diff options
Diffstat (limited to 'security/logcheck/files/patch-rulefiles_linux_violations.d_sudo')
-rw-r--r-- | security/logcheck/files/patch-rulefiles_linux_violations.d_sudo | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/security/logcheck/files/patch-rulefiles_linux_violations.d_sudo b/security/logcheck/files/patch-rulefiles_linux_violations.d_sudo index 4e765b35b41d..c2cd0159f915 100644 --- a/security/logcheck/files/patch-rulefiles_linux_violations.d_sudo +++ b/security/logcheck/files/patch-rulefiles_linux_violations.d_sudo @@ -1,7 +1,7 @@ ---- rulefiles/linux/violations.d/sudo.orig 2018-05-30 21:59:13 UTC +--- rulefiles/linux/violations.d/sudo.orig 2022-12-22 23:03:11 UTC +++ rulefiles/linux/violations.d/sudo @@ -1,3 +1,3 @@ - ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sudo\[[0-9]+\]: \(pam_[[:alnum:]]+\) .*$ - ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sudo\[[0-9]+\]: pam_[[:alnum:]]+\(sudo:[[:alnum:]]+\): .*$ --^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sudo: .*$ -+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ sudo(\[[0-9]+\])?: .*$ + ^(\w{3} [ :0-9]{11}|[0-9T:.+-]{32}) [._[:alnum:]-]+ sudo\[[0-9]+\]: \(pam_[[:alnum:]]+\) .*$ + ^(\w{3} [ :0-9]{11}|[0-9T:.+-]{32}) [._[:alnum:]-]+ sudo\[[0-9]+\]: pam_[[:alnum:]]+\(sudo:[[:alnum:]]+\): .*$ +-^(\w{3} [ :0-9]{11}|[0-9T:.+-]{32}) [._[:alnum:]-]+ sudo: .*$ ++^(\w{3} [ :0-9]{11}|[0-9T:.+-]{32}) [._[:alnum:]-]+ sudo(\[[0-9]+\])?: .*$ |