search for: auth_penalty_to_secs

...le). I was debugging problems with sasl user logins and a generic "SASL CRAM-MD5 authentication failed: Connection lost to authentication server" error in postfix, but nothing is logged in Dovecot when the error occurs. After extensive debugging I finally discovered auth-penalty and auth_penalty_to_secs after digging in the code. I suspect this to be the cause, but truly I have no way of confirming this, since no log is provided when this is triggered? - it would be nicer if events such as these were simply logged for better debugging and troubleshooting. Two cents :) Thanks -- Tom

...length and settings don't have the expected effect. First, the length of the failure delays. Based on auth/auth-penalty.c and auth/auth-penalty.h, it seems rather clear that the delay time (for the newer type of failure delay) was intended to start at 2 seconds and double for each failure (see auth_penalty_to_secs), but be capped at 15 seconds. However, a simple test which tries to log in 5 times with a random password and times each attempt shows something different: $ cat authtest.py import imaplib import time import random conn = imaplib.IMAP4('localhost') for i in range(5): tr...