Location of Keys in asterisk package

Maurice Massar massar at unix-ag.uni-kl.de
Wed Feb 17 02:02:53 UTC 2010


hi,

asterisk (1:1.4.10~dfsg-1) unstable; urgency=low
  * Add ast_key_dir patch to move keys from /var/lib/asterisk/keys to
    /usr/share/asterisk/keys where they should be.
 -- Mark Purcell <msp at debian.org>  Thu, 09 Aug 2007 22:47:00 +0100

Why should the keys be in /usr/share/asterisk/keys?
If I want to configure an RSA authenticated IAX-Trunk between
two asterisk hosts, I need to generate keys on both and have
asterisk read them. That is configuration in my book. That should
be in /etc and never in /usr. I would say that is an policy violation,
but with this change made 2.5 years ago, and in a stable release since 1
year already and no bug report in sight, I wonder if I got something
totaly wrong here?!

As a workaround I grepped the sources and found setting astdatadir
changes the keydir too... but adding it to asterisk.conf had no effect
since the section got renamed to [directories] instead of '[global]'.
This part is already fixed in the version in unstable, but not in stable
(1:1.4.21.2~dfsg-3+lenny1). So with a couple of symlinks and the correct
section I got my workaround. I really hate it, when programs just
silently ignore invalid config...

cu
Maurice Massar



More information about the Pkg-voip-maintainers mailing list