Globally disable monlist in all the ntp.conf variations to protect
against use of monlist to launch UDP-based DoS attacks.  This was
probably already prevented by firewall rules, but may as well make
sure.

Lowercase the hostname when forming a Kerberos principal in the
out-of-date cron job.  Some Networking systems use .Stanford.EDU
in the official hostname.  (rra)

Ignore more buggy power limit notifications from new Dell hardware.
Several cases were missed in the previous change.  (rra)

Ignore buggy CPU core power limit notifications from new Dell
hardware in default Debian filter-syslog rules.

This change does not affect the current usage of the module.  It does
allow manifests to choose to retire /etc/syslog.conf in favor or
fragments in /etc/rsyslog.d to control the syslog activity.  One
default fragment, 90-local.conf, that writes syslog messages
locally.

This change also include a fragment define that is used for the
management of rsyslog fragments.

* since it's too easy to use a hyphen--which is invalid

These files are supposed to have different permissions (0660 for
btmp and 0664 for wtmp), which isn't possible using a single united
base::newsyslog::config stanza.  Separate them into two stanzas
with the correct permissions.

Map Ubuntu raring to wheezy instead of squeeze for the Stanford-local
Debian repositories.

Ignore some more harmless messages that appear to be caused by
someone connecting to the server and then disconnecting without
trying to authenticate (such as when they realize their Kerberos
ticket is expired or doesn't exist).

Add additional ignore patterns for failed ssh logins from IT Services
staff.