security: Inhibit execution of privilege escalating functions
This patch allows individual dialplan functions to be marked as 'dangerous', to inhibit their execution from external sources. A 'dangerous' function is one which results in a privilege escalation. For example, if one were to read the channel variable SHELL(rm -rf /) Bad Things(TM) could happen; even if the external source has only read permissions. Execution from external sources may be enabled by setting 'live_dangerously' to 'yes' in the [options] section of asterisk.conf. Although doing so is not recommended. Also, the ABI was changed to something more reasonable, since Asterisk 12 does not yet have a public release. (closes issue ASTERISK-22905) Review: http://reviewboard.digium.internal/r/432/ ........ Merged revisions 403913 from http://svn.asterisk.org/svn/asterisk/branches/1.8 ........ Merged revisions 403917 from http://svn.asterisk.org/svn/asterisk/branches/11 ........ Merged revisions 403959 from http://svn.asterisk.org/svn/asterisk/branches/12 git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@403960 65c4cc65-6c06-0410-ace0-fbb531ad65f3
Showing
- README-SERIOUSLY.bestpractices.txt 23 additions, 0 deletionsREADME-SERIOUSLY.bestpractices.txt
- UPGRADE-12.txt 10 additions, 0 deletionsUPGRADE-12.txt
- configs/asterisk.conf.sample 6 additions, 0 deletionsconfigs/asterisk.conf.sample
- funcs/func_db.c 19 additions, 1 deletionfuncs/func_db.c
- funcs/func_env.c 24 additions, 4 deletionsfuncs/func_env.c
- funcs/func_lock.c 18 additions, 3 deletionsfuncs/func_lock.c
- funcs/func_realtime.c 41 additions, 21 deletionsfuncs/func_realtime.c
- funcs/func_shell.c 12 additions, 6 deletionsfuncs/func_shell.c
- include/asterisk/pbx.h 63 additions, 0 deletionsinclude/asterisk/pbx.h
- main/asterisk.c 5 additions, 0 deletionsmain/asterisk.c
- main/pbx.c 187 additions, 3 deletionsmain/pbx.c
- main/tcptls.c 11 additions, 0 deletionsmain/tcptls.c
Loading
Please register or sign in to comment