|
||||||||||||||
Log Entry |
||||||||||||||
mmm dd hh:mm:ss connection from: <IP-Adresse, von welcher die E-Mail an das SEPPmail Secure E-Mail Gateway übertragen wurde> mmm dd hh:mm:ss Mail from: <ENVELOPE-Absender> to: <ENVELOPE Empfänger1> <ENVELOPE Empfänger2> <ENVELOPE Empfängern> mmm dd hh:mm:ss Mail from: <ENVELOPE-Absender> to: domain-confidentiality-authority@ime.<manged domain> # IME 2.0 verschlüsselte E-Mails mmm dd hh:mm:ss Mail sender is from local managed domain Managed Domain # nur bei ausgehenden E-Mails mmm dd hh:mm:ss Plain oder Secure LFT configured for sender domain Managed Domain # nur bei ausgehenden E-Mails und abhängig vom konfigurierten LFT Mode mmm dd hh:mm:ss Not Using LFT, message too small (<E-Mail Größe in kiloByte (KB)> (<E-Mail Größe in kiloByte (KB) bei der Verarbeitung>) < xxxxx KB) # nur bei ausgehenden E-Mails und abhängig vom konfigurierten Schwellwert mmm dd hh:mm:ss starting Ruleengine for Message-ID <eindeutige ID der E-Mail> mmm dd hh:mm:ss Engine running on SEPPmail <Firmware Stand der Maschine> (ruleset <Firmware Stand mit welchem das Ruleset erzeugt wurde>) # beide Werte sollten identisch sein mmm dd hh:mm:ss Message Date is <Datum Uhrzeit im Format mmm dd jjj hh:mm:ss +Zeitzonenverschiebung> mmm dd hh:mm:ss Message From is =<Absender aus dem From-Header> mmm dd hh:mm:ss Message To is <Empfänger1 aus dem To-Header>,<Empfänger2 aus dem To-Header>,<Empfängern aus dem To-Header> mmm dd hh:mm:ss Message Cc is <Empfänger1 aus dem CC-Header>,<Empfänger2 aus dem CC-Header>,<Empfängern aus dem CC-Header> mmm dd hh:mm:ss Message Subject is <Betreff der E-Mail> mmm dd hh:mm:ss Message Size is <E-Mail Größe in kiloByte (KB)> mmm dd hh:mm:ss Internal variable 'createAccountAddressOrder' set <legt die Reihenfolge fest, in welcher die Absendereinträge für das Anlegen eines neuen Users herangezogen werden sollen (siehe Benutzer: Anlage / Zertifikatsbezug auf Basis des Envelope- oder Sender-Eintrags)> # im Standard steht hier nichts, das heißt die Standard-Einstellung kommt zum Tragen mmm dd hh:mm:ss Internal variable 'createKeysAddressOrder' set <legt die Reihenfolge fest, in welcher die Absendereinträge für das beziehen des Benutzer-Zertifikates herangezogen werden sollen (siehe Benutzer: Anlage / Zertifikatsbezug auf Basis des Envelope- oder Sender-Eintrags)> # im Standard steht hier nichts, das heißt die Standard-Einstellung kommt zum Tragen mmm dd hh:mm:ss new outgoing oder incoming mail from <Absender-Adresse> to <Empfänger-Adresse(n)>
# IME 2.0 mmm dd hh:mm:ss Start domain decryption for IME domain ime.meinefirma.de (managed domain meinefirma.de) mmm dd hh:mm:ss Domain decryption successful with key with Fingerprint 5C:1C:1A:CC:41:58:0E:8C:CB:82:45:79:65:AC:BA:54:A5:A8:4C:6A for domain meinefirma.de mmm dd hh:mm:ss Message ID in duplicated message changed from <d38e99bdf5db4ac7af51d3b468b9d519@meinefirma.de> to <ehdGviHg-d38e99bdf5db4ac7af51d3b468b9d519@meinefirma.de> mmm dd hh:mm:ss S/MIME domain decryption successful for recipients: domain-confidentiality-authority@ime.meinefirma.de mmm dd hh:mm:ss S/MIME signature info: sha1+rsaEncryption, 0x17000039901316E6177989F5F2000000003990, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA mmm dd hh:mm:ss Internal variable 'digest_algorithm' set to 'SHA1' mmm dd hh:mm:ss Internal variable 'signature_algorithm' set to 'RSA' mmm dd hh:mm:ss check signer's email address 'max.mustermann@meinefirma.tld' if it matches from/sender mmm dd hh:mm:ss signer's email address matches header from email mmm dd hh:mm:ss Skipped import of CA certificate CN=Meine Firma AG CA G2 (Already exists) mmm dd hh:mm:ss Skipped import of CA certificate C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA (Already exists) mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5' mmm dd hh:mm:ss Certificate used for