soscleaner doesn't obfuscate sub-domains

Solution Verified - Updated -

Environment

  • Red Hat Enterprise Linux (RHEL) 7.5
  • redhat-support-tool-0.9.10-1.el7

Issue

Whilst the hosts DNS domain, e.g. host.test.example.com, is obfuscated correctly the sub-domains of it are not, e.g. test.example.com or example.com are left in the logs.

Above means that some of company's FQDNs still appear in the logs, e.g.:

Service: krbtgt/TEST.EXAMPLE.COM@TEST.EXAMPLE.COM, Server: host123.test.example.com  

Usernames are not being removed from logfiles, e.g.:

# grep test123 soscleaner-123456/last
test123  pts/0        x.y.z.w      Wed Oct 17 09:13   still logged in

We require soscleaner to

  • Add support to obfuscate sub-domains
  • Add username obfuscation

Resolution

Please update to redhat-support-tool-0.9.11-1.el7 shipped with Advisory RHBA-2019:2267 or newer.

Root Cause

The soscleaner in redhat-support-tool was updated to version with sub-domains and username obfuscation fixed.

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.