SASL with/without TLS in logs

Discussion:

(too old to reply)

Wietse Venema

2016-07-07 17:04:12 UTC

However, I would like to find sooner or later clients that don't use
STARTTLS befoe authentication.
How can I configure postfix to see differences in logs?

Assuming that no sane client sends AUTH *before* sending STARTTLS,
all you need is to set "smtpd_tls_loglevel=1" in main.cf (and do
"postfix reload") to log the completion of the STARTTLS handhake.

Wietse

Marek Salwerowicz

2016-07-07 19:34:53 UTC

Permalink

Post by Wietse Venema

However, I would like to find sooner or later clients that don't use
STARTTLS befoe authentication.
How can I configure postfix to see differences in logs?

Assuming that no sane client sends AUTH *before* sending STARTTLS,
all you need is to set "smtpd_tls_loglevel=1" in main.cf (and do
"postfix reload") to log the completion of the STARTTLS handhake.

Thanks a lot !

Marek

Post by Wietse Venema
Wietse

Continue reading on narkive:

Search results for 'SASL with/without TLS in logs' (newsgroups and mailing lists)

replies

[jdev] SASL debugging

started 2005-12-08 17:00:22 UTC

jdev@jabber.org

replies

Help with Certs for Cyrus IMAP and TLS

started 2008-05-21 02:00:13 UTC

opensuse@opensuse.org