Bug#373174: marked as done (logcheck-database: new postfix rule)

Sat, 21 Oct 2006 02:35:39 -0700 

Your message dated Sat, 21 Oct 2006 02:02:10 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#373174: fixed in logcheck 1.2.49
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message --- 
Package: logcheck-database
Version: 1.2.44
Severity: wishlist

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

please add the following rule to violations.ignore.d/logcheck-postfix

^\w{3} [ :0-9]{11} [._[:alnum:]-]+ postfix/smtpd\[[0-9]+\]: NOQUEUE: reject: 
CONNECT from [^[:space:]]+: 554 <[^[:space:]]+>: Client host rejected: Access 
denied; proto=SMTP$

The attached file 'postfix.log' contain the lines that are ignored by this
rule.

bye, Martin

- -- System Information:
Debian Release: testing/unstable
  APT prefers testing
  APT policy: (900, 'testing'), (700, 'testing')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.16.1
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFEjpEQOvJj+wS6JuIRArTbAJ42T/HJQ/MfkKw8hQktkGCEvUa8nwCg0xVc
8TGG2mE52JwhRR/r/0xP70Q=
=sKFz
-----END PGP SIGNATURE-----

Jun 13 01:14:15 djinn01 postfix/smtpd[19714]: NOQUEUE: reject: CONNECT from 
pool-71-126-89-66.phlapa.east.verizon.net[71.126.89.66]: 554 
<pool-71-126-89-66.phlapa.east.verizon.net[71.126.89.66]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 01:31:20 djinn01 postfix/smtpd[21551]: NOQUEUE: reject: CONNECT from 
pool-71-103-4-18.lsanca.dsl-w.verizon.net[71.103.4.18]: 554 
<pool-71-103-4-18.lsanca.dsl-w.verizon.net[71.103.4.18]>: Client host rejected: 
Access denied; proto=SMTP
Jun 13 05:26:40 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:27:51 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:28:45 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:28:54 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:29:03 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:30:00 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:30:10 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP
Jun 13 05:30:42 djinn01 postfix/smtpd[6292]: NOQUEUE: reject: CONNECT from 
pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]: 554 
<pool-71-104-119-224.lsanca.dsl-w.verizon.net[71.104.119.224]>: Client host 
rejected: Access denied; proto=SMTP

--- End Message ---
--- Begin Message --- 
Source: logcheck
Source-Version: 1.2.49

We believe that the bug you reported is fixed in the latest version of
logcheck, which is due to be installed in the Debian FTP archive:

