logcheck 1.3.15 source package in Ubuntu
Changelog
logcheck (1.3.15) unstable; urgency=low
[ Hannes von Haugwitz ]
* ignore.d.server/dropbear: new
- ignore successful logins (closes: #652148)
* src/logcheck:
- fixed broken '-t' option, thanks to Jon Daley (closes: #647622,
LP: #1010431)
* debian/control:
- bumped to Standards-Version 3.9.3 (no changes necessary)
- adjusted URLs of Vcs-* fields
* debian/copyright:
- updated copyright year to 2012
[ Frédéric Brière ]
* ignore.d.server/postfix:
- ignore "offered null AUTH mechanism list"
- ignore "lost connection while receiving the initial server greeting"
- fixed "lost connection while sending end of data" rule
* ignore.d.server/proftpd:
- ignore "authentication failure" even if ruser is provided
* ignore.d.server/ssh:
- ignore "PAM $n more authentication failures"
- ignore "Too many authentication failures"
- ignore "Closed due to user request." (closes: #647943)
- ignore "Bye Bye"
- ignore "Connection closed"
- ignore yet one more variation of "invalid user"
- updated "Postponed ..." rule with "[preauth]" suffix
- updated "Postponed ..." rule with "invalid user"
* ignore.d.workstation/libmtp-runtime:
- ignore mtp-probe messages when plugging a non-MTP device
* ignore.d.workstation/kernel:
- ignore "No Caching mode page present"
- ignore "usb-storage: Quirks match"
- ignore "sensor detected" for various GSPCA webcams
- updated FAT messages to new fat_msg() format
- updated "new USB device" message to new usb_speed_string() format
- updated bttv messages to new prefix
-- Hannes von Haugwitz <email address hidden> Sat, 30 Jun 2012 16:24:49 +0200
Upload details
- Uploaded by:
- Debian logcheck Team
- Uploaded to:
- Sid
- Original maintainer:
- Debian logcheck Team
- Architectures:
- all
- Section:
- admin
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| logcheck_1.3.15.dsc | 1.8 KiB | 4928dbc5921f663425aef8661e7ffeb09f6fc86ee385da9f9d21e7a075e3e28f |
| logcheck_1.3.15.tar.gz | 158.6 KiB | b29b4753940a9130b5f19f60d2d89af23be220674625f4bd2fb1d40945d0b9e5 |
Available diffs
- diff from 1.3.14 (in Ubuntu) to 1.3.15 (5.7 KiB)
No changes file available.
Binary packages built by this source
- logcheck: mails anomalies in the system logfiles to the administrator
Logcheck helps spot problems and security violations in your logfiles
automatically and will send the results to you in e-mail.
.
Logcheck was part of the Abacus Project of security tools, but this
version has been rewritten.
- logcheck-database: database of system log rules for the use of log checkers
This database is part of the Logcheck package, but might be used by others.
It brings a database of regular expressions for matching system log entries
after various criteria.
- logtail: Print log file lines that have not been read (deprecated)
This program will read in a standard text file and create an
offset marker when it reads the end. The offset marker is read
the next time logtail is run and the text file pointer is moved
to the offset location. This allows logtail to read in the next
lines of data following the marker. This is good for marking log
files for automatic log file checkers to monitor system events.
.
The package also provides logtail2, which better deals with rotated log
files: If logtail2 finds that the inode of the file was changed, it assumes
that the log has been rotated, and tries to find the file it was rotated to
using heuristic plugins. If it finds the file, it will print the remainder of
the file starting at the offset saved to the offset file. If a file with the
correct inode was not found, logtail2 will only print the new file in its
entirety before writing a new offset file.
