Home Explore Help
Sign In
fusionpbx
/
fusionpbx-docs
mirror of https://github.com/fusionpbx/fusionpbx-docs.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Update security.rst

FusionPBX 8 years ago
parent
383606c1ad
commit
692a08925d
1 changed files with 5 additions and 0 deletions
Unified View Show Diff Stats
  1. 5 0
      source/getting_started/security.rst

+ 5 - 0
source/getting_started/security.rst
View File 

@@ -56,6 +56,11 @@ Mod_xml_rpc allows running remote commands to FreeSWITCH. Ensure you have a fire
 
 
 
 Latest Debian install script installs `iptables`_ firewall which prevents public access to the mod_xml_rpc port. If you are not using a firewall on the server you should even if its protected by by an external firewall. Some not informed co-worker could expose the server to the public internet at some point in the future. Multiple layers of security is considered best practice.
 
 Latest Debian install script installs `iptables`_ firewall which prevents public access to the mod_xml_rpc port. If you are not using a firewall on the server you should even if its protected by by an external firewall. Some not informed co-worker could expose the server to the public internet at some point in the future. Multiple layers of security is considered best practice.
 
 
 
+Secure by default for 2 reasons.
 
+ -  The module is disabled by default.
 
+ -  Install script firewalls xml rpc port 8787 and does not allow access by default outside of 127.0.0.1
 
+
 
+If you were to start the module and open port 8787 on the firewall you would want to set a really good password for it under Advanced -> Settings. It would be recommended to use a VPN to like OpenVPN to access XML RPC over port 8787 instead of opening port 8787 on the firewall.
 
 
 
 Fail2ban
 
 Fail2ban
 
 ^^^^^^^^
 
 ^^^^^^^^