As a FYI. These are the IP addresses that tried to log in to my mail server in the past week.
All of them came once, tried one login, failed and disappeared again. This is why you should insist on secure passwords for your mail accounts. No compromise. (And yes, they all made encrypted TLS connections, as my mail server won't accept logins without it)
@jwildeboer
That was the first surprise as I started self-hosting services, and I'm still kinda amazed by the amount of bots trying their luck.
Even my private server with nothing but my Mastodon-instance running receives somewhere around one attempt per second. 🤯
I thought about setting up honeypots to waste their time but that's a bit to far outside my area of expertise.
Jan Wildeboer 😷
Jiřà Eischmann 
clockw0rk
Steve
Peter Toft Jølving