How to fix the Logjam issue in Zimbra Collaboration 8.5 and 8.6

   KB 21985        Last updated on 2015-07-16  

(0 votes)

Logjam & Zimbra 8.5 8.6

In order to disable weak DH Ciphers you can configure your ngnix configuration as follows:

  cd /opt/zimbra/conf
  openssl dhparam -out dhparams.pem 2048
  chown zimbra:zimbra dhparams.pem

Now edit


and add

  ssl_dhparam /opt/zimbra/conf/dhparams.pem;


 ssl_verify_depth        ${ssl.clientcertdepth.default};

If you don't have set your CipherSuites you can


and finally

 zmproxyctl restart

Now you can verify your settings using and (talk) 19:49, 29 May 2015 (UTC)

Verified Against: Zimbra Collaboration 8.6, 8.5 Date Created: 06/15/2015
Article ID: Date Modified: 2015-07-16

Try Zimbra

Try Zimbra Collaboration with a 60-day free trial.
Get it now »

Want to get involved?

You can contribute in the Community, Wiki, Code, or development of Zimlets.
Find out more. »

Looking for a Video?

Visit our YouTube channel to get the latest webinars, technology news, product overviews, and so much more.
Go to the YouTube channel »

Jump to: navigation, search