From 93535344e428fc946754653d741ef85d813138ac Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Tue, 18 Sep 2001 10:02:39 +0000
Subject: Adding logcheck/* (2nd attempt)

---
 logcheck/violations.ignore.d/local | 15 +++++++++++++++
 logcheck/violations.ignore.d/temp  |  9 +++++++++
 2 files changed, 24 insertions(+)
 create mode 100644 logcheck/violations.ignore.d/local
 create mode 100644 logcheck/violations.ignore.d/temp

(limited to 'logcheck/violations.ignore.d')

diff --git a/logcheck/violations.ignore.d/local b/logcheck/violations.ignore.d/local
new file mode 100644
index 0000000..4128082
--- /dev/null
+++ b/logcheck/violations.ignore.d/local
@@ -0,0 +1,15 @@
+afpd\[.*\]: afp_die.*: Connection timed out
+afpd\[.*\]: getforkparms: (ad_refresh|of_find): Permission denied
+afpd\[.*\]: afp_getsrvrparms: stat .*: Permission denied
+afpd\[.*\]: dsi_stream_read\([[:digit:]]+\): Permission denied
+afpd\[.*\]: setdirowner: chown (1/-1|-1/0) \.(AppleDouble(/\.Parent)?)?: Operation not permitted
+dhcpd-2.2.x: send_packet: Connection refused
+dhcpd-2.2.x: fallback_discard: Connection refused
+kernel: Packet log: input DENY eth[[:digit:]]+ PROTO=17 .*:137 .*:137 L=78 S=0x00 I=[[:digit:]]+ F=0x0000 T=[[:digit:]]+ \(#[[:digit:]]+\)
+postfix/smtp\[.*\]: .*: to=<.*>, relay=none, delay=[[:digit:]]+, status=deferred \(connect to .*\[.*\]: (Connection refused|server refused mail service)\)
+postfix/smtp\[.*\]: connect to .*\[.*\]: (Connection refused|server refused mail service) \(port 25\)
+postfix/smtpd\[.*\]: reject: RCPT from .*\[.*\]: 554 Service unavailable; .* blocked using .*; from=<.*> to=<.*>
+postfix/smtpd\[.*\]: reject: RCPT from .*\[.*\]: 554 <.*>: Recipient address rejected: Relay access denied; from=<.*> to=<.*>
+postfix/smtpd\[.*\]: warning: .*: hostname .* verification failed: Host (name has no address|not found)
+proftpd\[.*\]: .* \(.*\) - USER anonymous \(Login failed\): Can't find user\.
+smbd\[.*\]:   read_socket_data: recv failure for 4\. Error = Connection reset by peer
diff --git a/logcheck/violations.ignore.d/temp b/logcheck/violations.ignore.d/temp
new file mode 100644
index 0000000..8e75e17
--- /dev/null
+++ b/logcheck/violations.ignore.d/temp
@@ -0,0 +1,9 @@
+afpd\[.*\]: error removing /var/lib/netatalk/cap/net.*node[[:digit:]]+: Permission denied
+afpd\[.*\]: uams_dhx_pam\.c :PAM: PAM_Error: Authentication failure -- Invalid argument
+IMP\[.*\]: FAILED .* to .*:143 as .*
+i(map|pop3)d\[.*\]: (AUTHENTICATE (LOGIN|PLAIN) failure|Login failed)( user=.*)? host=(.* )?\[.*\]
+kernel: IP_MASQ:reverse ICMP: failed checksum from .*!
+PAM_unix\[.*\]: authentication failure; \(uid=0\) -> .* for (imap|netatalk|pop|samba|ssh) service
+portsentry\[.*\]: attackalert: .*
+sshd\[.*]: Failed password for .*
+pumpd\[.*\]: SO_BINDTODEVICE eth0 \(4\) failed: Invalid argument
-- 
cgit v1.2.3