Sensitive Session Log Control in SSH Proxy

In some of the usage scenarios of SSH Proxy, sensitive data can be used in the command on the connected device. It is possible that this sensitive data does not want to be displayed openly in logs. In the case of thensso.cli.secret_masking_patternproperty key must be defined on the corresponding element type. The definition should have a precise form. For example, the part of this command that contains the sensitive information can be defined as $$value$$ at the property key with regular expression.
Property key definition:
nsso.cli.secret_masking_pattern= sshpass -v -p "$$value$$" ssh .*
CLI Input:
sshpass -v -p "Password1" ssh JohnDoe@192.168.1.1﻿
Session and Command Log lines at Kron PAM:
sshpass -v -p "*****" ssh JohnDoe@192.168.1.1

Session Log Control in SSH Proxy

Kron SSH (Kssh)