Project

General

Profile

Bug #3487

Punctuation removed when replicating rule descriptions from primary to secondary

Added by Brian Candler about 5 years ago. Updated over 3 years ago.

Status:
Confirmed
Priority:
Low
Assignee:
-
Category:
Config sync
Target version:
-
Start date:
02/25/2014
Due date:
% Done:

0%

Estimated time:
Affected Version:
Affected Architecture:

Description

I like to diff my primary and secondary configs to check they are fully in sync. However, there are some false alarms where rule comments have punctuation stripped out. Some examples:

-                       <descr><![CDATA[Allow syslog, snmp traps to monitoring box]]></descr>
+                       <descr><![CDATA[Allow syslog snmp traps to monitoring box]]></descr>
-                       <descr><![CDATA[TEMP: iperf testing]]></descr>
+                       <descr><![CDATA[TEMP iperf testing]]></descr>
-                       <descr><![CDATA[INSECURE marked 'temp' on PH firewall]]></descr>
+                       <descr><![CDATA[INSECURE marked temp on PH firewall]]></descr>
-                       <descr><![CDATA[Allow FTP admin across Internet (insecure!)]]></descr>
+                       <descr><![CDATA[Allow FTP admin across Internet insecure]]></descr>

(There are also some other cases where the XML elements occur in different orders in the primary and secondary; or one uses <tag/> and the other uses <tag></tag>. I suspect those would be more difficult to fix)

History

#1 Updated by Chris Buechler over 3 years ago

  • Status changed from New to Confirmed

#2 Updated by Chris Buechler over 3 years ago

  • Category set to Config sync

Also available in: Atom PDF