Menu

What is JBoss? What is JBoss Domain Management ? Install JBOSS-EAP 6.4 Start & Stop JBOSS script. Application Deployment Methods - 1. Application Deployment Methods - 2. Application Deployment Methods - 3. Multiple Instance of JBoss EAP. SSL on JBOSS EAP. WINDOWS service for JBOSS EAP. JBoss EAP 7 - DOMAIN Installation. DOMAIN DEPLOYMENT - GUI MODE. SSL on JBOSS 7.1 Admin console & Application. Apache mod_jk HTTP Connector - JBOSS AS 7.1 Apache Configure mod_proxy as load balancer (LB)- JBoss 7.1 Issue SocketTimeoutException JBoss-Remote JMX Connection (jvisualvm) Apache Mod Cluster as load balancer (LB) - JBoss 6.4 Out of space in CodeCache java.sql.SQLRecoverableException: Closed Connection sun.security.provider.certpath.SunCertPathBuilderException JBOSS EAP 6 TO 7 Migration Host Header injection on JBOSS EAP 7.2 Encrypting Datasource Passwords using Vault in JBOSS
Some useful links of IBM. WAS Installation using command line. Installing Suppliments (IHS/Plugins/WCT) command line. Uninstalling Suppliments (IHS/Plugins/WCT) command line. Installing fix-pack using command line. Profiles in WebSphere® Application Server ND. WebSphere Profiles list & Basics Commands Commands for Custom / Application server / Dmgr Profiles Creating WAS-ND Cluster using GUI MODE. Application Deployment on WAS-ND - Cluster Env. Analyze - JVM logs. What is MustGather script ? PsList to troubleshoot high CPU usage in Windows WebSphere App Server - Updating ports in existing profiles Installation Manager (IM) on non-default location Websphere Base or ND Installation using Command Install or Update FIXPACK on WebSphere 8.5.+ Install SDK 8.0 on Websphere 8.5.5.9+ using Command method. How to Create a Clone of any profiles on WAS. Installation Manager (IM) on non-Administrator user. WebSphere Application Server 7.0.0.X & FIXPACK install / Update on the non-default location. WebSphere ND Migration 7.0 to 8.0 / 9.0 IBM WebSphere 9.0.0.0 and IHS (IBM HTTP SERVR) Installation with Fixapck using Command Line (non-root) user
Configure IHS (IBM HTTP Server) with WAS 8.5.X.X. Multiple IHS in front of WAS (On Single Install). Monitor IBM HTTP Server connections. Self-signed Cert using ikeyman tool. Self-Signed Cert using command line. Decrypt Stash File.
Apache HTTP Server HTTP STATUS CODES Apache Rewrite Rules How to configure Apache MPM. Install Apache HTTP Server 2.4.27 ver. on LINUX Apache Tomcat - 9.0.0.M21 Installation on WIN Apache mod_jk HTTP Connector - JBOSS AS 7.1 Apache Configure mod_proxy as load balancer (LB)- JBoss 7.1 Apache error : Server ran out of threads to serve requests (Windows) Apache Mod Cluster as load balancer (LB) - JBoss 6.4 Redirect traffic during maintenance httpd (Apache) Error: systemd-tty-ask-password-agent tool! SSL certificate supports Weak Ciphers How to install opensource mod_security on Apache 2.4 How to upgrade opensource apache from 2.4.39 to 2.4.46 (Minor Version Upgrade). What is Nginx & How to install on RHEL Install Nginx plus on RHEL 7.4 / UNIX Monitor Apache httpd process/thread status Monitor Apache httpd ModJK status Monitor Apache httpd Proxy balancer-manager status Monitoring of JBoss servers through Nagios.
Tomcat ghostcat vulnerability (JBoss /Tomcat) SSL certificate supports Weak Ciphers/Encoding (3DES) (Apache 2.4) SSL Medium Strength Cipher Suites Supported (SWEET32) [Tomcat Server] ETag vulnerability & X-Powered-By : jsp/2.2 Missing Security Header(x-xss-protection) & Clickjacking Disable HTTP TRACE / TRACK / OPTIONS/DELETE Method. Information disclosure through server response headers Apache-Coyote & X-Powered-By (JBoss). Local File Inclusion Vulnerabilities OR Directory traversal attack HTTP Host Header Injection (Apache 2.4) Restrict application Accessible by IP Address & HTTP Host Header Injection (Apache 2.4) Disable/Remove Server: Apache header info version (Apache2.4) TLS1.2 Protocol enable for IBM WebSphere with SSL Handshake Debug
🌩️ How I Cleared My AZ-900 Microsoft Azure Fundamentals Exam 🌐🧱 Enterprise Network Architecture — Akamai, DNS, WAF, DMZ, SSL & Firewall Flow Explained for Middleware & DevOps EngineersπŸ”’πŸ”‘ 🌩️ AZ-104 Microsoft Azure Administrator – Beginner’s Guide (2025 Edition)
⚙️ DevOps vs DevSecOps Explained:Learning Path for Beginners πŸ” πŸ’» Top 100+ Linux Commands for Middleware & DevOps Engineers ⚙️ 🐧 Linux Shell Scripting for Beginners – Complete Tutorial Series.
how-to-manually-install-new-java-path SunCertPathBuilderException out of space in CodeCache for adapters What is GC , Heap Memory & Metaspace ? Types of GC , analyze GC logging and REDHAT JVM Tool. How to make datasource test-connection to Oracle / PostgreSql / MSSQL DB Instance.. How to make datasource test-connection to MSSQL DB Instance. How to make datasource test-connection to Postgresql DB Instance. How to make datasource test-connection to Oracle DB Instance. How to Check DB latency using Datasource Test-Connection. Install a new java path to the alternatives. Xmanager and Set Display. Install LAMP on SUSE Linux with example
Openssl Commands for Wildcard & SAN certificates. What is SSL, What is One-Way SSL & Two-Way SSL? Openssl Self-Signed SAN's certificate SSL certificate supports Weak Ciphers Some SSL issues (Client TLS1.2 , Truststore & SSL debug) with Solutions TLS / SSL Certificate Lifetimes Reduced to 47 Days. SSL Certificate Renewal on Akamai WAF and Its Impact on Applications.
IBM Bluemix - Free 30 Days‎ Create a IBM Bluemix Account IBM WebSphere® Application Server on IBM Bluemix Cloud.
MiddlewareBox‎

