[rancid] post-processing the diff listing before mailing?

Chris Gauthier cgauthier at mapscu.com
Wed Sep 22 23:16:22 UTC 2010 

I do like the idea of that quite a bit.  I intentionally turn off the masking in the repository, but prefer it not be mailed out.  Perhaps that should just be the default setting?  In any event, I like the concept a lot.

Chris G.

-----Original Message-----
From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Lee
Sent: Wednesday, September 22, 2010 10:04 AM
To: rancid-discuss at shrubbery.net
Subject: [rancid] post-processing the diff listing before mailing?

Anyone like the idea of processing the diff listing before mailing it out?

I'd rather have rancid collect the configs and not mess with them -
ie: rancid.conf has
  FILTER_PWDS=NO
  NOCOMMSTR=NO
  ACLSORT=NO
but I don't want things like SNMP community strings or encrypted/obfuscated passwords being mailed out..  So my idea is post-processing the diff listing before emailing it out.  Which would also let me know which configs changed so I could check the new configs & mail out a 'local config standards violations' email :)

The code is really ugly, but as a proof of concept..

"control_rancid" line 447
# This has been different for different machines...
# Diff the directory and then checkin.
trap 'rm -fr $TMP $TMP.diff $DIR/routers.single;' 1 2 15 cd $DIR if [ $RCSSYS = "cvs" ] ; then
    # --LR-- cvs -f diff -U 4 -ko | sed -e '/^RCS file: /d' -e '/^--- /d' \
    # --LR-- 4 is not enough, 8 seems a bit much so try 6
    cvs -f diff -U 6 -ko | sed -e '/^RCS file: /d' -e '/^--- /d' \
        -e '/^+++ /d' -e 's/^\([-+ ]\)/\1 /' >$TMP.diff else
    svn diff | sed -e '/^+++ /d' -e 's/^\([-+ ]\)/\1 /' >$TMP.diff fi

# --LR-- begin: check configs of changed devices grep "^Index: " $TMP.diff |\ awk '/^Index: configs/{
  if ( ! got1 ) {
     printf("echo\necho\necho Config check results:\n~/bin/ckConfig.sh ")
     got1=1
  }
  printf("%s ", $2)
  }
  END{ if (got1) printf("\necho == results end ==\n") } ' >$TMP.doit /bin/sh $TMP.doit >> $TMP.diff ~/bin/sanitize.sh $TMP.diff >$TMP.doit /bin/mv $TMP.doit $TMP.diff
# --LR-- end:   check configs of changed devices

if [ $alt_mailrcpt -eq 1 ] ; then
    subject="router config diffs - courtesy of $mailrcpt"
else
    subject="router config diffs"
fi


Lee
_______________________________________________
Rancid-discuss mailing list
Rancid-discuss at shrubbery.net
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
CONFIDENTIALITY NOTICE
Attention: The information contained in this email and/or attachments is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any system and destroy any copies.

More information about the Rancid-discuss mailing list