Community discussions

MUM Europe 2020
 
sejtam
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 66
Joined: Sun Dec 14, 2014 4:23 pm

hide-sensitive doesn't?

Sun Jan 04, 2015 8:21 am

RB2011 with 6.24

I ran a backup

/export file=c hide-sensitive

however, several items of sensitive info were still left in the output file (somewhat mangled by me)
add coa-port=1700 customer=admin disabled=no ip-address=127.0.0.2 log=\
    auth-fail name=koerberGW shared-secret=myRadiusSecret use-coa=no
set address=74.125.130.16 from="myRouter <my@email>" last-status=\
    succeeded password=<mySMPTpassword> port=587 start-tls=yes user=\
    me@me
btw: is that COA port needed when authenticating against the local Userman?
 
User avatar
boen_robot
Forum Guru
Forum Guru
Posts: 2411
Joined: Thu Aug 31, 2006 4:43 pm
Location: europe://Bulgaria/Plovdiv

Re: hide-sensitive doesn't?

Sun Jan 04, 2015 3:20 pm

I think those don't count as sensitive, because they're passwords to external services, whereas "hide-sensitive" is intended to hide local sensitive data - passwords that the router itself defines and authenticates others against.
PEAR2_Net_RouterOS(1.0.0b6) - My API client in PHP
(Rate my posts? If you want... no pressure...)
 
sejtam
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 66
Joined: Sun Dec 14, 2014 4:23 pm

Re: hide-sensitive doesn't?

Mon Jan 05, 2015 8:09 am

I think those don't count as sensitive, because they're passwords to external services, whereas "hide-sensitive" is intended to hide local sensitive data - passwords that the router itself defines and authenticates others against.
unfortunate, as currently I have only an outside SMTP server to send this through. It would be nice if it could obscure all such fields (or had a facility to encrypt the file locally before sending/es part of the export).

No, I don't just want the file to stay local, as I may need to it recover service in case I'm locked out or lost the router

Who is online

Users browsing this forum: No registered users and 48 guests