|
||||||||||||||
Log Entry |
||||||||||||||
mmm dd hh:mm:ss connection from: <IP address from which the email was delivered to SEPPmail Secure E-Mail Gateway > mmm dd hh:mm:ss Mail from: <ENVELOPE sender> to: <ENVELOPE recipient1> <ENVELOPE recipient2> <ENVELOPE Recipientn> mmm dd hh:mm:ss Mail from: <ENVELOPE sender> to: domain-confidentiality-authority@ime.<managed domain> # IME 2.0 encrypted emails mmm dd hh:mm:ss Mail sender is from local managed domain Managed domain # for outgoing emails only mmm dd hh:mm:ss Plain or Secure LFT configured for sender domain Managed domain # for outgoing emails only and depending on the configured LFT Mode mmm dd hh:mm:ss Not Using LFT, message too small (<Email size in kiloByte (KB)> (<Email size in kiloByte (KB) during processing>) < xxxxx KB) # for outgoing emails only and depending on the configured Threshold value mmm dd hh:mm:ss starting Ruleengine for Message-ID <unique message ID of the email> mmm dd hh:mm:ss Engine running on SEPPmail <firmware status of the machine> (ruleset <firmware status with which the ruleset was generated>) # these two values should be identical mmm dd hh:mm:ss Message Date is <Date time in format MMM DD YYY hh:mm:ss + time zone shift> mmm dd hh:mm:ss Message From is =<sender from the From header of the email> mmm dd hh:mm:ss Message To is <recipient1 from the To header>,<recipient2 from the To header>,<recipientn from the To header> mmm dd hh:mm:ss Message Cc is <recipient1 from the CC header>,<recipient2 from the CC header>,<Recipientn from the CC header> mmm dd hh:mm:ss Message Subject is <Email subject> mmm dd hh:mm:ss Message Subject is <Email size in kiloByte (KB)> mmm dd hh:mm:ss Internal variable 'createAccountAddressOrder' set <determines the order in which the sender entries should be used for the creation of a new User (see Users: Attachment/Certificate Receipt Based On Envelope Or Sender Entry)> # empty by default, that means the default setting applies mmm dd hh:mm:ss Internal variable 'createKeysAddressOrder' set <determines the order in which the sender entries should be used for the creation of a new User Certificate (see Users: Attachment/Certificate Receipt Based On Envelope Or Sender Entry)> # empty by default, that means the default setting applies mmm dd hh:mm:ss new outgoing or incoming mail from <sender address> to <recipient address(es)>
# IME 2.0 mmm dd hh:mm:ss Start domain decryption for IME domain ime.mycompany.com (managed domain mycompany.com) mmm dd hh:mm:ss Domain decryption successful with key with Fingerprint 5C:1C:1A:CC:41:58:0E:8C:CB:82:45:79:65:AC:BA:54:A5:A8:4C:6A for domain mycompany.com mmm dd hh:mm:ss Message ID in duplicated message changed from <d38e99bdf5db4ac7af51d3b468b9d519@mycompany.com> to <ehdGviHg-d38e99bdf5db4ac7af51d3b468b9d519@mycompany.com> mmm dd hh:mm:ss S/MIME domain decryption successful for recipients: domain-confidentiality-authority@ime.mycompany.com mmm dd hh:mm:ss S/MIME signature info: sha1+rsaEncryption, 0x17000039901316E6177989F5F2000000003990, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA mmm dd hh:mm:ss Internal variable 'digest_algorithm' set to 'SHA1' mmm dd hh:mm:ss Internal variable 'signature_algorithm' set to 'RSA' mmm dd hh:mm:ss check signer's email address 'john.doe@mycompany.tld' if it matches from/sender mmm dd hh:mm:ss signer's email address matches header from email mmm dd hh:mm:ss Skipped import of CA certificate CN=My Company Corporation CA G2 (Already exists) mmm dd hh:mm:ss Skipped import of CA certificate C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA (Already exists) mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5' mmm dd hh:mm:ss Certificate used for signing has fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5 and email address john.doe@mycompany.tld mmm dd hh:mm:ss S/MIME signed successful for recipients: domain-confidentiality-authority@ime.mycompany.com mmm