asterisk pbx daemon user rights to //etc/asterisk vs. root
Posted on 2009-07-02
I recently installed Astersik 126.96.36.199 as a second asterisk server, on Ubuntu 9.0.4. My primary is running 188.8.131.52 running on Ubuntu 8.10 .. I noticed that on 184.108.40.206, //etc/asterisk is owned by the user "Asterisk - pbx daemon" ... And on 220.127.116.11, that directory is owned by root.
I would assume that having Asterisk being the owner would hold less security risks, because if the box were compromised through asterisk, then they would not be getting the root information.... But what password is the "Asterisk" user using? Is this in fact a better and more secure setup? Does anyone know if this is something new in the 18.104.22.168 release?