# # $Id: SYSLOG,v 1.8 2002/05/02 14:25:04 mt Exp $ # # These are all currently existing syslog(3) message types # except of the USER-DBG and TECH-DBG levels. # # TECH-FTL are usually internal program errors, where # a function receives no argument or the like. # # TECH-ERR are usually errors which cannot be corrected # and may lead to program termination. If the # errno variable has a non-zero value, it will # appended to the error message in the form: # ... (errno= [err-string]) # # TECH-WRN are usually conditions that indicate some sort # of misbehaviour, but need no immediate action. # # TECH-INF are usually confirmation or progress messages # and can be ignored in terms of auditing. # # USER-FTL do not exist at the time of this writing. # # USER-ERR are usually situations that ask for some kind # of operator investigation. Most likely some # illegal action has been tried and rejected. # # USER-WRN are usually situations that operators might # want to look into just out of curiosity. If # they don't, nothing will happen -- probably. # # USER-INF are usually situations that show some legal # user actions or statistics. They can always # be ignored, but operators might want to keep # them for maintaining an audit trail. # # # The following variables are used in this discussion: # # name of the current program # file, including source file # directory (e.g. for chroot) # source line # "High Level Socket" # HLS "Connection Type": # Cli-Ctrl, Cl-Data, Srv-Ctrl, Srv-Data # symbolic name, incl. config options # value, usually for a config option # UNIX style group ID # UNIX style user ID # IP address in dotted decimal notation # TCP port number as a umber # socket number (sort of file descriptor) # FTP command # argument to an FTP command # FTP user name # number of, i.e. bytes, secs, ... #

   response code from an FTP server
#     Telnet option
#     lower end of a port range
#     upper end of a port range
#   POSIX 1002.3 regular expression
#
# The following paragraphs summarize the exact wording of all
# currently implemented syslog(3) messages, sorted by source
# file.
#


# Source file: ++++ common/com-config.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): config_line: ?fp?
crit      TECH-FTL   (:): config_read: ?file?
crit      TECH-FTL   (:): config_int: ?name?
crit      TECH-FTL   (:): config_bool: ?name?
crit      TECH-FTL   (:): config_str: ?name?
crit      TECH-FTL   (:): config_addr: ?name?
crit      TECH-FTL   (:): config_port: ?name?
crit      TECH-FTL   (:): config_uid: ?name?
crit      TECH-FTL   (:): config_gid: ?name?
err       TECH-ERR  can't open config file ''
warn      TECH-WRN  no config value for ''
info      TECH-INF  Config-File: ''
info      TECH-INF  Config-Section ------ ''
info      TECH-INF  Config:  = ''


# Source file: ++++ common/com-misc.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): misc_alloc: ?len?
crit      TECH-FTL   (:): out of memory
crit      TECH-FTL   (:): misc_strdup: ?str?
err       TECH-ERR  can't remove pidfile ''
err       TECH-ERR  can't open pidfile ''
err       TECH-ERR  can't chroot to ''
err       TECH-ERR  can't determine Group-ID to use
err       TECH-ERR  can't set Group-ID to 
err       TECH-ERR  can't determine User-ID to use
err       TECH-ERR  can't set User-ID to 


# Source file: ++++ common/com-socket.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): socket_kill: ?hls?
crit      TECH-FTL   (:): socket_gets: ?hls? ?ptr? ?len?
crit      TECH-FTL   (:): socket_flag: ?hls?
crit      TECH-FTL   (:): socket_write: ?hls? ?ptr?
crit      TECH-FTL   (:): socket_printf: ?hls? ?fmt?
crit      TECH-FTL   (:): socket_file: ?hls? ?file?
crit      TECH-FTL   (:): socket_ll_read: ?hls?
crit      TECH-FTL   (:): socket_ll_write: ?hls?
crit      TECH-FTL   (:): socket_msgline: ?fmt?
crit      TECH-FTL   (:): socket_d_listen: ?phls? ?ctyp?
crit      TECH-FTL   (:): socket_d_listen: ?*phls?
crit      TECH-FTL   (:): socket_d_connect: ?phls? ?ctyp?
crit      TECH-FTL   (:): socket_d_connect: ?*phls?
err       TECH-ERR  can't create listener socket
err       TECH-ERR  can't bind to :
err       TECH-ERR  can't accept client
err       TECH-ERR  can't execute select
err       TECH-ERR  can't accept 
err       TECH-ERR  can't create  socket
err       TECH-ERR  can't read from =
err       TECH-ERR  can't ll_read:  =
err       TECH-ERR  can't ll_write:  =
err       TECH-ERR  can't get num of bytes:  =
err       TECH-ERR  can't get sockname for socket 
err       TECH-ERR  can't get peername for socket 
err       TECH-ERR  can't get iptables transparent destination
err       TECH-ERR  can't get ipnat transparent destination
err       TECH-ERR  can't open ipnat device ''
warn      TECH-WRN  port  is in use...
err       USER-ERR   reject: '' (Wrap)


