Bug 1985037 - Clean - allow obfuscation of Active Directory user names.
Summary: Clean - allow obfuscation of Active Directory user names.
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: sos
Version: 8.5
Hardware: Unspecified
OS: Linux
unspecified
high
Target Milestone: beta
: ---
Assignee: Pavel Moravec
QA Contact: Miroslav Hradílek
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-07-22 17:12 UTC by Stephen Hobbs
Modified: 2021-11-10 07:45 UTC (History)
6 users (show)

Fixed In Version: sos-4.1-5.el8
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-11-09 19:36:31 UTC
Type: Bug
Target Upstream Version:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github sosreport sos pull 2619 0 None None None 2021-08-10 17:04:42 UTC
Red Hat Product Errata RHEA-2021:4388 0 None None None 2021-11-09 19:36:56 UTC

Description Stephen Hobbs 2021-07-22 17:12:37 UTC 
Description of problem:
sos clean does not add users from Active Directory to the private map for obfuscation.

Version-Release number of selected component (if applicable):
4.1

Expected results: Any user who has accessed the system should be obfuscated.


Additional info:  This is resolved by https://github.com/sosreport/sos/pull/2619

My customer has tested this and AD users as well as local users were obfuscated. 

My customer would like this included in RHEL 8.5.
Comment 1 Pavel Moravec 2021-07-29 20:04:56 UTC 
This is far too late to add to RHEL8.5. But it will be included in 8.6 for sure.

Would you be able to test a candidate build within few months / once there will be a 8.6 candidate RPM?
Comment 2 Stephen Hobbs 2021-07-29 20:35:10 UTC 
This is a very important feature for my customer.  They have a lot of security requirements around what data is sent outside the company network.  If there is any way this could be included prior to 8.6 that would be great.  I understand this might not be ready for 8.5 GA, but is there any way it could get included prior to 8.6?

My customer would be willing to test any builds available.

Thanks, 
Stephen
Comment 3 Pavel Moravec 2021-08-10 16:04:47 UTC 
(In reply to Stephen Hobbs from comment #2)
> This is a very important feature for my customer.  They have a lot of
> security requirements around what data is sent outside the company network. 
> If there is any way this could be included prior to 8.6 that would be great.
> I understand this might not be ready for 8.5 GA, but is there any way it
> could get included prior to 8.6?
> 
> My customer would be willing to test any builds available.
> 
> Thanks, 
> Stephen

We will add it to 8.5.0 / backport the #2619 PR to 8.5.0 .

We will welcome if you can test the candidate build (available within a week) on a real environment - we will mock it only.
Comment 4 Stephen Hobbs 2021-08-10 17:18:58 UTC 
I can have the build tested.  Please let me know when it is ready.

Thank you, 
Stephen Hobbs
Comment 10 errata-xmlrpc 2021-11-09 19:36:31 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (sos bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2021:4388
Note You need to log in before you can comment on or make changes to this bug.