[CLUE-Tech] sendmail report interpretation
Jeffrey Brown
jabrown at co.jefferson.co.us
Fri Oct 22 07:55:10 MDT 2004
verify=FAIL means that the client couldn't verify the server's (or
vice-versa) CA certificate, i.e. isn't signed by VeriSign, Thawte etc.,
probably a self-signed certificate. TLS is in effect on those conections
below, no failure in transport and delivery except for the first log
entry.
>>> coriez at oriez.org 10/22/04 5:52 AM >>>
My morning report from Sendmail includes the section reproduced
below. What does that first line mean? We run sendmail with everything
aliased to other sites. mail.den.cbeyond.com is where our staff hangs
out,
and we forward a significant amount of mail to there. Does someone have
a
problem, and what is it? "verify=FAIL," and "138 Time(s)" doesnt give me
warm and fuzzies. I have had no reports of mail not getting there. We
run
a few dnsbls to block spammish sending IPAs, but this morning's report
showed significantly less connections blocked than 138. I've also
successfully sent mail to the staffers hangin off cbeyond when I checked
it
myself.
**Unmatched Entries**
STARTTLS=client, relay=mail.den.cbeyond.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168: 138 Time(s)
DSN: User unknown: 3 Time(s)
STARTTLS=client, relay=ww11.co.jefferson.co.us.,
version=TLSv1/SSLv3,
verify=FAIL, cipher=EDH-DSS-DES-CBC3-SHA, bits=168/168: 1 Time(s)
STARTTLS=client, relay=gate1.vanion.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168: 1 Time(s)
STARTTLS=client, relay=indra.com., version=TLSv1/SSLv3, verify=FAIL,
cipher=DHE-RSA-AES256-SHA, bits=256/256: 1 Time(s)
STARTTLS=client, relay=mail.dimensional.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168: 1 Time(s)
STARTTLS=client, relay=mail.indra.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256: 1 Time(s)
STARTTLS=client, relay=mail.global.frontbridge.com.,
version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA,
bits=256/256:
1 Time(s)
STARTTLS=client, relay=mail.peakpeak.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=AES256-SHA, bits=256/256: 1 Time(s)
STARTTLS=client, relay=mail.jimsumrall.com., version=TLSv1/SSLv3,
verify=FAIL, cipher=AES256-SHA, bits=256/256: 1 Time(s)
--
coriez at oriez.org 39 34' 34.4"N / 105 00' 06.3"W
Lamport's Law: "A distributed system is one in which the failure of a
computer you didn't even know existed can render your own computer
unusable."
_______________________________________________
CLUE-Tech mailing list
Post messages to: CLUE-Tech at clue.denver.co.us
Unsubscribe or manage your options:
http://clue.denver.co.us/mailman/listinfo/clue-tech
More information about the clue-tech
mailing list