Setting FILTER_PWDS to YES or NO, doesn’t make any difference.

Guys,

This patch make the ENCRYPTED PRIVATE KEY part to be removed.

diff -ur rancid-3.2.orig/bin/fnrancid.in rancid-3.2/bin/fnrancid.in
--- rancid-3.2.orig/bin/fnrancid.in 2015-03-16 15:02:52.000000000 -0400
+++ rancid-3.2/bin/fnrancid.in 2016-03-17 13:22:16.494902363 -0400
@@ -170,6 +170,7 @@
sub GetSystem {
print STDERR " In GetSystem: $_" if ($debug);

+ my $priv_key;
while (<INPUT>) {
tr/\015//d;
next if /^\s*$/;
@@ -204,6 +205,11 @@
tr/\015//d;
next if /^\s*$/;
last if (/$prompt/);
+ # spot the start of an ENCRYPTED private key
+ $priv_key = 1 if(/^\s*set private-key "-----BEGIN ENCRYPTED PRIVATE KEY-----/);
+ # spot the end of an RSA private key
+ $priv_key = 0 && next if(/^\s*-----END ENCRYPTED PRIVATE KEY-----"/);
+ next if($priv_key == 1);

# System time is fortigate extraction time
next if (/^\s*!System time:/);

Gerhard,