[rancid] [PATCH] panos.pm: filter secrets

[Anderson, Charles R]

The attached patch filters out snmp-community-string and all "key " values (encryption/authentication keys for OSPF and other protocols, IPsec pre-shared-keys, etc.) in PanOS/Panorama configs and fixes the initial comment line to begin with # like all the other comments.

Result:

- !RANCID-CONTENT-TYPE: paloalto
+ #RANCID-CONTENT-TYPE: paloalto

-                             snmp-community-string XXXXXXXX;
+ #                            snmp-community-string <removed>;

-                                   key XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX;
+ #                                  key <removed>;
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: rancid-3.9-panos-filter-secrets.patch
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20190220/04aff400/attachment.ksh>