Zimbra Sanitizer Flow

How Zimbra Sanitizes E-Mail Content

Photo by frank mckenna on Unsplash
<dependency org="org.owasp.antisamy" name="antisamy" rev="1.5.3"/><dependency org="com.googlecode.owasp-java-html-sanitizer" name="owasp-java-html-sanitizer" rev="20190610.1"/>

No, there aren’t any security implications after disabling the owasp sanitizer. When you disable it, the defanger is active and protects the system. Owasp sanitizer introduces performance enhancement over defanger but there are no such known security issues which are introduced after disabling the owasp sanitizer.

<copy file=”${zm-mailbox.basedir}/store-conf/conf/antisamy.xml” todir=”${build.dir}/zimbra/conf/”/>
<copy file=”${zm-mailbox.basedir}/store-conf/conf/owasp_policy.xml” todir=”${build.dir}/zimbra/conf/”/>
<tr><td style=""><a href="https://instagram.com/accounts/confirm_email/21S7pC3b/dWZ1a0B5cG9zdGEubmV0/?app_redirect=False" style="color:#3b5998;text-decoration:none;display:block;width:370px;"><table border="0" width="390" cellspacing="0" cellpadding="0" style="border-collapse:collapse;"><tr><td style="border-collapse:collapse;border-radius:3px;text-align:center;display:block;border:solid 1px #009fdf;padding:10px 16px 14px 16px;margin:0 2px 0 auto;min-width:80px;background-color:#47A2EA;"><a href="https://instagram.com/accounts/confirm_email/21S7pC3b/dWZ1a0B5cG9zdGEubmV0/?app_redirect=False" style="color:#3b5998;text-decoration:none;display:block;"><center><font size="3"><span style="font-family:Helvetica Neue,Helvetica,Roboto,Arial,sans-serif;white-space:nowrap;font-weight:bold;vertical-align:middle;color:#fdfdfd;font-size:16px;line-height:16px;">Confirm Email Address</span></font></center></a></td></tr></table></a></td></tr>
<tr><td><a href="https://instagram.com/accounts/confirm_email/21S7pC3b/dWZ1a0B5cG9zdGEubmV0/?app_redirect=False" style="color:#3b5998;text-decoration:none;display:block;width:370px" target="_blank" rel="nofollow noopener noreferrer"><table border="0" width="390" cellspacing="0" cellpadding="0" style="border-collapse:collapse"><tbody><tr><td style="border-collapse:collapse;border-radius:3px;text-align:center;display:block;border:solid 1px #009fdf;padding:10px 16px 14px 16px;margin:0 2px 0 auto;min-width:80px;background-color:#47a2ea"></td></tr></tbody></table></a><a href="https://instagram.com/accounts/confirm_email/21S7pC3b/dWZ1a0B5cG9zdGEubmV0/?app_redirect=False" style="color:#3b5998;text-decoration:none;display:block" target="_blank" rel="nofollow noopener noreferrer"><center><font size="3"><span style="font-family:'helvetica neue' , 'helvetica' , 'roboto' , 'arial' , sans-serif;white-space:nowrap;font-weight:bold;vertical-align:middle;color:#fdfdfd;font-size:16px;line-height:16px">Confirm Email Address</span></font></center></a></td></tr>
sudo -u zimbra /opt/zimbra/bin/zmlocalconfig -s | grep zimbra_use_owasp_html_sanitizer

--

--

I would love to change the world, but they won’t give me the source code | coding 👩🏼‍💻 | coffee ☕️ | jazz 🎷 | anime 🐲 | books 📚 | drawing 🎨

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Nil Seri

I would love to change the world, but they won’t give me the source code | coding 👩🏼‍💻 | coffee ☕️ | jazz 🎷 | anime 🐲 | books 📚 | drawing 🎨