HPE Community
Operating System - HP-UX
1830453 Members
2359 Online
110004 Solutions
New Discussion

Repeated error in syslog.log: "startTLS is disabled, ignored"

 
Danny Petterson - DK
Trusted Contributor

‎06-04-2008 09:07 AM

‎06-04-2008 09:07 AM

Repeated error in syslog.log: "startTLS is disabled, ignored"

Hi Gurus.

Repeatedly I get this error in my syslog.log on several systems:

"Jun 4 19:02:00 Hostname syslog: pid:5345 - config.c:301: (): startTLS is disabled, ignored"

I suspect it to be the ldapclient which makes it, as it is the only place Im sure where startTLS is disabled. Tried to go from DEBUG to INFO-mode in the ldapclint's configfile, but it did not do the trick.

Overall everything works fine (uses ldap against MS-AD), but this error is a nag.

Thanx in advance.

Greetings from
Danny Petterson
0 Kudos
8 REPLIES 8
Jeeshan
Honored Contributor

‎06-05-2008 03:24 AM

‎06-05-2008 03:24 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

it seems to related with sendmail. please see your sendmail configuration files.
a warrior never quits
0 Kudos
Jeeshan
Honored Contributor

‎06-05-2008 03:27 AM

‎06-05-2008 03:27 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

find more about this

http://www.sendmail.org/~ca/email/starttls.html
a warrior never quits
0 Kudos
Danny Petterson - DK
Trusted Contributor

‎06-09-2008 06:54 AM

‎06-09-2008 06:54 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

Hi again!

Thanx for you reply.

Sorry, but Im pretty sure its not sendmail, as the error is in the syslog on systems where sendmail is not running.

The only running service I think could cause this is ldap, but again, who knows.

More info or alternatives would be appriciated.

Thanx in advance
Yours
Danny
0 Kudos
TTr
Honored Contributor

‎06-09-2008 07:11 AM

‎06-09-2008 07:11 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

> Jun 4 19:02:00 Hostname syslog: pid:5345 - config.c:301: (): startTLS is disabled, ignored"

What is pid 5345?
If it is still alive after the log posting it will tell you where the error is coming from.
0 Kudos
Danny Petterson - DK
Trusted Contributor

‎06-09-2008 07:16 AM

‎06-09-2008 07:16 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

Nope - thats the sad thing - no PID with the number when I check...
0 Kudos
TTr
Honored Contributor

‎06-09-2008 07:57 AM

‎06-09-2008 07:57 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

You have to find a way to reproduce the error at will and monitor the syslog at the same time. If you think it is the ldap client, then concentarte on ldap and try to force the authentication (there may be caching involved so it may not work right away).

I know you said you see this with servers that don't run sendmail but it could still come from sendmail when sendmail is invoked as a client by a local mailer.

Try to corelate the time in the syslog error with times from the mail.log that emails were sent out.
0 Kudos
Danny Petterson - DK
Trusted Contributor

‎06-17-2008 01:26 AM

‎06-17-2008 01:26 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

Hi All!

The answer - completely stop all loggin from the ldap-client.

Thanx for your time
Yours
Danny
0 Kudos
Danny Petterson - DK
Trusted Contributor

‎06-17-2008 01:27 AM

‎06-17-2008 01:27 AM

Re: Repeated error in syslog.log: "startTLS is disabled, ignored"

Ups - forgot to close the thread - please see the comment above.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.