Примеры конфигурации

/etc/logcheck/ignore.d.server/LOCAL.ignore (для лучшей читаемости уделены некоторые строки)

# /usr/sbin/logcheck автоматически удаляет пустые строки и комментарии.

# See 'man run-ports' for file name restrictions.

# For testing, create a sample log file and:

# su -s /bin/bash -c "/usr/sbin/logcheck -tsol sample" logcheck

# e.g.: su -s /bin/bash -c "/usr/sbin/logcheck -tsol /tmp/mylog" logcheck

# # DHCP Client lease renewals

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ dhclient: New

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ dhclient: DHCP(REQUEST|ACK)

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ NetworkManager:   DHCP daemon state

is now 3 \(renew\) for  interface

# # NTP, usually: 4001/0001

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ ntpd\[[0-9]+\]: kernel time sync status

change [0-9]+

# # Syslog restarts (morning or all)

# ^\w{3} [ 0-9]{2} 07:[45][:0-9]{4} [._[:alnum:]-]+ syslogd

1\.5\.0#[0-9]ubuntu[0-9]: restart\.

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ syslogd 1.5.0#[0-9]ubuntu[0-9]: restart\.

# # fcheck

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ fcheck: “INFO: Rebuild of the fcheck

database  /var/lib/fcheck/fcheck\.dbf begun for [._[:alnum:]-]+ using config

file /etc/fcheck/fcheck\.cfg”

# # lm-sensors (normal)

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ kernel: \[[0-9. ]+\] CPU[01]:

Temperature/speed normal

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ kernel: \[[0-9. ]+\] Machine check events

logged

# # Wireless

# ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ NetworkManager:   \(eth1\):

supplicant connection state: