[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openldap-software
Subject:    Re: How to log in syslog TLS connections?
From:       Howard Chu <hyc () symas ! com>
Date:       2004-06-30 13:36:57
Message-ID: 40E2C1F9.80802 () symas ! com
[Download RAW message or body]

Laurent Mesuré wrote:

> I try to identify the logs that gave me info abnout TLS handshake and 
> connection.
> 
> I believe that when i have:
> 
> Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 fd=17 ACCEPT from 
> IP=<client ip address>:32805 (IP=0.0.0.0:389)
> Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" 
> method=128
> Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" 
> mech=simple ssf=0
> 
> does mech=simple state for a normal auth? and not a TLS method of 
> connection?

The presence of TLS is totally independent of the authentication method.

The log message you have above provides the necessary information, 
nonetheless - "mech=simple" tells the authentication method; "ssf=0" 
tells that there was no security layer.
-- 
   -- Howard Chu
   Chief Architect, Symas Corp.       Director, Highland Sun
   http://www.symas.com               http://highlandsun.com/hyc
   Symas: Premier OpenSource Development and Support
[prev in list] [next in list] [prev in thread] [next in thread]