On 8/10/20 7:22 AM, Christos Zoulas wrote:
Can you try this? christos Index: smtpd.c =================================================================== RCS file: /cvsroot/src/external/ibm-public/postfix/dist/src/smtpd/smtpd.c,v retrieving revision 1.17 diff -u -u -r1.17 smtpd.c --- smtpd.c 18 Mar 2020 19:05:20 -0000 1.17 +++ smtpd.c 10 Aug 2020 14:21:48 -0000 @@ -5795,6 +5795,8 @@ || strcmp(state->reason, REASON_LOST_CONNECTION)) { msg_info("%s after %s from %s", state->reason, state->where, state->namaddr); + if (strcmp(state->where, SMTPD_CMD_AUTH) == 0) + pfilter_notify(1, vstream_fileno(state->client)); } }
For what it's worth (a month later), this patch seems to catch more of the untoward behavior I'm wanting to block. within an hour of installing it, I have one address blocked and a couple on their way...
+j