li...@lazygranch.com:
> > You should enable SASL auth in master.cf NOT main.cf, and ONLY for
> > a service that needs SASL auth.
> >
> > Otherwise you're turning it on for the server-to-server port (25)
> > where it is not doing any good.
> >
> > Wietse
> >
>
> OK now it makes sense to comment out the line in the main.cf. I knew
> sasl had to be enabled somewhere. As it turns out I had put all the
> lines in master.cf for the submission 587 but neglected to comment out
> this line in the main.cf.
>
> I did a reload/restart and the mail still works. I will give that
> spammer an hour and see what shows up. The password guesser would hit
> the server about every 20 minutes. All my passwords are high entropy 20
> characters computer generated.
Even with SASL turned off you will see that some bots try SASL auth.
But with SASL turned they can't use this to verify passwords.
Wietse
