diff options
| author | Jonas Smedegaard <dr@jones.dk> | 2001-11-04 22:05:43 +0000 |
|---|---|---|
| committer | Jonas Smedegaard <dr@jones.dk> | 2001-11-04 22:05:43 +0000 |
| commit | aaf4b0a9884874335656a2f4ea187250295319ef (patch) | |
| tree | f730332008a4e2c27cf64fbc3f84638284c82445 /logcheck | |
| parent | c3d62c0ad90e4a11848b63e8fdb485062165411e (diff) | |
logcheck: Misc updates.
Diffstat (limited to 'logcheck')
| -rw-r--r-- | logcheck/ignore.d.server/local | 24 | ||||
| -rw-r--r-- | logcheck/violations.ignore.d/temp | 6 |
2 files changed, 26 insertions, 4 deletions
diff --git a/logcheck/ignore.d.server/local b/logcheck/ignore.d.server/local index 28c565b..553083b 100644 --- a/logcheck/ignore.d.server/local +++ b/logcheck/ignore.d.server/local @@ -1,7 +1,17 @@ +anacron\[.*\]: Job `cron.(daily|weekly|monthly)' started +anacron\[.*\]: Updated timestamp for job `cron.(daily|weekly|monthly)' to [[:alnum:]-]+ +anacron\[.*\]: Job `cron.(daily|weekly|monthly)' terminated( \(mailing output\))?$ +anacron\[.*\]: Normal exit \([[:digit:]]+ jobs run\) +anacron\[.*\]: Anacron 2.3 started on [[:alnum:]-]+ +anacron\[.*\]: Jobs will be executed sequentially +anacron\[.*\]: Will run job `cron.daily' in 5 min. +anacron\[.*\]: +anacron\[.*\]: +anacron\[.*\]: named\[.*\]: .*: query\(.*\) NS points to CNAME \(.*\) dhcpd.*: Abandoning IP address .*: pinged before offer dhcpd.*: DHCPINFORM from [[:digit:]]+\.[[:digit:]]+\.[[:digit:]]+\.[[:digit:]]+( via eth.)? -dhcpd.*: DHCPNACK on [\.[:digit:]]+ to [:[alnum:]]+( via eth.)? +dhcpd.*: DHCPNACK on [\.[:digit:]]+ to [[:alnum:]]+( via eth.)? dhcpd.*: DHCPRELEASE of .* from .* via dhcpd.*: Reclaiming( REQUESTed) abandoned IP address [[:digit:]]+\.[[:digit:]]+\.[[:digit:]]+\.[[:digit:]]+\. dhcpd.*: already acking lease @@ -23,9 +33,15 @@ FaxGetty\[.*\]: STATE CHANGE:( ->| LISTENING| ANSWERING| RUNNING| RECEIVING)+ FaxGetty\[.*\]: MODEM ROCKWELL .* FaxGetty\[.*\]: RECV FAX \([[:digit:]]+\): from .*, page .* in [[:digit:]]+:[[:digit:]]+, INF, .* line/mm, 1-D MR, [[:digit:]]+ bit/s FaxGetty\[.*\]: RECV FAX \([[:digit:]]+\): recvq/fax[[:digit:]]+\.tif from .*, route to .*, [[:digit:]]+ pages in [[:digit:]]+:[[:digit:]]+ +FaxGetty\[.*\]: RECV FAX: bin/faxrcvd "recvq/fax[[:digit:]]+.tif" "ttyS[012]" "[[:digit:]]+" "" FaxGetty\[.*\]: ANSWER: Ring detected without successful handshake FaxGetty\[.*\]: ANSWER: FAX CONNECTION gdm\[.*\]: run_pictures: Directory .* does not exist\. +gnu-imap4d\[.*\]: Incoming connection opened +gnu-imap4d\[.*\]: connect from [\.[:digit:]]+ +gnu-imap4d\[.*\]: User '[[:alnum:]]+' logged in +gnu-imap4d\[.*\]: Session timed out for user: [[:alnum:]]+ +gnu-imap4d\[.*\]: got signal Alarm clock imapd\[.*\]: (port 143|imap|imaps SSL) service init from imapd\[.*\]: No route to host, while reading line user=.* host=.* i(map|pop3)d\[.*\]: Killed \(lost mailbox lock\) user=.* host=.* @@ -38,12 +54,16 @@ ipop3d\[.*\]: Error opening or locking INBOX user=.* host=.* ipop3d\[.*\]: Expunge ignored on readonly mailbox ipop3d\[.*\]: Mailbox is open by another process, access is readonly ipop3d\[.*\]: Moved .* bytes of new mail to .* from .* host=.* +ircd\[.*\]: ircd exiting: autodie +ircd\[.*\]: Server Ready +(ircd\[.*\]: )?binding stream socket [\.[:alnum:]]+\[\*\.666[789]\]: Address already in use IMP\[.*\]: Login .* to .*:143 as .* kernel: Packet log: input DENY eth[[:digit:]]+ PROTO=17 .*:(137|138) .*:(137|138) L=[[:digit:]]+ S=0x00 I=[[:digit:]]+ F=0x0000 T=[[:digit:]]+ \(#[[:digit:]]+\) named\[.*\]: NSTATS [[:digit:]]+ [[:digit:]]+ named\[.*\]: .* All possible .* lame ntpd\[.*\]: kern_enable is 1 -ntpd\[.*\]: ntpd 4\.0\..* \(1\) +ntpd\[.*\]: kernel time discipline status 0040 +ntpd\[.*\]: ntpd 4\.[01]\..* \([12]\) ntpd\[.*\]: precision = [[:digit:]]+ usec ntpd\[.*\]: signal_no_reset: signal 13 had flags [[:digit:]]+ ntpd\[.*\]: using kernel phase-lock loop [[:digit:]]+ diff --git a/logcheck/violations.ignore.d/temp b/logcheck/violations.ignore.d/temp index 4dbfb28..755ca37 100644 --- a/logcheck/violations.ignore.d/temp +++ b/logcheck/violations.ignore.d/temp @@ -10,6 +10,8 @@ smbd\[.*\]: smb_pam_passcheck: PAM: smb_pam_auth failed - Rejecting User [[:al smbd[14793]: read_socket_data: recv failure for 4. Error = No route to host sshd\[.*]: Failed password for .* pumpd\[.*\]: SO_BINDTODEVICE eth0 \(4\) failed: Invalid argument -postfix/smtpd\[.*\]: reject: .*: 550 <(oerjan.jensen|morten|mortenp|anderskr|JAWS|dsb)@kaospilot.dk>: User unknown; .* +postfix/smtpd\[.*\]: reject: .*: 550 <(support|lucille|hotello|oerjan.jensen|morten|mortenp|anderskr|dsb|jaws)@kaospilot.dk>: User unknown; .* +postfix/smtpd\[.*\]: reject: .*: 550 <JAWS@KAOSPILOT.DK>: User unknown; .* postfix/smtpd\[.*\]: reject: .*: 550 <(nh|mbe)@kaosman.com>: User unknown; .* -postfix/smtpd\[.*\]: reject: .*: 550 <support@frontrunners.net>: User unknown; .* +postfix/smtpd\[.*\]: reject: .*: 550 <(support|per)@frontrunners.net>: User unknown; .* +postfix/smtpd\[.*\]: reject: .*: 550 <.*@advo-lyngby.dk>: User unknown; .* |