[Logcheck-commits] Frédéric Brière : ignore.d.server/openvpn: match pathless ifconfig/route
Frédéric Brière
fbriere-guest at alioth.debian.org
Tue Aug 18 19:25:03 UTC 2009
Module: logcheck
Branch: master
Commit: c27f0a0b214054cadea5b879da70b8d82e718873
URL: http://git.debian.org/?p=logcheck/logcheck.git;a=commit;h=c27f0a0b214054cadea5b879da70b8d82e718873
Author: Frédéric Brière <fbriere at fbriere.net>
Date: Tue Aug 18 15:00:49 2009 -0400
ignore.d.server/openvpn: match pathless ifconfig/route
For a brief period, some builds of openvpn 2.1~rc9-1 and 2.1~rc9-2 were
lacking a path to their invocation of /sbin/ifconfig and /sbin/route.
(See bugs #494918 and #495082 for more details.) These rules were
requested in #499323; no harm in adding them to the pile.
---
debian/changelog | 1 +
rulefiles/linux/ignore.d.server/openvpn | 6 +++---
2 files changed, 4 insertions(+), 3 deletions(-)
diff --git a/debian/changelog b/debian/changelog
index 7373831..07a5f54 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -16,6 +16,7 @@ logcheck (1.3.4) experimental; urgency=low
* Replaced bashisms with POSIX equivalents (closes: #508546)
* Depend on rsyslog by default (closes: #526911)
* Dropped (now useless) ownership/permissions fixes on /var/lock/logcheck
+ * ignore.d.server/openvpn: match pathless ifconfig/route
-- Frédéric Brière <fbriere at fbriere.net> Mon, 17 Aug 2009 11:48:08 -0400
diff --git a/rulefiles/linux/ignore.d.server/openvpn b/rulefiles/linux/ignore.d.server/openvpn
index e25def6..b170a15 100644
--- a/rulefiles/linux/ignore.d.server/openvpn
+++ b/rulefiles/linux/ignore.d.server/openvpn
@@ -2,9 +2,9 @@
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: (Outgo|Incom)ing Control Channel Authentication: Using [[:digit:]]+ bit message hash '(SHA1|MD5)' for HMAC authentication$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: ([-_.@[:alnum:]]+/)?[.[:digit:]]{7,15}$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: (read|write) UDPv4 \[EHOSTUNREACH\]: No route to host \(code=113\)$
-^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: /sbin/ifconfig [-._[:alnum:]]+ [.[:digit:]]{7,15} pointopoint [.[:digit:]]{7,15} mtu [[:digit:]]+$
-^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: /sbin/route add -net [.[:digit:]]{7,15} netmask [.[:digit:]]{7,15} gw [.[:digit:]]{7,15}$
-^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: /sbin/route del -net [.[:digit:]]{7,15} netmask [.[:digit:]]{7,15}$
+^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: (/sbin/)?ifconfig [-._[:alnum:]]+ [.[:digit:]]{7,15} pointopoint [.[:digit:]]{7,15} mtu [[:digit:]]+$
+^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: (/sbin/)?route add -net [.[:digit:]]{7,15} netmask [.[:digit:]]{7,15} gw [.[:digit:]]{7,15}$
+^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: (/sbin/)?route del -net [.[:digit:]]{7,15} netmask [.[:digit:]]{7,15}$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: Adaptive compression state (OFF|ON)$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: Closing TUN/TAP interface$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (openvpn|ovpn-[._[:alnum:]-]+)\[[[:digit:]]+\]: Control Channel Authentication: using '[-._/[:alnum:]]+' as a OpenVPN static key file$
More information about the Logcheck-commits
mailing list