89
Views: 43142

Re: Another Letsencrypt method

I tried your hook script and it works perfectly. I added the verification step which has limited value ... I forced a few error cases and the deploy failed so you exit before it would attempt to issue the zimbra restart commands ... In the end, I don't think me adding the verification step buys you ...
by JDunphy
Thu Sep 06, 2018 5:57 pm
Forum: Administrators
Topic: Another Letsencrypt method
Replies: 89
Views: 43142

Re: Another Letsencrypt method

Great Stuff! I have not tested this but the DST Root CA X3 might not be required so you may not have to add the IdentTrust in the future. This link discusses it further. https://letsencrypt.org/2018/08/06/trusted-by-all-major-root-programs.html Adding a verification and check might allow you to ride...

Go to advanced search