[Logcheck-commits] r1408 - in logcheck/trunk: debian rulefiles/linux/violations.ignore.d

madduck at users.alioth.debian.org madduck at users.alioth.debian.org
Thu Dec 28 12:14:34 CET 2006 

Author: madduck
Date: 2006-12-28 12:14:33 +0100 (Thu, 28 Dec 2006)
New Revision: 1408

Modified:
   logcheck/trunk/debian/changelog
   logcheck/trunk/rulefiles/linux/violations.ignore.d/logcheck-ssh
Log:
* violations.ignore.d/logcheck-ssh: ignore ssh hosts.allow warnings
  (closes: #400714).

Modified: logcheck/trunk/debian/changelog
===================================================================
--- logcheck/trunk/debian/changelog	2006-12-28 11:12:40 UTC (rev 1407)
+++ logcheck/trunk/debian/changelog	2006-12-28 11:14:33 UTC (rev 1408)
@@ -32,6 +32,8 @@
   * ignore.d.server/ssh: ignore messages about missing auth information.
   * ignore.d.server/ssh: support filtering gssapi-keyex messages; thanks to
     Russ Allbery (closes: #400426).
+  * violations.ignore.d/logcheck-ssh: ignore ssh hosts.allow warnings
+    (closes: #400714).
 
   * ignore.d.server/dcc: ignore message about which DCC servers are used.
 
@@ -52,7 +54,7 @@
     (closes: #402204).
   * Do not source debconf confmodule in preinst as it's not needed.
 
- -- martin f. krafft <madduck at debian.org>  Thu, 28 Dec 2006 12:12:04 +0100
+ -- martin f. krafft <madduck at debian.org>  Thu, 28 Dec 2006 12:13:48 +0100
 
 logcheck (1.2.51) unstable; urgency=medium
 

Modified: logcheck/trunk/rulefiles/linux/violations.ignore.d/logcheck-ssh
===================================================================
--- logcheck/trunk/rulefiles/linux/violations.ignore.d/logcheck-ssh	2006-12-28 11:12:40 UTC (rev 1407)
+++ logcheck/trunk/rulefiles/linux/violations.ignore.d/logcheck-ssh	2006-12-28 11:14:33 UTC (rev 1408)
@@ -1,5 +1,5 @@
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: warning: /etc/hosts.deny, line [0-9]+: can't verify hostname: getaddrinfo\([._[:alnum:]-]+, AF_INET\) failed$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: warning: /etc/hosts.deny, line [0-9]+: host name/name mismatch: [._[:alnum:]-]+ != [._[:alnum:]-]+$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: warning: /etc/hosts\.(allow|deny), line [0-9]+: can't verify hostname: getaddrinfo\([._[:alnum:]-]+, AF_INET\) failed$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: warning: /etc/hosts\.(allow|deny), line [0-9]+: host name/name mismatch: [._[:alnum:]-]+ != [._[:alnum:]-]+$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: reverse mapping checking getaddrinfo for [._[:alnum:]-]+ failed - POSSIBLE BREAK-?IN ATTEMPT!$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Address [._[:alnum:]-]+ maps to [._[:alnum:]-]+, but this does not map back to the address - POSSIBLE BREAK-?IN ATTEMPT!$
 ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: fatal: Write failed: Broken pipe$

More information about the Logcheck-commits mailing list