For one host certificate verification is failing randomly. I want to monitor
that particular host.
Specifically I want that depth and subject of certificate for which it is
marking certificate expired.
I have gone through pcaps but all certificates at that time are fine.
So I want debug logs
I want to configure postfix such that I get log level 4 for specific ip or
domain. And for rest of the cases it should give logs of log level 1
What I tried is :
debug_peer_level = 4
debug_peer_list =
In this case postfix is not providing all debug logs.(May be providing log
level 2 logs)
I was
Hi Viktor,
These wire pcap is taken at same time when issue occurred.
Above mentioned certificates are same certificates for which postfix is
marking expired. For this chain only issue occurred and after some time
marked as valid.
Issue : postfix is marking unexpired certificates as expired
Hi viktor,
See the posted certificates from wire.
I am not getting why this is random behaviour. At some time only certificate
marked as expired and after some time same certificate gets marked as valid.
--
Sent from: http://postfix.1071664.n5.nabble.com/Postfix-Users-f2.html
Thanks viktor. All Certificates are valid for these
certificates Im getting above logs. Is there any issue due to missing root
CA certificate as client has not received any root CA certificate(Subject
and issuer different in all certificates) in capture ? Correct me If am
wrong I can only see End
Just updated Logs
--
Sent from: http://postfix.1071664.n5.nabble.com/Postfix-Users-f2.html
Randomly postfix is marking this as expired certificate and after some time
marking certificate as valid.
I have verified that certificate is not expired by taking pcap. Let me know
if is there any known defect in postfix of this sort ?
certificate details :