[asterisk-users] Hide the plain text password
Steve Howes
steve-lists at geekinter.net
Tue Feb 15 07:29:15 CST 2011
On 15 Feb 2011, at 13:17, Richard Kenner wrote:
> Of course not! It would be useless if that were the case: the whole
> point here would be that you need the master encryption key.
>
> Here's a possible design:
>
> - There's optionally a file in the config
> directory called "master_key". It contains just a string.
>
> - A CLI command "core encrypt <string>" is added to Asterisk. It takes the
> provided string, encrypts it using the string in master_key, and outputs
> a string of the form "{enc:<encrypted_version_of_string}".
>
> - The config file reader looks for strings of the form "{enc:<string>}:
> and replaces them, before otherwise parsing the line, with the decrypted
> version of the string using the key in the "master_key" file.
Let us know when you've made the patch..
S
More information about the asterisk-users
mailing list