diff options
author | Andreas Loibl <a.loibl@traviangames.com> | 2018-07-13 13:11:05 +0200 |
---|---|---|
committer | ytti <saku@ytti.fi> | 2018-07-13 14:30:30 +0300 |
commit | 3efcd35e4bcebbff79c4dcd9ac024a1957a5b8f2 (patch) | |
tree | 3d72fdba76ea4187d38aac8369ad190b842eaaac /lib/oxidized | |
parent | 26b098bbdda3181e06e4170a087989eec6733495 (diff) |
fortios: mask "md5-key" secrets
format to match: set md5-key <integer_id> "<md5_key>"
Diffstat (limited to 'lib/oxidized')
-rw-r--r-- | lib/oxidized/model/fortios.rb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/oxidized/model/fortios.rb b/lib/oxidized/model/fortios.rb index e9ccbc4..6a61aeb 100644 --- a/lib/oxidized/model/fortios.rb +++ b/lib/oxidized/model/fortios.rb @@ -19,6 +19,7 @@ class FortiOS < Oxidized::Model cfg.gsub! /(set .*secret) .+/, '\\1 <configuration removed>' # A number of other statements also contains sensitive strings cfg.gsub! /(set (?:passwd|password|key|group-password|auth-password-l1|auth-password-l2|rsso|history0|history1)) .+/, '\\1 <configuration removed>' + cfg.gsub! /(set md5-key [0-9]+) .+/, '\\1 <configuration removed>' cfg.gsub! /(set private-key ).*?-+END ENCRYPTED PRIVATE KEY-*"$/m, '\\1<configuration removed>' cfg.gsub! /(set ca ).*?-+END CERTIFICATE-*"$/m, '\\1<configuration removed>' cfg.gsub! /(set csr ).*?-+END CERTIFICATE REQUEST-*"$/m, '\\1<configuration removed>' |