[Logcheck-commits] Frédéric Brière : Removing bind "query denied" rule from ignore.d.server
Frédéric Brière
fbriere-guest at alioth.debian.org
Sat Mar 15 03:43:40 UTC 2008
Module: logcheck
Branch: master
Commit: e5fff2874e47122057f05027558d3c359f10c0c7
URL: http://git.debian.org/?p=logcheck/logcheck.git/?a=commit;h=e5fff2874e47122057f05027558d3c359f10c0c7
Author: Frédéric Brière <fbriere at fbriere.net>
Date: Fri Mar 14 17:41:46 2008 -0400
Removing bind "query denied" rule from ignore.d.server
This rule was meant to be moved to violations.ignore.d by
bcc76c4f05cdce59917c7570b6e4775b9dc2af31, but was merely copied instead.
---
rulefiles/linux/ignore.d.server/bind | 1 -
1 files changed, 0 insertions(+), 1 deletions(-)
diff --git a/rulefiles/linux/ignore.d.server/bind b/rulefiles/linux/ignore.d.server/bind
index 02a62f7..f4dad2b 100644
--- a/rulefiles/linux/ignore.d.server/bind
+++ b/rulefiles/linux/ignore.d.server/bind
@@ -5,7 +5,6 @@
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: zone [._[:alnum:]-]+/IN: Transfer started.$
^\w{3} [ :0-9]{11} [-._[:alnum:]]+ named\[[0-9]+\]: client [0-9.]{7,15}#[0-9]+: view (localhost|any|slave): query: [-._[:alnum:]]+ IN (CNAME|A6|AAAA|A|MX|PTR|TXT|NS|SOA|SSHFP) [-+](E?)$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: (client [.#[:digit:]]+: )?notify question section contains no SOA$
-^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: client [[:digit:].]+#[[:digit:]]+: query (\(cache\) )?'.*' denied$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: journal file [-./_[:alnum:]]+ does not exist, creating it$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: client [.#[:digit:]]+: updating zone '[-._[:alnum:]]+/IN': (adding an RR|deleting rrset) at '[._[:alnum:]-]+' A$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: dispatch 0x[[:xdigit:]]+: shutting down due to TCP receive error: [[:digit:].]+#[[:digit:]]+: connection reset$
More information about the Logcheck-commits
mailing list