projects / ossec-hids.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Merge commit 'v2.5.1'
[ossec-hids.git] / contrib / ossec-testing / tests / named.ini
diff --git a/contrib/ossec-testing/tests/named.ini b/contrib/ossec-testing/tests/named.ini
new file mode 100644 (file)
index 0000000..591897d
--- /dev/null
+++ b/contrib/ossec-testing/tests/named.ini
@@ -0,0 +1,10 @@
+[Query cache denied]
+log 1 pass = Aug 29 15:33:13 ns3 named[464]: client 217.148.39.3#1036: query (cache) denied
+log 2 pass = Aug 29 15:33:13 ns3 named[464]: client 217.148.39.4#32769: query (cache) denied 
+log 3 pass = Aug 29 15:33:13 ns3 named[464]: client 217.148.39.3#1036: query (cache) denied 
+log 4 fail = Aug 29 15:33:13 ns3 name[464]: client 217.148.39.4#32769: query (cache) denied 
+log 5 pass = Aug 29 15:33:13 ns3 named[464]: client 217.148.39.3#1036: query (cache)
+
+rule = 12108 
+alert = 4
+decoder = named 
ossec-hids