DDOS Attack open MEMCACHED in Zimbra
Open MEMCACHED in Zimbra SECURITY PROBLEM Quote I came across this today, and although I agree that firewalling is prudent, I also disagree that ports should be bound to all IPs by default on the assumption that a firewall will a) be in place and b) be configured to block this traffic. In my view, binding to all IPs should only occur when there is a specific need for it (i.e. multi-server). Here's what might appear to be a better way to do this, for anyone else searching as I was today: Code: Select all su - zimbra Make the changes: Code: Select all /opt/zimbra/bin/zmprov ms `zmhostname` zimbraMemcachedBindAddress 127.0.0.1 /opt/zimbra/bin/zmprov ms `zmhostname` zimbraMemcachedClientServerList 127.0.0.1 Verify: Code: Select all /opt/zimbra/bin/zmprov -l gs `zmhostname` zimbraMemcachedBindAddress /opt/zimbra/bin/zmprov -l gs `zmhostname` zimbraMemcachedClientServerList Restart Zimbra: Code: Select all zmcontrol resta