summaryrefslogtreecommitdiff
path: root/lib/oxidized
diff options
context:
space:
mode:
authorAndreas Loibl <a.loibl@traviangames.com>2018-07-13 13:11:05 +0200
committerytti <saku@ytti.fi>2018-07-13 14:30:30 +0300
commit3efcd35e4bcebbff79c4dcd9ac024a1957a5b8f2 (patch)
tree3d72fdba76ea4187d38aac8369ad190b842eaaac /lib/oxidized
parent26b098bbdda3181e06e4170a087989eec6733495 (diff)
fortios: mask "md5-key" secrets
format to match: set md5-key <integer_id> "<md5_key>"
Diffstat (limited to 'lib/oxidized')
-rw-r--r--lib/oxidized/model/fortios.rb1
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/oxidized/model/fortios.rb b/lib/oxidized/model/fortios.rb
index e9ccbc4..6a61aeb 100644
--- a/lib/oxidized/model/fortios.rb
+++ b/lib/oxidized/model/fortios.rb
@@ -19,6 +19,7 @@ class FortiOS < Oxidized::Model
cfg.gsub! /(set .*secret) .+/, '\\1 <configuration removed>'
# A number of other statements also contains sensitive strings
cfg.gsub! /(set (?:passwd|password|key|group-password|auth-password-l1|auth-password-l2|rsso|history0|history1)) .+/, '\\1 <configuration removed>'
+ cfg.gsub! /(set md5-key [0-9]+) .+/, '\\1 <configuration removed>'
cfg.gsub! /(set private-key ).*?-+END ENCRYPTED PRIVATE KEY-*"$/m, '\\1<configuration removed>'
cfg.gsub! /(set ca ).*?-+END CERTIFICATE-*"$/m, '\\1<configuration removed>'
cfg.gsub! /(set csr ).*?-+END CERTIFICATE REQUEST-*"$/m, '\\1<configuration removed>'