Your message dated Wed, 25 Jun 2008 13:02:06 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#451118: fixed in logcheck 1.2.65 has caused the Debian Bug report #451118, regarding logcheck: Suggested couriertcpd rules to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 451118: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451118 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems
--- Begin Message ---Package: logcheck Version: 1.2.63 Severity: wishlist Tags: patch There are currently no rules matching couriertcpd. I have found the following work with courier-imap-ssl <= 4.2.0-1 and courier-base <= 0.57.0-1 . It may be worth merging these with the other courier rulesets. ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: LOGIN: ip=\[[.:[:alnum:]]+\], command=(CAPABILITY|AUTHENTICATE|LOGIN)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: LOGIN: ip=\[[.:[:alnum:]]+\], username=[._[:alnum:]-]+$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: LOGIN, user=[._[:alnum:]-]+, ip=\[[.:[:alnum:]]+\], port=\[[[:digit:]]+\], protocol=(POP|IMAP)$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: Connection, ip=\[[.:[:alnum:]]+\]$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: Disconnected, ip=\[[.:[:alnum:]]+\], time=[0-9]+$ ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ couriertcpd: (LOGOUT|TIMEOUT|DISCONNECTED), [EMAIL PROTECTED]:alnum:]]+, ip=\[[.:[:alnum:]]+\], headers=[0-9]+, body=[0-9]+, rcvd=[0-9]+, sent=[0-9]+, time=[0-9]+$ -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (x86_64) Kernel: Linux 2.6.18-xenU-xp070519 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages logcheck depends on: ii adduser 3.105 add and remove users and groups ii cron 3.0pl1-100 management of regular background p ii lockfile-progs 0.1.11 Programs for locking and unlocking ii logtail 1.2.63 Print log file lines that have not ii mailx 1:8.1.2-0.20070424cvs-1 A simple mail user agent ii postfix [mail-tr 2.4.5-3 High-performance mail transport ag ii sysklogd [system 1.5-1 System Logging Daemon Versions of packages logcheck recommends: ii logcheck-database 1.2.63 database of system log rules for t -- debconf information: logcheck/changes: * logcheck/install-note:
--- End Message ---
--- Begin Message ---Source: logcheck Source-Version: 1.2.65 We believe that the bug you reported is fixed in the latest version of logcheck, which is due to be installed in the Debian FTP archive: logcheck-database_1.2.65_all.deb to pool/main/l/logcheck/logcheck-database_1.2.65_all.deb logcheck_1.2.65.dsc to pool/main/l/logcheck/logcheck_1.2.65.dsc logcheck_1.2.65.tar.gz to pool/main/l/logcheck/logcheck_1.2.65.tar.gz logcheck_1.2.65_all.deb to pool/main/l/logcheck/logcheck_1.2.65_all.deb logtail_1.2.65_all.deb to pool/main/l/logcheck/logtail_1.2.65_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. martin f. krafft <[EMAIL PROTECTED]> (supplier of updated logcheck package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 24 Jun 2008 18:56:26 +0100 Source: logcheck Binary: logcheck logcheck-database logtail Architecture: source all Version: 1.2.65 Distribution: unstable Urgency: low Maintainer: Debian logcheck Team <[EMAIL PROTECTED]> Changed-By: martin f. krafft <[EMAIL PROTECTED]> Description: logcheck - mails anomalies in the system logfiles to the administrator logcheck-database - database of system log rules for the use of log checkers logtail - Print log file lines that have not been read (deprecated) Closes: 446310 450660 450697 451118 452879 472937 482523 483214 484328 484546 486440 