Script to close rootsh sessions and strip ANSI escape codes for Splunk consumption
- rootsh
- ansifilter (c)
- declutter (perl)
cd /usr/src
wget https://github.com/josegof/rootsh_clear/archive/v1.0.zip
unzip master.zip
cp rootsh_clear-master/ansifilter_{linux or solaris} /usr/local/bin/ansifilter
cp rootsh_clear-master/rootsh_clear.sh {scripts_dir}/rootsh_clear.shPlace a cronjob with rootsh_clear.sh every 5 minutes
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
Please make sure to update tests as appropriate.