Bug#271286: [Logcheck-devel] Bug#271286: minor fix for ignore.d.server/oidentd

[maks attems]

tags #271286 pending
thanks

On Mon, 13 Sep 2004, Jonas Meurer wrote:

> On 13/09/2004 maks attems wrote:
> > could you post full log line?
> 
> this is the line, rendered by syslog-summary. the full log line is:
> Sep 12 13:27:31 diana50 oidentd[16365]: Connection from 241.145.24.135:2353
> 
.. 
> so the line you have to add is:
> ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ oidentd\[[0-9]+\]: Connection from \
>     [0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}:[0-9]{1,5}$

thanks added to current cvs, 
will be in next logcheck version!
 
> bu maybe this works:
> ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ oidentd\[[0-9]+\]: Connection from \
>     [._[:alum:]-]+ \(?[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\)?:[0-9]{1,5}$

looks a bit fragile, as the two lines are still somehow different,
i'll leave the old rule unchanged,
until logcheck has a counter which lines matches. :)
 
--
maks