Autor: Jeremy Harris Datum: To: exim-dev Betreff: [exim-dev] OpenSSL certificate verification failure logging
... is noisy in mainlog. It has been forever, I think;
the code line has always (in git terms) been there.
Perhaps it's only the growth in use of certificates.
You get blocks like:
(that one's a standard "example certificate" - and someone is serving
it up!)
and every self-signed cert gets at least one line to say that
(often a second to say it's expired; sigh)
This seems unfortunate for a default-settings log. Since it's already
there it is probably too late to change for the upcoming 4.83 -
but should it move to under debug ( +tls )? A new logging option
( tls_detail )? Redefined existing logging option
( tls_certificate_verified )?