Applyinf new security patch

[dspillett]

A quick heads-up for people about to apply the recently announced patch (Critical Security Issue) using the commands listed in that run-down: the commands as currently presented try to move the old versions of the files to a new location without first creating it. If following the method in that forum post, the following:

Code:

cd /tmp;
curl -O http://files.zimbra.com/downloads/security/dom4j-1.5.jar;
mv /opt/zimbra/lib/jars/dom4j-1.5.jar /opt/zimbra/save-07012009/dom4j-1.5-lib.jar;
mv /opt/zimbra/jetty-6.1.5/common/lib/dom4j-1.5.jar /opt/zimbra/save-07012009/dom4j-1.5-common.jar;
cp /tmp/dom4j-1.5.jar /opt/zimbra/lib/jars/dom4j-1.5.jar;
cp /tmp/dom4j-1.5.jar /opt/zimbra/jetty-6.1.5/common/lib/dom4j-1.5.jar;

should become:

Code:

cd /tmp;
curl -O http://files.zimbra.com/downloads/security/dom4j-1.5.jar;
mkdir /opt/zimbra/save-07012009;
mv /opt/zimbra/lib/jars/dom4j-1.5.jar /opt/zimbra/save-07012009/dom4j-1.5-lib.jar;
mv /opt/zimbra/jetty-6.1.5/common/lib/dom4j-1.5.jar /opt/zimbra/save-07012009/dom4j-1.5-common.jar;
cp /tmp/dom4j-1.5.jar /opt/zimbra/lib/jars/dom4j-1.5.jar;
cp /tmp/dom4j-1.5.jar /opt/zimbra/jetty-6.1.5/common/lib/dom4j-1.5.jar;

(note: the above is for 5.x, the relevant change is needed for the other versions too)

[Hubert]

Also, if your Zimbra is new enough to have this command (5+ I believe) you can do

su - zimbra
zmmailboxdctl stop
zmmailboxdctl start

To restart just the mailbox service without restarting all services.

This is not official Zimbra advice but worked for me.