From 48ea75957d95bca0ea1e7b244d6f7a78e4c6bb2f Mon Sep 17 00:00:00 2001 From: Tristan PILAT Date: Wed, 2 Dec 2020 17:45:38 +0100 Subject: [PATCH] Add new exceptions to Logsentry ignore files --- roles/logsentry/files/logsentry.ignore | 19 +++++++++++++++++++ .../files/logsentry.violations.ignore | 2 ++ 2 files changed, 21 insertions(+) diff --git a/roles/logsentry/files/logsentry.ignore b/roles/logsentry/files/logsentry.ignore index 3ad94bc..25a00c1 100644 --- a/roles/logsentry/files/logsentry.ignore +++ b/roles/logsentry/files/logsentry.ignore @@ -50,18 +50,37 @@ x-gw.*: permit host xntpd.*Previous time adjustment didn't complete xntpd.*time reset ansible-command: Invoked +ansible-copy: Invoked +ansible-cron: Invoked ansible-file: Invoked +ansible-openbsd_pkg: Invoked ansible-setup: Invoked +ansible-slurp: Invoked ansible-stat: Invoked ansible-synchronize: Invoked +bgpd.*: neighbor .*: sending IPv4 unicast EOR marker +bgpd.*: neighbor .*: sending IPv6 unicast EOR marker +bgpd.*: RDE reconfigured +bgpd.*: RDE soft reconfiguration done +bgpd.*: rereading config +bgpd.*: running softreconfig in +bgpd.*: SE reconfigured +bgpd.*: softreconfig in done doas: _collectd ran command /bin/cat /var/log/daemon as root from /var/collectd +doas: _collectd ran command /usr/sbin/bgpctl sh as root from /var/collectd +doas: _collectd ran command /usr/sbin/bgpctl show neighbor as root from /var/collectd +doas: _nrpe ran command /sbin/bioctl sd2 as root from / doas: _nrpe ran command /usr/local/libexec/nagios doas:.*ran command /usr/share/scripts/evomaintenance.sh as root from +last message repeated .* times +mownitoring.py: Alert sent through email +mownitoring.py: Already known state but still a problem for newsyslog.*logfile turned over nrpe.*: Could not read request from client, bailing out... nrpe.*: Error: Could not complete SSL handshake. nrpe.*: INFO: SSL Socket Shutdown. ntpd.*: adjusting clock frequency by +pkg_add: Added smtpd.*mta connected smtpd.*mta connecting address=smtp:// smtpd.*mta delivery evpid= diff --git a/roles/logsentry/files/logsentry.violations.ignore b/roles/logsentry/files/logsentry.violations.ignore index 7c56422..ec7894e 100644 --- a/roles/logsentry/files/logsentry.violations.ignore +++ b/roles/logsentry/files/logsentry.violations.ignore @@ -3,5 +3,7 @@ unbound:.*info: server stats for smtpd.*smtp connected address=127.0.0.1 host=localhost smtpd.*smtp connected address=local smtpd.*smtp disconnected reason=quit +smtpd.*smtp envelope evpid= +smtpd.*smtp message msgid= nrpe.*: INFO: SSL Socket Shutdown. collectd.*: exec plugin: Failed to execute