[Pkg-voip-commits] [asterisk] 01/01: AST-2013-007: patch out from asterisk.conf, document

tzafrir at debian.org tzafrir at debian.org
Thu Dec 19 12:23:17 UTC 2013 

This is an automated email from the git hooks/post-receive script.

tzafrir pushed a commit to branch wheezy
in repository asterisk.

commit 65e711982b7176e211f67221a4833dda5ec3caf2
Author: Tzafrir Cohen <tzafrir at debian.org>
Date:   Thu Dec 19 14:21:15 2013 +0200

    AST-2013-007: patch out from asterisk.conf, document
    
    * Patch out the fix in AST-2013-007 from the installed asterisk.conf so
      the upgrade won't invoke a needless question (the only change is in
      lines that are remmed-out).
    * Document the change in README.Debian.
---
 debian/README.Debian | 15 +++++++++++++--
 debian/changelog     |  1 +
 debian/control       |  2 ++
 debian/rules         |  5 +++++
 4 files changed, 21 insertions(+), 2 deletions(-)

diff --git a/debian/README.Debian b/debian/README.Debian
index 336a5be..2657a15 100644
--- a/debian/README.Debian
+++ b/debian/README.Debian
@@ -303,6 +303,17 @@ update something in the source, just re-run the 'install' command.
 live/asterisk is a wrapper to that private copy of Asterisk.
 
 
-Enjoy your PBX!
+Live Dangarously
+================
+AST-2013-007 disallows running several functions (such as SHELL) when
+run from remote interfaces (AMI, realtime), unless the user decides to
+"live_dangerously". However, in order to support backward compatibility,
+the stable versions default to the "live_dangerously" setting enabled.
+
+If you want to disable it, add the following line to the section
+'[options]' in /etc/asterisk/asterisk.conf:
 
- -- Lionel Elie Mamane <lmamane at debian.org>, Fri, 29 Jul 2011 19:21:06 +0200
+live_dangerously = no
+
+
+Enjoy your PBX!
diff --git a/debian/changelog b/debian/changelog
index 9d16a6c..b8abe35 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,6 +3,7 @@ asterisk (1:1.8.13.1~dfsg-3+deb7u2) UNRELEASED; urgency=high
   * Patch AST-2013-006: fixes a buffer overflow in app_sms.
   * Patch ASTERISK-20658: fixes potential crash with asterisk-realtime
   * Patch AST-2013-007: guards access to code execution from remote interfaces
+    - but patch out the change in asterisk.conf.
 
  -- Tzafrir Cohen <tzafrir at debian.org>  Tue, 17 Dec 2013 02:05:19 +0200
 
diff --git a/debian/control b/debian/control
index e1f7640..8e7eee9 100644
--- a/debian/control
+++ b/debian/control
@@ -21,6 +21,8 @@ Build-Depends: debhelper (>= 6.0.7),
  autotools-dev,
  autoconf,
  automake,
+ patch,
+ patchutils,
  libnewt-dev,
  libsqlite0-dev | libsqlite-dev,
  libsqlite3-dev,
diff --git a/debian/rules b/debian/rules
index b92d244..ea955cf 100755
--- a/debian/rules
+++ b/debian/rules
@@ -192,6 +192,11 @@ install-indep: build-indep
 	# create a simple config
 	echo "; please read the documentation regarding the Manager Interface (asterisk-doc package)" > \
 		$(CURDIR)/debian/asterisk-config/etc/asterisk/manager.d/README.conf
+	# Unapply the changes in AST-2013-007 to config file asterisk.conf:
+	# (Changes left in the patch as we do want to keep the sample config
+	# files fixed)
+	filterdiff -i '*/configs/asterisk.conf.sample' $(CURDIR)/debian/patches/AST-2013-007 \
+		| patch -R $(CURDIR)/debian/asterisk-config/etc/asterisk/asterisk.conf
 	touch $@
 
 binary: binary-indep binary-arch

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-voip/asterisk.git

More information about the Pkg-voip-commits mailing list