[asterisk-commits] dlee: branch 12 r404006 - in /branches/12: configs/ main/
SVN commits to the Asterisk project
asterisk-commits at lists.digium.com
Tue Dec 17 08:33:39 CST 2013
Author: dlee
Date: Tue Dec 17 08:33:35 2013
New Revision: 404006
URL: http://svnview.digium.com/svn/asterisk?view=rev&rev=404006
Log:
Changed the default for live_dangerously to no
Modified:
branches/12/configs/asterisk.conf.sample
branches/12/main/asterisk.c
Modified: branches/12/configs/asterisk.conf.sample
URL: http://svnview.digium.com/svn/asterisk/branches/12/configs/asterisk.conf.sample?view=diff&rev=404006&r1=404005&r2=404006
==============================================================================
--- branches/12/configs/asterisk.conf.sample (original)
+++ branches/12/configs/asterisk.conf.sample Tue Dec 17 08:33:35 2013
@@ -88,7 +88,7 @@
; etc.) These functions (such as SHELL) are
; considered dangerous because they can allow
; privilege escalation.
- ; Default yes, for backward compatability.
+ ; Default no
; Changing the following lines may compromise your security.
;[files]
Modified: branches/12/main/asterisk.c
URL: http://svnview.digium.com/svn/asterisk/branches/12/main/asterisk.c?view=diff&rev=404006&r1=404005&r2=404006
==============================================================================
--- branches/12/main/asterisk.c (original)
+++ branches/12/main/asterisk.c Tue Dec 17 08:33:35 2013
@@ -3333,8 +3333,8 @@
unsigned int dbdir:1;
unsigned int keydir:1;
} found = { 0, 0 };
- /* Default to true for backward compatibility */
- int live_dangerously = 1;
+ /* Default to false for security */
+ int live_dangerously = 0;
/* Set default value */
option_dtmfminduration = AST_MIN_DTMF_DURATION;
More information about the asterisk-commits
mailing list