From 41d5f9d8275690a96c8cd4fc5443bad3b1b72e73 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Thu, 14 Nov 2013 09:43:06 -0500 Subject: doc: defined when probes allowed_groups setting was added --- doc/server/plugins/probes/index.txt | 20 +++++++++++--------- 1 file changed, 11 insertions(+), 9 deletions(-) (limited to 'doc') diff --git a/doc/server/plugins/probes/index.txt b/doc/server/plugins/probes/index.txt index 6f745e359..2e23c31d5 100644 --- a/doc/server/plugins/probes/index.txt +++ b/doc/server/plugins/probes/index.txt @@ -143,21 +143,23 @@ This assigns the client to the groups debian-wheezy and amd64. To prevent clients from manipulating the probe output and choosing unexpected groups (and receiving their potential sensitive files) you can use the ``allowed_groups`` option in the ``[probes]`` section of -``bcfg2.conf`` on the server. This whitespace-separated list of anchored -regular expressions (must match the complete group name) controls -dynamic group assignments. Only matching groups are allowed. The -default allows all groups. +``bcfg2.conf`` on the server. This whitespace-separated list of +anchored regular expressions (must match the complete group name) +controls dynamic group assignments. Only matching groups are +allowed. The default allows all groups. -.. versionadded:: TODO +.. versionadded:: 1.3.4 -Example:: +Example: + +.. code-block:: ini [probes] allowed_groups = debian-(squeeze|wheezy|sid) i386 -This allows the groups debian-squeeze, debian-wheezy, debian-sid and -i386. With the probe output from above, this setting would disallow -the group amd64. +This allows the groups `debian-squeeze`, `debian-wheezy`, `debian-sid` +and `i386`. With the probe output from above, this setting would +disallow the group `amd64`. Handling Probe Output ===================== -- cgit v1.2.3-1-g7c22