Bug#406714: asterisk-sounds-main: FHS violation: asterisk privacy mode writes in /usr/share/asterisk/sounds/priv-callerintros

Kilian Krause kilian at debian.org
Fri Jan 19 09:05:37 CET 2007


Steve,

On Thu, Jan 18, 2007 at 05:31:14PM -0800, Steve Langasek wrote:
> On Sat, Jan 13, 2007 at 11:13:09AM +0100, Lionel Elie Mamane wrote:
> > Package: asterisk-sounds-main
> > Version: 1.2.13~dfsg-2
> > Severity: serious
> > Justification: Policy 9.1.1
> 
> > The asterisk privacy mode (Dial with option "P") records caller intros
> > in /usr/share/asterisk/sounds/priv-callerintros . This violates the
> > FHS and hence Debian policy.
> 
> But does asterisk run as root (I hope not)?  If not, then surely no intros
> can be written to this directory, so policy isn't actually being violated --
> it's just a feature that's unavailable to users of the package?

It's not running as root by the default init script. A user can run it
as root if manually running it without -U parameter.

Right, the asterisk_fix won't reset the permissions on that dir to be
owned by asterisk, thus for a default install that feature is plain
broken. It may be "fixed" by the user by manually resetting permissions,
though.


> If there is a reason this bug needs to be treated as an RC FHS violation,
> then an upload to testing-proposed-updates will be needed, because unstable
> has a new upstream version of asterisk.

Sounds sane to me. Backporting the fix from sid only should be a very
minimal change. Shall I prepare an upload to t-p-u?

-- 
Best regards,
Kilian




More information about the Pkg-voip-maintainers mailing list