Wietse Venema:
> James:
> > I was hoping there might be some setting that would cause log entries like:
> >
> > postfix/smtpd[12345]: NOQUEUE: AUTH rejected from
> > client.example.com[0.1.2.3], sasl_method=PLAIN, sasl_username=spam_r_us
>
> Postfix does not implement SASL - the SASL SASL library does.
> Therefore, details of failed logins are not available to Postfix,
> only the successful ones.
The Postfix SMTP server supports SASL authentication with Dovecot
and with the Cyrus SASL library.
As someone pointed out, Dovecot can log information about failed
logins.
The Cyrus SASL library has a function sasl_errdetail() to report
the "last" error. When I change Postfix to call that function,
this this is what is with AUTH PLAIN, for a bad username or bad
password:
postfix/smtpd[8726]: SASL library: SASL(-13): user not found: Password
verification failed
postfix/smtpd[8726]: SASL library: SASL(-13): authentication failure: Password
verification failed
As you see, that function will not report the username, so logging
this does not make Postfix logging more useful.
Wietse
