Newbie install question

Andrew Fort afort at staff.webcentral.com.au
Wed Sep 5 12:00:52 UTC 2001


Brett o'hara wrote;

>I worked it out.  create_cvs does NOT cope with manually creating the
>directory.  I've adopted Andrew's user stuff which works like 
>a dream, and
>now I finally have notification when somone makes changes to 
>our Cisco's (no
>more finding out 2 weeks later that something's been messed with and
>broken).

The limitation here is that 'rancid' made the changes (or whichever user is
doing the cronjob).  tracking down whom to execute the lart(8) on requires
other logs, so be sure to keep TACACS+/RADIUS accounting logs so you can
track down those 'cleaner' admins who have that awful habit of 'cleaning up'
router configs :)

On this point, I've been considering hacking in a 'RANCID-APPARENTLY-BY:'
tag (at the top of the diff) which would grab the username from the 'Last
modified by' stuff (at the top of the output of 'wr term'/'sh run' on IOS),
where it's valid, so the stored config actually tells you who last updated
it (well, apparently :).  Upon examining the code, it looks like someone
tried to do this, but commented the code out; perahps due to inconsistencies
in the formatting of these two lines between different IOS versions (or the
lack of this data on other platforms)..  can anyone shed some light on this?
anyone else reckon this feature wouldn't suck?  after all, there's no use
cluttering up the config files with yet more cruft if it's only me who wants
it :)

-afort



More information about the Rancid-discuss mailing list