1 Topic by shareefbab

  • shareefbab
  • Member
  • Offline
  • Registered: 2016-12-15
  • Posts: 30

Topic: zmeu vulnerability scanner

==== Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.7 professional
- Linux/BSD distribution name and version: CentOS Linux 7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx):Nginx
- Manage mail accounts with iRedAdmin-Pro? YES
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Our firewall has detected as Critical as zmeu vulnerability scanner on iRedmail Server
from source ip - 173.249.34.14
         destination ip - our mail server IP

As our Firewall detected as Critical - is there any solution.

Thanks
Shareef

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 31,088

Re: zmeu vulnerability scanner

You can block it in firewall.

I'm afraid that I don't quite understand your question. sad

3 Reply by shareefbab

  • shareefbab
  • Member
  • Offline
  • Registered: 2016-12-15
  • Posts: 30

Re: zmeu vulnerability scanner

ZhangHuangbin wrote:

You can block it in firewall.

I'm afraid that I don't quite understand your question. sad

Dear Mr. Zhang

Our firewall detect the below on iredmail server

Tue 19 Nov 2019 09:14:55     223.112.190.70/172.20.11.12 (N/A)     ZmEu vulnerability Scanner     Critical     Detect
Mon 18 Nov 2019 21:53:53     213.222.56.130/172.20.11.12 (N/A)     ZmEu vulnerability Scanner     Critical     Detect

I blocked some IP's but again my firewall detects this with different IP

Thanks
Sahreef