dd hh:mm:ss S/MIME signature successfully removed mmm dd hh:mm:ss IME: unpacking attached message mmm dd hh:mm:ss IME: to: "John Doe" <j.doe@mycompany.tld> mmm dd hh:mm:ss IME: cc: mmm dd hh:mm:ss IME: bcc: mmm dd hh:mm:ss IME: from: john.doe@mycompany.tld mmm dd hh:mm:ss Message ID in new message was set to <16444036740.1cD8d8c27.79121@mail.securemail.local> mmm dd hh:mm:ss IME: Send mail to j.doe@mycompany.tld mmm dd hh:mm:ss IME: Send copy to john.doe@mycompany.tld mmm dd hh:mm:ss Header-From selected. Sender address in From header is john.doe@mycompany.tld, trying to authenticate mmm dd hh:mm:ss Found account for john.doe@mycompany.tld, user authenticated mmm dd hh:mm:ss Header-From selected. Sender address in From header is john.doe@mycompany.tld, trying to authenticate mmm dd hh:mm:ss Found account for john.doe@mycompany.tld, user authenticated mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Mail does not seem to contain an executable file mmm dd hh:mm:ss Mail does not seem to contain an executable file mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Start file type scan mmm dd hh:mm:ss No offending file type detected mmm dd hh:mm:ss Mail does not seem to contain a script file mmm dd hh:mm:ss Mail does not seem to contain a script file mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.mycompany.com', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=mycompany,DC=com', basedn 'OU=Domain Users,DC=mycompany,DC=com' mmm dd hh:mm:ss Establish connection to ldaps://ldap.mycompany.com mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=j.doe@mycompany.tld' in basedn 'OU=Domain Users,DC=mycompany,DC=com' mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A mmm dd hh:mm:ss Error getting information for certificate: new_from_string error: Crypt::OpenSSL::X509: failed to read X509 certificate. at /usr/local/sepp/lib/Crypto/SMIME/X509.pm line 155.# certificate on key server in wrong format (see Note in Key server) mmm dd hh:mm:ss Error getting information for certificate: new_from_string error: Crypt::OpenSSL::X509: failed to read X509 certificate. at /usr/local/sepp/lib/Crypto/SMIME/X509.pm line 155. mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.mycompany.com', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=mycompany,DC=com', basedn 'OU=Domain Users,DC=mycompany,DC=com' mmm dd hh:mm:ss Establish connection to ldaps://ldap.mycompany.com mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=john.doe@mycompany.tld' in basedn 'OU=Domain Users,DC=mycompany,DC=com' mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5 mmm dd hh:mm:ss Successfully added or updated user certificate with fingerprint 41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25 mmm dd hh:mm:ss Did not add user certificate with fingerprint 3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC: ALREADY_EXISTS mmm dd hh:mm:ss Did not add user certificate with fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5: ALREADY_EXISTS mmm dd hh:mm:ss Did not add user certificate with fingerprint 1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85: ALREADY_EXISTS mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss recipient matches @*, start S/MIME certificate lookup mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldap.mycompany.com', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=mycompany,DC=com', basedn 'OU=Exchange,OU=Domain Applications,DC=mycompany,DC=com' mmm dd hh:mm:ss Establish connection to ldaps://ldap.mycompany.com mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=j.doe@mycompany.tld' in basedn 'OU=Exchange,OU=Domain Applications,DC=mycompany,DC=com' mmm dd hh:mm:ss No LDAP Entry found for j.doe@mycompany.tld mmm dd hh:mm:ss starting ldap certificate retrieval from server 'ldaps://ldapmycompany.com', binddn 'CN=SEPPmail LDAP-User,OU=UE,OU=Domain Services,DC=mycompany,DC=com', basedn 'OU=Exchange,OU=Domain