diff options
| author | Hendrik Jäger <gitcommit@henk.geekmail.org> | 2022-12-01 14:03:30 +0100 |
|---|---|---|
| committer | Hendrik Jäger <gitcommit@henk.geekmail.org> | 2022-12-12 09:09:07 +0100 |
| commit | 9602828011fa54f737b9034ccd895f985bb325c3 (patch) | |
| tree | 84319b6d28adf8ee2eca82b58dc2c2a1c3e4f8d2 /files | |
| parent | 54f5d023a761421bfa99920c0f1d21e2a24df4ee (diff) | |
update rules
Diffstat (limited to 'files')
4 files changed, 7 insertions, 0 deletions
diff --git a/files/etc/logcheck/ignore.d.server/local-fstrim b/files/etc/logcheck/ignore.d.server/local-fstrim new file mode 100644 index 0000000..768609d --- /dev/null +++ b/files/etc/logcheck/ignore.d.server/local-fstrim @@ -0,0 +1 @@ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ fstrim\[[[:digit:]]+\]: [[:alnum:]./-]+: [[:digit:].]+ ([KMGT]i)?B \([[:digit:]]+ bytes\) trimmed on [[:alnum:]./-]+$ diff --git a/files/etc/logcheck/ignore.d.server/local-lvm b/files/etc/logcheck/ignore.d.server/local-lvm new file mode 100644 index 0000000..913a4e2 --- /dev/null +++ b/files/etc/logcheck/ignore.d.server/local-lvm @@ -0,0 +1,3 @@ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ lvm\[[[:digit:]]+\]: [[:digit:]]+ logical volume\(s\) in volume group "[[:alnum:]-]+" monitored$ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ lvm\[[[:digit:]]+\]: pvscan\[[[:digit:]]+\] PV [^[:space:]]+ online, VG [[:alnum:]-]+ is complete\.$ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ lvm\[[[:digit:]]+\]: pvscan\[[[:digit:]]+\] VG [[:alnum:]-]+ skip autoactivation\.$ diff --git a/files/etc/logcheck/ignore.d.server/local-systemd b/files/etc/logcheck/ignore.d.server/local-systemd index b7c387b..d733667 100644 --- a/files/etc/logcheck/ignore.d.server/local-systemd +++ b/files/etc/logcheck/ignore.d.server/local-systemd @@ -21,6 +21,8 @@ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Queued start job for default target Main User Target\.$ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Reached target Local File Systems \(Pre\)\.$ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Reached target Network \(Pre\)\.$ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Reloaded The Apache HTTP Server\.$ +^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Reloading The Apache HTTP Server\.$ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Removed slice system-modprobe\.slice\.$ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Removed slice User Application Slice\.$ ^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ systemd\[[[:digit:]]+\]: Removed slice User Slice of UID [[:digit:]]+\.$ diff --git a/files/etc/logcheck/ignore.d.workstation/local-apparmor b/files/etc/logcheck/ignore.d.workstation/local-apparmor new file mode 100644 index 0000000..7649b4c --- /dev/null +++ b/files/etc/logcheck/ignore.d.workstation/local-apparmor @@ -0,0 +1 @@ +type=AVC msg=audit\([[:digit:]]+\.[[:digit:]]+:[[:digit:]]+\): apparmor="ALLOWED" operation="open" profile="libreoffice-soffice" name="/proc/[[:digit:]]+/comm" pid=[[:digit:]]+ comm="soffice.bin" requested_mask="r" denied_mask="r" fsuid=[[:digit:]]+ ouid=[[:digit:]]+[[:ctrl:]]FSUID="[[:alnum:]]+" OUID="[[:alnum:]]+" |