[Logcheck-devel] Bug#706085: logcheck-database: update ssh rules for new "subsystem request for sftp" messages
Sebastian Ramacher
sramacher at debian.org
Wed Apr 24 14:39:11 UTC 2013
Package: logcheck-database
Version: 1.3.15
Severity: normal
Tags: patch
Dear maintainer,
the rule to ignore "subsystem request for sftp" output from sshd doesn't
match the actual output from sshd anymore. The openssh version in wheezy
and above now also includes the username:
Apr 24 14:19:28 rigel sshd[17449]: subsystem request for sftp by user sebastian
The attached patch changes the rule to match the new output.
Regards
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (650, 'unstable'), (601, 'testing'), (600, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
--
Sebastian Ramacher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logcheck-ssh.diff
Type: text/x-diff
Size: 1486 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/logcheck-devel/attachments/20130424/0f2cbab8/attachment.diff>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/logcheck-devel/attachments/20130424/0f2cbab8/attachment.pgp>
More information about the Logcheck-devel
mailing list