[Asterisk-Users] VERY IMPORTANT(TREAT WITH URGENCY)
Scott Lykens
slykens at gmail.com
Wed Mar 22 15:27:50 MST 2006
On 3/22/06, Andrew D Kirch <trelane at trelane.net> wrote:
>
> exten => s,2,GotoIf($[${CALLERIDNUM}<300]?s,5)
> ;since 1xx is the pattern match for internal extensions anything less
> than 300 has to be internal so we already know that that is the
> extension they are wanting to forward
Downright hilarious. Great email.
Food for thought, however. Is it possible to access this context externally?
If so, someone with the ability set their own callerid (many people) could
potentially redirect calls without authorization. Another possibility is
that nefarious co-workers could use another's station to change call
forwarding without authorization.
Perhaps adding an authorization routine wouldn't be a bad idea. Simply
depends on how paranoid you and/or your users are.
Sorry if these thoughts have been covered, just thinking about it from a
different perspective.
sl
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20060322/3cd7d3c7/attachment.htm
More information about the asterisk-users
mailing list