-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi list
Logcheck is driving me NUTS. I'm not a regular expression guru so
here's my problem:
Every hour I run a script to kick out ssh brute force script kiddies.
This generates the following in syslog:
Apr 2 17:01:01 zenggi2 /USR/SBIN/CRON[29227]: (root) CMD (ruby
/root/autodeny.rb )
Every hour logcheck likes to send me an email with only this line. So
I went to /etc/logcheck/ignore.d.server/cron and put this in:
^[[:alnum:]-]+autodeny[[:alnum:]-]+$
Which does not work.
Can someone please help me with a regexp that just works? I am not
such a whizard with the logcheck regexp format..
Pim
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)
iD8DBQFEL+8rmoeJL6drT3wRAvlvAKCVFamsCj83HDZp0mRadqaE16uL1wCfVBCQ
BdHROQGaPTuLqLDFU0C3nsY=
=nrdl
-----END PGP SIGNATURE-----
--To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.orgwith a
subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org