Summary:ASTERISK-17652: permit/deny for hostnames
Reporter:bsgcic (bsgcic)Labels:
Date Opened:2011-04-06 12:42:14Date Closed:2011-06-07 14:00:44
Versions:1.8.4 Frequency of
Description:Please re-consider https://issues.asterisk.org/bug_view_advanced_page.php?bug_id=781.
While hostnames can be spoofed, allowing for setting something like allow=mydynamicip.dyndns.org ADDS an additional level of security above just the username/secret check.
From a user perspective, this has value.
Perhaps, re-using some of the code for the externhost feature for this would make the addition of this feature feasible?
By the way, the original reporter in 2004 for ASTERISK-7400781, also included a suggestion for ranges as well. That might also be a good idea but I would emphasize the hostname functionality as greater value to security.

Comments:By: Paul Belanger (pabelanger) 2011-04-06 17:11:12

Features requests are no longer submitted to or accepted through the issue tracker. Features requests are openly discussed on the mailing lists [1] and Asterisk IRC channels and made note of by Bug Marshals.

[1] http://www.asterisk.org/support/mailing-lists