Don't offer any unencrypted email accounts. That won't insure good passwords, but at least it will stop leaks over public wifi.
I had to dig back a bit in my cranium for "driftnet". Never ran it myself, but supposedly it steals all sorts of unencrypted goodies. Original Message From: Daniel Miller Sent: Friday, June 23, 2017 4:38 PM To: Postfix-users@postfix.org Subject: Limit the damage of a hacked sender acount I had a couple of accounts with too simple passwords hacked. And obviously my mail server is entirely too efficient - I think about 50k spams got blasted out before I caught it (because we got in the DNSBL's). Separate from improving the password security - what can I do to limit the damage a compromised account can cause? Without receiving user complaints about not being able to send the latest cute kitty pictures to their whole addressbook? Are there per-sender limits that can/should be applied? And is there a way I can be notified of a suspicious condition - without manually monitoring the queue? -- Daniel