# Source file: ++++ common/com-syslog.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): invalid log level ''
crit      TECH-FTL   (:): can't remove logfile ''
crit      TECH-FTL   (:): can't open logfile ''
crit      TECH-FTL   (:): can't open logpipe ''
crit      TECH-FTL   (:): can't rotate logfile ''
info      TECH-INF  reopening log - new destination is ''
info      TECH-INF  rotating log file ''


# Source file: ++++ common/com-debug.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): invalid debug settings  / 


# Source file: ++++ ftp-proxy/ftp-client.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): client_run: ?cli_ctrl?
err       TECH-ERR  bad response  from server for 
err       TECH-ERR  bad PASV 227 response from server for 
err       TECH-ERR  can't connect Srv-Data for 
err       TECH-ERR  can't connect Cli-Data for 
err       TECH-ERR  Srv-Ctrl: can't create socket for 
err       TECH-ERR  Srv-Ctrl: can't bind to : for 
err       TECH-ERR  Srv-Ctrl: can't connect : for 
warn      TECH-WRN  server closed connection for 
warn      TECH-WRN  bogus '' from Server-PI for 
info      TECH-INF  ' ' sent for 
info      TECH-INF  '' sent for 
err       USER-ERR  reject: '' (DenyMessage)
warn      USER-WRN  WILL/WONT refused for 
warn      USER-WRN  DO/DONT refused for 
warn      USER-WRN   from  not allowed
warn      USER-WRN  bad arg '' for '' from : 
warn      USER-WRN  unknown '' from 
info      USER-INF  connect from 
info      USER-INF  IAC- from 
info      USER-INF  Transfer for :  '' read / byte/sec
info      USER-INF  Transfer for :  '' send / byte/sec
info      USER-INF  closing connect from  after  secs - read /, sent / byte/sec


# Source file: ++++ ftp-proxy/ftp-cmds.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): cmds_pthr: ?ctx?
crit      TECH-FTL   (:): cmds_pthr: ?curr_cmd?
crit      TECH-FTL   (:): cmds_user: ?ctx?
crit      TECH-FTL   (:): cmds_user: ?srv_ctrl?
crit      TECH-FTL   (:): cmds_pass: ?ctx?
crit      TECH-FTL   (:): cmds_rein: ?ctx?
crit      TECH-FTL   (:): cmds_quit: ?ctx?
crit      TECH-FTL   (:): cmds_port: ?ctx?
crit      TECH-FTL   (:): cmds_pasv: ?ctx?
crit      TECH-FTL   (:): cmds_xfer: ?ctx?
crit      TECH-FTL   (:): cmds_xfer: ?curr_cmd?
crit      TECH-FTL   (:): cmds_xfer: ?mode ?
crit      TECH-FTL   (:): cmds_abor: ?ctx?
crit      TECH-FTL   (:): cmds_auth: ?ctx?
crit      TECH-FTL   (:): cmds_reg_comp: ?ppre?
crit      TECH-FTL   (:): cmds_reg_exec: ?regex? ?str?
crit      TECH-FTL   (:): cmds_apsv: ?ctx?
crit      TECH-FTL   (:): cmds_eprt: ?ctx?
crit      TECH-FTL   (:): cmds_epsv: ?ctx?
err       TECH-ERR  check of transparent destination failed
err       TECH-ERR  Srv-Data: can't bind to :- for 
err       TECH-ERR  Cli-Data: can't bind to :- for 
err       TECH-ERR  can't eval RegEx '': 
warn      TECH-WRN  can't open NAT file ''
info      TECH-INF  'PORT :' for 
info      TECH-INF  transparent proxy request to : from 
err       USER-ERR  unknown destination address
warn      USER-WRN  '' without login from 
warn      USER-WRN  'USER' without name from 
warn      USER-WRN  'USER' without auth from 
warn      USER-WRN  bad arg '' for '' from : 
warn      USER-WRN  bad 'USER@' dest ':' from 
warn      USER-WRN  'PASS' without login from 
warn      USER-WRN  syntax error in 'PORT' from 
warn      USER-WRN  different address in 'PORT' from 
warn      USER-WRN  killing old PASV socket for 
warn      USER-WRN  'ABOR' from 
info      USER-INF  '' from 
info      USER-INF  ' ' from 
info      USER-INF  'USER ' dest : from 
info      USER-INF  'USER ' from 
info      USER-INF  PASV set to : for 


