Randall,
I have installed 4.0.7 on a Solaris 9 box, using Sun's StudioOne (version 8) compiler. So far, so good.
I need to distinguish between SSL connections to port 995 and unencrypted logins to 110. Testing both via
telnet myhost 110 user joeblow pass passwd list quit
or
openssl s_client -debug -connect myhost:995 (you will see SSL stuff go by, then) user joeblow pass passwd list quit
both yield the same thing in my syslog:
Apr 27 16:19:14 myhost popper[8519]: [ID 702911 local0.notice] (v4.0.7) \ POP login by user "joeblow" at (otherhost) [ip addr] [pop_log.c:244]
No good. I would like the SSL sessions to say something like "SSL POP login" so I can start tracking who uses which. (I want to pull the plug on 110 unencrypted). Suggestions on how to do this?
If you're trying to understand who uses/doesn't use SSL, you should actually see logging for the start of the TLS session. Note that in the case of port 110, TLS is available via STARTTLS. So, I'd ask you if you want to know whether folks are using port 110 vs. 995, or do you really want to know who's using encryption and who's not?
Dan
