asterisk pbx daemon user rights to //etc/asterisk vs. root
Posted on 2009-07-02
I recently installed Astersik 18.104.22.168 as a second asterisk server, on Ubuntu 9.0.4. My primary is running 22.214.171.124 running on Ubuntu 8.10 .. I noticed that on 126.96.36.199, //etc/asterisk is owned by the user "Asterisk - pbx daemon" ... And on 188.8.131.52, that directory is owned by root.
I would assume that having Asterisk being the owner would hold less security risks, because if the box were compromised through asterisk, then they would not be getting the root information.... But what password is the "Asterisk" user using? Is this in fact a better and more secure setup? Does anyone know if this is something new in the 184.108.40.206 release?