Oktober 2022
Mo	Di	Mi	Do	Fr	Sa	So
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31

Recent entries

Was ist Digitalisierung?
Jitsi Meet RPM packages for RHEL/CentOS/OEL 7
Power Measuring several SSDs (Crucial, Kingston, Apacer)
Power Measuring Crucial BX500 240
Power Measuring Kingston A400 480 and Samsung MZ7LN128
Power Measuring Patriot Burst 480 and WD WD10SPZX
Power Measuring Patriot Burst 240 and Verbatim Vi500 S3 240/480
ODROID GO as network tool
Workaround for Unity installation issue "not enough space"
RHEL 5 dovecot fix for CVE-2019-11500
Intel/Altera Quartus FPGA suite RPM repository
Power Measuring Kingston A400 240 GB
Power Measuring Patriot Burst 120 GB
Power Measuring Seagate ST1000LM048
Power Measuring Toshiba MQ02ABD100H

tuxad blog

Syndicate

Site (RSS, Atom)

Contact

Frank Bergmann

Weblog status

Total entries: 78
Last entry: 2022-10-16 13:52:24
Last updated: 2022-10-16 14:12:58

2014-10-13 13:40:47

Cipher logging for Dovecot on RHEL / Centos 5

Dovecot on RHEL / Centos 5 has version 1.0.7. In this version it's not possible to use '%k' as a Dovecot variable for login_log_format_elements because that feature is only available since Dovecot 1.1.3.

If you want a special cipher suite for i.e. Forward Secrecy then you can't see it in the logs by appending '%k' to login_log_format_elements. You can use a small test script to check for supported ciphers but you can't "see" which ciphers other real world imap clients use on your Dovecot server.

To enable cipher logging in RHEL 5 Dovecot you must recompile / rebuild it. I made a backport of the commit 0177096cefe5 from Dovecot 1.1.3 to Dovecot 1.0.7. My patch does only minimum mods to the package source. You can also use my Source RPM package with the builtin patch to quickly rebuild Dovecot for yourself.

Update 2015-08-09: The package is included in the tuxad repo.

Posted by Frank W. Bergmann | Permanent link | File under: logging, ssl, encryption, rpm, yum, repository, redhat