[Pkg-voip-commits] r3504 - in freepbx/trunk/debian: . patches

Diego Iastrubni elcuco-guest at alioth.debian.org
Mon Apr 30 14:29:42 UTC 2007 

Author: elcuco-guest
Date: 2007-04-30 14:29:42 +0000 (Mon, 30 Apr 2007)
New Revision: 3504

Added:
   freepbx/trunk/debian/patches/fix-permissions.dpatch
Modified:
   freepbx/trunk/debian/changelog
   freepbx/trunk/debian/patches/00list
Log:
added a new patch to retrive_conf, which will create the files with permissions 660. some of the files contain passwords, and should not be world 
readable.



Modified: freepbx/trunk/debian/changelog
===================================================================
--- freepbx/trunk/debian/changelog	2007-04-30 11:40:34 UTC (rev 3503)
+++ freepbx/trunk/debian/changelog	2007-04-30 14:29:42 UTC (rev 3504)
@@ -21,6 +21,8 @@
     to Robert Roach for reporting)
   * freepbx-sqlite3, freepbx-mysql: create a default inbound route to the demos provided
     in the asterisk documentation
+  * freepbx-common: retrive_conf will now (at least try) to save the files in mode 660,
+    as they contain passowrds - they should not be world readable.
 
   [ Chris Halls ]
   * Remove fix-recordings.patch - already fixed in a different way upstream

Modified: freepbx/trunk/debian/patches/00list
===================================================================
--- freepbx/trunk/debian/patches/00list	2007-04-30 11:40:34 UTC (rev 3503)
+++ freepbx/trunk/debian/patches/00list	2007-04-30 14:29:42 UTC (rev 3504)
@@ -9,6 +9,7 @@
 clean-install-amp
 fix-agibin-dir
 fix-ari-link
+fix-permissions
 
 # integration with debian's op-panel
 fix-fop-config.dpatch

Added: freepbx/trunk/debian/patches/fix-permissions.dpatch
===================================================================
--- freepbx/trunk/debian/patches/fix-permissions.dpatch	2007-04-30 11:40:34 UTC (rev 3503)
+++ freepbx/trunk/debian/patches/fix-permissions.dpatch	2007-04-30 14:29:42 UTC (rev 3504)
@@ -0,0 +1,33 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## fix-permissions.dpatch by Diego Iastrubni <diego.iastrubni at xorcom.com>
+##
+## DP: We run the werberser as "group" asterisk, and this makes
+## DP: some conflicts with the default permissions. 
+
+ at DPATCH@
+diff -urNad freepbx-2.2.1~dfsg~/amp_conf/bin/retrieve_conf freepbx-2.2.1~dfsg/amp_conf/bin/retrieve_conf
+--- freepbx-2.2.1~dfsg~/amp_conf/bin/retrieve_conf	2007-01-04 02:48:29.000000000 +0200
++++ freepbx-2.2.1~dfsg/amp_conf/bin/retrieve_conf	2007-04-30 17:06:22.000000000 +0300
+@@ -428,7 +428,21 @@
+ //script to write queues conf file from mysql
+ $script = $amp_conf['AMPBIN'].'/retrieve_queues_conf_from_mysql.pl';
+ exec($script);
+-	
++
++// fix permissions
++exec( "chgrp asterisk /etc/asterisk/*additional.conf" ); 	
++exec( "chmod 660      /etc/asterisk/*additional.conf" ); 	
++
++exec( "chgrp asterisk /etc/asterisk/voicemail.conf" );
++exec( "chmod 660      /etc/asterisk/voicemail.conf" ); 	
++
++exec( "chgrp asterisk /etc/asterisk/indications.conf" ); 	
++exec( "chmod 660      /etc/asterisk/indications.conf" ); 	
++
++exec( "chgrp asterisk /etc/op-panel/freepbx/*additional.conf" );
++exec( "chmod 660      /etc/op-panel/freepbx/*additional.conf" ); 	
++
++
+ // **** Set reload flag for AMP admin
+ needreload();
+ out("Please Reload Asterisk by visiting http://".$amp_conf["AMPWEBADDRESS"]."/admin");


Property changes on: freepbx/trunk/debian/patches/fix-permissions.dpatch
___________________________________________________________________
Name: svn:executable
   + *

More information about the Pkg-voip-commits mailing list