[Logcheck-commits] CVS logcheck/rulefiles/linux/ignore.d.server
CVS User madduck
logcheck-devel at lists.alioth.debian.org
Tue Jul 4 22:13:52 UTC 2006
Update of /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server
In directory haydn:/tmp/cvs-serv4272/rulefiles/linux/ignore.d.server
Modified Files:
proftpd smartd squid
Log Message:
Sorry for the multi-commit; CVS sucks:
* ignore.d.server/proftpd: adding ANON command to successful login rule and
noticing that the other rule of the bugs has already been fixed
(closes: #372541).
* ignore.d.server/smartd: don't be so selective about temperature filtering
(closes: #368878).
* ignore.d.server/squid: folded in some filters for operational messages and
updated squidGuard spawn message to include all eventHelper messages.
--- /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/proftpd 2006/05/24 21:44:59 1.8
+++ /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/proftpd 2006/07/04 22:13:52 1.9
@@ -1,5 +1,5 @@
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]: [._[:alnum:]-]+ \([.:_[:alnum:]-]+\[[0-9a-f.:]+\]\) (- )FTP session (opened|closed)\.$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]: [._[:alnum:]-]+ \([.:_[:alnum:]-]+\[[0-9a-f.:]+\]\) (- )USER [._[:alnum:]-]+: Login successful\.$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]: [._[:alnum:]-]+ \([.:_[:alnum:]-]+\[[0-9a-f.:]+\]\) (- )(USER|ANON) [._[:alnum:]-]+: Login successful\.$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd: \(pam_unix\) session (opened|closed) for user [._[:alnum:]-]+( by \(uid=[0-9]+\))?$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]: [._[:alnum:]-]+ \([.:_[:alnum:]-]+\[[0-9a-f.:]+\]\) (- )mod_delay/[0-9]\.[0-9]: delaying for [0-9]+ usecs$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]: [._[:alnum:]-]+ \([._[:alnum:]-]+\[[0-9.]{7,15}\]\) - ANON (anonymous|ftp): Login successful.$
--- /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/smartd 2006/06/04 21:19:46 1.8
+++ /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/smartd 2006/07/04 22:13:52 1.9
@@ -1,3 +1,3 @@
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[hs]d[[:lower:]]( \[3ware_disk_0[0-9]\])?, starting scheduled (Long|Short) Self-Test\.$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[[:alpha:]]{3}, SMART Usage Attribute: 194 Temperature_Celsius changed from ([5-9]|[1-4][0-9]|50) to ([5-9]|[1-4][0-9]|50)$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[[:alpha:]]{3}, Temperature changed (-|\+)?[1-2]+ Celsius to ([5-9]|[1-4][0-9]|50) Celsius since last report$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[hs]d[[:lower:]]( \[3ware_disk_0[[:digit:]]\])?, starting scheduled (Long|Short) Self-Test\.$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[hs]d[[:lower:]]( \[3ware_disk_0[[:digit:]]\])?, SMART Usage Attribute: 194 Temperature_Celsius changed from [[:digit:]]+ to [[:digit:]]+$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ smartd\[[0-9]+\]: Device: /dev/[hs]d[[:lower:]]( \[3ware_disk_0[[:digit:]]\])?, Temperature changed (-|\+)?[1-2]+ Celsius to [[:digit:]]+ Celsius since last report$
--- /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/squid 2006/05/24 21:44:59 1.9
+++ /cvsroot/logcheck/logcheck/rulefiles/linux/ignore.d.server/squid 2006/07/04 22:13:52 1.10
@@ -52,7 +52,7 @@
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: httpReadReply: Excess data from "GET .*"$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: WARNING: found whitespace in HTTP header name \{Cache Control: no-cache\}$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: ctx: exit level 0$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: helperOpenServers: Starting [[:digit:]]+ '[-._[:alnum:]]+' processes$
# squidguard
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: helperOpenServers: Starting [0-9]+ 'squidGuard' processes$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: CACHEMGR: <unknown>@127.0.0.1 requesting 'storedir'$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ squid\[[0-9]+\]: CACHEMGR: <unknown>@127.0.0.1 requesting 'counters'$
More information about the Logcheck-commits
mailing list