Remove PSK secret logs


#1

Hello,

How can I stop the below messages from appearing in VyOS logs. There messages are repeated every minutes and flood the logs with unnecessary information. I’m using VyOS 1.1.8.

Changing to directory ‘/etc/ipsec.d/crls’
forgetting secrets
loading secrets from “/etc/ipsec.secrets”
loaded PSK secret for x.x.x.x
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for
loaded PSK secret for

Thanks


#2

Anyone??


#3

Those messages are normal, not the frequency
This is about 2 weeks worth of logs on active tunnel (indeed, local, remote endpoints IPs are 10.255.255.10 10.255.255.9 )
v1.1.7

vyos@VyosTest:/var/log$ cat messages.2 | grep secret
Dec 5 08:30:10 VyosTest pluto[3146]: forgetting secrets
Dec 5 08:30:13 VyosTest pluto[4424]: loading secrets from “/etc/ipsec.secrets”
Dec 5 08:30:13 VyosTest pluto[4424]: loaded PSK secret for 10.255.255.10 10.255.255.9
Dec 5 08:30:13 VyosTest pluto[4424]: loading secrets from “/etc/dmvpn.secrets”
Dec 5 15:30:11 VyosTest pluto[4424]: forgetting secrets
Dec 5 15:30:14 VyosTest pluto[5629]: loading secrets from “/etc/ipsec.secrets”
Dec 5 15:30:14 VyosTest pluto[5629]: loaded PSK secret for 10.255.255.10 10.255.255.9
Dec 5 15:30:14 VyosTest pluto[5629]: loading secrets from “/etc/dmvpn.secrets”
Dec 13 12:00:10 VyosTest pluto[5629]: forgetting secrets
Dec 13 12:00:14 VyosTest pluto[35777]: loading secrets from “/etc/ipsec.secrets”
Dec 13 12:00:14 VyosTest pluto[35777]: loaded PSK secret for 10.255.255.10 10.255.255.9
Dec 13 12:00:14 VyosTest pluto[35777]: loading secrets from “/etc/dmvpn.secrets”
Dec 13 12:20:10 VyosTest pluto[35777]: forgetting secrets
Dec 13 12:20:13 VyosTest pluto[36046]: loading secrets from “/etc/ipsec.secrets”
Dec 13 12:20:13 VyosTest pluto[36046]: loaded PSK secret for 10.255.255.10 10.255.255.9
Dec 13 12:20:13 VyosTest pluto[36046]: loading secrets from “/etc/dmvpn.secrets”
Dec 13 12:30:11 VyosTest pluto[36046]: forgetting secrets
Dec 13 12:30:14 VyosTest pluto[36291]: loading secrets from “/etc/ipsec.secrets”
Dec 13 12:30:14 VyosTest pluto[36291]: loaded PSK secret for 10.255.255.10 10.255.255.9