From 5c84ebefabf8fae6c318609355b6c44d55ed31a1 Mon Sep 17 00:00:00 2001 From: kota kanbe Date: Thu, 26 Oct 2017 14:54:15 +0900 Subject: [PATCH] Update README --- README.ja.md | 14 ++++++++++++-- README.md | 13 ++++++++++--- commands/discover.go | 1 + 3 files changed, 23 insertions(+), 5 deletions(-) diff --git a/README.ja.md b/README.ja.md index edc4481f12..c7f455d049 100644 --- a/README.ja.md +++ b/README.ja.md @@ -676,6 +676,7 @@ $ vuls discover 172.31.4.0/24 [slack] hookURL = "https://hooks.slack.com/services/abc123/defghijklmnopqrstuvwxyz" +#legacyToken = "xoxp-11111111111-222222222222-3333333333" channel = "#channel-name" #channel = "${servername}" iconEmoji = ":ghost:" @@ -740,8 +741,17 @@ host = "172.31.4.82" notifyUsers = ["@username"] ``` - - hookURL : Incoming webhook's URL (legacyTokenが設定されている場合、hookURLは無視される。) - - legacyToken : slack legacy token (https://api.slack.com/custom-integrations/legacy-tokens) + - hookURL or legacyToken + どちらか一方を指定する。 + もし脆弱性が沢山有る場合はlegacyTokenの利用をおすすめする。legacyTokenはSlackのスレッド形式でポストされる。 + スキャンサーバ単位で集約されるのでSlack通知が氾濫しない。 + + - hookURL : Incoming webhook's URL (legacyTokenが設定されている場合、hookURLは無視される。) + ![Vuls-slack](img/vuls-slack-en.png) + + - legacyToken : slack legacy token (https://api.slack.com/custom-integrations/legacy-tokens) + ![Vuls-slack-thread](https://user-images.githubusercontent.com/8997330/31842418-02b703f2-b629-11e7-8ec3-beda5d3a397e.png) + - channel : channel name. channelに`${servername}`を指定すると、結果レポートをサーバごとに別チャネルにすることが出来る。 以下のサンプルでは、`#server1`チャネルと`#server2`チャネルに送信される。スキャン前にチャネルを作成する必要がある。 diff --git a/README.md b/README.md index e84519ec21..71bd3eee68 100644 --- a/README.md +++ b/README.md @@ -690,6 +690,7 @@ $ vuls discover 172.31.4.0/24 [slack] hookURL = "https://hooks.slack.com/services/abc123/defghijklmnopqrstuvwxyz" +#legacyToken = "xoxp-11111111111-222222222222-3333333333" channel = "#channel-name" #channel = "${servername}" iconEmoji = ":ghost:" @@ -756,13 +757,19 @@ You can customize your configuration using this template. notifyUsers = ["@username"] ``` - - hookURL : Incoming webhook's URL (hookURL is ignored when legacyToken is set.) - - legacyToken : slack legacy token (https://api.slack.com/custom-integrations/legacy-tokens) + - hookURL or legacyToken. + If there are a lot of vulnerabilities, it is better to use legacyToken since the Slack notification will be flooded. + + - hookURL : Incoming webhook's URL (hookURL is ignored when legacyToken is set.) + ![Vuls-slack](img/vuls-slack-en.png) + + - legacyToken : slack legacy token (https://api.slack.com/custom-integrations/legacy-tokens) + ![Vuls-slack-thread](https://user-images.githubusercontent.com/8997330/31842418-02b703f2-b629-11e7-8ec3-beda5d3a397e.png) + - channel : channel name. If you set `${servername}` to channel, the report will be sent to each channel. In the following example, the report will be sent to the `#server1` and `#server2`. Be sure to create these channels before scanning. - **if legacyToken is set, you must set up an existing channel** ``` [slack] channel = "${servername}" diff --git a/commands/discover.go b/commands/discover.go index a1430e6a44..5de668ab3f 100644 --- a/commands/discover.go +++ b/commands/discover.go @@ -92,6 +92,7 @@ func printConfigToml(ips []string) (err error) { const tomlTemplate = ` [slack] hookURL = "https://hooks.slack.com/services/abc123/defghijklmnopqrstuvwxyz" +#legacyToken = "xoxp-11111111111-222222222222-3333333333" channel = "#channel-name" #channel = "${servername}" iconEmoji = ":ghost:"