On Tue, Oct 24, 2023 at 07:05:13PM +0200, Eric Doutreleau wrote:
> then i have to check in the cyrus-sasl side
Cyrus SASL is just a library. It isn't its job to make independent
decisions about what to log. It may have a "debug level" knob that
Postfix could tweak, but running in "debug mode" is not recommended
in production.
So, no, you won't find much help there. With backends like Kerberos,
you could perhaps find some evidence of failed pre-auth requests in
KDC logs (but not the remote IP of the SMTP server, or other links
to the specific SMTP client). With with PLAIN against a password
database, there'd be no logs from Cyrus.
If logging the username is *sufficiently* important to you, you could
run the latest Postfix snapshot :-) I realise that's easier said than
done in some environments...
--
Viktor.
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
