Administrator's Guide - Kerio Software Archive
Administrator's Guide - Kerio Software Archive Administrator's Guide - Kerio Software Archive
Chapter 22 LogsSent or Recv (i.e. Received).• Queue-ID: 438d6fb6-00000003 — the number generated by the server in the queueof outgoing messages. It is an identifier which uses identical numbers for all log linesassociated with one messages. Each message is first received by the server, then itis sent. This implies that at least two log lines must belong to each message (forreception and sending). Moreover, each message can be delivered to multiple users(each addressee has a special log line).• Service: HTTP — protocol, that has been used by the server to receive the message(HTTP, SMTP). This information is included in incoming messages only. The informationis not displayed for outgoing messages, it would be meaningless. All outgoingmessages are sent by SMTP.• From: — email address of the sender.• To: — email address of the recipient.• Size: 378 — size of the message in bytes.• User: jwayne@company.com — user account from which the message was sent.• Sender-Host: 195.39.55.2 — IP address of the computer from which the messagehas been sent.• SSL: yes — informs whether the connection is SSL-secured (displayed for SMTP only).• Recipient: — email address of the addressee.• Result: delivered — information about the result of the delivery process.• Status: 2.0.0 — code of the SMTP response (for detailed information, see RFC 821and 1893). If the code starts with the 2 digit, the message was delivered successfully.If the code starts with the 4 or the 5 digit, the message delivery failed.Server-generated messagesMessages of this type are usually generated by Kerio MailServer. If the delivery fails, thesender receives a delivery status notification (DSN).[30/Nov/2005 15:31:40] Recv: Queue-ID: 438db7cc-00000000,Service: DSN, From: , To: , Size: 1650,Report: failed• [30/Nov/2005 15:31:40] — the date and time when the message was generated• Recv: — this section provides information whether the server has already receivedthe message or the message is just being sent. The status can therefore be Sent orReceived.• Queue-ID: 438db7cc-00000000 — the number generated by the server in the queueof outgoing messages.• Service: DSN — Delivery Status Notification; messages generated by KerioMailServer.• From: — this item is empty because the message was generated by the mailserver.• To: — email address of the recipient.• Size: 1650 — message size in bytes.• Report: failed — the type of notification.252
22.4 SecurityMailing list messagesThe Mail log contains all mailing list messages. The individual postings, as well as mailinglist control messages are logged[30/Nov/2005 19:09:11] Recv: Queue-ID: 438deac7-00000009,Service: List, From: , To:, Size: 3302, Answer: subscribe response• [30/Nov/2005 19:09:11] — date and time when the message was received.• Recv: — this section provides information whether the server has already receivedthe message or the message is just being sent. The status can therefore be Sent orReceived.• Queue-ID: 438deac7-00000009 — the number generated by the server in the queueof outgoing messages.• Service: List — mailing list flag.• — email address of the sender.• To: — email address of the recipient.• Size: 1397 — size of the message in bytes.• Answer: subscribe response — type of message.SieveMessages generated by a user filter (e.g. autoreply).22.4 SecurityThe Security log contains information related to Kerio MailServer’s security. It also containsrecords about all messages that failed to be delivered. The security log contains the followingtypes of events:Viruses and forbidden attachments detectedExample: a message that contains a virus:[16/Jun/2004 18:37:17] Found virus in mail from to :W32/Netsky.p@MM• [16/Jun/2004 18:37:17] — the date and time when the virus was detected.• Found virus in mail — action performed (information that the virus was found).• from — email address of the sender.• to — email address of the recipient.• W32/Netsky.p@MM — the type of virus contained in the message.Messages rejected by spam filterA message with high spam score:[16/Jun/2004 18:37:17] Message from to rejected by spam filter: score 9.74,threshold 5.00253
- Page 201 and 202: 17.5 Filtering Email Attachments17.
