I had occasion to look at /var/log/messages today and I saw numerous messages like the following:
Feb 3 22:50:36 mydomain saslauthd[829]: do_auth : auth failure: [user=username@mydomain] [service=smtp] [realm=mydomain] [mech=pam] [reason=PAM auth error]
In most cases, username was not an account on my system, though in a small number of cases, it is legitimate. I assume that these are attempts to hack my system in some manner. Are there any specific recommendations to thwarting this type of attack?