search for: auth_penalty_to_sec

Displaying 2 results from an estimated 2 matches for "auth_penalty_to_sec".

Did you mean: auth_penalty_to_secs
2018 Jun 25
1
More and better logging
...le). I was debugging problems with sasl user logins and a generic "SASL CRAM-MD5 authentication failed: Connection lost to authentication server" error in postfix, but nothing is logged in Dovecot when the error occurs. After extensive debugging I finally discovered auth-penalty and auth_penalty_to_secs after digging in the code. I suspect this to be the cause, but truly I have no way of confirming this, since no log is provided when this is triggered? - it would be nicer if events such as these were simply logged for better debugging and troubleshooting. Two cents :) Thanks -- Tom
2011 May 08
0
Issues with authentication failure delays
...length and settings don't have the expected effect. First, the length of the failure delays. Based on auth/auth-penalty.c and auth/auth-penalty.h, it seems rather clear that the delay time (for the newer type of failure delay) was intended to start at 2 seconds and double for each failure (see auth_penalty_to_secs), but be capped at 15 seconds. However, a simple test which tries to log in 5 times with a random password and times each attempt shows something different: $ cat authtest.py import imaplib import time import random conn = imaplib.IMAP4('localhost') for i in range(5): t...