Julien Vehent wrote:
Wietse Venema wrote:
Noel Jones:
------
Aug 22 07:52:12 zerhuel postfix/smtpd[2109]: initializing the
server-side
TLS engine
This is logged ONCE when a postfix/smtpd process starts up.
Then, it handles one or more SMTP clients.
So, 'initializing the server-side TLS engine' is logged only before
the FIRST SMTP client that is handled by the SMTP server process.
Wietse
OK, thanks to both of you. It explains why I wasn't seeing this line at
every connection.
But when I more smtpd_tls_loglevel to "1", I don't see any information
regarding the TLS connection.
I tried to do the opposite and moved it to "4" and there I see the
following:
Leave the log level at 1.
a sample sequence at log level 1:
Aug 24 06:25:43 mgate2 postfix/smtpd[52067]: connect from
mxsb6.state.tn.us[170.143.36.97]
Aug 24 06:25:43 mgate2 postfix/smtpd[52067]: setting up TLS
connection from mxsb6.state.tn.us[170.143.36.97]
Aug 24 06:25:43 mgate2 postfix/smtpd[52067]: Anonymous TLS
connection established from mxsb6.state.tn.us[170.143.36.97]: TLS
v1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
It's a good idea to connect to your box from the outside to
make sure it's really advertising STARTTLS after EHLO because
some firewalls may disable the STARTTLS command.
-- Noel Jones
