On 30 Apr 2020, at 10:52, Keith <kwo...@citywest.ca> wrote: > Using version 3.2.2 under FreeBSD 11.
The current version of 3.2 is 3.2.12, so update at least to that. > There are a lot of this in the log as bots etc try to AUTH on port 25. Is > there a way to turn this off or at least not have it scattered in the logs? > 99.9% of these have no hostname associated with the IP. Two things you should do 1) Stop allowing auth connections on port 25 at all 2) use postscreen This will probably mitigate things enough. Also, when you saw there are a lot of these attempts, how many are we talking about? Is it preventing legitimate access and making the server load so high you are losing mail, or is this just a reaction to looking at the logs? If you just don’t want to see them you can use rsyslog (sysutils/rsyslog8) to split them out into their own log files. But you should definitely update postfix and you should turn on postscreen because it’s simple, low overhead, zero maintenance, and effective. -- "Alas, earwax.”
