ZIMBRA SECURITY COMPLIANCE REQUIREMENTS

Secara definisi, arti dari security adalah “the state of being free from danger or threat” atau “suatu kondisi yang bebas dari bahaya atau ancaman”. Jika dikaitkan dengan bisnis, security bisa diartikan suatu kondisi, yg menjadikan perusahaan bisa terus menjalankan roda bisnis tanpa halangan, bahaya dan ancaman. Jika dikaitkan dengan IT, biasanya akan merujuk ke dua bagian, yaitu data dan network security, atau keamanan data dan jaringan. Setiap organisasi tentunya mengharuskan sistem mereka comply pada kebutuhan-kebutuhan security, khususnya Zimbra Security seperti:

Reputation of Zimbra Security1. REPUTATION – Better reputation increase Zimbra Security

Requirement 1:minimize or elimate spam/virus
Requirement 2:protecing company reputation
Requirement 3: understand and analyzing log files

 

Data & Identity protection of zimbra security2. DATA & IDENTITY PROTECTION – Protect whats yours

Requirement 4: minimize or eliminate identity theft (ssl, https)
Requirement 5: minimize or eliminate data theft (multiserver, encryption, smime)
Requirement 6: protecting company data (backup, retention, archiving, remote wipe)
Requirement 7: monitoring & auditing (archving, discovery)
Requirement 8: controlling admin & users access (admin delegation)

 

availability & redundancy of zimbra security3. AVAILABILITY & REDUNDANCY – Redundant everything as much as possible

Requirement 9: minimize or eliminate downtime (multi-mta, multi-proxy, multi-ldap, multi-mbox, high availability, vsphere-ha, vmware-vsphere, redhat cluster)
Requirement 10: patch/update/upgrade management (safe procedure upgrade)
Requirement 11: performance (hsm, tuning, move mailbox)

 

Agar kita terus bisa meningkatkan compliance terhadap security khususnya terkait Zimbra, maka hal-hal berikut penting untuk terus dipahami:

 

1. UNDERSTANDING ZIMBRA ARCHITECTURE
ARCHITECTURE APPROACH
OPERATING SYSTEM
MODEL-MODEL PENGEMBANGAN
MAILBOX ARCHITECTURE
SYSTEM ARCHITECTURE
TRAFFIC FLOW
2. UNDERSTANDING ZIMBRA MTA
DEPLOYMENT
POSTFIX
MTA FUNCTIONALITY
ANTISPAM
ANTIVIRUS
RECEIVING SENDING EMAIL
3. UNDERSTANDING DNS & RBL
UNDERSTAND HOSTNAME RESOLUTION
FORWARD LOOKUPS
REVERSE LOOKUPS
RBL
4. UNDERSTANDING ZIMBRA FILE CONFIGS
localconfig.xml
Common file config
5. UNDERSTANDING ZIMBRA CLI TOOLS
zmprov overview
other CLI: zmmailbox, zmaccts, zmlocalconfig, zmmsgtrace, zmmboxmove, zmblobchk, zmsoap, etc
service CLI: zm*ctl
6. UNDERSTANDING ZIMBRA ANTISPAM COMPONENTS
ZC AMAVISD-NEW
ZC SPAMASSASSIN
ZC CLAMAV
EXTERNAL COMPONENTS: RAZOR2, PYZOR, DCC, POSTGREY
7. IMPROVING ZIMBRA ANTISPAM
SPAMASSASSIN: INTERNAL BLACKLIST/WHITELIST, BASIC/META RULES, CLASS A IP BLOCKS, RAZOR, PYZOR, SPF
AMAVISD: CLOUDMARK AUTHORITY MILTER
GREYLISTING
DISCARDS EMAILS
EXTERNAL WHITELIST
8. UNDERSTANDING ZIMBRA POLICYD
cbpolicyd/clubringer as a multi-platform policy server
Quota inbound dan outbound email
9. USER RESTRICTION
Restriction policy using zimbra tools
Rejecting over quota mail, Restricted User Must Login, Reject unlisted user, Reject Unknown Sender Domain, Restrict users to certain domain
10. UNDERSTANDING SPF/DKIM
SPF
DKIM
11. LOG ANALYZING
UNDERSTANDING LOG FILES (MAIN LOGS & SPEFICIF LOGS)
LOG LEVEL
ACTIVITIES: WHERE & WHEN
MESSAGE HEADER

Kontak Kami, Jabetto Zimbra leading provider Indonesia untuk memahami lebih lanjut Zimbra Security