[asterisk-bugs] [Asterisk 0010972]: [patch] safe/limited Originate manager action

noreply at bugs.digium.com noreply at bugs.digium.com
Fri Feb 29 09:07:05 CST 2008 

The following issue has been UPDATED. 
====================================================================== 
http://bugs.digium.com/view.php?id=10972 
====================================================================== 
Reported By:                tzafrir
Assigned To:                
====================================================================== 
Project:                    Asterisk
Issue ID:                   10972
Category:                   Core/NewFeature
Reproducibility:            always
Severity:                   feature
Priority:                   normal
Status:                     new
Asterisk Version:           1.6.0-beta4 
SVN Branch (only for SVN checkouts, not tarball releases):  trunk 
SVN Revision (number only!): 85537 
Disclaimer on File?:        N/A 
Request Review:              
====================================================================== 
Date Submitted:             10-13-2007 19:29 CDT
Last Modified:              02-29-2008 09:07 CST
====================================================================== 
Summary:                    [patch] safe/limited Originate manager action
Description: 
The manager action of date allows someone with a "call" write permission to
run an arbitrary command with the Asterisk user (using e.g. the System
application). It also allows the originator to generate a call to just
about anywhere in the dialplan.

This patch is attempts to be a first step towards providing a safer
Originate action. It adds a new permission type, "safe_call". And then goes
to add a new meaning to the Originate action if the caller has only
"safe_call" write permissions but not "call" write permissions:

* The originator cannot use the "Application" form. It must originate a
cal to an extension.

* The Context set by the originaator is ignored, and replaced by the
context set for it in the managers.conf .

* A Local channel is not allowed, as it would allow using an arbitrary
context.

This still allows the originator to generate a call from an arbitrary
channel, which is probably not safe. But gets rid of most of the issues.

It is currently a proof of concept code - tested to build but not to run.
====================================================================== 

Issue History 
Date Modified   Username       Field                    Change               
====================================================================== 
02-29-08 09:07  file           Asterisk Version          SVN => 1.6.0-beta4 
02-29-08 09:07  file           Category                 Core/ManagerInterface =>
Core/NewFeature
======================================================================

More information about the asterisk-bugs mailing list