Package: courier-imap-ssl
Version: 4.10.0-20120615-1
Severity: normal

Dear Maintainer,

currently logging of LOGINs and LOGOUTs is implemented as follows:

Connection Security: none on port 143:

May 30 11:53:59 vsvr imapd: LOGIN, [email protected], 
ip=[::ffff:92.72.38.43], port=[60306], protocol=IMAP
May 30 11:59:20 vsvr imapd: LOGOUT, [email protected], 
ip=[::ffff:92.72.38.43], headers=0, body=0, rcvd=489, sent=1891, time=11

Connection Security: STARTTLS on port 143:

May 30 11:55:56 vsvr imapd: LOGIN, [email protected], 
ip=[::ffff:92.72.38.43], port=[60383], protocol=IMAP
May 30 11:58:06 vsvr imapd: LOGOUT, [email protected], 
ip=[::ffff:92.72.38.43], headers=0, body=0, rcvd=709, sent=2321, time=130, 
starttls=1

As you can see on the LOGOUT lines you can distinguish encrypted
connections (using STARTTLS) from those which are unencrypted. But on
LOGIN lines you cannot distinguish them, which I consider important.

Just for completeness: When using SSL-on-connect via port 993 you can
tell that connection security is in place anyway due to the imapd-ssl
"service" name:

Connection Security: SSL/TLS-on-connect on port 993:

May 30 11:50:06 vsvr imapd-ssl: LOGIN, [email protected], 
ip=[::ffff:92.72.38.43], port=[60225], protocol=IMAP
May 30 12:00:49 vsvr imapd-ssl: LOGOUT, [email protected], 
ip=[::ffff:92.72.38.43], headers=0, body=0, rcvd=489, sent=1891, time=11, 
starttls=1

Thank you for considering my suggestion and implementing it. :-)

KR,

Ralf


-- System Information:
Debian Release: 7.0
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'stable-updates')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages courier-imap-ssl depends on:
ii  courier-imap  4.10.0-20120615-1
ii  courier-ssl   0.68.2-1
ii  debconf       1.5.49
ii  openssl       1.0.1e-2

courier-imap-ssl recommends no packages.

Versions of packages courier-imap-ssl suggests:
ii  courier-doc         0.68.2-1
ii  mutt [imap-client]  1.5.21-6.2

-- Configuration Files:
/etc/courier/imapd-ssl changed [not included]
/etc/courier/imapd.cnf [Errno 13] Permission denied: u'/etc/courier/imapd.cnf'
/etc/logcheck/ignore.d.server/courier-imap-ssl [Errno 13] Permission denied: 
u'/etc/logcheck/ignore.d.server/courier-imap-ssl'
/etc/logcheck/violations.ignore.d/courier-imap-ssl [Errno 13] Permission 
denied: u'/etc/logcheck/violations.ignore.d/courier-imap-ssl'

-- no debconf information


-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to