Search found 10 matches

by rodrigoferra
Wed Oct 09, 2019 6:01 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

zimico wrote:Hi, I have the same question of Bill's. Why do you allow a huge range of IP (10.142.0.0/20) to relay through your zimbra MTA server?
Best regards,
Minh.

I would like to allow only localhost, but I don’t know if I should remove all these mta information.
by rodrigoferra
Wed Oct 09, 2019 5:05 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

It's quite possible you don't have a problem. My apologies for that info I posted about postfix, I can't really understand where I got it - it must be my advancing years and your output is what the command should show. Can you explain in a bit more detail what the my networks entry is showing, are ...
by rodrigoferra
Wed Oct 09, 2019 4:24 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

Ops, so I think I have a huge problem: root@mecmail:/var/log# ps aux | grep postfix postfix 9115 0.0 0.0 142636 8432 ? S 15:27 0:00 smtpd -t pass -u -o stress= -o smtpd_tls_security_level=may -o content_filter=scan:[127.0.0.1]:10030 postfix 11422 0.0 0.0 142516 8468 ? S 15:34 0:00 smtpd -t pass -u -...
by rodrigoferra
Wed Oct 09, 2019 3:04 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

Have you had a look in the Zimbra log to see if any of these addresses appear there? Is it possible you have any compromised accounts? Does your ZimbraMtaMyNetworks contain the correct settings for your installation and nothing extraneous in there? Hello, In my zimbra.log I don't have anything abou...
by rodrigoferra
Wed Oct 09, 2019 12:45 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

Let's go back a step, you should always give the version of ZCS that's in use by posting the full output of the following command: zmcontrol -v Ok, my version is: Release 8.8.12.GA.3794.UBUNTU14.64 UBUNTU14_64 FOSS edition, Patch 8.8.12_P1 proxy. I had that problem with the exploit´s one or two mon...
by rodrigoferra
Wed Oct 09, 2019 12:06 pm
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Re: Sending emails from non registered hosts

I don't really understand what you're describing, it sounds like you're allowing another server to relay through your server - is that correct? If it is then it sounds like you have an open relay, you can check that via one of the (many) sites on the internet that provide this service - I'd suggest...
by rodrigoferra
Wed Oct 09, 2019 10:22 am
Forum: Administrators
Topic: Sending emails from non registered hosts
Replies: 13
Views: 1267

Sending emails from non registered hosts

Hello, First of all, thanks for the help. Currently, I installed a relay system to get better management from my sent emails. One thing I notice is that my zimbra is sending from hosts that are not registered, is there any solution to avoid it? For example, Host test.com is sending email but is not ...
by rodrigoferra
Thu Jul 11, 2019 3:49 pm
Forum: Administrators
Topic: about opendkim service
Replies: 6
Views: 1295

Re: about opendkim service

I was facing the exact same problem, solved with it: https://sebastian.marsching.com/blog/archives/124-OpenDKIM-bug-in-Zimbra-Collaboration-Server.html Recently I stumbled across a bug in the OpenDKIM configuration of the Zimbra Collaboration Server. In ZCS 8.0.3 (Community Edition, but I guess the ...
by rodrigoferra
Thu Jul 11, 2019 3:47 pm
Forum: Administrators
Topic: CVE-2019-9670 being actively exploited
Replies: 239
Views: 138695

Re: CVE-2019-9670 being actively exploited

My currently situation is that everything seems to be back to normal. - Applied the pacth 14; - Searched for the files, found one file called Docs.js with some injection code on it, cleanned; - A problem with DKIM and ipv6 after the patch; - Renew all the keys and passwords. The opendkim issue I sol...
by rodrigoferra
Thu Jul 11, 2019 11:57 am
Forum: Administrators
Topic: CVE-2019-9670 being actively exploited
Replies: 239
Views: 138695

Re: CVE-2019-9670 being actively exploited

Two days ago I was attacked by this bitcoin stuff. Did every step necessary, patched the software, followed a lot of instructions... Currently, my zmopendkimctl is not running and the zmconfigd always seems to fail on start but later it's working. First-time I'm facing something like this. Best rega...

Go to advanced search