summaryrefslogtreecommitdiff
path: root/files/etc/logcheck
diff options
context:
space:
mode:
authorHendrik Jaeger <git-commit@henk.geekmail.org>2021-03-14 21:07:55 +0100
committerHendrik Jaeger <git-commit@henk.geekmail.org>2021-03-14 21:07:55 +0100
commit73042bae6610cfdd8f01340de896c876562b02c0 (patch)
treeb3b2d81c8bfe6fe7b5bb3b0f6984cf890a8e82de /files/etc/logcheck
parentaa9686c2fcb3e22d44bf942b432f9a8150b06090 (diff)
Update after installing ssh from backports
Diffstat (limited to 'files/etc/logcheck')
-rw-r--r--files/etc/logcheck/ignore.d.server/local-ssh1
1 files changed, 1 insertions, 0 deletions
diff --git a/files/etc/logcheck/ignore.d.server/local-ssh b/files/etc/logcheck/ignore.d.server/local-ssh
index f443547..3487494 100644
--- a/files/etc/logcheck/ignore.d.server/local-ssh
+++ b/files/etc/logcheck/ignore.d.server/local-ssh
@@ -19,6 +19,7 @@
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: Disconnecting: Too many authentication failures \[preauth\]$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: connect_to .* port [[:digit:]]+: failed\.$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: kex_exchange_identification: Connection closed by remote host$
+^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: kex_exchange_identification: Connection reset by peer$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: kex protocol error: type 30 seq 1 \[preauth\]$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: maximum authentication attempts exceeded for (invalid user [[:alnum:][:space:][:digit:]@\\!._-]*|root|sshd|mysql|ftp|nagios|postgres|redis) from [:.[:xdigit:]]+ port [[:digit:]]+ ssh2 \[preauth\]$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ sshd\[[[:digit:]]+\]: error: PAM: Authentication failure for( illegal user)? [^[:space:]]* from ([:.[:xdigit:]]+|UNKNOWN|[-_.[:alnum:]]+)$
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-15 19:58:51 +0000