From eabec47c08532b9593f6a308931087ebaca936cb Mon Sep 17 00:00:00 2001
From: Zoe Kahala <452060+ZoeS17@users.noreply.github.com>
Date: Sat, 11 Mar 2023 11:08:20 -0600
Subject: [PATCH] sensitive_files.yaml(SNMP) add createUser to bad_regex

Add `createUser` to `bad_regex` as it likely contains a hardcoded
password.

As an example:
```
createUser bootstrap MD5 SuperSecurePassword123__ DES
```
where `SuperSecurePassword123__` is the password and `bootstrap` is the
username, though I should mention the username maybe misleading here.

Spec/Man-page link:
[freebsd.org - snmpd.conf]

[freebsd.org - snmpd.conf]: https://man.freebsd.org/cgi/man.cgi?query=snmpd.conf#:~:text=your%2D%0A%20%20%20%20%20%20%20self%20instead%3A-,createUser,-%5B%2De%09%20%20%20%20%20%20%20ENGINEID%5D%09%20%20%20%20%20%20username
---
 build_lists/sensitive_files.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build_lists/sensitive_files.yaml b/build_lists/sensitive_files.yaml
index 73b05fd..544a691 100644
--- a/build_lists/sensitive_files.yaml
+++ b/build_lists/sensitive_files.yaml
@@ -2123,7 +2123,7 @@ search:
         files:
           - name: "snmpd.conf"
             value: 
-                bad_regex: "rocommunity|rwcommunity|extend.*"
+                bad_regex: "rocommunity|rwcommunity|extend.*|^createUser"
                 only_bad_lines: True
                 type: f
                 search_in: