If I create a SUPOUT.RIF, all scripts are included.
In my case they contain passwords for e.g. Telegram or DYDNS service that I do not want to reveal.
For now I write the passwords in environment variables but their contents get lost after reboot. Therefore must be set in a startup script as well.
Any better solution to hide sensitive information from SUPOUT.RIF?
Thanks for any input
dksoft
You don’t trust support enough ?
They need the full config when they want to investigate certain problems.
I’m pretty sure they have other things to do then to look for any hidden accounts and passwords and have fun with it afterwards.
My 0.02€.
Any and all passwords are revealed in a supout.rif
The only way to avoid exposing your passwords is to — create dummy password’s in all areas, then generate the support-rif … after you submit the support.rif change back to your real passwords … yep this is a Hassel but its the only way when a bug report is issued …
Maybe one day MikroTik will fix this security issue … ONE very big reason that enterprises will NOT include Tik products is THIS very issue … 