asterisk pbx daemon user rights to //etc/asterisk vs. root
Posted on 2009-07-02
I recently installed Astersik 22.214.171.124 as a second asterisk server, on Ubuntu 9.0.4. My primary is running 126.96.36.199 running on Ubuntu 8.10 .. I noticed that on 188.8.131.52, //etc/asterisk is owned by the user "Asterisk - pbx daemon" ... And on 184.108.40.206, that directory is owned by root.
I would assume that having Asterisk being the owner would hold less security risks, because if the box were compromised through asterisk, then they would not be getting the root information.... But what password is the "Asterisk" user using? Is this in fact a better and more secure setup? Does anyone know if this is something new in the 220.127.116.11 release?