[Logcheck-devel] Bug#368652: logcheck-database: new rules for saslauthd
Warren Turkal
wt at pyrus.biocycle.atmos.colostate.edu
Tue May 23 20:13:08 UTC 2006
Package: logcheck-database
Version: 1.2.44
Severity: wishlist
I have a saslauthd setup for authenticating my cyrus backend systems. I
have generated a new rule for logcheck that blocks the normal output
from a user login.
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ saslauthd+\[[0-9]+\]: DIGEST-MD5
client step .$
This rule blocks log entries like the following:
May 23 13:32:59 coryanthes saslauthd[6081]: DIGEST-MD5 client step 1
May 23 13:32:59 coryanthes saslauthd[6081]: DIGEST-MD5 client step 2
May 23 13:32:59 coryanthes saslauthd[6081]: DIGEST-MD5 client step 3
I would request that these go into the ignore.d.server group of rules
since this message would probably never be encountered on a system that
is strictly a workstation.
wt
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.15-1-686
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Versions of packages logcheck-database depends on:
ii debconf [debconf-2.0] 1.5.0 Debian configuration management sy
logcheck-database recommends no packages.
-- debconf information:
logcheck-database/conffile-cleanup: false
logcheck-database/rules-directories-note:
logcheck-database/standard-rename-note:
More information about the Logcheck-devel
mailing list