From: David M. Lee <dlee@digium.com>
Date: Tue, 17 Dec 2013 14:41:59 +0000 (+0000)
Subject: Changed the default for live_dangerously to no
X-Git-Tag: 13.0.0-beta1~743
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=27f37f6e3df6de123a8af8096303d71bebcb180d;p=thirdparty%2Fasterisk.git

Changed the default for live_dangerously to no
........

Merged revisions 404006 from http://svn.asterisk.org/svn/asterisk/branches/12


git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@404009 65c4cc65-6c06-0410-ace0-fbb531ad65f3
---

diff --git a/configs/asterisk.conf.sample b/configs/asterisk.conf.sample
index f7cda268f3..985c80c289 100644
--- a/configs/asterisk.conf.sample
+++ b/configs/asterisk.conf.sample
@@ -88,7 +88,7 @@ documentation_language = en_US	; Set the language you want documentation
 				; etc.) These functions (such as SHELL) are
 				; considered dangerous because they can allow
 				; privilege escalation.
-				; Default yes, for backward compatability.
+				; Default no
 
 ; Changing the following lines may compromise your security.
 ;[files]
diff --git a/main/asterisk.c b/main/asterisk.c
index 3ed085d280..d06509516a 100644
--- a/main/asterisk.c
+++ b/main/asterisk.c
@@ -3332,8 +3332,8 @@ static void ast_readconfig(void)
 		unsigned int dbdir:1;
 		unsigned int keydir:1;
 	} found = { 0, 0 };
-	/* Default to true for backward compatibility */
-	int live_dangerously = 1;
+	/* Default to false for security */
+	int live_dangerously = 0;
 
 	/* Set default value */
 	option_dtmfminduration = AST_MIN_DTMF_DURATION;