# Source file: ++++ ftp-proxy/ftp-daemon.c

Severity  Pattern   Text
========  ========  ===============================================
err       TECH-ERR  can't fork daemon
err       TECH-ERR  can't detach daemon
err       TECH-ERR  can't bind daemon to 
err       TECH-ERR  can't write config file into chroot
err       TECH-ERR  child with PID  went away (removing it)
err       TECH-ERR  can't fork client
warn      TECH-WRN  can't fork client now
err       USER-ERR  reject: '' (ForkLimit )
err       USER-ERR  reject: '' (MaxClients )


# Source file: ++++ ftp-proxy/ftp-ldap.c

Severity  Pattern   Text
========  ========  ===============================================
crit      TECH-FTL   (:): ldap_setup_user: ?ctx?
crit      TECH-FTL   (:): ldap_fetch: ?ctx? ?srv?
crit      TECH-FTL   (:): ldap_fetch: ?BaseDN?
crit      TECH-FTL   (:): ldap_fetch: ?ObjectClass?
crit      TECH-FTL   (:): ldap_fetch: ?Identifier?
crit      TECH-FTL   (:): ldap_attrib: ?ld? ?e? ?attr?
err       TECH-ERR  can't read LDAP data for : 
err       TECH-ERR  can't eval DestAddr for 
err       TECH-ERR  can't eval DestPort for 
err       TECH-ERR  can't eval DestMode for 
err       TECH-ERR  can't reach LDAP server :
err       TECH-ERR  can't bind LDAP using dn ''
err       TECH-ERR  can't bind LDAP anonymously
err       TECH-ERR  invalid user name or with asterisk
err       TECH-ERR  ldap user auth - prefix missed
info      USER-INF  reading data for '' from LDAP
info      USER-INF  reading data for '' from cfg-file
err       USER-ERR  LDAP user auth failed for  from 
err       USER-ERR  access denied for 

# Source file: ++++ ftp-proxy/ftp-main.c

Severity  Pattern   Text
========  ========  ===============================================
err       TECH-ERR  can't run without an destination address


##################################################################
# $Log: SYSLOG,v $
# Revision 1.8  2002/05/02 14:25:04  mt
# updated to match v1.9 messages, removed debug level
#
# Revision 1.7  2002/05/02 13:13:31  mt
# merged with v1.8.2.2
#
# Revision 1.6.2.1  2002/04/04 14:30:44  mt
# improved transparent proxy log messages
#
# Revision 1.6  2002/01/14 19:03:58  mt
# added transparent proxying, extended transfer messages, actualized
#
# Revision 1.5  1999/10/19 10:19:15  wiegand
# use port range also for control connection to server
#
# Revision 1.4  1999/09/30 09:48:57  wiegand
# added dynamic TranslatedAddress via file
#
# Revision 1.3  1999/09/24 06:38:52  wiegand
# added regular expressions for all commands
# removed character map and length of paths
# added flag to reset PASV on every PORT
# added "magic" user with built-in destination
# added some argument pointer fortification
#
# Revision 1.2  1999/09/21 07:13:07  wiegand
# syslog / abort cleanup and review
#
# Revision 1.1  1999/09/15 14:06:22  wiegand
# initial checkin
#
##################################################################