Search found 687 matches

by Rich Graves
Thu May 03, 2007 8:34 am
Forum: Zimbra Connector for Outlook
Topic: Disable saved password?
Replies: 12
Views: 986

Disable saved password?

That's a use case I don't find compelling. If you're concerned about people leaving themselves logged on without screen locking, and humans walking up to their computers and messing around, then the appropriate responses include the following: Windows group policy (or local security poli...
by Rich Graves
Tue Apr 17, 2007 7:01 am
Forum: Administrators
Topic: jpegPhoto in addressbook
Replies: 2
Views: 336

jpegPhoto in addressbook

OK, entered as Bug #16197.
I suspect that it might be possible to make at least passthrough of existing thumbNailPhoto/jpegPhoto attributes to Outlook+ZCO clients work without any server-side changes. Just need to figure out how.
by Rich Graves
Mon Apr 16, 2007 4:53 pm
Forum: Administrators
Topic: jpegPhoto in addressbook
Replies: 2
Views: 336

jpegPhoto in addressbook

Carleton populates our internal LDAP server with jpegPhoto (the actual jpeg data, as binary; not my decision, but surprisingly, it works at Carleton's scale). Our legacy webmail pops up pictures on mouseover of carleton.edu email addresses, see attached.It's not critical, but it would be &qu...
by Rich Graves
Fri Apr 13, 2007 6:29 am
Forum: Administrators
Topic: Direct URL for Options panes?
Replies: 2
Views: 245

Direct URL for Options panes?

That's pretty good. Something like app=options&tab=filters would be better.Is there a list of such deep links anywhere?Any other suggestions for addressing the underlying problem? We've got hundreds of users accustomed to having server-side filters/vacation functionality integrated with ...
by Rich Graves
Thu Apr 12, 2007 6:23 pm
Forum: Administrators
Topic: HSM process completes prematurely, no compression done
Replies: 1
Views: 211

HSM process completes prematurely, no compression done

Attaching screenshot to clarify what I'm talking about.The HSM process is correctly moving older blobs to the secondary volume.But I have configured HSM to compress blobs over 4K (default). That compression is not happening.The attached image suggests to me that Zimbra knows that the process is ...
by Rich Graves
Thu Apr 12, 2007 6:10 pm
Forum: Zimbra Connector for Outlook
Topic: Disable saved password?
Replies: 12
Views: 986

Disable saved password?

The threat I'm worried about is trojans that enumerate and compromise the password list. The .edu community is seeing a fair number of targeted attacks on financial officers. Word zero-day exploits purporting to be complaints from parents, etc.Do you use pOptionalEntropy? To the limited extent I...
by Rich Graves
Thu Apr 12, 2007 5:12 pm
Forum: Administrators
Topic: Direct URL for Options panes?
Replies: 2
Views: 245

Direct URL for Options panes?

As a workaround for the lack of support for server-side rules in ZCO and IMAP clients, we were looking at giving people deep links to Options/Mail Filters.
What would be the URL? Could we count on its remaining stable going forward?
by Rich Graves
Sun Apr 08, 2007 10:11 pm
Forum: Zimbra Connector for Outlook
Topic: Disable saved password?
Replies: 12
Views: 986

Disable saved password?

Just so I can check this off for good... what crypto algorithm? I'm assuming reasonable use of 3DES/RC5/AES sincee Windows makes it so easy, but since we don't have the source code (we don't, right?), we just have to trust you.
by Rich Graves
Sun Apr 08, 2007 10:02 pm
Forum: Zimbra Connector for Outlook
Topic: Disable saved password?
Replies: 12
Views: 986

Disable saved password?

That sounds good. I've had bad experience with programs that save passwords without meaningful encryption (ws-ftp, mozilla thunderbird where a "master password" is not used), but if you're encrypting with the logged-in user's password and using the standard crypto APIs appropri...
by Rich Graves
Sun Apr 08, 2007 12:18 pm
Forum: Zimbra Connector for Outlook
Topic: Disable saved password?
Replies: 12
Views: 986

Disable saved password?

The Outlook Connector defaults to saving the user's password, and I can't find a way to stop this.
Yes, I know that all synchronized email is stored on disk in the clear, but passwords work for things other than email, so there's still an added risk.
Am I missing something?

Go to advanced search