I have logwatch running on a number of servers and have had a message within the sendmail section on one server for some time but as everything was working I figured it could wait. I finally took the time to check it out this morning and I was correct in my assumption.
[php]——————— sendmail Begin ————————
STARTTLS=client, relay=mysmarthost.exchange.2007.server., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128: 9 Time(s)
———————- sendmail End ————————-
The server is configured to send all mail from the linux server to our internal MS exchange server.
This message with the verify=FAIL is just saying that the CA authority for the certificate being used could not be verified. This is normal with self-issued certificates and is just a note.
From my perspective the main thing is that the count of X time(s) is higher than 9 on a normal day as it is our Kayako HelpDesk server and typically it is 300+ emails / ticket actions. So a low count indicates a problem.
Thanks to Alexander in the nginx forums for the pointer and link to the relevant sendmail details on starttls..
Thanks Tony – I was wondering why each mail got this additional line in the syslog.