[Asterisk-Dev] asterisk writing zaptel.conf
alex at pilosoft.com
alex at pilosoft.com
Wed Apr 27 05:41:08 MST 2005
On Mon, 25 Apr 2005, Tzafrir Cohen wrote:
> If the asterisk user has write permissions to /etc/zaptel.conf and root
> routinly (e.g: at boot) executes ztcfg, what are the possible issues?
I don't think anyone particularly evaluated ztcfg for security holes.
> Possible workaround: empty /etc/zaptel.conf and an asterisk-owned
> zaptel.conf under /etc/asterisk, executed by the wrapper script that
> runs asterisk?
I do not see what would it gain you. Bottom line is, ztcfg has to
interface directly with hardware, root privileges are required. If you are
very concerned (shared host) regarding security of ztcfg, your only
solution is to evaluate if there are any holes in it...
> (And can you suggest a better name and/or location, given even the
> current confusion between zaptel.conf and zapata.conf? :-) )
There's no confusion. zaptel.conf controls TDM card configuration on
hardware level. zapata.conf controls *asterisk* interface to such cards.
More information about the asterisk-dev
mailing list