Setting up SEC Suppress Rules

By gunnalagUnix Technologies

Steps involved in setting up new or modifying existing SEC rules:

  1. rsh master
  2. cd /u/gunnalag/cvs/lib
  3. cvs update -APd sec.messages     #Updates changes if any
  4. vi sec.messages                  #Modify file as per requirement
  5. cat -evt sec.messages | more     #Shows line end char. Modified lines should end with $
  6. cvs diff -u sec.messages         #Shows diff b/w local repository and prod copy
  7. cvs commit sec.messages          #cvs commit -m " " sec.messages
  8. gmake check
  9. gmake install
  10. gmake dist sec.messages          #Updates file on all servers

Sample Sec messages File

Index: sec.messages
===================================================================
RCS file: /src/local/repository/lib/sec.messages,v
retrieving revision 1.18
diff -u -r1.18 sec.messages
— sec.messages    12 Feb 2009 07:10:40 -0000    1.138
+++ sec.messages    4 Mar 2009 11:36:53 -0000
@@ -3,6 +3,13 @@
#
# Regex file for /var/adm/messages
 
+# Suppress Tracing service error on MOMDEV server type=Suppress
+ptype=RegExp
+desc=$0
+pattern=EvntSLog: [ERR] [a-zA-Z0-9: ]+MOMDEV/Windows SharePoint
+Services 3 (5400).*Tracing Service failed action=none
+
# Suppress TestServer errors
type=Suppress
ptype=RegExp

By gunnalag

You might also like:

Setup and Test Bind DNS Zone File Replication to Slave Servers on CentOS

FIX: CentOS 6.8 Minimal Install: Device eth0 does not seem to be present, delaying initialization

Setup or Migrate Postfix SMTP relay server on CentOS 6.5

Leave a Reply

Your email address will not be published. Required fields are marked *