[Logcheck-commits] r1304 - in logcheck/trunk: debian
rulefiles/linux/ignore.d.server
madduck at users.alioth.debian.org
madduck at users.alioth.debian.org
Thu Nov 9 21:00:00 CET 2006
Author: madduck
Date: 2006-11-09 20:59:59 +0100 (Thu, 09 Nov 2006)
New Revision: 1304
Modified:
logcheck/trunk/debian/changelog
logcheck/trunk/rulefiles/linux/ignore.d.server/logcheck
Log:
* ignore.d.server/logcheck: ignore pam_unix opened and closed sessions with
empty progname (gconf mainly).
Modified: logcheck/trunk/debian/changelog
===================================================================
--- logcheck/trunk/debian/changelog 2006-11-09 19:55:35 UTC (rev 1303)
+++ logcheck/trunk/debian/changelog 2006-11-09 19:59:59 UTC (rev 1304)
@@ -13,8 +13,10 @@
lack of IPv6 routers to server level.
* violations.ignore.d/logcheck-cron-apt: ignore redundant summary error
message about index files that failed to download.
+ * ignore.d.server/logcheck: ignore pam_unix opened and closed sessions with
+ empty progname (gconf mainly).
- -- martin f. krafft <madduck at debian.org> Thu, 9 Nov 2006 20:54:53 +0100
+ -- martin f. krafft <madduck at debian.org> Thu, 9 Nov 2006 20:58:51 +0100
logcheck (1.2.50) unstable; urgency=low
Modified: logcheck/trunk/rulefiles/linux/ignore.d.server/logcheck
===================================================================
--- logcheck/trunk/rulefiles/linux/ignore.d.server/logcheck 2006-11-09 19:55:35 UTC (rev 1303)
+++ logcheck/trunk/rulefiles/linux/ignore.d.server/logcheck 2006-11-09 19:59:59 UTC (rev 1304)
@@ -1,5 +1,5 @@
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ [[:alnum:]]+\[[0-9]+\]: \(pam_[[:alnum:]]+\) session opened for user [.[:alnum:]-]+ by (root|LOGIN)?\(uid=0\)$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ [[:alnum:]]+\[[0-9]+\]: \(pam_[[:alnum:]]+\) session closed for user [.[:alnum:]-]+$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ([[:alnum:]]+\[[0-9]+\])?: \(pam_[[:alnum:]]+\) session opened for user [.[:alnum:]-]+ by (root|LOGIN)?\(uid=0\)$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ([[:alnum:]]+\[[0-9]+\])?: \(pam_[[:alnum:]]+\) session closed for user [.[:alnum:]-]+$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ PAM_[^[:space:]]+: [^[:space:]]+ session opened for user [.[:alnum:]-]+ by \(uid=0\)$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ PAM_[^[:space:]]+: [^[:space:]]+ session closed for user [.[:alnum:]-]+$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ identd\[[0-9]+\]: started$
More information about the Logcheck-commits
mailing list