4 Nov 2025

Worked on VMC Today – Here’s a Simple Explanation for Everyone

How Brands Show Logo in Gmail Using VMC & BIMI (SPF, DKIM, DMARC, SVG Tiny PS) | MiddlewareBox

Today I discovered something intresting that we encounter daily but rarely understand – how company logos appear in your Mails or Gmail inbox. 🀯

Have you noticed when you receive emails from major brands like Google, Amazon, or your bank, their official logo displays right next to the sender's name? Ever wondered how that works?

I uncovered the answer today, and it's called VMC – Verified Mark Certificate. It's actually much simpler than it sounds! I'm sharing everything I learned here in easy-to-understand language so you can implement this too. 😊

πŸ” What You Need Before Getting VMC – Verified Mark Certificate
  • Your company logo must be trademarked.
    • Official government trademark registration is required.
  • Logo must be in .SVG Tiny PS format.
    • SVG: Scalable Vector Graphics
    • Tiny PS: Tiny Portable/Secure profile (lightweight & email-safe)
  • Email authentication must be properly configured:
    • SPF: Sender Policy Framework
    • DKIM: DomainKeys Identified Mail
    • DMARC: Domain-based Message Authentication, Reporting & Conformance
    • DMARC policy must be: p=quarantine or p=reject with pct=100
  • You will receive a .pem VMC certificate from the Certificate Authority.
    • PEM: Privacy Enhanced Mail format

πŸ“˜ TABLE OF CONTENTS

Use this Link :
  • bimigroup.org/bimi-generator/

    • πŸ”Ž What is VMC – Verified Mark Certificate?

    • Some emails display the company's logo next to the sender's name — that’s VMC in action.
    • VMC (Verified Mark Certificate) allows your official company logo to appear in Gmail, Yahoo, Apple Mail, etc.
    • It verifies that your email is genuinely sent by your organization and not a phishing attempt.
    • Think of it as a ✔️ verification badge for your business emails.

    🎯 Why Organizations Implement VMC

    BenefitExplanation
    Display Logo in InboxYour brand appears professional and trustworthy in every email.
    Build Customer TrustRecipients can instantly identify legitimate emails from your organization.
    Prevent Email SpoofingProtects customers from scammers impersonating your brand.
    Increase Email EngagementVerified logos lead to higher open rates and reduced spam filtering.

    πŸ” Getting a VMC Certificate

    • Choose a Certificate Authority: DigiCert, Entrust, Sectigo.
    • Provide trademark proof — your logo must be officially registered. - Organisation Verification.
    • Prepare your logo in SVG Tiny PS/S format.
    • Complete CA organization & trademark validation.
    • Upon approval, you’ll receive the vmc.pem certificate file.

    πŸ“¦ Understanding the .PEM Certificate & Hosting Options

    • After approval, you get a file: vmc.pem.
    • Both logo and pem must be publicly accessible:
    • logo.svg
      vmc.pem

    Option 1: Hosted by Certificate Authority by Digicert or Entrust (Easy)

    https://vmc.digicert.com/<your-id>.svg
https://vmc.digicert.com/<your-id>.pem

    Option 2: Self-Host on Your Domain (Recommended)

    https://brand.yourdomain.com/bimi/logo.svg
https://brand.yourdomain.com/bimi/vmc.pem

    Directory structure:

    /bimi
├── logo.svg
└── vmc.pem

    🧩 Creating Your BIMI DNS Record

    • Once files are hosted, create a BIMI TXT record.
    • Host: default._bimi
    • Type: TXT

    BIMI TXT Value:

    v=BIMI1; l=https://brand.yourdomain.com/bimi/logo.svg; a=https://brand.yourdomain.com/bimi/vmc.pem; avp=digicert

    Note: avp is optional. It indicates the certificate authority.

    πŸ§ͺ Testing Your BIMI & VMC Implementation

    πŸ’Ž Pro Tip: Use crt.sh for Certificate Search

    • crt.sh helps you search SSL/TLS & VMC certificates.
    • Search by domain, CA, or organization.
    • Link: crt.sh

    ❓ Frequently Asked Questions

    • Do I configure VMC in DigiCert?
      πŸ”₯ NO – You only obtain the certificate from DigiCert. DNS configuration is YOUR responsibility.
    • Why does my URL show vmc.digicert.com or bimi.entrust.com?
      πŸ”₯ NORMAL – DigiCert/Entrust hosts your BIMI files. This is STANDARD OPERATION and completely acceptable.
    • Logo not showing?
      πŸ”₯ TROUBLESHOOT – Verify:
      • DMARC policy (p=quarantine or p=reject)
      • BIMI record syntax
      • SVG format compliance
      • DKIM authentication
    • Is BIMI supported everywhere?
      πŸ”₯ MAJOR PROVIDERS – Gmail, Yahoo, and others support it. Coverage is EXPANDING but not universal.

    ✨ Final Tip: Add BIMI TXT → Validate using tools → Send a test email to Gmail/Yahoo to see your logo in inbox!

    Posted by:

    No comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)