From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <9front-bounces@9front.inri.net>
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org
X-Spam-Level: ***
X-Spam-Status: No, score=3.0 required=5.0 tests=DKIM_INVALID,DKIM_SIGNED,
	HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,RCVD_IN_SBL_CSS
	autolearn=no autolearn_force=no version=3.4.4
Received: from 9front.inri.net (9front.inri.net [168.235.81.73])
	by inbox.vuxu.org (Postfix) with ESMTP id 0B6AE241D3
	for <ml@inbox.vuxu.org>; Fri,  3 May 2024 21:53:07 +0200 (CEST)
Received: from mail.posixcafe.org ([45.76.19.58]) by 9front; Fri May  3 15:51:39 -0400 2024
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=posixcafe.org;
	s=20200506; t=1714765890;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=TDvRJep5vaILXTtFQR0tzsRReQ8gT64br9cm5KAUbeE=;
	b=t2Ps4j6POg+q49YH14T/UoD3v8Z5Vf4NQl5JZc5uSdORfCyISbiD4sxad7nvtW7WVJFV5a
	QnplPkcwtvFkg04gNYiEYD3wd/rHmBl32YbG1o4LP4OqPWzva8L6rK7Podql8IqZh2JgrR
	h3aEJH4w0g7rb69xgKpxr9AWX4T0QJM=
Received: from [192.168.168.200] (<unknown> [207.45.82.38])
	by mail.posixcafe.org (OpenSMTPD) with ESMTPSA id 26b9fff8 (TLSv1.3:TLS_AES_256_GCM_SHA384:256:NO)
	for <9front@9front.org>;
	Fri, 3 May 2024 14:51:30 -0500 (CDT)
Message-ID: <4f9bde56-04c9-4ded-b7c1-1eac44b81198@posixcafe.org>
Date: Fri, 3 May 2024 14:51:33 -0500
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: 9front@9front.org
References: <DC7C0D69F5E330FB41666D5CB0D63915@musolino.id.au>
 <ca57c270-2b84-4681-970d-78fd428cc794@sirjofri.de>
Content-Language: en-US
From: Jacob Moody <moody@posixcafe.org>
In-Reply-To: <ca57c270-2b84-4681-970d-78fd428cc794@sirjofri.de>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
List-ID: <9front.9front.org>
List-Help: <http://lists.9front.org>
X-Glyph: ➈
X-Bullshit: anonymous wrapper extension 
Subject: Re: [9front] AUTHENTICATE failed can't get challenge (imap4d)
Reply-To: 9front@9front.org
Precedence: bulk

On 5/3/24 13:23, sirjofri wrote:
> 03.05.2024 14:12:18 Alex Musolino <alex@musolino.id.au>:
> 
>>> Does someone know what could cause this?
>>
>> Is your server hosted with vultr?
> 
> Nope, netcup. It's the cheapest plan there, but I never had issues so far.
> 
> sirjofri

We've seen it happen to folks primarily in vultr but I don't think there is currently
any reason to believe vultr specifically is a target. Getting a list of every machine
with ports open on the ipv4 net these days is really not much of a task, so I wouldn't
be surprised if they were just spamming any address they know of listening on web ports.

Either way, I'd update your kernel and userspace and see if that fixes the problem.


Thanks,
moody