diff options
author | Jonas Smedegaard <dr@jones.dk> | 2004-02-22 10:23:41 +0000 |
---|---|---|
committer | Jonas Smedegaard <dr@jones.dk> | 2004-02-22 10:23:41 +0000 |
commit | 2bb63b0b81fb7aec533eaf645591426662e17124 (patch) | |
tree | 0b972a4acc300ac0c324c8af136582e047d1ae2c /logcheck/ignore.d.server/ssh | |
parent | ae37e39e2ccfac4f25624a62e5f82e963a4f18a4 (diff) |
Tighten all rules to strict left side, based on su rules.
Diffstat (limited to 'logcheck/ignore.d.server/ssh')
-rw-r--r-- | logcheck/ignore.d.server/ssh | 22 |
1 files changed, 11 insertions, 11 deletions
diff --git a/logcheck/ignore.d.server/ssh b/logcheck/ignore.d.server/ssh index f8a7e6c..d64d593 100644 --- a/logcheck/ignore.d.server/ssh +++ b/logcheck/ignore.d.server/ssh @@ -1,11 +1,11 @@ -sshd\[[0-9]+\]: syslogin_perform_logout: logout\(\) returned an error$ -sshd\[[0-9]+\]: Could not reverse map address .*\. -sshd\[[0-9]+\]: Connection closed by .* -sshd\[[0-9]+\]: Did not receive ident(ification)? string from [\.0-9]+$ -sshd\[[0-9]+\]: scanned from [\.0-9]+ with SSH-1\.0-SSH_Version_Mapper\. Don't panic\.$ -sshd\[[0-9]+\]: Disconnecting: Your ssh version is too old and is no longer supported\. Please install a newer version\.$ -sshd\[[0-9]+\]: Accepted (keyboard-interactive|password|publickey) for [[:alnum:]]+ from [\.0-9]+ port [0-9]+( ssh2)?$ -sshd\[[0-9]+\]: warning: /etc/hosts.deny, line 15: can't verify hostname: gethostbyname(.*) failed -sshd\[[0-9]+\]: refused connect from .* -sshd\[[0-9]+\]: Received disconnect from [\.0-9]+: 11: Disconnect requested by Windows SSH Client.$ -sshd\[[0-9]+\]: subsystem request for sftp$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: syslogin_perform_logout: logout\(\) returned an error$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Could not reverse map address .*\. +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Connection closed by .* +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Did not receive ident(ification)? string from [\.0-9]+$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: scanned from [\.0-9]+ with SSH-1\.0-SSH_Version_Mapper\. Don't panic\.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Disconnecting: Your ssh version is too old and is no longer supported\. Please install a newer version\.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Accepted (keyboard-interactive|password|publickey) for [[:alnum:]]+ from [\.0-9]+ port [0-9]+( ssh2)?$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: warning: /etc/hosts.deny, line 15: can't verify hostname: gethostbyname(.*) failed +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: refused connect from .* +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: Received disconnect from [\.0-9]+: 11: Disconnect requested by Windows SSH Client.$ +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sshd\[[0-9]+\]: subsystem request for sftp$ |