diff options
| -rw-r--r-- | logcheck/ignore.d.server/dhcp3-common | 10 | ||||
| -rw-r--r-- | logcheck/ignore.d.server/tmp | 1 |
2 files changed, 6 insertions, 5 deletions
diff --git a/logcheck/ignore.d.server/dhcp3-common b/logcheck/ignore.d.server/dhcp3-common index f10152e..a4b5075 100644 --- a/logcheck/ignore.d.server/dhcp3-common +++ b/logcheck/ignore.d.server/dhcp3-common @@ -1,8 +1,8 @@ dhcpd: Abandoning IP address [\.0-9]+: pinged before offer -dhcpd: DHCPACK on [\.0-9]+ to [\:a-e0-9]+ via -dhcpd: DHCPDISCOVER from [\:a-e0-9]+ via -dhcpd: DHCPNACK on [\.0-9]+ to [\:a-e0-9]+ via -dhcpd: DHCPOFFER on [\.0-9]+ to [\:a-e0-9]+ via -dhcpd: DHCPREQUEST for [\.0-9]+ from [\:a-e0-9]+ via +dhcpd: DHCPACK on [\.0-9]+ to .* via +dhcpd: DHCPDISCOVER from *. via +dhcpd: DHCPNACK on [\.0-9]+ to .* via +dhcpd: DHCPOFFER on [\.0-9]+ to .* via +dhcpd: DHCPREQUEST for [\.0-9]+ from .* via dhcpd: ICMP Echo reply while lease [\.0-9]+ valid. dhcpd: Wrote [[:digit:]]+ (leases|deleted host decls|new dynamic host decls) to leases file\. diff --git a/logcheck/ignore.d.server/tmp b/logcheck/ignore.d.server/tmp index a410aa0..9724d76 100644 --- a/logcheck/ignore.d.server/tmp +++ b/logcheck/ignore.d.server/tmp @@ -35,6 +35,7 @@ sshd\[.*\]: packet_set_maxsize: setting to 4096 dhcpd-2.2.x: BOOTREQUEST from (00:20:6b:18:20:35|08:00:86:11:2b:71) dhcpd-2.2.x: No applicable record for BOOTP host (00:20:6b:18:20:35|08:00:86:11:2b:71) postfix.*\[.*\]: .* from=<groove@mailomat.grooveattack.com> +rpc.mountd: authenticated mount request from .* for .* snort: .*FrontPage snort: IDS015 - RPC - portmap-request-status: snort: IDS029 - SCAN-Possible Queso Fingerprint attempt: |