diff options
| author | Jonas Smedegaard <dr@jones.dk> | 2002-02-07 15:50:22 +0000 |
|---|---|---|
| committer | Jonas Smedegaard <dr@jones.dk> | 2002-02-07 15:50:22 +0000 |
| commit | f73a2ab67eda7ed6a4af25a6a38ce19583017ca8 (patch) | |
| tree | 946358a53e099df1f1c3db999bf090ce937e6ad5 /logcheck/violations.ignore.d | |
| parent | 356152177354c73ddfa58e031afe4a2f04333df0 (diff) | |
logcheck: Misc tweaks and spliting into package-specific files.
Diffstat (limited to 'logcheck/violations.ignore.d')
| -rw-r--r-- | logcheck/violations.ignore.d/local | 1 | ||||
| -rw-r--r-- | logcheck/violations.ignore.d/proftpd | 1 | ||||
| -rw-r--r-- | logcheck/violations.ignore.d/temp | 5 |
3 files changed, 4 insertions, 3 deletions
diff --git a/logcheck/violations.ignore.d/local b/logcheck/violations.ignore.d/local index eedd102..44ff554 100644 --- a/logcheck/violations.ignore.d/local +++ b/logcheck/violations.ignore.d/local @@ -1,2 +1 @@ kernel: Packet log: input DENY eth[[:digit:]]+ PROTO=17 .*:137 .*:137 L=78 S=0x00 I=[[:digit:]]+ F=0x0000 T=[[:digit:]]+ \(#[[:digit:]]+\) -proftpd\[.*\]: .* \(.*\) - USER anonymous \(Login failed\): Can't find user\. diff --git a/logcheck/violations.ignore.d/proftpd b/logcheck/violations.ignore.d/proftpd new file mode 100644 index 0000000..295767a --- /dev/null +++ b/logcheck/violations.ignore.d/proftpd @@ -0,0 +1 @@ +proftpd\[.*\]: .* \(.*\) - USER anonymous \(Login failed\): Can't find user\. diff --git a/logcheck/violations.ignore.d/temp b/logcheck/violations.ignore.d/temp index 3e2259f..a3f62f6 100644 --- a/logcheck/violations.ignore.d/temp +++ b/logcheck/violations.ignore.d/temp @@ -1,5 +1,5 @@ afpd\[.*\]: error removing /.+/net[\.[:digit:]]+node[[:digit:]]+: Permission denied -afpd\[.*\]: uams_dhx_pam\.c :PAM: PAM_Error: Authentication failure -- Invalid argument +afpd\[.*\]: uams_dhx_pam\.c :PAM: PAM_Error: Authentication failure -- (Bad file descriptor|Invalid argument) afpd\[.*\]: afp_getsrvrparms: stat /volumes/(km/kmstab/kmstab|kp/kp(/kp|/kpstab|stab/kpstab)|misc/flstab/flstab): Permission denied IMP\[.*\]: FAILED .* to .*:143 as .* i(map|pop3)d\[.*\]: (AUTHENTICATE (LOGIN|PLAIN) failure|Login failed)( user=.*)? host=(.* )?\[.*\] @@ -8,7 +8,8 @@ kernel: Packet log: input DENY eth1 PROTO=1 0.0.0.0:5 10.0.0.40:1 L=427 S=0xD0 I PAM_unix\[.*\]: authentication failure; \(uid=0\) -> .* for (imap|netatalk|pop|samba|ssh) service portsentry\[.*\]: attackalert: .* smbd\[.*\]: smb_pam_passcheck: PAM: smb_pam_auth failed - Rejecting User [[:alnum:]]+ ! -smbd[14793]: read_socket_data: recv failure for 4. Error = No route to host +smbd\[.*\]: read_socket_data: recv failure for 4. Error = No route to host +smbd\[.*\]: yield_connection: tdb_delete for name failed with error Record does not exist\. sshd\[.*]: Failed password for .* pumpd\[.*\]: SO_BINDTODEVICE eth0 \(4\) failed: Invalid argument postfix/smtpd\[.*\]: reject: .*: 550 <.*>: User unknown; .* |