Thank you for all the replies.
I was wondering if I was missing a postfix setting that would log this info and
the answer is that I'm not.
So, question answered.
I am highly confident that if I could see this logged then the vast majority of it would
indeed be "oh yeah, random/hopeless attempts that don't stand a chance, ignore
them".
And it's not really a postfix-specific issue, it's more holistic.
But because these AUTH attempts against postfix *are* happening constantly, I was
thinking that it might offer a chance to spot (potential) problems with credentials
leaking from something/somewhere else ("crap, where are they getting *that* userid
from?").
It's fascinating to see the spam aimed at me using email addresses that I
provided to companies that I stopped having anything to do with over a decade
ago... what about credentials?
- James
