I have been experiencing invalid login attempts to user accounts on my server. Continuous such attempts lockouts the user account. I found following in audit.log:
Code: Select all
2018-02-27 09:55:18,067 WARN [ImapSSLServer-878] [ip=xxx.yyy.zzz.aaa;] security - cmd=Auth; account=user@domain.com; protocol=imap; error=authentication failed for [user@domain.com], invalid password;
~Dipesh
(Release 8.0.9.GA.6191.UBUNTU14.64 UBUNTU14_64 NETWORK edition)