Search found 21 matches

by johnroberts
Tue Sep 26, 2017 8:30 am
Forum: Developers
Topic: SOAP API changes with 8.7.11 ?
Replies: 13
Views: 2748

Re: SOAP API changes with 8.7.11 ?

I'll try to implement the new changes to make it compatible with the latest ZCS 8.7 releases, but we are still on 8.6 so I also have to test it here to be sure we don't break anything. Thanks! For info the package worked well with previous versions of 8.7 and from our tests the above changes resolv...
by johnroberts
Sun Sep 24, 2017 1:45 pm
Forum: Developers
Topic: SOAP API changes with 8.7.11 ?
Replies: 13
Views: 2748

Re: SOAP API changes with 8.7.11 ?

Just out of interest: Which of all the available Zimbra PHP libraries is that? Actually I just tried to find the repo but can't locate it... I also just emailed the developers the updates. The script headers include: /** * Zm_Auth * * @author Yannick Lorenz <ylorenz at 1g6.biz> * @author Fabrizio L...
by johnroberts
Sun Sep 24, 2017 11:51 am
Forum: Developers
Topic: SOAP API changes with 8.7.11 ?
Replies: 13
Views: 2748

Re: SOAP API changes with 8.7.11 ?

Also thanks msquadrat! We use the ZimbraSoapPhp package which started throwing exceptions after the update to 8.7.11. The above information helped us to fix the package and get it back up and working. For information the changes affected every occurrence of SoapVar in each of the php scripts. To hel...
by johnroberts
Tue Jun 09, 2015 4:56 am
Forum: Administrators
Topic: Weak Diffie-Hellman (DH) key exchange parameters - LogJam
Replies: 15
Views: 1585

Weak Diffie-Hellman (DH) key exchange parameters - LogJam

Editing the two nginx configuration files as shown in the blog post (after creating the 2048 bit PEM file) and adding: ssl_dhparam /opt/zimbra/conf/dhparams.pem; Immediately after restarting it was picked up and both the tests: [View:https://weakdh.org/sysadmin.html:940:0] and [View:https://www.ssll...
by johnroberts
Fri Jun 05, 2015 2:04 am
Forum: Administrators
Topic: Weak Diffie-Hellman (DH) key exchange parameters - LogJam
Replies: 15
Views: 1585

Weak Diffie-Hellman (DH) key exchange parameters - LogJam

Hello Jorge, Thanks a lot for the feedback but unfortunately it didn't resolve the main urgent issue of enabling DH 2048 bit random keys in 8.6 We've since solved the issue by creating a random 2048 key using openssl and then have Nginx pick this up during start-up. At the same time I notice...
by johnroberts
Sun May 24, 2015 10:39 am
Forum: Administrators
Topic: Weak Diffie-Hellman (DH) key exchange parameters - LogJam
Replies: 15
Views: 1585

Weak Diffie-Hellman (DH) key exchange parameters - LogJam

Hello All, Following on from the LogJam bug discovery we are upgrading our servers. Unfortunately we haven't worked out how to do this with our Zimbra web client servers as yet. There are these two links: [View:https://blog.zimbra.com/2015/05/logjams-impact-zimbra-collaboration:940:0] [View:http...
by johnroberts
Tue Oct 21, 2014 3:19 am
Forum: Mobility
Topic: SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?
Replies: 6
Views: 872

SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?

We had problems like the above and I think it was linked to the fact that the Z-push servers had not been stopped prior to SSLv3 being blocked, Zimbra restarted, then Z-Push servers restarted. I'm not an expert on this but I think the Z-Push connections stay active. If they are not stopped prior...
by johnroberts
Sat Oct 18, 2014 7:30 am
Forum: Mobility
Topic: SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?
Replies: 6
Views: 872

SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?

We finally got this working.PHP, used by Z-PUSH and Zimbra backend will support TLS automatically from we can see. The issue is that in Zimbra backend (zimbra.php) is forcing it to use SSLv3 by the line:curl_setopt($this->_curl, CURLOPT_SSLVERSION, 3 );According to the comments, this was added to ve...
by johnroberts
Thu Oct 16, 2014 10:40 am
Forum: Mobility
Topic: SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?
Replies: 6
Views: 872

SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?

According to here: [View:http://stackoverflow.com/questions/26378351/error1408f10bssl-routinesssl3-get-recordwrong-version-number-paypal-maybe:0:0] setting curl_setopt($this->_curl, CURLOPT_SSLVERSION, 3 ) to 1, ie. curl_setopt($this->_curl, CURLOPT_SSLVERSION, 1 ) should change to use TLS... Unfort...
by johnroberts
Thu Oct 16, 2014 8:38 am
Forum: Mobility
Topic: SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?
Replies: 6
Views: 872

SOLVED: Z-Push Zimbra Backend, change from SSLv3 (Poodle) to TLS?

Hi All, Due to the recent security problem found in SSLv3, otherwise known as Poodle, we want to disable this on our Zimbra servers to force use of TLS instead. Unfortunately when we did that our Z-Push connections went down as Z-Push Zimbra Backend is using SSLv3 to communicate with the Zimbra serv...

Go to advanced search