li...@rhsoft.net:
> the problem ist that postfix has no idea of the SASL internals and should
> not need to - in case of dovecot i asked a few days ago to log the username
> because in case of using dovecot as SASL provider that's the only instance
> which decodes the input and verify it against the user-db
Would not it be sufficient to trigger on repeated authentication
failures, regardless of the login name?
As Reindl observed, Postfix does not decode SASL protocols, it just
passes strings between the remote SMTP client and the local Dovecot
server or SASL implementation.
Wietse
