Results 1 to 6 of 6

Thread: Securing Ubuntu Server running Zimbra

  1. #1
    AutootuA's Avatar
    AutootuA is offline Senior Member
    Join Date
    Aug 2007
    Location
    Nashville, GA
    Posts
    72
    Rep Power
    8

    Default Securing Ubuntu Server running Zimbra

    I'm wanting to change port 22 to something else. I came across these steps to secure Ubuntu. Would this break Zimbra?

    Code:
    * Create Key Pair
    
    	- run: ssh-keygen
    
    	- passphrase: WHATEVERYOUWANTHERE
    
    	- run: cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
    
    	- run: rm ~/.ssh/id_rsa.pub
    
    	
    * Move Key to Local Machine
    
    
    * Configure SSHD on Server
    
    	- run: sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults
    
    	- run: sudo chmod a-w /etc/ssh/sshd_config.factory-defaults
    
    	- run: sudo vi /etc/ssh/sshd_config
    
    		****MAKE THESE CHANGES****
    
    			Port 22 ---> Port ****
    
    			PermitRootLogin yes ---> PermitRootLogin no
    
    			#PasswordAuthentication yes ---> PasswordAuthentication no
    
    			#Banner /etc/issue.net ---> Banner /etc/issue.net
    
    			UsePAM yes ---> UsePAM no
    
    			***Add To Bottom***
    
    			AllowUsers YOURUSER
    
    	
    	- run: sudo /etc/init.d/ssh restart
    Version 7.1.2_GA_3268.NETWORK

  2. #2
    h_aleksi is offline Intermediate Member
    Join Date
    Jan 2009
    Location
    Finland
    Posts
    17
    Rep Power
    6

    Default

    Not as far you don't reserve ports used by zimbra for ssh.

  3. #3
    veronica is offline Outstanding Member
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    8

    Default

    Offcourse Yes you will face problems. Read Mail Queue Monitoring - Zimbra :: Wiki

    Need to change zimbraRemoteManagementPort port from 22 to what ever you are changing to.

  4. #4
    jummo is offline Special Member
    Join Date
    May 2009
    Location
    Bremen, Germany
    Posts
    122
    Rep Power
    6

    Default

    Zimbra use SSH for Mail Queue Monitoring [1]. Therefore you can't change the port from 22 to whatever, except you change the port in the scripts for Mail Queue Monitoring. Furthermore you need to add zimbra to the AllowUsers directive.

    [1] Mail Queue Monitoring - Zimbra :: Wiki

  5. #5
    veronica is offline Outstanding Member
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    8

    Default

    Why do you need to change port in script ? wiki Mail Queue Monitoring - Zimbra :: Wiki clearly says :-

    " If you're not running sshd on port 22, modify the zimbraRemoteManagementPort attribute on the server:

    zmprov ms MAIL.DOMAIN.COM zimbraRemoteManagementPort 2222"\

  6. #6
    jummo is offline Special Member
    Join Date
    May 2009
    Location
    Bremen, Germany
    Posts
    122
    Rep Power
    6

    Default

    Sorry, I haven't read the whole site. It was just a idea.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 9
    Last Post: 02-25-2009, 04:39 AM
  2. [SOLVED] Moving Zimbra to a new server
    By krolen in forum Administrators
    Replies: 109
    Last Post: 02-05-2009, 11:38 AM
  3. Big Fubar on 5 FOSS GA Upgrade
    By uxbod in forum Administrators
    Replies: 24
    Last Post: 01-21-2008, 03:37 AM
  4. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 07:46 PM
  5. huge log size
    By rmvg in forum Administrators
    Replies: 5
    Last Post: 01-02-2007, 10:39 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •