[Logcheck-devel] Bug#644886: logcheck-database: snmpd ruleset needs update

Michael Steele steelem at energy.wsu.edu
Tue Apr 5 22:43:14 UTC 2016 

Package: logcheck
Followup-For: Bug #644886

Dear Maintainer,

One of two rules in the snmpd rule set is as follows:

^\w{3} [ :0-9]{11} [._[:alnum:]-]+ snmpd\[[0-9]+\]: Connection from UDP: \[[.0-9]{7,15}\]:[0-9]{4,5}(->\[[.0-9]{7,15}\])?$

It is not the final IP address that is optional, but a port number appended to the end. I changed this line as follows on my local system:

^\w{3} [ :0-9]{11} [._[:alnum:]-]+ snmpd\[[0-9]+\]: Connection from UDP: \[[.0-9]{7,15}\]:[0-9]{4,5}(->\[[.0-9]{7,15}\])(:[0-9]{1,5})?$

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
     ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- System Information:
Debian Release: jessie/sid
  APT prefers wily-updates
  APT policy: (500, 'wily-updates'), (500, 'wily-security'), (500, 'wily'), (100, 'wily-backports')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.2.0-34-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages logcheck depends on:
ii  adduser                         3.113+nmu3ubuntu4
ii  cron                            3.0pl1-127ubuntu1
ii  lockfile-progs                  0.1.17
ii  logtail                         1.3.17
ii  mime-construct                  1.11
ii  postfix [mail-transport-agent]  2.11.3-1ubuntu2
ii  rsyslog [system-log-daemon]     8.12.0-1ubuntu2

Versions of packages logcheck recommends:
ii  logcheck-database  1.3.17

Versions of packages logcheck suggests:
ii  syslog-summary  1.14-2

-- Configuration Files:
/etc/logcheck/logcheck.conf [Errno 13] Permission denied: u'/etc/logcheck/logcheck.conf'
/etc/logcheck/logcheck.logfiles [Errno 13] Permission denied: u'/etc/logcheck/logcheck.logfiles'

-- no debconf information

More information about the Logcheck-devel mailing list