[asterisk-bugs] [Asterisk 0013753]: [patch] Set a sane umask inside safe_asterisk
Asterisk Bug Tracker
noreply at bugs.digium.com
Wed Oct 22 14:30:47 CDT 2008
A NOTE has been added to this issue.
======================================================================
http://bugs.digium.com/view.php?id=13753
======================================================================
Reported By: irroot
Assigned To: Corydon76
======================================================================
Project: Asterisk
Issue ID: 13753
Category: General
Reproducibility: always
Severity: tweak
Priority: normal
Status: assigned
Asterisk Version: 1.6.0
SVN Branch (only for SVN checkouts, not tarball releases): N/A
SVN Revision (number only!):
Disclaimer on File?: N/A
Request Review:
======================================================================
Date Submitted: 2008-10-21 12:22 CDT
Last Modified: 2008-10-22 14:30 CDT
======================================================================
Summary: [patch] Set a sane umask inside safe_asterisk
Description:
refer to http://bugs.digium.com/view.php?id=13751
recordings and other information will be created world readable this could
compromise valuable information.
as safe_asterisk is to be safe set a umask by default.
======================================================================
Relationships ID Summary
----------------------------------------------------------------------
related to 0013751 All Call Recordings are world readable ...
======================================================================
----------------------------------------------------------------------
(0094160) Corydon76 (administrator) - 2008-10-22 14:30
http://bugs.digium.com/view.php?id=13753#c94160
----------------------------------------------------------------------
This would create a change in behavior. The best that I can recommend is a
default umask of 022. If you're really concerned about outside access,
then you should not have ANY local users on your PBX machine. And in any
case, this is already recommended for system administrators to handle, some
of whom do not use safe_asterisk at all, so for them, this change would
have no effect.
Issue History
Date Modified Username Field Change
======================================================================
2008-10-22 14:30 Corydon76 Note Added: 0094160
======================================================================
More information about the asterisk-bugs
mailing list