From 3f33e3d1ce4e4a8dbcbdabd96763c87dfa4e2cff Mon Sep 17 00:00:00 2001 From: hagbard Date: Tue, 6 Nov 2018 18:01:44 -0800 Subject: Fixes T963: no authorization logs --- debian/changelog | 7 +++++++ templates/show/log/authorization/node.def | 4 +--- templates/show/log/node.def | 4 +--- 3 files changed, 9 insertions(+), 6 deletions(-) diff --git a/debian/changelog b/debian/changelog index 1e1d6ca..af90bb7 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +vyatta-op (0.14.0+vyos2+current8) unstable; urgency=medium + + * T963: no authorization logs + + + -- hagbard Wed, 07 Nov 2018 12:38:20 -0800 + vyatta-op (0.14.0+vyos2+current7) unstable; urgency=medium * T870: Commit-confirm restarts the server even after commit diff --git a/templates/show/log/authorization/node.def b/templates/show/log/authorization/node.def index 80686a0..637943f 100644 --- a/templates/show/log/authorization/node.def +++ b/templates/show/log/authorization/node.def @@ -1,4 +1,2 @@ help: Show listing of authorization attempts -run: less $_vyatta_less_options \ - --prompt=".log, page %dt of %D" \ - -- /var/log/auth.log +run: sudo /bin/journalctl -q SYSLOG_FACILITY=10 SYSLOG_FACILITY=4 diff --git a/templates/show/log/node.def b/templates/show/log/node.def index 3d37d84..a4f494f 100644 --- a/templates/show/log/node.def +++ b/templates/show/log/node.def @@ -1,4 +1,2 @@ help: Show contents of current master log file -run: less $_vyatta_less_options \ - --prompt=".log, page %dt of %D" \ - -- /var/log/messages +run: sudo /bin/journalctl -- cgit v1.2.3 From 1b94994d3f9c7ca32dfad3051fe9c3330edcfd98 Mon Sep 17 00:00:00 2001 From: Christian Poessinger Date: Sun, 11 Nov 2018 20:46:55 +0100 Subject: T999: "strip-private" does not strip pre-shared-secret Private information as the IPSec pre shared key was not removed on: vyos@vyos# show vpn ipsec | strip-private --- scripts/vyos-strip-config.pl | 3 +++ 1 file changed, 3 insertions(+) diff --git a/scripts/vyos-strip-config.pl b/scripts/vyos-strip-config.pl index a1e2f23..7b1d9ed 100644 --- a/scripts/vyos-strip-config.pl +++ b/scripts/vyos-strip-config.pl @@ -158,6 +158,9 @@ $input =~ s/ (peer|remote-host|local-host|server) ([\w-]+\.)+[\w-]+/ $1 xxxxx.tl # Strip OpenVPN secrets $input =~ s/(shared-secret-key-file|ca-cert-file|cert-file|dh-file|key-file|client) (\S+)/$1 xxxxxx/g if $stripOvpnSecrets; +# Strip IPSEC secrets +$input =~ s/pre-shared-secret \S+/pre-shared-secret xxxxxx/g if !($keepKeys); + # Strip BGP ASNs $input =~ s/(bgp|remote-as) (\d+)/$1 XXXXXX/g if $stripASN; -- cgit v1.2.3 From 679a3d16c57ad6627b8d0190c63939e64505a75c Mon Sep 17 00:00:00 2001 From: Daniil Baturin Date: Mon, 12 Nov 2018 01:28:52 +0100 Subject: T994: fix the argument number in "monitor bandwidth-test initiate". --- templates/monitor/bandwidth-test/initiate/node.tag/node.def | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/templates/monitor/bandwidth-test/initiate/node.tag/node.def b/templates/monitor/bandwidth-test/initiate/node.tag/node.def index 86dfaa1..3d047dd 100644 --- a/templates/monitor/bandwidth-test/initiate/node.tag/node.def +++ b/templates/monitor/bandwidth-test/initiate/node.tag/node.def @@ -1,3 +1,3 @@ help: Initiate a bandwidth test to specified host (port TCP/5001) allowed: echo ' ' -run: iperf -c $5 +run: iperf -c $4 -- cgit v1.2.3