486440 487208 Changes: logcheck (1.2.65) unstable; urgency=low . * violations.ignore.d/logcheck-postfix: - fixed filters for certificate messages that changed in postfix 2.5. * ignore.d.server/postfix: - ignore connection messages for anonymous TLS connections; thanks to Justin Larue (closes: #486440). - ignore hostname verification due to DNS name not found; thanks to Justin Larue (closes: #486440). - do not report connection failures due to timeouts. * ignore.d.server/maradns: - ignore messages related to resolvconf integration. * ignore.d.server/dovecot: - ignore aborted logins with 0 authentication attempts, e.g. due to nagios; thanks to René Hertell (closes: #487208). * ignore.d.server/cron-apt: - ignore harmless messages about state and space usage prediction; thanks to Daniel Hahler (closes: #484546). * ignore.d.server/spamd: - ignore child state K; thanks to Ross Boylan (closes: #484328). * ignore.d.server/ssh: - ignore host-based auth logins; thanks to Tilman Koschnick (closes: #483214) * ignore.d.server/imapproxy: - ignore failures to read from client socket (closes: #482523). * ignore.d.server/courier: - update rules to include port information; thanks to Antoine Pardignon (closes: #446310). - ignore couriertcpd messages; thanks to Andrew Gallagher (closes: #451118). * ignore.d.server/smbd_audit: - ignore smbd audit log entries (closes: #452879). * ignore.d.server/acpid: - follow recent modifications in acpid log output; thanks to Arno Renevier (closes: #450660). * ignore.d.server/otrs: - ignore OTRS CGI notices (closes: #450697). * ignore.d.server/openvpn: - ignore messages about dropped packets due to bad source addresses (out of connection messages). - ignore messages about packets with wrong encapsulated lengths, which are mostly portscanners, or hosts connecting to openvpn on ports like 443. * ignore.d.server/schroot: - ignore operational schroot messages for logins and running commands. * ignore.d.server/dhcp: - ignore DHCPACKs that have no hardware address (Windows). * fix wording in header.txt (closes: #472937). * change obsolete mailx dependency to bsd-mailx. Checksums-Sha1: 1e1c4d9eb34c6fe9f92b624ed99d2204d98c2397 1187 logcheck_1.2.65.dsc 9c093d977f6dbb02e4e0460947e5207dc7731932 144255 logcheck_1.2.65.tar.gz 2d0ca69d8135c062a5ba2a9e770868593d108bd9 66712 logcheck_1.2.65_all.deb d95590c92232e6df5fa79494f984d1346b37498d 107398 logcheck-database_1.2.65_all.deb 699a6b36a808a0fceed5b58a15a1b879a0a639d8 52306 logtail_1.2.65_all.deb Checksums-Sha256: aefc4be4a14b24e29e2df2c02d92b58039386b1121a927263e30fb4773b84d6a 1187 logcheck_1.2.65.dsc b0168dee1a4af9cd4bdd00b3fa07ed59e5e1863ce89eac471bc57be82f51e833 144255 logcheck_1.2.65.tar.gz 91de367355ae4df6a0569d1915425f9a1a38400121cd4a2c085b023e5b958862 66712 logcheck_1.2.65_all.deb f02de2295e686a8ef73ad4b211da9be5f6a0b50289d82844038b6842d7301dfb 107398 logcheck-database_1.2.65_all.deb 03154af5d943aec9b5104062b41ecd0c3a01c911ac5c2d850a37f5f3bae32bf8 52306 logtail_1.2.65_all.deb Files: 4b54dff8791fb290fff219d02bada9b9 1187 admin optional logcheck_1.2.65.dsc 23aed9361525ada73c77ef5538109574 144255 admin optional logcheck_1.2.65.tar.gz b709c816e3c545ebb3cb92d6cdea4e4e 66712 admin optional logcheck_1.2.65_all.deb c0300d74178fa037a14bb8d029dfae62 107398 admin optional logcheck-database_1.2.65_all.deb a1ce345a251dcea0349feb7f556989c8 52306 admin optional logtail_1.2.65_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkhiKuUACgkQIgvIgzMMSnXR7ACfcTws/DhPIJSxhqRgyNyd2Wo3 AaQAn0MlwfBB0KTb0s4xHFWMksHslBAL =h5gj -----END PGP SIGNATURE-----
--- End Message ---
