[asterisk-commits] dlee: trunk r404009 - in /trunk: ./ configs/asterisk.conf.sample main/asterisk.c

SVN commits to the Asterisk project asterisk-commits at lists.digium.com
Tue Dec 17 08:42:01 CST 2013 

Author: dlee
Date: Tue Dec 17 08:41:59 2013
New Revision: 404009

URL: http://svnview.digium.com/svn/asterisk?view=rev&rev=404009
Log:
Changed the default for live_dangerously to no
........

Merged revisions 404006 from http://svn.asterisk.org/svn/asterisk/branches/12

Modified:
    trunk/   (props changed)
    trunk/configs/asterisk.conf.sample
    trunk/main/asterisk.c

Propchange: trunk/
------------------------------------------------------------------------------
--- branch-12-merged (original)
+++ branch-12-merged Tue Dec 17 08:41:59 2013
@@ -1,1 +1,1 @@
-/branches/12:1-398558,398560-398577,398579-399305,399307-401390,401392-403290,403292-403749,403752,403767,403781-403782,403796,403808,403811,403823,403856,403864,403957,403959,403993
+/branches/12:1-398558,398560-398577,398579-399305,399307-401390,401392-403290,403292-403778,403781-404006

Modified: trunk/configs/asterisk.conf.sample
URL: http://svnview.digium.com/svn/asterisk/trunk/configs/asterisk.conf.sample?view=diff&rev=404009&r1=404008&r2=404009
==============================================================================
--- trunk/configs/asterisk.conf.sample (original)
+++ trunk/configs/asterisk.conf.sample Tue Dec 17 08:41:59 2013
@@ -88,7 +88,7 @@
 				; etc.) These functions (such as SHELL) are
 				; considered dangerous because they can allow
 				; privilege escalation.
-				; Default yes, for backward compatability.
+				; Default no
 
 ; Changing the following lines may compromise your security.
 ;[files]

Modified: trunk/main/asterisk.c
URL: http://svnview.digium.com/svn/asterisk/trunk/main/asterisk.c?view=diff&rev=404009&r1=404008&r2=404009
==============================================================================
--- trunk/main/asterisk.c (original)
+++ trunk/main/asterisk.c Tue Dec 17 08:41:59 2013
@@ -3332,8 +3332,8 @@
 		unsigned int dbdir:1;
 		unsigned int keydir:1;
 	} found = { 0, 0 };
-	/* Default to true for backward compatibility */
-	int live_dangerously = 1;
+	/* Default to false for security */
+	int live_dangerously = 0;
 
 	/* Set default value */
 	option_dtmfminduration = AST_MIN_DTMF_DURATION;

More information about the asterisk-commits mailing list