kenmirrors/asterisk
1
0
Fork 0
mirror of https://github.com/asterisk/asterisk.git synced 2025-09-06 12:36:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add security note on astgenkey's manpage.

Browse Source 
(closes issue #12373)
 Reported by: lmamane
 Patches: 
       20080406__bug12373.diff.txt uploaded by Corydon76 (license 14)


git-svn-id: https://origsvn.digium.com/svn/asterisk/branches/1.4@113399 65c4cc65-6c06-0410-ace0-fbb531ad65f3
This commit is contained in:
Tilghman Lesher
2008-04-08 16:51:28 +00:00
parent 3949ff32df
commit 4e44f14c32
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
contrib/scripts/astgenkey.8
View File

@@ -109,6 +109,21 @@ Run quietly.
Don't encrypt the private key. Don't encrypt the private key.
.RE .RE
.SH SECURITY
The keys are created, using the umask of the user running the command.
To create the keys in a secure manner, you should check to ensure that
your umask is first set to disallow the private key from being world-
readable, such as with the following commands:
.I umask 0066
.I astgenkey yourkey
And then make the key accessible to Asterisk (assuming you run it as
user "asterisk").
chown asterisk /var/lib/asterisk/keys/yourname.*
.SH FILES .SH FILES
.I /var/lib/asterisk/keys .I /var/lib/asterisk/keys
.RS .RS