Securing Your Asterisk Server, Part 2 - page 4
Locking Down OpenSSH
Any server administration done over a Web interface is transmitted in cleartext, unless you enable HTTPS. HTTPS is SSL over HTTP; a nice easy way to encrypt HTTP traffic. To activate it on your Asterisk server all you need to do is install the Apache SSL module, then restart Apache (Apache is the Web server included in Asterisk@Home):
# yum -y install mod_ssl # /etc/init.d/httpd restart
Then all you have to do is remember to point your Web browser to https://[asterisk-server].
Asterisk@Home is a complex package, so there may yet be the odd security hole somewhere. But you should be in pretty good shape now.
This article originally appeared on VoIPPlanet, a JupiterWeb site.
- 1Linux Top 3: Fedora 24, Peppermint 7 and Solus 1.2
- 2Linux Top 3: Alpine Linux 3.4, deepin 15.2 and Linux Lite 3.0
- 3Linux 4.7 Set to Boost Live Patching, Security and Power Management
- 4Linux 4.6 Charred Weasel adds USB 3.1 Support
- 5Linux Top 3: OpenIndiana 2016.04, Ubuntu 16.04 and Debian's New Leader