- Page 203 and 204: 17.6 Antivirus control statisticsFi
- Page 205 and 206: 18.1 ArchivingPath to the archive d
- Page 207 and 208: 18.2 Backup of user foldersFigure 1
- Page 209 and 210: 18.2 Backup of user foldersFigure 1
- Page 211 and 212: 18.2 Backup of user folders• Save
- Page 213 and 214: 18.2 Backup of user folders2. The s
- Page 215 and 216: Chapter 19LDAP serverThe built-in L
- Page 217 and 218: 19.2 Configuring Email ClientsFigur
- Page 219 and 220: 19.2 Configuring Email ClientsMaxim
- Page 221 and 222: 20.2 Creating a Mailing List• con
- Page 223 and 224: 20.2 Creating a Mailing ListFigure
- Page 225 and 226: 20.3 Posting rulesFigure 20.4Creati
- Page 227 and 228: 20.4 Moderators and MembersAdd this
- Page 229 and 230: 20.4 Moderators and MembersAdding a
- Page 231 and 232: 20.5 Mailing list archiving2. This
- Page 233 and 234: 20.7 How to use Mailing ListsExampl
- Page 235 and 236: Chapter 21Status InformationKerio M
- Page 237 and 238: 21.2 Message queue processingFrom,
- Page 239 and 240: 21.3 Active ConnectionsActive Conne
- Page 241 and 242: 21.4 Opened FoldersComponentsThree
- Page 243 and 244: 21.5 Traffic ChartsTime rangeIn the
- Page 245 and 246: 21.6 StatisticsRefreshThis button r
- Page 247 and 248: 22.1 Log settingsFigure 22.2Save lo
- Page 249 and 250: 22.1 Log settingsLog debugSelect th
- Page 251: 22.3 MailAuth_type=’0’, Passwor
- Page 255 and 256: 22.4 SecurityAntibombingServer over
- Page 257 and 258: 22.8 Debug• From: jsmith@company.
- Page 259 and 260: 22.8 Debug• IMAP Server — commu
- Page 261 and 262: 22.9 Performance Monitor (under Win
- Page 263 and 264: 23.1 Viewing public folders in indi
- Page 265 and 266: 24.1 Kerio MailServer on WindowsFig
- Page 267 and 268: 24.1 Kerio MailServer on WindowsFig
- Page 269 and 270: 24.2 Kerio MailServer on LinuxExamp
- Page 271 and 272: 24.2 Kerio MailServer on Linuxdebug
- Page 273 and 274: 24.3 Kerio MailServer on Mac OSTo e
- Page 275 and 276: 24.3 Kerio MailServer on Mac OSFigu
- Page 277 and 278: 24.3 Kerio MailServer on Mac OSFigu
- Page 279 and 280: 24.3 Kerio MailServer on Mac OSFigu
- Page 281 and 282: 24.4 Starting Open Directory and Ke
- Page 283 and 284: 24.4 Starting Open Directory and Ke
- Page 285 and 286: Figure 25.1Setting Windows NT domai
- Page 287 and 288: 25.1 Setting NTLM in MS Outlook ext
- Page 289 and 290: Chapter 26Kerio MailServer Environm
- Page 291 and 292: 26.3 FirewallFrom technical reasons
- Page 293 and 294: Chapter 27Deployment ExamplesThis c
- Page 295 and 296: 27.2 Dial-up Line + Domain Mailboxi
- Page 297 and 298: 27.4 A company with multiple sites5
- Page 299 and 300: 27.4 A company with multiple sitesF
- Page 301 and 302: 27.5 Setting up the backup mail ser
22.4 SecurityMailing list messagesThe Mail log contains all mailing list messages. The individual postings, as well as mailinglist control messages are logged[30/Nov/2005 19:09:11] Recv: Queue-ID: 438deac7-00000009,Service: List, From: , To:, Size: 3302, Answer: subscribe response• [30/Nov/2005 19:09:11] — date and time when the message was received.• Recv: — this section provides information whether the server has already receivedthe message or the message is just being sent. The status can therefore be Sent orReceived.• Queue-ID: 438deac7-00000009 — the number generated by the server in the queueof outgoing messages.• Service: List — mailing list flag.• — email address of the sender.• To: — email address of the recipient.• Size: 1397 — size of the message in bytes.• Answer: subscribe response — type of message.SieveMessages generated by a user filter (e.g. autoreply).22.4 SecurityThe Security log contains information related to <strong>Kerio</strong> MailServer’s security. It also containsrecords about all messages that failed to be delivered. The security log contains the followingtypes of events:Viruses and forbidden attachments detectedExample: a message that contains a virus:[16/Jun/2004 18:37:17] Found virus in mail from to :W32/Netsky.p@MM• [16/Jun/2004 18:37:17] — the date and time when the virus was detected.• Found virus in mail — action performed (information that the virus was found).• from — email address of the sender.• to — email address of the recipient.• W32/Netsky.p@MM — the type of virus contained in the message.Messages rejected by spam filterA message with high spam score:[16/Jun/2004 18:37:17] Message from to rejected by spam filter: score 9.74,threshold 5.00253