signing has fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5 and email address max.mustermann@meinefirma.tld mmm dd hh:mm:ss S/MIME signed successful for recipients: domain-confidentiality-authority@ime.meinefirma.de mmm dd hh:mm:ss S/MIME signature successfully removed mmm dd hh:mm:ss IME: unpacking attached message mmm dd hh:mm:ss IME: to: "Max Mustermann" <m.mustermann@meinefirma.tld> mmm dd hh:mm:ss IME: cc: mmm dd hh:mm:ss IME: bcc: mmm dd hh:mm:ss IME: from: max.mustermann@meinefirma.tld mmm dd hh:mm:ss Message ID in new message was set to <16444036740.1cD8d8c27.79121@mail.securemail.local> mmm dd hh:mm:ss IME: Send mail to m.mustermann@meinefirma.tld mmm dd hh:mm:ss IME: Send copy to max.mustermann@meinefirma.tld mmm dd hh:mm:ss Header-From selected. Sender address in From header is max.mustermann@meinefirma.tld, trying to authenticate mmm dd hh:mm:ss Found account for max.mustermann@meinefirma.tld, user authenticated mmm dd hh:mm:ss Header-From selected. Sender address in From header is max.mustermann@meinefirma.tld, trying to authenticate mmm dd hh:mm:ss Found account for max.mustermann@meinefirma.tld, user authenticated mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Mail does not seem to contain an executable file mmm dd hh:mm:ss Mail does not seem to contain an executable file mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Mail does not seem to contain a script file mmm dd hh:mm:ss Mail does not seem to contain a script file mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.meinefirma.de', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=meinefirma,DC=de', basedn 'OU=Domain Users,DC=meinefirma,DC=de' mmm dd hh:mm:ss Establish connection to ldaps://ldap.meinefirma.de mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=m.mustermann@meinefirma.tld' in basedn 'OU=Domain Users,DC=meinefirma,DC=de' mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A mmm dd hh:mm:ss Error getting information for certificate: new_from_string error: Crypt::OpenSSL::X509: failed to read X509 certificate. at /usr/local/sepp/lib/Crypto/SMIME/X509.pm line 155.# Zertifikat liegt auf dem Key Server im falschen Format vor (siehe Hinweis aus Key Server) mmm dd hh:mm:ss Error getting information for certificate: new_from_string error: Crypt::OpenSSL::X509: failed to read X509 certificate. at /usr/local/sepp/lib/Crypto/SMIME/X509.pm line 155. mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.meinefirma.de', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=meinefirma,DC=de', basedn 'OU=Domain Users,DC=meinefirma,DC=de' mmm dd hh:mm:ss Establish connection to ldaps://ldap.meinefirma.de mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=max.mustermann@meinefirma.tld' in basedn 'OU=Domain Users,DC=meinefirma,DC=de' mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5 mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint 41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25 mmm dd hh:mm:ss Did not add user certificate with fingerprint 3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC: ALREADY_EXISTS mmm dd hh:mm:ss Did not add user certificate with fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5: ALREADY_EXISTS mmm dd hh:mm:ss Did not add user certificate with fingerprint 1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85: ALREADY_EXISTS mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.meinefirma.de', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=meinefirma,DC=de', basedn 'OU=Exchange,OU=Domain Applications,DC=meinefirma,DC=de' mmm dd hh:mm:ss Establish connection to ldaps://ldap.meinefirma.de mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=m.mustermann@meinefirma.tld' in basedn 'OU=Exchange,OU=Domain Applications,DC=meinefirma,DC=de' mmm dd hh:mm:ss No LDAP Entry found for m.mustermann@meinefirma.tld mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldapmeinefirma.de', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=meinefirma,DC=de', basedn 'OU=Exchange,OU=Domain Applications,DC=meinefirma,DC=de' mmm dd hh:mm:ss Establish connection to ldaps://ldap.meinefirma.de mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=max.mustermann@meinefirma.tld' in basedn 'OU=Exchange,OU=Domain Applications,DC=meinefirma,DC=de' mmm dd hh:mm:ss No LDAP Entry found for max.mustermann@meinefirma.tld mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A' mmm dd hh:mm:ss No revocation check for certificate with fingerprint 'E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5': certificate has been checked within last hour mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25' mmm dd hh:mm:ss found S/MIME certificate for internal recipient - trying to encrypt mail mmm dd hh:mm:ss found S/MIME certificate for internal recipient - trying to encrypt mail mmm dd hh:mm:ss Found 1 X.509 Certificate(s) for <m.mustermann@meinefirma.tld> mmm dd hh:mm:ss Use key with fingerprint E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A for m.mustermann@meinefirma.tld mmm dd hh:mm:ss S/MIME encryption info: des-ede3-cbc mmm dd hh:mm:ss Internal variable 'content_encryption_algorithm' set to 'des-ede3-cbc' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x1700004123945692F2A2857678000000004123, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME encryption successful for recipients: m.mustermann@meinefirma.tld mmm dd hh:mm:ss Found 5 X.509 Certificate(s) for <max.mustermann@meinefirma.tld> mmm dd hh:mm:ss Use key with fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5 for max.mustermann@meinefirma.tld mmm dd hh:mm:ss Use key with fingerprint 3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC for max.mustermann@meinefirma.tld mmm dd hh:mm:ss Use key with fingerprint 1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85 for max.mustermann@meinefirma.tld mmm dd hh:mm:ss Use key with fingerprint C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5 for max.mustermann@meinefirma.tld mmm dd hh:mm:ss Use key with fingerprint 41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25 for max.mustermann@meinefirma.tld mmm dd hh:mm:ss S/MIME encryption info: des-ede3-cbc mmm dd hh:mm:ss Internal variable 'content_encryption_algorithm' set to 'des-ede3-cbc' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x170000398B317D9FAE484C521C00000000398B, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x17000039901316E6177989F5F2000000003990, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x1700003DD40E4E7D89BB475423000000003DD4, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x17000041205BD32213915F220E000000004120, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x170000412AA0EDDA085EB81E8600000000412A, C=DE, L=Musterstadt, O=Meine Firma AG, OU=IT, emailAddress=certificates@meinefirma.de, CN=Meine Firma AG Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME encryption successful for recipients: max.mustermann@meinefirma.tld mmm dd hh:mm:ss S/MIME encryption successful mmm dd hh:mm:ss S/MIME encryption successful mmm dd hh:mm:ss Deliver mails to m.mustermann@meinefirma.tld
|
||||||||||||||
TLS Information |
||||||||||||||
TLS info for last connection from 192.168.398.25: Anonymous TLS connection established from unknown[192.168.398.25]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits) TLS info for last connection to 217.714.103.251: Trusted TLS connection established to mx01.cloud.secure.com[217.714.103.251]:25: TLSv1.3 with cipher AEAD-AES256-GCM-SHA384 (256/256 bits) TLS info for last connection to 62.140.310.22: Trusted TLS connection established to de-smtp-inbound-1.mintcast.com[62.140.310.22]:25: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) |
