Search found 85 matches
- Tue Jul 07, 2020 6:27 pm
- Forum: Administrators
- Topic: Update Url Working?
- Replies: 9
- Views: 3674
Re: Update Url Working?
This still seems to be an issue. I never get e-mail about updates. Current version: Release 8.8.15.GA.3869.UBUNTU16.64 UBUNTU16_64 FOSS edition, Patch 8.8.15_P11. I changed the update URL to HTTP so I could capture it with tcpdump, and I can then see it does this query: https://www.zimbra.com/aus/un...
- Sat Feb 15, 2020 12:04 pm
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
The first thing I'd try, is to just upgrade to the latest version (8.8.15 Patch-7). You can download it at zimbra.org (although I don't know why they offer that, as opposed to zimbra.com, where you have to fill out a form for the open source edition). There are some difficulties upgrading from 8.6 t...
- Sat Feb 08, 2020 11:56 am
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
zim_mike wrote:Doesn't the server or the client let you know when there are updates?
It doesn't seem to, to my dismay

- Tue Jun 11, 2019 7:16 pm
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
I've mentioned it before as a method against attacks on HTTP traffic, but to reiterate: If you have an extra server (small VM will do) and if your user base allows it, you can block the HTTP(S) traffic, and only allow the web mail to be used through an authenticated HTTP proxy . I use this kind of p...
- Sun Jun 09, 2019 12:38 pm
- Forum: Administrators
- Topic: Zimbra Collaboration 8.7.x and Ubuntu OS update corrupts/removes Zimbra installation
- Replies: 40
- Views: 105310
Re: Zimbra Collaboration 8.7.x and Ubuntu OS update corrupts/removes Zimbra installation
I just performed an upgrade from Ubuntu 14.04 Zimbra 8.7.11, to Ubuntu 16.04, Zimbra 8.8.12. Let me document my findings: The instructions on the wiki (as per today) didn't work. After having to fix Java VM debugging startup parameters from localconfig.xml , the mailboxdaemon complained about the st...
- Tue Jun 04, 2019 4:54 pm
- Forum: Administrators
- Topic: Zimbra Collaboration 8.7.x and Ubuntu OS update corrupts/removes Zimbra installation
- Replies: 40
- Views: 105310
Re: Zimbra Collaboration 8.7.x and Ubuntu OS update corrupts/removes Zimbra installation
Joho and David, did you see/use the (semi) official Upgrade Ubuntu 14.x to Ubuntu 16.x and update ZCS 8.7 & above As always, make some kind of backup. My Zimbra virtual machine is on a logical volume, so I always make a backup snapshot. I close all tcp ports when I do it so nothing gets mutated....
- Thu May 30, 2019 7:47 pm
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
You can always use 'stat' to look at the ctime: you can't change that.
- Mon May 27, 2019 6:41 pm
- Forum: Administrators
- Topic: How to properly backup Zimbra?
- Replies: 18
- Views: 14393
Re: How to properly backup Zimbra?
What LVM strategy you use? Snapshotting /opt/zimbra/store ? I outlined it some post back, but in short: the entire virtual machine is on an logical volume, which I snapshot and backup. But, your issue emphasis the important of being able to restore one account, which is kind of tricky with the FOSS...
- Mon May 20, 2019 1:40 pm
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
Smart.
Are you still in a position to do 'diff -r' on the dirs? I'd like to see the difference.
Are you still in a position to do 'diff -r' on the dirs? I'd like to see the difference.
- Mon May 20, 2019 6:48 am
- Forum: Administrators
- Topic: CVE-2019-9670 being actively exploited (Hacked Server)
- Replies: 248
- Views: 356461
Re: CVE-2019-9670 being actively exploited
I want to find out if this version has the same vulnerability... 8.7.6_GA_1776.FOSS I am not quite sure because there are no patches released for this version. There are: you need to update to 8.7.11 and then apply patch 11. I have found this messages in the log, however there is nothing else, like...