[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How to log in syslog TLS connections?



Laurent Mesuré wrote:

I try to identify the logs that gave me info abnout TLS handshake and connection.

I believe that when i have:

Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 fd=17 ACCEPT from IP=<client ip address>:32805 (IP=0.0.0.0:389)
Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" method=128
Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" mech=simple ssf=0


does mech=simple state for a normal auth? and not a TLS method of connection?

The presence of TLS is totally independent of the authentication method.

The log message you have above provides the necessary information, nonetheless - "mech=simple" tells the authentication method; "ssf=0" tells that there was no security layer.
--
-- Howard Chu
Chief Architect, Symas Corp. Director, Highland Sun
http://www.symas.com http://highlandsun.com/hyc
Symas: Premier OpenSource Development and Support