diff options
| author | Jonas Smedegaard <dr@jones.dk> | 2004-02-22 10:07:38 +0000 |
|---|---|---|
| committer | Jonas Smedegaard <dr@jones.dk> | 2004-02-22 10:07:38 +0000 |
| commit | ae37e39e2ccfac4f25624a62e5f82e963a4f18a4 (patch) | |
| tree | 23736ab94b1f3e78a4c900e37e9cf852944432bb /logcheck/violations.ignore.d/local | |
| parent | 0b681fab373cf4c6ac6cefde2fd7b3a0404d7ecb (diff) | |
Ignore su with ':' as delimiter.
Diffstat (limited to 'logcheck/violations.ignore.d/local')
| -rw-r--r-- | logcheck/violations.ignore.d/local | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/logcheck/violations.ignore.d/local b/logcheck/violations.ignore.d/local index 4c5957a..463d983 100644 --- a/logcheck/violations.ignore.d/local +++ b/logcheck/violations.ignore.d/local @@ -71,6 +71,8 @@ smbd\[[0-9]+\]: write_socket_data: write failure\. Error = Connection reset by ### violations.ignore.d/ssh sshd\[[0-9]+\]: Failed keyboard-interactive for [^[:space:]]+ from [\.0-9]+ port [0-9]+ ssh2$ ssh\(pam_unix\)\[[0-9]+\]: authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=[^[:space:]]+ user=[^[:space:]]+$ +### violations.ignore.d/su +^\w{3} [ :0-9]{11} [._[:alnum:]-]+ su\[[0-9]+\]: \+ \?\?\? root:[[:alnum:]-]+ ?$ ### violations.ignore.d/temp (imap|netatalk|pop|samba)\(pam_unix\)\[[0-9]+\]: authentication failure; logname= uid=0 euid=0 tty=[^[:space:]]* ruser= rhost=[^[:space:]]* user=[[:alnum:]]+$ afpd\[[0-9]+\]: afp_flushfork: of_find: Permission denied |