[Logcheck-devel] Bug#249074: logcheck: can't get line to be ignored (user error?)

[maks attems]

On Sat, 15 May 2004, maks attems wrote:

> On Fri, 14 May 2004, David M. Dowdle wrote:
> 
> > ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ (sendmail|sm-(mta|msp|que))\[[0-9]+\]: .* 550Blocked by http
> > 
> > note that last line was added by me. logcheck is running a "server" level

the attached local-sendmail file contains regexes
tested on your reported log messages.
i'll be interested at the lines it doesn't catch,
i assume there will be!

egrep '550Blocked by' /var/log/mail/mail.log | egrep -v -f local-sendmail

please send us the output of aboves line.
well if it's enormus please scale it down. ;)
thanks in advance for your feedback
a++ maks


-------------- next part --------------
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ (sendmail|sm-(mta|msp|que))\[[0-9]+\]: [[:alnum:]]+: ruleset=check_mail, arg1=<.*>, relay=[._[:alnum:]-]+ \[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\], reject=[0-9]+ [0-9]\.[0-9]\.[0-9] <.*>\.\.\. [0-9]+Blocked by [._[:alnum:]:/-]+$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ (sendmail|sm-(mta|msp|que))\[[0-9]+\]: ruleset=check_relay, arg1=[._[:alnum:]-]+, arg2=[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}, relay=[._[:alnum:]-]+ \[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\], reject=[0-9]+ [0-9]\.[0-9]\.[0-9] [0-9]+Blocked by [._[:alnum:]:/-]+$
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/logcheck-devel/attachments/20040515/badb3a8c/attachment.pgp