On 2022-07-15, Jeremy Harris via Exim-users <exim-users@exim.org> wrote: > My practice, and I think it would help with this sort of > attacker, is to delay the auth response for a fail. > By 15 or 20 seconds. Most drop off by about ten, so
How do you do this? Abusing server_condition doesn't work, as it's only expanded if the base authentication succeeds. (My authentication method is cram-md5.) -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
