[Logcheck-commits] Frédéric Brière : Created new krb5-kdc ruleset
Frédéric Brière
fbriere-guest at alioth.debian.org
Sun Mar 16 21:01:21 UTC 2008
Module: logcheck
Branch: master
Commit: d5ceb6505f6a9a88bcb2b1139cfdba7b5fa06db7
URL: http://git.debian.org/?p=logcheck/logcheck.git/?a=commit;h=d5ceb6505f6a9a88bcb2b1139cfdba7b5fa06db7
Author: Frédéric Brière <fbriere at fbriere.net>
Date: Sun Mar 16 16:54:35 2008 -0400
Created new krb5-kdc ruleset
---
rulefiles/linux/ignore.d.server/krb5-kdc | 3 +++
1 files changed, 3 insertions(+), 0 deletions(-)
diff --git a/rulefiles/linux/ignore.d.server/krb5-kdc b/rulefiles/linux/ignore.d.server/krb5-kdc
new file mode 100644
index 0000000..3d1e7e0
--- /dev/null
+++ b/rulefiles/linux/ignore.d.server/krb5-kdc
@@ -0,0 +1,3 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ krb5kdc\[[0-9]+\]: (AS|TGS)_REQ \([0-9]+ etypes \{[[:digit:] ]+\}\) [.:[:xdigit:]]+: ISSUE: authtime [[:digit:]]+, etypes \{rep=[[:digit:]]+ tkt=[[:digit:]]+ ses=[[:digit:]]+\}, [._@/[:alnum:]-]+ for [._@/[:alnum:]-]+$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ krb5kdc\[[0-9]+\]: (AS|TGS)_REQ \([0-9]+ etypes \{[[:digit:] ]+\}\) [.:[:xdigit:]]+: NEEDED_PREAUTH: [._@/[:alnum:]-]+ for [._@/[:alnum:]-]+, Additional pre-authentication required$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ krb5kdc\[[0-9]+\]: DISPATCH: repeated \(retransmitted\?\) request from [.:[:xdigit:]]+, resending previous response$
More information about the Logcheck-commits
mailing list