[Dovecot] Patch to log the cipher suite used for TLS
Matthias Scheler
tron at zhadum.org.uk
Wed Aug 14 20:29:13 EEST 2013
On Wed, Aug 14, 2013 at 11:49:50AM +0200, Aleksandar Lazic wrote:
> >the attached patch for Dovecot 2.2.4 improves the logging to include
> >information about the cipher suite used for a TLS connection. Here is
> >an example log line:
> >
> >Aug 13 21:49:55 colwyn dovecot: imap-login: Login: user=<tron>,
> >method=CRAM-MD5, rip=2001:8b0:114:1::2, lip=2001:8b0:114:1::2,
> >mpid=10567, TLS=<TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)>,
> >session=<ZkEhYtrjSgAgAQiwARQAAQAAAAAAAAAC>
>
> [snipp]
>
> Is the %k not the same?
Yes, it is.
> http://wiki2.dovecot.org/Variables
>
> I have the following in my logging.conf
>
> login_log_format_elements = service=%s user=<%u> session=%{session}
> method=%m rip=%r lip=%l mpid=%e %c %k
I was looking for logging options on the SSL page but couldn't find
them there. I've now configured an unpatched Dovecot according to
your suggestion and I get the information I want.
Thanks a lot
--
Matthias Scheler http://zhadum.org.uk/
More information about the dovecot
mailing list