Applications,DC=mycompany,DC=com' mmm dd hh:mm:ss Establish connection to ldaps://ldap.mycompany.com mmm dd hh:mm:ss ldap bind successful mmm dd hh:mm:ss Start search with filter 'mail=john.doe@mycompany.tld' in basedn 'OU=Exchange,OU=Domain Applications,DC=mycompany,DC=com' mmm dd hh:mm:ss No LDAP Entry found for john.doe@mycompany.tld mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A' mmm dd hh:mm:ss No revocation check for certificate with fingerprint 'E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5': certificate has been checked within last hour mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint 'C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5' mmm dd hh:mm:ss Start revocation check for certificate with fingerprint '41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25' mmm dd hh:mm:ss found S/MIME certificate for internal recipient - trying to encrypt mail mmm dd hh:mm:ss found S/MIME certificate for internal recipient - trying to encrypt mail mmm dd hh:mm:ss Found 1 X.509 Certificate(s) for <j.doe@mycompany.tld> mmm dd hh:mm:ss Use key with fingerprint E7:6F:D3:29:16:20:51:6F:DE:C5:8F:5F:52:C6:56:09:21:E5:ED:2A for j.doe@mycompany.tld mmm dd hh:mm:ss S/MIME encryption info: des-ede3-cbc mmm dd hh:mm:ss Internal variable 'content_encryption_algorithm' set to 'des-ede3-cbc' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x1700004123945692F2A2857678000000004123, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME encryption successful for recipients: j.doe@mycompany.tld mmm dd hh:mm:ss Found 5 X.509 Certificate(s) for <john.doe@mycompany.tld> mmm dd hh:mm:ss Use key with fingerprint E6:C3:DA:21:D8:96:A6:2F:C9:56:9B:93:AA:CE:71:51:92:7E:1D:C5 for john.doe@mycompany.tld mmm dd hh:mm:ss Use key with fingerprint 3A:A8:BC:69:04:33:E5:71:53:CC:4F:02:FE:C3:F9:D0:16:21:A3:BC for john.doe@mycompany.tld mmm dd hh:mm:ss Use key with fingerprint 1C:A1:EF:37:31:5F:54:A0:C7:AA:2B:B7:99:12:89:BD:0D:92:0B:85 for john.doe@mycompany.tld mmm dd hh:mm:ss Use key with fingerprint C5:77:0D:04:68:53:87:2A:59:C0:74:F2:D9:8B:88:4F:3B:2B:3B:A5 for john.doe@mycompany.tld mmm dd hh:mm:ss Use key with fingerprint 41:B7:21:B4:B5:C6:70:24:0D:37:36:F8:0B:E7:8B:92:A8:67:86:25 for john.doe@mycompany.tld mmm dd hh:mm:ss S/MIME encryption info: des-ede3-cbc mmm dd hh:mm:ss Internal variable 'content_encryption_algorithm' set to 'des-ede3-cbc' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x170000398B317D9FAE484C521C00000000398B, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x17000039901316E6177989F5F2000000003990, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x1700003DD40E4E7D89BB475423000000003DD4, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x17000041205BD32213915F220E000000004120, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME recipient info: rsaEncryption, 0x170000412AA0EDDA085EB81E8600000000412A, C=DE, L=Paradigm City, O=My Company Corporation, OU=IT, emailAddress=certificates@mycompany.com, CN=My Company Corporation Sub CA G4 mmm dd hh:mm:ss Internal variable 'key_encryption_algorithm' set to 'RSA' mmm dd hh:mm:ss S/MIME encryption successful for recipients: john.doe@mycompany.tld mmm dd hh:mm:ss S/MIME encryption successful mmm dd hh:mm:ss S/MIME encryption successful mmm dd hh:mm:ss Deliver mails to j.doe@mycompany.tld
|
||||||||||||||
TLS Information |
||||||||||||||
TLS info for last connection from 192.168.398.25: Anonymous TLS connection established from unknown[192.168.398.25]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits) TLS info for last connection to 217.714.103.251: Trusted TLS connection established to mx01.cloud.secure.com[217.714.103.251]:25: TLSv1.3 with cipher AEAD-AES256-GCM-SHA384 (256/256 bits) TLS info for last connection to 62.140.310.22: Trusted TLS connection established to de-smtp-inbound-1.mintcast.com[62.140.310.22]:25: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) |
