AnonSec Shell
Server IP : 92.204.138.22  /  Your IP : 3.145.94.164
Web Server : Apache
System : Linux ns1009439.ip-92-204-138.us 4.18.0-553.8.1.el8_10.x86_64 #1 SMP Tue Jul 2 07:26:33 EDT 2024 x86_64
User : internationaljou ( 1019)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /lib/python3.6/site-packages/sos/report/plugins/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /lib/python3.6/site-packages/sos/report/plugins/salt.py
# This file is part of the sos project: https://github.com/sosreport/sos
#
# This copyrighted material is made available to anyone wishing to use,
# modify, copy, or redistribute it subject to the terms and conditions of
# version 2 of the GNU General Public License.
#
# See the LICENSE file in the source distribution for further information.
import re

from sos.report.plugins import Plugin, IndependentPlugin


class Salt(Plugin, IndependentPlugin):

    short_desc = 'Salt'

    plugin_name = 'salt'
    profiles = ('sysmgmt',)

    packages = ('salt', 'salt-minion', 'venv-salt-minion', 'salt-common',)

    def setup(self):
        all_logs = self.get_option("all_logs")

        if not all_logs:
            self.add_copy_spec("/var/log/salt/minion")
        else:
            self.add_copy_spec("/var/log/salt")

        self.add_copy_spec([
            "/var/log/venv-salt-minion.log",
            "/var/log/salt-ssh.log",
        ])

        self.add_copy_spec([
            "/etc/salt",
            "/etc/venv-salt-minion/",
            "/usr/local/etc/salt",
        ])
        self.add_forbidden_path([
            "/etc/salt/pki/*/*.pem",
            "/etc/venv-salt-minion/pki/*/*.pem",
            "/usr/local/etc/salt/pki/*/*.pem",
        ])

        self.add_cmd_output([
            "systemctl --full status salt-minion",
            "systemctl --full status venv-salt-minion",
            "salt-minion --versions-report",
            "venv-salt-minion --versions-report",
            "salt-call --local grains.items --out yaml",
            "venv-salt-call --local grains.items --out yaml",
        ], timeout=30)

    def postproc(self):
        regexp = r'(^\s+.*(pass|secret|(?<![A-z])key(?![A-z])).*:\ ).+$'
        subst = r'\1******'
        self.do_path_regex_sub("/etc/salt/*", regexp, subst)

        # Obfuscate grain entries like `password: mypass` or
        # `secret: mysecret`
        grain_regexp = re.compile("(^.*(pass|secret|key).*:)(.*)$",
                                  re.MULTILINE)
        self.do_cmd_output_sub("salt-call", grain_regexp, subst)
        self.do_cmd_output_sub("venv-salt-call", grain_regexp, subst)

# vim: set et ts=4 sw=4 :

Anon7 - 2022
AnonSec Team