Strip record

Open airween opened this issue 3 years ago • 1 comments

We use BBB and the ITSec team found an issue:

bbb_record

They said that if the user downloads the record file, the components (and versions) used are visible and potentially dangerous.

Is there any way to remove/hide this data? Eg. can we use some hook which runs before the record moves to final directory?

Sep 06 '22 08:09 airween

We found an API call - are we able to remove the mentioned metadata fields with this endpoint?

Sep 06 '22 09:09 airween

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

Jun 08 '23 21:06 stale[bot]