logcheck-database_1.2.49_all.deb
  to pool/main/l/logcheck/logcheck-database_1.2.49_all.deb
logcheck_1.2.49.dsc
  to pool/main/l/logcheck/logcheck_1.2.49.dsc
logcheck_1.2.49.tar.gz
  to pool/main/l/logcheck/logcheck_1.2.49.tar.gz
logcheck_1.2.49_all.deb
  to pool/main/l/logcheck/logcheck_1.2.49_all.deb
logtail_1.2.49_all.deb
  to pool/main/l/logcheck/logtail_1.2.49_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
martin f. krafft <[EMAIL PROTECTED]> (supplier of updated logcheck package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 18 Oct 2006 22:11:06 +0200
Source: logcheck
Binary: logcheck logtail logcheck-database
Architecture: source all
Version: 1.2.49
Distribution: unstable
Urgency: low
Maintainer: Debian logcheck Team <[email protected]>
Changed-By: martin f. krafft <[EMAIL PROTECTED]>
Description: 
 logcheck   - mails anomalies in the system logfiles to the administrator
 logcheck-database - database of system log rules for the use of log checkers
 logtail    - Print log file lines that have not been read
Closes: 327088 355364 369486 373174 373190 376533 377381 378333 382440 382442 
382805 382858 385001 385982 387000 387008 387272 389047 392637 392679 393938
Changes: 
 logcheck (1.2.49) unstable; urgency=low
 .
   * Add note about read permissions on log files to the error ourput generated
     by logcheck in case of problems (closes: #382858).
   * Safer adding of logcheck alias to /etc/aliases; now does *not* remove the
     alias on remove/purge anymore since mail may still arrive at a later point
     (closes: #392637).
   * ignore.d.server/kernel: also ignore outgoing iptables log entries
     (closes: #377381).
   * ignore.d.server/kernel: ignore TCP treason uncloaked messages since the
     kernel apparently knows how to handle them anyway and we're really not
     a NIDS.
   * violations.ignore.d/logcheck-postfix: fixed rule to filter generic bounces
     by the smtp client.
   * violations.ignore.d/logcheck-postfix: allow messages about
     network_biopair_interop failures to report negative num_read counts.
   * violations.ignore.d/logcheck-postfix: ignore generic 554 messages during
     CONNECT; thanks to Martin Lohmeier (closes: #373174).
   * violations.ignore.d/logcheck-postfix: updated filter for generic smtp
     status messages to postfix 2.3 (closes: #376533).
   * violations.ignore.d/logcheck-postfix: also filter rejections even if rcpt
     is not yet known; thanks to Micah Anderson (closes: #382442).
   * violations.ignore.d/logcheck-postfix: do not ever report security warnings
     about mail which has been sent (closes: #382440).
   * ignore.d.server/postfix: ignore messages about missing issuer
     certificates.
   * ignore.d.server/postfix: handle LMTP submissions from localhost; thanks to
     Marco Nenciarini (closes: #389047).
   * ignore.d.server/postfix: ignore lost connections after any SMTP command;
     thanks to Micah Anderson (closes: #387000).
   * ignore.d.server/postfix: ignore warning about non-SMTP commands.
   * ignore.d.server/postfix: ignore warning about lost connections after
     initial server greeting.
   * ignore.d.server/postfix: ignore warning about lost connections any type of
     upper case SMTP command.
   * ignore.d.server/postfix: again ignore warning about failed SASL auth.
   * ignore.d.server/postfix: also ignore bare port 25 in log messages; thanks
     to Bernd Zeimetz (closes: #385001).
   * ignore.d.server/postfix-policyd: added rules by Bernd Zeimetz
     (closes: #387008).
   * ignore.d.server/saslauthd, violations-ignore.d/logcheck-saslauthd: ignore
     messages about unknown users or invalid passwords (closes: #369486).
   * ignore.d.server/spamd, violations.ignore.d/logcheck-spamd: update rule to
     ignore checking messages (closes: #382805).
   * ignore.d.server/spamc: ignore warning about max message size limitation.
   * ignore.d.server/imapproxy: allow usernames with @ (closes: #373190).
   * ignore.d.server/dovecot: properly handle IPv6 addresses (closes: #327088).
   * ignore.d.server/dovecot: ignore more messages about inactivity disonnects.
   * ignore.d.server/dovecot: ignore PAM auth messages about unknown users.
   * ignore.d.server/innd: ignoring new message about flushing messages by
     send-uucp; thanks to Thomas Parmelan (closes: #387272).
   * ignore.d.server/courier,squid: fix rules with space after the $ line-end
     mark.
   * ignore.d.server/squid: ignore message about oversized URLs.
   * ignore.d.server/squid: ignore informational aioSync messages; thanks to
     Elmar Hoffmann (closes: #385982).
   * ignore.d.server/squid: ignore warning about missing PTR record.
   * violations.ignore.d/logcheck-nagios, ignore.d.server/nagios: extended
     rules to support nagios2; thanks to Cyril Chaboisseau (closes: #355364).
   * violations.ignore.d/logcheck-bind: ignoring messages for unexpected
     RCODEs; thanks to Ingo Theiss (closes: #378333).
   * ignore.d.server/dhcp: ignore messages about NAK due to portable client
     from other network requesting old lease.
   * violations.d/smartd: elevate messages about uncorrectable and unreadable
     sectors (closes: #392679).
   * ignore.d.server/smartd: ignore messages smartd generates when sending
   * */*smartd: now filters all smartd attribute changes except for temperature
     changes to values higher than and equal to 55, and changes to the
     attributes Reallocated_Sector_Ct, Current_Pending_Sector,
     Offline_Uncorrectable, and UDMA_CRC_Error_Count. See
     /usr/share/doc/logcheck-database/NEWS.Debian.gz .
   * ignore.d.server/cron-apt: ignore regular messages about downgrades; they
     are not going to take place anyway, and an error message is emitted
     nevertheless.
   * ignore.d.server/cron-apt: handle situations when fetching takes minutes.
     warning mail; thanks to Elmar Hoffmann (closes: #393938).
   * ignore.d.server/proftpd: ignore messages about login access limited.
Files: 
 4dee00c7b6600e1105adc38400e3406b 811 admin optional logcheck_1.2.49.dsc
 b631fd6dc60daf657e298b175f2640f3 124627 admin optional logcheck_1.2.49.tar.gz
 ed6514d83231b91af4f340081177ff90 55150 admin optional logcheck_1.2.49_all.deb
 2a7030b3970d3da536095cc2d636b13f 80052 admin optional 
logcheck-database_1.2.49_all.deb
 50c5b610c249337275b769ce8b8d4db9 37826 admin optional logtail_1.2.49_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD4DBQFFOd2GIgvIgzMMSnURAqPEAJj2Dt6k2AC4cUqyQB4x90bmcadjAKDEExBn
Zopl4tGYiEYUNB3SVNsCxQ==
=yRN+
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to