Revision 8a2229e3
Added by Jim Pingle over 10 years ago
usr/local/www/status.php | ||
---|---|---|
65 | 65 |
$line = preg_replace("/<password>.*?<\\/password>/", "<password>xxxxx</password>", $line); |
66 | 66 |
$line = preg_replace("/<pre-shared-key>.*?<\\/pre-shared-key>/", "<pre-shared-key>xxxxx</pre-shared-key>", $line); |
67 | 67 |
$line = preg_replace("/<rocommunity>.*?<\\/rocommunity>/", "<rocommunity>xxxxx</rocommunity>", $line); |
68 |
$line = preg_replace("/<prv>.*?<\\/prv>/", "<prv>xxxxx</prv>", $line); |
|
69 |
$line = preg_replace("/<ipsecpsk>.*?<\\/ipsecpsk>/", "<ipsecpsk>xxxxx</ipsecpsk>", $line); |
|
70 |
$line = preg_replace("/<md5-hash>.*?<\\/md5-hash>/", "<md5-hash>xxxxx</md5-hash>", $line); |
|
71 |
$line = preg_replace("/<md5password>.*?<\\/md5password>/", "<md5password>xxxxx</md5password>", $line); |
|
72 |
$line = preg_replace("/<nt-hash>.*?<\\/nt-hash>/", "<nt-hash>xxxxx</nt-hash>", $line); |
|
73 |
$line = preg_replace("/<radius_secret>.*?<\\/radius_secret>/", "<radius_secret>xxxxx</radius_secret>", $line); |
|
74 |
$line = preg_replace("/<ldap_bindpw>.*?<\\/ldap_bindpw>/", "<ldap_bindpw>xxxxx</ldap_bindpw>", $line); |
|
75 |
$line = preg_replace("/<passwordagain>.*?<\\/passwordagain>/", "<passwordagain>xxxxx</passwordagain>", $line); |
|
76 |
$line = preg_replace("/<crypto_password>.*?<\\/crypto_password>/", "<crypto_password>xxxxx</crypto_password>", $line); |
|
77 |
$line = preg_replace("/<crypto_password2>.*?<\\/crypto_password2>/", "<crypto_password2>xxxxx</crypto_password2>", $line); |
|
68 | 78 |
$line = str_replace("\t", " ", $line); |
69 | 79 |
echo htmlspecialchars($line,ENT_NOQUOTES); |
70 | 80 |
} |
Also available in: Unified diff
Catch some more sensitive info when sanitizing.