In addition to the "hole" found by Chitralekha, you can also log into the Openfire console with the default credentials. Since there is no firewall running on Sipx by default this essentially leaves IM wide open from a security standpoint.
One of the key features of IM integration that is most anticipated to my company is that Openfire can do federation AND control it per user. 99.9% of users in our company should not have access, but some need it. We have to be able to control who does and doesn't and the existing implementation in 4.1 does not seem to allow that. If this can still be configured via the Openfire console, then that would be fine as well. I know it isn't a finished feature yet, but is there any documentation about what is planned for this release? Geoff Van Brunt Information Technology Manager Administration _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev sipXecs IP PBX -- http://www.sipfoundry.org/
