Bug#279052: asterisk creates file /.asterisk_history on shutdown
Russell Coker
Russell Coker <russell@coker.com.au>, 279052@bugs.debian.org
Sun, 31 Oct 2004 17:17:05 +1100
Package: asterisk
Version: 1:1.0.1-1
Severity: normal
A daemon should never create a file in the root directory. Temporary files
such as .asterisk_history can be in /var/lib or /var/run. Any place other
than the root directory.
Putting files in the root directory exposes information to untrusted users,
it causes problems with a read-only root fs system, and it breaks the FHS.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.9-se
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages asterisk depends on:
ii asterisk-sounds 1:1.0.1-1 Sound files for asterisk
ii libasound2 1.0.6-3 ALSA library
ii libc6 2.3.2.ds1-18 GNU C Library: Shared libraries an
ii libedit2 2.9.cvs.20040827-1 BSD editline and history libraries
ii libexpat1 1.95.8-1 XML parsing C library - runtime li
ii libgcc1 1:3.4.2-3 GCC support library
ii libglib1.2 1.2.10-9 The GLib library of C routines
ii libgsm1 1.0.10-13 Shared libraries for GSM speech co
ii libgtk1.2 1.2.10-17 The GIMP Toolkit set of widgets fo
ii libncurses5 5.4-4 Shared libraries for terminal hand
ii libopenh323-1.13.2 1.13.5.4-4 H.323 aka VoIP library
ii libpq3 7.4.6-2 Shared library libpq.so.3 for Post
ii libpri1 1.0.1-1 Primary Rate ISDN specification li
ii libpt-1.6.3 1.6.6.4-5 Portable Windows Library
ii libspeex1 1.0.rel.4-1 The Speex Speech Codec
ii libssl0.9.7 0.9.7d-5 SSL shared libraries
ii libtonezone1 1:1.0.0-1 tonezone library (runtime)
ii libx11-6 4.3.0.dfsg.1-8 X Window System protocol client li
ii libxext6 4.3.0.dfsg.1-8 X Window System miscellaneous exte
ii libxi6 4.3.0.dfsg.1-8 X Window System Input extension li
ii unixodbc 2.2.4-11 ODBC tools libraries
ii xlibs 4.3.0.dfsg.1-8 X Window System client libraries m
ii zlib1g 1:1.2.2-1 compression library - runtime
-- no debconf information