Matthias Schneider:
> Hi,
>
> I would like to have the TLS state of a message in the final status=send
> log line.
> Currently the TLS information is only findable by searching for the
> smtp[pid],
> on big mail logs this can result in many false positive search results.
>
> Jan 4 14:17:01 mailserver postfix/smtp[24344]: Anonymous TLS connection
> established to example.com[x.x.x.x]:25: TLSv1.2 with cipher
> AECDH-AES128-SHA (128/128 bits)
> Jan 4 14:17:03 mailserver postfix/smtp[24344]: 3pH7lN0pKHzFGF5:
> to=<m...@example.com>, relay=example.com[x.x.x.x]:25, delay=3.7,
> delays=1.8/0/0.02/1.9, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as
> B15171A072C)
>
> Is there a easy way to add this to smtp.c ?
No, but you could use a better stateful logfile analyzer. The TLS
session status is always logged with the name of the remote MTA
example.com[x.x.x.x]:25, and it is always logged before the status=
record.
Wietse
