diff options
author | Mark Spencer <markster@digium.com> | 2006-11-22 05:49:06 +0000 |
---|---|---|
committer | Mark Spencer <markster@digium.com> | 2006-11-22 05:49:06 +0000 |
commit | cc0c154f0e6407753a061098b306434db9e96eca (patch) | |
tree | fae9a8dd92e6c17729bf6b7a8d958996daa58262 | |
parent | a69ac09748ba1f1fbe2ab517430c851512675c2c (diff) |
Restore some sense of security to manager
git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@47912 65c4cc65-6c06-0410-ace0-fbb531ad65f3
-rw-r--r-- | main/manager.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/main/manager.c b/main/manager.c index e65317edd..61b72c9cf 100644 --- a/main/manager.c +++ b/main/manager.c @@ -1981,6 +1981,10 @@ static int process_message(struct mansession *s, struct message *m) return 0; } + if (!s->authenticated && strcasecmp(action, "Login") && strcasecmp(action, "Logoff") && strcasecmp(action, "Challenge")) { + astman_send_error(s, m, "Permission denied"); + return 0; + } /* XXX should we protect the list navigation ? */ for (tmp = first_action ; tmp; tmp = tmp->next) { if (!strcasecmp(action, tmp->action)) { |