On Fri, Jun 16, 2006 at 08:57:02AM +0100, Senad Jordanovic wrote: > [EMAIL PROTECTED] wrote: > > Dunno if anyone else has seen this yet: > > > http://www.scmagazine.com/us/news/article/563800/vulnerabilities+put+asteris > k+telephone+systems+risk/ > > we do not run asterisk (or any other critical services including PBXware) as > root on the host as normal process. > we are using chroot with very limited set of tools and non-root operation. > so ... it is much more secure.
Well, that protects the rest of the system from a potential problem with Asterisk. But not the rest of the network. Not to mention that it does not protect the PBX itself. A good practice, nontheless. -- Tzafrir Cohen sip:[EMAIL PROTECTED] icq#16849755 iax:[EMAIL PROTECTED] +972-50-7952406 [EMAIL PROTECTED] http://www.xorcom.com _______________________________________________ --Bandwidth and Colocation provided by Easynews.com -- Asterisk-Users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
