[Logcheck-devel] Bug#401717: logcheck-database: doesn't catch some nagios2 messages

Esteban Cerutti ecerutti at gob.gba.gov.ar
Tue Dec 5 14:57:32 UTC 2006 

Package: logcheck-database
Version: 1.2.51
Severity: wishlist
Tags: patch



-- System Information:
Debian Release: 4.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.4.27-2-686
Locale: LANG=es_AR, LC_CTYPE=es_AR (charmap=ISO-8859-1)

Versions of packages logcheck-database depends on:
ii  debconf [debconf-2.0]         1.5.8      Debian configuration management sy

logcheck-database recommends no packages.


--- patch ----

@@ -1,6 +1,6 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Auto-save of retention data comple ted 
successfully\.$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: LOG ROTATION: (DAILY|WEEKLY|MONTHL Y)$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Nagios 1\.[0-9] starting\.\.\. \(P 
ID=[0-9]+\)$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Nagios (1|2)\.[0-9] starting\.\.\.  
\(PID=[0-9]+\)$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Caught SIGHUP, restarting\.\.\.$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE ALERT: [._[:alnum:]-]+;[^; 
]+;(CRITICAL|WARNING|OK|UNKNOWN);(SOFT|HARD);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE NOTIFICATION: [._[:alnum:] 
-]+;[._[:alnum:]-]+;[^;]+;(ACKNOWLEDGEMENT \()?(CRITICAL|WARNING|OK|UNKNOWN)(\)) ?;.*$
@@ -8,7 +8,7 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST ALERT: [._[:alnum:]-]+;(DOWN| 
UP|UNREACHABLE);(SOFT|HARD);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST NOTIFICATION: [._[:alnum:]-]+ 
;[._[:alnum:]-]+;(DOWN|UP|UNREACHABLE);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST DOWNTIME ALERT: [._[:alnum:]- 
]+;(STARTED|STOPPED);.*$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST EVENT HANDLER: [._[:alnum:]-] 
+;DOWN;(SOFT|HARD);[0-9]+;.*$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST EVENT HANDLER: [._[:alnum:]-] 
+;(UP|DOWN);(SOFT|HARD);[0-9]+;.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: PROCESS_SERVICE_ 
CHECK_RESULT;[._[:alnum:]-]+;[^;]+;[0-9]+;.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: (ENABLE|DISABLE) 
_(HOST_|HOST_SVC_|SVC_)?NOTIFICATIONS;[._[:alnum:]-]+(;[^;]+)?$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: (ADD_SVC_COMMENT 
|ACKNOWLEDGE_SVC_PROBLEM);[._[:alnum:]-]+;[[:alnum:]]+;[0-9]+;([[:alnum:]]+;)?.* $
@@ -17,3 +17,5 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE ALERT: [[:alnum:]]+;PING;( 
WARNING|OK).*$
 # nrpe
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nrpe\[[0-9]+\]: Error: Could not complete SS L 
handshake. 5$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Warning: Host '[[:alnum:]]+' has n o 
services associated with it\!$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: LOG VERSION: 2\.[0-9]$

--- end patch ---
-------------- next part --------------
--- nagios	2006-11-17 15:26:02.000000000 -0300
+++ /etc/logcheck/ignore.d.server/nagios	2006-12-05 10:52:48.000000000 -0300
@@ -1,6 +1,6 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Auto-save of retention data completed successfully\.$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: LOG ROTATION: (DAILY|WEEKLY|MONTHLY)$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Nagios 1\.[0-9] starting\.\.\. \(PID=[0-9]+\)$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Nagios (1|2)\.[0-9] starting\.\.\. \(PID=[0-9]+\)$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Caught SIGHUP, restarting\.\.\.$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE ALERT: [._[:alnum:]-]+;[^;]+;(CRITICAL|WARNING|OK|UNKNOWN);(SOFT|HARD);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE NOTIFICATION: [._[:alnum:]-]+;[._[:alnum:]-]+;[^;]+;(ACKNOWLEDGEMENT \()?(CRITICAL|WARNING|OK|UNKNOWN)(\))?;.*$
@@ -8,7 +8,7 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST ALERT: [._[:alnum:]-]+;(DOWN|UP|UNREACHABLE);(SOFT|HARD);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST NOTIFICATION: [._[:alnum:]-]+;[._[:alnum:]-]+;(DOWN|UP|UNREACHABLE);.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST DOWNTIME ALERT: [._[:alnum:]-]+;(STARTED|STOPPED);.*$
-^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST EVENT HANDLER: [._[:alnum:]-]+;DOWN;(SOFT|HARD);[0-9]+;.*$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: HOST EVENT HANDLER: [._[:alnum:]-]+;(UP|DOWN);(SOFT|HARD);[0-9]+;.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: PROCESS_SERVICE_CHECK_RESULT;[._[:alnum:]-]+;[^;]+;[0-9]+;.*$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: (ENABLE|DISABLE)_(HOST_|HOST_SVC_|SVC_)?NOTIFICATIONS;[._[:alnum:]-]+(;[^;]+)?$
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: EXTERNAL COMMAND: (ADD_SVC_COMMENT|ACKNOWLEDGE_SVC_PROBLEM);[._[:alnum:]-]+;[[:alnum:]]+;[0-9]+;([[:alnum:]]+;)?.*$
@@ -17,3 +17,5 @@
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: SERVICE ALERT: [[:alnum:]]+;PING;(WARNING|OK).*$
 # nrpe
 ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nrpe\[[0-9]+\]: Error: Could not complete SSL handshake. 5$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: Warning: Host '[[:alnum:]]+' has no services associated with it\!$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ nagios2?: LOG VERSION: 2\.[0-9]$

More information about the Logcheck-devel mailing list