From 10e3be857a7d1aec02fea14ed1566bde6297ad22 Mon Sep 17 00:00:00 2001
From: Daniel Black <grooverdan@users.sourceforge.net>
Date: Thu, 11 Jul 2013 23:08:46 +1000
Subject: [PATCH] ENH: apache-auth filter added mod_auth_digest message

---
 config/filter.d/apache-auth.conf | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/config/filter.d/apache-auth.conf b/config/filter.d/apache-auth.conf
index 82aedea0..0ed7fe34 100644
--- a/config/filter.d/apache-auth.conf
+++ b/config/filter.d/apache-auth.conf
@@ -21,6 +21,7 @@ before = apache-common.conf
 
 # http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/aaa/mod_auth_basic.c (1st 3)
 # http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/aaa/mod_authz_core.c (2nd 3)
+# http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/aaa/mod_auth_digest.c (next 4)
 
 failregex = ^%(_apache_error_client)s user .* authentication failure for "\S*": Password Mismatch$
             ^%(_apache_error_client)s user .* not found: \S*\s*$
@@ -28,6 +29,10 @@ failregex = ^%(_apache_error_client)s user .* authentication failure for "\S*":
             ^%(_apache_error_client)s authorization failure \(no authenticated user\): \S*\s*$
             ^%(_apache_error_client)s client denied by server configuration: (uri )?\S*\s*$
             ^%(_apache_error_client)s user .* authorization failure for "\S*": \S*\s*$
+            ^%(_apache_error_client)s invalid nonce .* received - (length|hash) is not \S+\s*$
+            ^%(_apache_error_client)s invalid nonce .* received - user attempted time travel\s*$
+            ^%(_apache_error_client)s user .*: nonce expired \([\d.]+ seconds old - max lifetime [\d.]+\) - sending new nonce\s*$
+            ^%(_apache_error_client)s user .*: one-time-nonce mismatch - sending new nonce\s*$
 
 
 # Option:  ignoreregex