Configuration file tracking: Plan text passwords

cardanid
Tera Contributor

‎12-14-2023 02:25 PM

With Configuration file tracking, has anyone find a way  to identify when a conf file has a plan text exposed password and then open up an INC to that team for remediation? 

0 Helpfuls
  • 433 Views
1 REPLY 1

Rahul Priyadars
Giga Sage
Giga Sage

‎12-14-2023 09:56 PM - edited ‎12-14-2023 10:00 PM

This needs a development work. Conf File discovery Stores Data in CMDB table- cmdb_ci_config_file_tracked.

Need to write a Scheduled Job to Read Conf files from Table and Parse the Data and Find Password KeyWord.

Now Check the Value of Password as plain text (https://www.youtube.com/watch?v=I4ClzBRBxSI). Need a very good Parser to parse all this.

 

Other thought to restrict access of conf file - is have strict ACL on table (cmdb_ci_config_file_tracked) to Control unauthorized access.

 

Regards

RP

 

 

 

0 Helpfuls