From time to time, especially with Email we have some spam issue - too many bots trying to log in, some customer email account being hijacked, and so on.
Some example logs from /var/log/exim4/mainlog:
rejected by non-SMTP ACL: Website of user USER is sending too many emails - rate overlimit = 200.6 / 1h
SMTP call from scan-04.shadowserver.org [184.105.139.70] dropped: too many unrecognized commands (last was "Accept: */*")
SMTP error from remote mail server after pipelined MAIL FROM:<admin@XXX> SIZE=1893: 421 4.7.0 [TSS│04] Messages from IP temporarily deferred due to unexpected volume or user complaints - 4.16.55.1; see https://postmaster.yahooinc.com/error-codes
Is there a tool, be it CLI, monitor, notifications, dashboard that aggregates such issues and provides quick insights for an admin to debug them?
Cause otherwise the issues come up when a user notices them, and then the admin needs to go dig through the logs.
An early warning system would be very helpful for this.