soscleaner (8) - Linux Manuals

soscleaner: clean sosreports of sensitive information


soscleaner - clean sosreports of sensitive information


soscleaner -l LOGLEVEL -d DOMAIN -f FILE -q


soscleaner is an attempt to begin the process of cleaning potentially sensitive hostnames and IPv4 addresses from an sosreport after it has been created. It is NOT a full cleaning, but it attempts to be a good starting point. If a Fully Qualified Domain Name is used for the hostname, it can substitute instances of hostnames on that domain with a consistent substitution. If an FQDN is not used, it will replace all instances of the short hostname. It also replaces instances of IPv4 addresses with a randomly assignable IPv4 range.


-d, --domain=DOMAIN
optional additional domains to be analyzed during the soscleaner process
-f, --file=FILE
optional additonal files to be analyzed. Can be used in addtion to supplying an sosreport, or can be used without specifying an sosreport. If no sosreport is supplied, no hostnames will be obfuscated usless the -d flag is used to add a domain for analysis
-l, --loglevel=LOGLEVEL
the desired loglevel to be used. default is 'INFO' (including quotes). Options are 'DEBUG','INFO','WARNING','ERROR'. -q, --quiet Quiet mode. Nothing will be output to STDOUT. logfiles will still be created.


supply an sosreport
soscleaner /path/to/sosreport.tar.gz
change logging level
soscleaner -l DEBUG /path/to/sosreport.tar.gz (warning - DEBUG level logging is extremely intensive.)
supply additonal domains
soscleaner -d -d /path/to/sosreport.tar.gz
supply additional files
soscleaner -f /path/to/file1 -f /path/to/file2 /path/to/sosreport.tar.gz
only analyze files
soscleaner -f /path/to/file1 -f /path/to/file2 -d (It is highly recommended to use the -d flag if only scanning files, so hostnames will be obfuscated.)


Please report new bugs to


Jamie Duncan (jduncan [at]