Merge pull request #14996 from jumpserver/pr@dev@fix_long_time_no_login_risk

fix: long_time_no_login account, not listed as risk account
2025-07-05 11:06:34 +00:00 · 2025-03-11 16:40:31 +08:00 · 2025-03-11 16:40:31 +08:00 · 60eaec68c6
commit 60eaec68c6
parent 5571fb6f42 43973122bf
2 changed files with 5 additions and 4 deletions
--- a/apps/accounts/automations/gather_account/host/posix/main.yml
+++ b/apps/accounts/automations/gather_account/host/posix/main.yml
@ -10,7 +10,7 @@
    - name: Gather posix account last login
      ansible.builtin.shell: |
        for user in {{ users.stdout_lines | join(" ") }}; do
-          last -i --time-format iso -n 1 ${user}  | awk '{ print $1,$3,$4, $NF }' | head -1 | grep -v ^$
+          last -i --time-format iso -n 1 ${user}  | awk '{ print $1,$3,$4, $NF }' | head -1 | awk 'NF'
        done
      register: last_login

--- a/apps/accounts/automations/gather_account/manager.py
+++ b/apps/accounts/automations/gather_account/manager.py
@ -116,9 +116,10 @@ class AnalyseAccountRisk:
            if not date:
                continue

-            pre_date = ori_account and getattr(ori_account, field)
-            if pre_date == date:
-                continue
+            # 服务器收集的时间和数据库时间一致，不进行比较，无法检测风险 不太对，先注释
+            # pre_date = ori_account and getattr(ori_account, field)
+            # if pre_date == date:
+            #     continue

            if date and date < timezone.now() - delta:
                risks.append(