On 10/10/07, James FitzGibbon <[EMAIL PROTECTED]> wrote: > Granted, I'm a stickler for edge cases, but one thing that worries me about > any all-dialplan solution (especially one that uses System) is the potential > for someone to do something malicious with it. Or (and this is probably > more likely) an inattentive * admin to shoot themselves in the foot. > > For example, calling "Voicemail(user@;rm -rf /etc/asterisk)" with > app_voicemail will probably blow up in a spectacular way but shouldn't do > any real damage to your system. The dialplan-based approach will do "very > bad things(tm)". > > Though implementing as much of this modular VM using existing dialplan > functions is a good thing, I'd be more comfortable if the parts that allow > user input (even administrator-created user input) to directly manipulate > the filesystem were less easy to subvert. > > Very impressive otherwise though.
The point is to do it ALL in dialplan. This may not be something to implement into your real system, because of reasons that were pointed out above. The real point is to PROVE it can be done, then find the deficiencies and fix them with a dialplan application or function. You've found one such case. We should really have something that writes out to a file on the system a lot safer. At this point I am just proving where the dialplan lacks by making it at least work in dialplan, rather than working with AGIs and other such things. And honestly, I just did this to prove to myself it could be done. Whether this ever goes anywhere other than this mailing list is left as an exercise to the reader. -- Leif Madsen. http://www.leifmadsen.com http://www.oreilly.com/catalog/asterisk --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
