<html><body><div style="font-family: times new roman, new york, times, serif; font-size: 12pt; color: #000000"><div>I found a couple of issues with rancid 3.2.<br></div><div><br></div><div>1) when control_rancid checks for a group specific rancid.conf it does not properly set error codes when using git.<br></div><div>2) password filtering does not work on Cisco ASA firewalls using ikev2<br></div><div><br></div><div>here is a patch:<br></div><div><br></div><div>diff -rupN rancid-3.2/bin/control_rancid.in rancid-3.2.new/bin/control_rancid.in<br>--- rancid-3.2/bin/control_rancid.in 2015-03-16 15:02:52.000000000 -0400<br>+++ rancid-3.2.new/bin/control_rancid.in 2015-05-11 14:38:49.942514742 -0400<br>@@ -236,6 +236,7 @@ if [ -f rancid.conf ] ; then<br> ;;<br> git )<br> git status -s rancid.conf | grep '^?'<br>+ if [ $? -eq 0 ] ; then LN=1; else LN=0; fi<br> ;;<br> esac<br> if [ $LN -eq 0 ] ; then<br>diff -rupN rancid-3.2/lib/ios.pm.in rancid-3.2.new/lib/ios.pm.in<br>--- rancid-3.2/lib/ios.pm.in 2015-03-16 15:02:52.000000000 -0400<br>+++ rancid-3.2.new/lib/ios.pm.in 2015-05-11 14:38:50.622544735 -0400<br>@@ -2125,6 +2125,16 @@ TOP:<br> ProcessHistory("","","","!$1 <removed> $'"); next;<br> }<br> # ASA/PIX keys in more system:running-config<br>+ if (/^(( ikev2)? remote-authentication pre-shared-key ).*/ &&<br>+ $filter_pwds >= 1) {<br>+ ProcessHistory("","","","!$1 <removed> $'"); next;<br>+ }<br>+ # ASA/PIX keys in more system:running-config<br>+ if (/^(( ikev2)? local-authentication pre-shared-key ).*/ &&<br>+ $filter_pwds >= 1) {<br>+ ProcessHistory("","","","!$1 <removed> $'"); next;<br>+ }<br>+ # ASA/PIX keys in more system:running-config<br> if (/(\s+ldap-login-password )\S+(.*)/ && $filter_pwds >= 1) {<br> ProcessHistory("","","","!$1 <removed> $'"); next;<br> }</div><div><br></div><div>Regards,<br></div><div><br></div><div><br></div><div><span name="x"></span>Mike Eklund | DealNews<span name="x"></span><br></div><div><br></div></div></body></html>