Page 1 of 1

Zimbra Desktop 7.2.8

Posted: Mon Mar 20, 2017 8:16 pm
by asyvak
Hi, guys!

I am writing a feature which intercepts SMTP e-mails. It works good with Thunderbird, Mailbird and other clients except Zimbra and The Bat!.

All communications are secure, it means I parse e-mails sent either via STARTTLS or via SSL/TLS. Note, I understand that SSL 3.0 is equal to TLS 1.0

First, I cannot set my own certificate and private key in Zimbra.
Second, I cannot see or set the protocol used by Zimbra for an outgoing SMTP server. I just check the checkbox 'Use SSL...'

I use Boost.Asio and set SSL context to tlsv12 without verifying peer certificates!

The error I get is certificate unkown alert 46

I created a basic SSL server with context tlsv1 and reproduced the error.
Step by step I came to conclusion that you use TLS v.1.0 which is SSL 3.0 which is insecure.
I have created the topic at ... rification

Q1: Where can I extract the certificate and the private key you use in Zimbra?
Q2: Is this possible to set up Zimbra to use TLS v.1.2?
Q3: What valuable changes did you introduce in Zimbra 7.3.0 which can solve my problem? TLS v.1.2?

Zimbra Desktop 7.2.8 SSL certificates storage

Posted: Tue Mar 21, 2017 8:22 am
by asyvak
Good day!

I am a developer writing a C++ program to intercept e-mails.

Where do you store SSL certificates in Zimbra Desktop 7.2.8 on Windows 8.1?