Finding messages: Difference between revisions
m (Formatting) |
m (Forensic moved to Finding messages: New title more descriptive of article content) |
(No difference)
|
Revision as of 20:59, 26 September 2008
Finding messages
You can use the zmmsgtrace script if you have the messageID
Example:
zmmsgtrace -i 30004771.6541211949637230.JavaMail.root@zimbra
You can also use it to find message sent by user1 to user2 in the last 30 days
zmmsgtrace -s user1 -r user2
But this does not give you where the message originated from the best is to retrieve the date/time and use it to inspect the /opt/zimbra/jetty/logs/access_log.*