[Logcheck-devel] Bug#644886: logcheck-database: snmpd ruleset needs update
Michael Steele
steelem at energy.wsu.edu
Tue Apr 5 22:43:14 UTC 2016
Package: logcheck
Followup-For: Bug #644886
Dear Maintainer,
One of two rules in the snmpd rule set is as follows:
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ snmpd\[[0-9]+\]: Connection from UDP: \[[.0-9]{7,15}\]:[0-9]{4,5}(->\[[.0-9]{7,15}\])?$
It is not the final IP address that is optional, but a port number appended to the end. I changed this line as follows on my local system:
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ snmpd\[[0-9]+\]: Connection from UDP: \[[.0-9]{7,15}\]:[0-9]{4,5}(->\[[.0-9]{7,15}\])(:[0-9]{1,5})?$
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
* What was the outcome of this action?
* What outcome did you expect instead?
*** End of the template - remove these template lines ***
-- System Information:
Debian Release: jessie/sid
APT prefers wily-updates
APT policy: (500, 'wily-updates'), (500, 'wily-security'), (500, 'wily'), (100, 'wily-backports')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.2.0-34-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages logcheck depends on:
ii adduser 3.113+nmu3ubuntu4
ii cron 3.0pl1-127ubuntu1
ii lockfile-progs 0.1.17
ii logtail 1.3.17
ii mime-construct 1.11
ii postfix [mail-transport-agent] 2.11.3-1ubuntu2
ii rsyslog [system-log-daemon] 8.12.0-1ubuntu2
Versions of packages logcheck recommends:
ii logcheck-database 1.3.17
Versions of packages logcheck suggests:
ii syslog-summary 1.14-2
-- Configuration Files:
/etc/logcheck/logcheck.conf [Errno 13] Permission denied: u'/etc/logcheck/logcheck.conf'
/etc/logcheck/logcheck.logfiles [Errno 13] Permission denied: u'/etc/logcheck/logcheck.logfiles'
-- no debconf information
More information about the Logcheck-devel
mailing list