> A lot of “bots” try very simple passwords say less than X > characters; over and over and over again before they give up. > > I realize Dovecot mitigates this by slowing them down; but always nice to > have another optional layer of defense to clip this kind of garbage closer > to the door.
Check out fail2ban. It's very useful for that sort of repeated bot attack. Michael