Our server has been receiving repeated AUTH LOGIN requests, even though it advertises that it is not supported in response to the EHLO command.
1. 114.33.110.184 on port 3290|12:20:34
1. EHLO ylmf-pc
1. AUTH LOGIN
1. Closed.|12:20:35
The EHLO is always the same, and 3 different addresses have been used in the last few days:
114.33.110.184
183.7.131.67
218.18.5.68
I am currently responding with:
"502 Command not implemented."

Is there a better way to handle this minor annoyance?