| Summary: | ASTERISK-17652: permit/deny for hostnames | ||
| Reporter: | bsgcic (bsgcic) | Labels: | |
| Date Opened: | 2011-04-06 12:42:14 | Date Closed: | 2011-06-07 14:00:44 |
| Priority: | Major | Regression? | No |
| Status: | Closed/Complete | Components: | Channels/chan_sip/General |
| Versions: | 1.8.4 | Frequency of Occurrence | |
| Related Issues: | |||
| Environment: | Attachments: | ||
| Description: | Please re-consider https://issues.asterisk.org/bug_view_advanced_page.php?bug_id=781. While hostnames can be spoofed, allowing for setting something like allow=mydynamicip.dyndns.org ADDS an additional level of security above just the username/secret check. From a user perspective, this has value. Perhaps, re-using some of the code for the externhost feature for this would make the addition of this feature feasible? By the way, the original reporter in 2004 for ASTERISK-7400781, also included a suggestion for ranges as well. That might also be a good idea but I would emphasize the hostname functionality as greater value to security. | ||
| Comments: | By: Paul Belanger (pabelanger) 2011-04-06 17:11:12 Features requests are no longer submitted to or accepted through the issue tracker. Features requests are openly discussed on the mailing lists [1] and Asterisk IRC channels and made note of by Bug Marshals. [1] http://www.asterisk.org/support/mailing-lists | ||