On 12-07-11 11:50 AM, A J Stiles wrote:
> Yes indeed. Note the 192.168 address I used in my other example --
the Asterisk server here is on the LAN side of the > router, and there
is no firewall rule anywhere forwarding to its port 80. If for some
reason you have to run Asterisk on > a box facing the Internet, then
make sure that any CGI script that can place outside calls is locked
down in the Apache > configuration so as *only* to be reachable from LAN
addresses.
Even then, lock it down further if you can. Desktop PCs can become
infected, and then via botnet controls, used to grab URLs from inside
the LAN.
Limiting the number of requests/second/IP may be a good place to start.
--
Looking for (employment|contract) work in the
Internet industry, preferrably working remotely.
Building / Supporting the net since 2400 baud was
the hot thing. Ask for a resume! [email protected]
--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
New to Asterisk? Join us for a live introductory webinar every Thurs:
http://www.asterisk.org/hello
asterisk-users mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-users
