[Logcheck-commits] Frédéric Brière : Added rules for all packages using pam_listfile with /etc/ftpusers ( closes: #443886)

[Frédéric Brière]

Module: logcheck
Branch: master
Commit: ed3eb5e1d8697c7c0b1447b1580c742cd8d12cad
URL:    http://git.debian.org/?p=logcheck/logcheck.git/?a=commit;h=ed3eb5e1d8697c7c0b1447b1580c742cd8d12cad

Author: Frédéric Brière <fbriere at fbriere.net>
Date:   Sun Mar 16 23:37:37 2008 -0400

Added rules for all packages using pam_listfile with /etc/ftpusers  (closes: #443886)

---

 rulefiles/linux/ignore.d.server/ftpd      |    1 +
 rulefiles/linux/ignore.d.server/proftpd   |    1 +
 rulefiles/linux/ignore.d.server/pure-ftpd |    1 +
 rulefiles/linux/ignore.d.server/vsftpd    |    1 +
 rulefiles/linux/ignore.d.server/wu-ftpd   |    1 +
 5 files changed, 5 insertions(+), 0 deletions(-)

diff --git a/rulefiles/linux/ignore.d.server/ftpd b/rulefiles/linux/ignore.d.server/ftpd
new file mode 100644
index 0000000..0c55823
--- /dev/null
+++ b/rulefiles/linux/ignore.d.server/ftpd
@@ -0,0 +1 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ftpd: PAM-listfile: Refused user [._[:alnum:]-]+ for service ftpd$
diff --git a/rulefiles/linux/ignore.d.server/proftpd b/rulefiles/linux/ignore.d.server/proftpd
index c65aaef..356f3ff 100644
--- a/rulefiles/linux/ignore.d.server/proftpd
+++ b/rulefiles/linux/ignore.d.server/proftpd
@@ -13,3 +13,4 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]:? [._[:alnum:]-]+ \([:._[:alnum:]-]+\[[.:[:xdigit:]]+\]\)(:| -) notice: user [-_.[:alnum:]]+: aborting transfer: Data connection closed\.
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]:? [._[:alnum:]-]+( \([:._[:alnum:]-]+\[[.:[:xdigit:]]+\]\))?(:| -) error setting IPV6_V6ONLY: Protocol not available$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd\[[0-9]+\]:? [._[:alnum:]-]+( \([:._[:alnum:]-]+\[[.:[:xdigit:]]+\]\))?(:| -) Preparing to chroot to directory '[-/._[:alnum:]]+'$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ proftpd: PAM-listfile: Refused user [._[:alnum:]-]+ for service proftpd$
diff --git a/rulefiles/linux/ignore.d.server/pure-ftpd b/rulefiles/linux/ignore.d.server/pure-ftpd
index a2fa115..9d6aadd 100644
--- a/rulefiles/linux/ignore.d.server/pure-ftpd
+++ b/rulefiles/linux/ignore.d.server/pure-ftpd
@@ -8,3 +8,4 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ pure-ftpd: \([._[:alnum:]-]+@[._[:alnum:]-]+\) \[NOTICE\] File successfully renamed or moved: \[.+\]->\[.+\]$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ pure-ftpd: \([._[:alnum:]-]+@[._[:alnum:]-]+\) \[NOTICE\] Deleted .+$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ pure-ftpd: \([.[:alnum:]-]+@[._[:alnum:]-]+\) \[INFO\] Timeout$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ pure-ftpd: PAM-listfile: Refused user [._[:alnum:]-]+ for service pure-ftpd$
diff --git a/rulefiles/linux/ignore.d.server/vsftpd b/rulefiles/linux/ignore.d.server/vsftpd
new file mode 100644
index 0000000..77da366
--- /dev/null
+++ b/rulefiles/linux/ignore.d.server/vsftpd
@@ -0,0 +1 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ vsftpd: PAM-listfile: Refused user [._[:alnum:]-]+ for service vsftpd$
diff --git a/rulefiles/linux/ignore.d.server/wu-ftpd b/rulefiles/linux/ignore.d.server/wu-ftpd
new file mode 100644
index 0000000..1d2a3c7
--- /dev/null
+++ b/rulefiles/linux/ignore.d.server/wu-ftpd
@@ -0,0 +1 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ wu-ftpd: PAM-listfile: Refused user [._[:alnum:]-]+ for service wu-ftpd$