[sr-dev] [kamailio] multiple /tmp file vulnerabilities (#48)
Victor Seva
notifications at github.com
Sat Jan 24 13:20:57 CET 2015
Changes I'm planning to do in the Debian packaging:
> kamcmd defaults to connecting to unixs:/tmp/kamailio_ctl.
I'm going to change the default of ctl module to /var/run/kamailio/kamailio_ctl so kamcmd will use it by default and I'm going to set explicitly the binrpc parameter on the etc/kamailio/*.cfg files
> The kamailio build definitely is vulnerable as can be seen in utils/kamctl/Makefile.
I'm going to use basedir Makefile config instead of /tmp
---
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/48#issuecomment-71314450
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-dev/attachments/20150124/35cf1a37/attachment.html>
More information about the sr-dev
mailing list